$ rpki-client -vvf rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft File: XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft (raw, json) Hash identifier: i3OziT2RbG4NCKo2YyGtpw6d3lrsmITk0S47yeGRXBA= Subject key identifier: 20:EE:76:E0:23:B4:77:5E:CA:E9:E6:FD:84:F9:A1:11:89:43:08:24 Authority key identifier: 5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A Certificate issuer: /CN=A91524AF/serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Certificate serial: 04B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft Manifest number: 049E Signing time: Sat 23 Aug 2025 00:16:22 +0000 Manifest this update: Sat 23 Aug 2025 00:16:22 +0000 Manifest next update: Sat 30 Aug 2025 00:16:22 +0000 Files and hashes: 1: XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl (hash: sMPcB+n6kzlPxlMg7fMli0vj39I2KfinZSmII1+8D1Y=) 2: BEB34436FE3211EFAA1D9A4EC4F9AE02.roa (hash: yFDpBLHsX38bp2JcWh75H9eK/2yaSCGu63FKHuPPshA=) 3: 87840F3AFBD111EFB4804F27C4F9AE02.roa (hash: 4ehbMo37a6ch/Exe1ear/YvsEg7kjNmAG4ZYn9dhULQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:16:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1205 (0x4b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91524AF, serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Validity Not Before: Aug 23 00:16:22 2025 GMT Not After : Aug 30 00:16:22 2025 GMT Subject: CN=68a90856-8886 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:07:75:a8:b5:f9:3b:c8:e7:ff:bf:7e:28:32: 37:ec:03:51:3d:b4:03:ea:10:83:f6:28:40:5d:d3: b0:61:ae:56:44:34:a8:3a:43:e4:91:ae:b8:48:93: e8:56:e9:38:b3:53:eb:3f:a8:f9:16:cf:8e:9f:f3: dc:0f:b8:47:51:b1:f6:e6:7b:3c:0c:79:6d:35:bb: 33:46:0e:7e:51:f5:af:46:a6:0b:2d:1a:c3:d5:16: 3b:8e:3b:54:ad:bf:3b:fe:78:0b:3c:fe:c0:0f:19: c7:b8:fb:ab:6c:eb:0c:a4:de:fd:94:85:7d:32:e0: 41:3f:18:90:9a:31:b5:d7:0a:98:db:60:ee:08:83: 46:1d:17:51:30:04:0b:ba:fe:39:2d:9d:96:c3:c7: 81:b4:51:6e:fa:10:2a:25:ac:af:d6:12:2f:d7:a2: ef:af:b4:ba:f0:6c:d2:81:89:12:b5:36:44:9f:04: 68:ce:bb:ac:2b:9b:d5:d3:60:89:b0:b4:14:d6:1a: 43:0a:3c:c0:53:05:9d:48:d0:8f:19:a7:af:13:96: 04:c4:1b:50:1e:be:66:91:05:93:fd:67:b4:73:ad: 5c:61:a6:5a:1d:0b:1f:ef:cf:be:34:e1:1d:a4:ae: 3d:fb:2a:e1:bf:ed:bc:0d:a7:4a:d5:9b:38:f5:d8: 78:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:EE:76:E0:23:B4:77:5E:CA:E9:E6:FD:84:F9:A1:11:89:43:08:24 X509v3 Authority Key Identifier: keyid:5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:96:51:20:b9:a3:48:ec:0c:61:75:27:95:62:22:7f:9e:6f: 2d:59:c2:89:ee:7c:a3:65:8c:3f:5b:46:23:20:aa:d2:7e:e7: 11:09:ad:59:46:5e:6e:c4:8d:ce:62:25:43:44:75:93:59:49: 9b:75:9f:11:a1:2a:77:2a:03:ea:52:53:46:54:6a:6f:bd:6c: 9c:8a:1f:ca:79:5b:59:9d:6a:ca:cf:75:d7:3b:96:c7:54:0e: e0:4b:1c:a7:e7:65:7b:44:7a:d3:8b:c9:84:a2:29:ce:ce:a6: 5f:35:39:41:da:7c:be:d9:f4:aa:dd:02:ec:09:42:b5:cd:fb: fb:35:da:d7:68:36:d6:87:18:1e:93:3b:b5:1f:07:ff:93:d6: f7:a9:60:6c:68:72:63:97:fd:75:1a:65:ef:5c:07:9c:84:d9: 36:be:d8:36:26:bd:a0:d7:66:e0:08:ea:40:45:e2:b4:5f:1f: 70:25:9b:78:5f:cc:21:72:50:cb:50:93:3e:71:f2:f4:95:3c: 83:e7:cf:ed:d2:9d:23:1f:e7:12:13:08:ea:8f:a1:ae:f2:7c: 1b:22:d8:75:ee:a9:af:ed:45:6b:80:3d:f0:0c:87:33:cd:57: 5c:48:7f:51:aa:a1:fb:4e:f8:7f:c9:fc:2a:b8:62:22:86:11: 89:bf:a7:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI0QUYxMTAvBgNVBAUTKDVDMzE1REFGQzUzQTgyRkRENjJDNzIwMDVDNzY0NDMz M0JDMDI5N0EwHhcNMjUwODIzMDAxNjIyWhcNMjUwODMwMDAxNjIyWjAYMRYwFAYD VQQDEw02OGE5MDg1Ni04ODg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqgd1qLX5O8jn/79+KDI37ANRPbQD6hCD9ihAXdOwYa5WRDSoOkPkka64SJPo Vuk4s1PrP6j5Fs+On/PcD7hHUbH25ns8DHltNbszRg5+UfWvRqYLLRrD1RY7jjtU rb87/ngLPP7ADxnHuPurbOsMpN79lIV9MuBBPxiQmjG11wqY22DuCINGHRdRMAQL uv45LZ2Ww8eBtFFu+hAqJayv1hIv16Lvr7S68GzSgYkStTZEnwRozrusK5vV02CJ sLQU1hpDCjzAUwWdSNCPGaevE5YExBtQHr5mkQWT/We0c61cYaZaHQsf78++NOEd pK49+yrhv+28DadK1Zs49dh4cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCDuduAj tHdeyunm/YT5oRGJQwgkMB8GA1UdIwQYMBaAFFwxXa/FOoL91ixyAFx2RDM7wCl6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjRBRi83NkM3RjBGNDUx RjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2M1dMSElBWEhaRU16dkFL WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hERmRyOFU2Z3YzV0xISUFYSFpFTXp2QUtYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjRBRi83NkM3RjBGNDUxRjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2 M1dMSElBWEhaRU16dkFLWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/llEguaNI7AxhdSeVYiJ/nm8tWcKJ7nyjZYw/W0YjIKrSfucRCa1Z Rl5uxI3OYiVDRHWTWUmbdZ8RoSp3KgPqUlNGVGpvvWycih/KeVtZnWrKz3XXO5bH VA7gSxyn52V7RHrTi8mEoinOzqZfNTlB2ny+2fSq3QLsCUK1zfv7NdrXaDbWhxge kzu1Hwf/k9b3qWBsaHJjl/11GmXvXAechNk2vtg2Jr2g12bgCOpAReK0Xx9wJZt4 X8whclDLUJM+cfL0lTyD58/t0p0jH+cSEwjqj6Gu8nwbIth17qmv7UVrgD3wDIcz zVdcSH9RqqH7Tvh/yfwquGIihhGJv6cU -----END CERTIFICATE-----Generated at Sat Aug 23 15:15:21 2025 by rpki-client