$ rpki-client -vvf rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft File: XLz7z59AY6eYAiqPHiafvf6jb_g.mft (raw, json) Hash identifier: mSb7H5AEhbmrh1heTp1Jwclo1V0/v8h0WMQsf3inMXE= Subject key identifier: 44:40:B8:06:CB:02:A6:2C:A0:C1:A4:46:31:42:C8:FF:18:77:DB:27 Authority key identifier: 5C:BC:FB:CF:9F:40:63:A7:98:02:2A:8F:1E:26:9F:BD:FE:A3:6F:F8 Certificate issuer: /CN=A917F4F2/serialNumber=5CBCFBCF9F4063A798022A8F1E269FBDFEA36FF8 Certificate serial: 0318 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft Manifest number: 0314 Signing time: Sat 23 Aug 2025 01:25:54 +0000 Manifest this update: Sat 23 Aug 2025 01:25:54 +0000 Manifest next update: Sat 30 Aug 2025 01:25:54 +0000 Files and hashes: 1: XLz7z59AY6eYAiqPHiafvf6jb_g.crl (hash: kNMQ4GHFvUXF/4IGX6cInC50v9AyA2dhJuqFvHGeJpQ=) 2: CA455C5CE0B311ECBC9BEA63C4F9AE02.roa (hash: +ZSBEXRcgClmiO74ln8lB46inGp0vsN6jKOzaxEdX6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.crl rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:25:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 792 (0x318) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F4F2, serialNumber=5CBCFBCF9F4063A798022A8F1E269FBDFEA36FF8 Validity Not Before: Aug 23 01:25:54 2025 GMT Not After : Aug 30 01:25:54 2025 GMT Subject: CN=68a918a2-3512 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:7e:f1:ae:4e:4c:74:03:da:64:0d:82:2e:b7: 4b:ec:f6:54:e4:f3:d0:8d:0f:62:c9:1a:a3:c4:42: 83:66:4b:47:de:3f:14:dd:2d:83:d9:1d:ad:99:ea: 34:b2:4b:f2:3c:c5:4d:80:1a:f4:aa:28:f1:2f:f2: ad:6c:62:f9:70:01:83:78:58:c8:57:f4:b4:69:91: eb:90:3d:1c:41:bf:7f:ab:df:2a:d3:1c:9a:a0:5c: 92:28:75:af:2f:08:48:11:36:88:88:2c:c6:4e:6e: 37:08:ae:17:9b:b1:b2:58:e9:b5:b8:d6:6e:62:01: 5a:f9:52:d8:41:11:85:d1:64:4f:87:cc:c9:86:a1: f6:13:b6:f6:84:3e:db:a1:d7:ae:56:7f:dd:f9:40: da:1e:26:27:92:79:6c:ee:19:2d:06:f4:9c:07:33: 5c:64:20:31:49:a3:42:6c:c6:01:81:29:ea:59:d1: 7e:61:04:94:ac:ff:46:c9:bf:35:1c:47:24:d6:e1: b3:9e:63:4e:3e:39:4f:e6:da:32:12:a1:77:3d:b9: 31:a1:36:c5:3b:ac:a1:cb:43:1c:2c:9b:88:7f:d3: 45:38:0c:52:72:44:25:b7:56:e6:30:7c:52:70:79: ec:1d:f5:56:f7:55:96:2a:f1:ed:cd:66:d0:95:24: 13:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:40:B8:06:CB:02:A6:2C:A0:C1:A4:46:31:42:C8:FF:18:77:DB:27 X509v3 Authority Key Identifier: keyid:5C:BC:FB:CF:9F:40:63:A7:98:02:2A:8F:1E:26:9F:BD:FE:A3:6F:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:22:68:c6:57:16:6e:94:89:b8:4f:c4:50:26:0c:bf:76:94: 6a:0a:e0:e2:18:3e:91:22:62:fb:06:79:38:20:0c:d7:b9:df: eb:00:c9:8f:0e:b5:3c:13:fe:6d:e5:11:b4:a1:5e:59:1f:d0: 1a:dd:7c:57:01:87:e6:96:1d:75:90:dd:68:25:f5:91:ff:07: 18:83:38:f1:55:41:c6:c5:4b:74:25:11:a0:c3:63:f0:d1:72: 15:9f:8f:4d:fc:ed:e6:67:3f:53:61:a0:5d:35:9f:a1:2b:a9: bc:0d:14:09:86:7d:eb:8c:97:f5:7b:ac:d8:35:2c:7f:f5:41: d7:b2:05:60:f8:4f:62:5c:8d:3a:04:8d:8d:97:44:c0:7a:db: be:f5:78:ed:b3:7f:c7:41:f4:50:8d:81:0f:23:2d:5d:17:09: 8e:95:44:5d:c7:49:b9:06:49:4a:6c:73:54:3b:d4:ff:3c:de: 3b:c6:8e:b7:02:58:ee:93:12:90:d6:0e:29:e0:32:a9:88:3f: 7f:2a:50:34:26:d0:92:1e:3c:2d:bc:96:5b:9e:71:d6:7a:56: 83:08:f1:a1:3b:59:6e:a1:df:b9:c4:82:8f:59:8e:c8:9b:9b: 5b:e9:09:46:6a:f7:43:ee:09:a5:17:6b:1c:cf:f4:2c:58:d1: cb:5e:f9:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y0RjIxMTAvBgNVBAUTKDVDQkNGQkNGOUY0MDYzQTc5ODAyMkE4RjFFMjY5RkJE RkVBMzZGRjgwHhcNMjUwODIzMDEyNTU0WhcNMjUwODMwMDEyNTU0WjAYMRYwFAYD VQQDEw02OGE5MThhMi0zNTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqX7xrk5MdAPaZA2CLrdL7PZU5PPQjQ9iyRqjxEKDZktH3j8U3S2D2R2tmeo0 skvyPMVNgBr0qijxL/KtbGL5cAGDeFjIV/S0aZHrkD0cQb9/q98q0xyaoFySKHWv LwhIETaIiCzGTm43CK4Xm7GyWOm1uNZuYgFa+VLYQRGF0WRPh8zJhqH2E7b2hD7b odeuVn/d+UDaHiYnknls7hktBvScBzNcZCAxSaNCbMYBgSnqWdF+YQSUrP9Gyb81 HEck1uGznmNOPjlP5toyEqF3PbkxoTbFO6yhy0McLJuIf9NFOAxSckQlt1bmMHxS cHnsHfVW91WWKvHtzWbQlSQTMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFERAuAbL AqYsoMGkRjFCyP8Yd9snMB8GA1UdIwQYMBaAFFy8+8+fQGOnmAIqjx4mn73+o2/4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjRGMi8zNEQ1NTQzMkUw QUYxMUVDODI5MDJGNkRDNEY5QUUwMi9YTHo3ejU5QVk2ZVlBaXFQSGlhZnZmNmpi X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hMejd6NTlBWTZlWUFpcVBIaWFmdmY2amJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjRGMi8zNEQ1NTQzMkUwQUYxMUVDODI5MDJGNkRDNEY5QUUwMi9YTHo3ejU5QVk2 ZVlBaXFQSGlhZnZmNmpiX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+ImjGVxZulIm4T8RQJgy/dpRqCuDiGD6RImL7Bnk4IAzXud/rAMmP DrU8E/5t5RG0oV5ZH9Aa3XxXAYfmlh11kN1oJfWR/wcYgzjxVUHGxUt0JRGgw2Pw 0XIVn49N/O3mZz9TYaBdNZ+hK6m8DRQJhn3rjJf1e6zYNSx/9UHXsgVg+E9iXI06 BI2Nl0TAetu+9Xjts3/HQfRQjYEPIy1dFwmOlURdx0m5BklKbHNUO9T/PN47xo63 AljukxKQ1g4p4DKpiD9/KlA0JtCSHjwtvJZbnnHWelaDCPGhO1luod+5xIKPWY7I m5tb6QlGavdD7gmlF2scz/QsWNHLXvlQ -----END CERTIFICATE-----Generated at Sat Aug 23 19:12:20 2025 by rpki-client