$ rpki-client -vvf rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft File: XctT6r5qkI7KhlLekkgHxQnFLTA.mft (raw, json) Hash identifier: hzHcxloj6FrNin4RfGJJ68seTVPbqcqmyHqKztuuheI= Subject key identifier: 45:46:79:24:A2:A8:D6:20:A5:FA:69:98:20:21:2E:71:42:46:12:51 Authority key identifier: 5D:CB:53:EA:BE:6A:90:8E:CA:86:52:DE:92:48:07:C5:09:C5:2D:30 Certificate issuer: /CN=A918560D/serialNumber=5DCB53EABE6A908ECA8652DE924807C509C52D30 Certificate serial: 0D16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft Manifest number: 0D0D Signing time: Fri 22 Aug 2025 18:11:04 +0000 Manifest this update: Fri 22 Aug 2025 18:11:03 +0000 Manifest next update: Fri 29 Aug 2025 18:11:03 +0000 Files and hashes: 1: XctT6r5qkI7KhlLekkgHxQnFLTA.crl (hash: zy/vc96VmrEf/gM/iokrB2YSLG1HwrKjn1Jr+42w9AU=) 2: 41A8E738045111EA9C7DF516C4F9AE02.roa (hash: 549cEJi0czWRyHHS6o5u4NQ6YCs80VKq9MH5xptp8mg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.crl rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:11:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3350 (0xd16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918560D, serialNumber=5DCB53EABE6A908ECA8652DE924807C509C52D30 Validity Not Before: Aug 22 18:11:03 2025 GMT Not After : Aug 29 18:11:03 2025 GMT Subject: CN=68a8b2b8-9d41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ec:5f:a4:64:e7:9b:09:fa:9a:6e:fa:69:1f: fc:05:72:5e:c1:0a:62:4f:ec:f6:59:2a:1a:2f:27: af:8f:b2:3e:e7:3d:9c:d6:6e:fb:09:9a:69:91:12: de:56:11:78:01:4f:25:03:e5:f3:fd:a7:8b:7d:86: 6a:d2:9f:78:50:de:8f:d1:b5:a9:6c:db:1e:eb:c2: 05:4c:76:9a:6d:58:f4:75:40:26:59:5c:3a:80:cc: 84:4e:65:60:0b:f3:42:c8:d3:69:64:89:4c:db:ab: 1c:b3:90:0f:b5:ab:e5:0b:04:ca:fc:95:c0:a0:61: 88:0d:71:6b:1d:7d:cf:4f:f8:38:95:e2:53:0f:fd: 7c:2f:93:9b:af:da:18:85:07:ac:d0:ec:24:0b:b0: 87:ef:9c:5c:2d:fc:a3:c7:91:c3:00:71:cc:86:32: b8:f9:2e:f0:b3:1b:29:de:d3:63:11:1a:79:c3:41: 98:26:12:fc:36:cf:2a:84:e5:7f:d2:3f:64:20:c3: de:32:37:ac:d0:9c:42:91:71:d5:3a:4b:0b:f5:a4: 72:b8:f2:6f:62:1b:be:6c:d9:66:f4:9c:d2:cf:b2: d3:9d:d0:68:a7:93:6b:67:93:3e:d6:9b:21:74:1e: 5c:43:e6:aa:ad:b6:e2:03:d6:9d:1c:06:53:c0:e7: e5:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:46:79:24:A2:A8:D6:20:A5:FA:69:98:20:21:2E:71:42:46:12:51 X509v3 Authority Key Identifier: keyid:5D:CB:53:EA:BE:6A:90:8E:CA:86:52:DE:92:48:07:C5:09:C5:2D:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:57:61:a0:c4:ea:85:46:f6:e0:be:ee:35:33:33:43:65:26: cb:33:58:23:96:86:08:3e:e9:a7:3c:dc:c2:8a:07:77:c8:10: 18:ae:44:ba:c6:0b:46:80:aa:b1:34:18:6e:47:09:1e:18:40: f0:f6:67:85:d4:45:1e:e9:74:c4:8b:ad:19:f5:80:3c:1d:28: 0a:70:c2:51:35:b4:ef:57:59:95:80:0a:e3:2d:24:2e:ba:66: c4:41:0a:05:47:50:d7:67:b9:bb:99:fb:bb:ca:1e:78:b3:ee: e8:83:d4:9d:2e:10:c5:71:af:64:39:d8:81:9c:e0:33:32:88: 81:68:a4:56:50:63:a0:62:fa:f5:28:dd:11:97:cb:eb:cd:d1: 48:9c:24:7a:15:3a:40:1e:00:92:02:a2:fe:7f:47:27:fb:62: c5:3d:b8:f7:ba:c0:82:95:6f:ae:d2:2b:7d:c8:34:ba:b3:16: d8:22:ff:88:2e:af:fd:3e:26:c1:b0:05:10:d4:30:64:4c:0b: e1:a1:61:29:64:2c:52:99:9e:8a:c9:e8:b1:df:ba:a8:c3:13: 5e:6e:3e:63:60:42:36:58:69:63:db:56:95:0c:00:87:fa:f1: 28:7a:0d:54:16:d0:07:c6:5b:1e:7b:a4:c8:3f:f5:ab:54:a8: 4a:9e:3a:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDRYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU2MEQxMTAvBgNVBAUTKDVEQ0I1M0VBQkU2QTkwOEVDQTg2NTJERTkyNDgwN0M1 MDlDNTJEMzAwHhcNMjUwODIyMTgxMTAzWhcNMjUwODI5MTgxMTAzWjAYMRYwFAYD VQQDEw02OGE4YjJiOC05ZDQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv+xfpGTnmwn6mm76aR/8BXJewQpiT+z2WSoaLyevj7I+5z2c1m77CZppkRLe VhF4AU8lA+Xz/aeLfYZq0p94UN6P0bWpbNse68IFTHaabVj0dUAmWVw6gMyETmVg C/NCyNNpZIlM26scs5APtavlCwTK/JXAoGGIDXFrHX3PT/g4leJTD/18L5Obr9oY hQes0OwkC7CH75xcLfyjx5HDAHHMhjK4+S7wsxsp3tNjERp5w0GYJhL8Ns8qhOV/ 0j9kIMPeMjes0JxCkXHVOksL9aRyuPJvYhu+bNlm9JzSz7LTndBop5NrZ5M+1psh dB5cQ+aqrbbiA9adHAZTwOflawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEVGeSSi qNYgpfppmCAhLnFCRhJRMB8GA1UdIwQYMBaAFF3LU+q+apCOyoZS3pJIB8UJxS0w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTYwRC9GNURDQTZENEU1 QjgxMUU5OEE3NjEyMEVDNEY5QUUwMi9YY3RUNnI1cWtJN0tobExla2tnSHhRbkZM VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjdFQ2cjVxa0k3S2hsTGVra2dIeFFuRkxUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTYwRC9GNURDQTZENEU1QjgxMUU5OEE3NjEyMEVDNEY5QUUwMi9YY3RUNnI1cWtJ N0tobExla2tnSHhRbkZMVEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIV2GgxOqFRvbgvu41MzNDZSbLM1gjloYIPumnPNzCigd3yBAYrkS6 xgtGgKqxNBhuRwkeGEDw9meF1EUe6XTEi60Z9YA8HSgKcMJRNbTvV1mVgArjLSQu umbEQQoFR1DXZ7m7mfu7yh54s+7og9SdLhDFca9kOdiBnOAzMoiBaKRWUGOgYvr1 KN0Rl8vrzdFInCR6FTpAHgCSAqL+f0cn+2LFPbj3usCClW+u0it9yDS6sxbYIv+I Lq/9PibBsAUQ1DBkTAvhoWEpZCxSmZ6Kyeix37qowxNebj5jYEI2WGlj21aVDACH +vEoeg1UFtAHxlsee6TIP/WrVKhKnjqC -----END CERTIFICATE-----Generated at Sun Aug 24 00:46:48 2025 by rpki-client