$ rpki-client -vvf rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft File: XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft (raw, json) Hash identifier: OnwP5DjWZUNZSf8hAJ9NgFolE/Z4ZUO4nPf2KCfzGPE= Subject key identifier: FE:93:D0:58:46:FB:21:B2:A6:6E:BF:19:28:4B:EA:AE:1B:7E:67:62 Authority key identifier: 5C:17:AF:2E:0A:AF:49:0C:EA:A8:4E:2A:AA:71:48:3D:03:95:F1:E4 Certificate issuer: /CN=A91923A9/serialNumber=5C17AF2E0AAF490CEAA84E2AAA71483D0395F1E4 Certificate serial: 01AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBevLgqvSQzqqE4qqnFIPQOV8eQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft Manifest number: 01A8 Signing time: Sat 23 Aug 2025 03:21:41 +0000 Manifest this update: Sat 23 Aug 2025 03:21:41 +0000 Manifest next update: Sat 30 Aug 2025 03:21:41 +0000 Files and hashes: 1: XBevLgqvSQzqqE4qqnFIPQOV8eQ.crl (hash: lygJNmMGLw5Vvi3lme9wIsbiPj7prqMqdW/t6WkBvUs=) 2: 80F75824FAAD11EDB0C98683C4F9AE02.roa (hash: SO9SbWUjXyJ9Yb5w7Q+6mTlLwT6ktJsJ2PGUdf4nf50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.crl rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBevLgqvSQzqqE4qqnFIPQOV8eQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:21:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 429 (0x1ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91923A9, serialNumber=5C17AF2E0AAF490CEAA84E2AAA71483D0395F1E4 Validity Not Before: Aug 23 03:21:41 2025 GMT Not After : Aug 30 03:21:41 2025 GMT Subject: CN=68a933c5-fa81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a1:72:17:8c:b7:20:2c:fb:0f:a6:c7:a2:e3: b5:ad:bb:8b:db:d4:90:04:40:0e:77:11:b4:fd:8e: 80:aa:d4:ca:94:97:6a:0c:ca:4a:a2:24:2e:05:33: 7a:61:7b:b8:ff:bc:8b:ed:3f:d7:2c:cb:ad:21:8e: 69:fb:de:53:30:a0:d2:62:3f:23:57:1d:13:b0:7c: 76:c3:97:47:ac:46:de:91:c9:cb:8c:4c:1a:28:e7: 9b:ad:87:74:bc:e2:ea:7e:7b:7e:b7:a9:81:93:c6: f3:b0:81:de:cf:6c:a6:58:36:41:0f:c7:08:16:ab: a9:c9:11:e6:6c:5c:9f:09:28:14:79:d7:71:52:cd: 47:e9:ac:7d:03:c9:c7:ce:a7:19:da:74:b0:75:40: 02:51:52:d1:30:37:56:27:1b:ca:5d:4a:74:d4:95: 12:e5:36:d0:7b:60:b8:e2:48:71:39:4e:f7:45:85: 06:45:f7:6d:61:b4:dc:a6:e3:9c:b8:f4:1f:b2:9f: ba:56:9e:c2:92:fa:33:11:40:94:53:58:b5:74:30: d7:ee:35:24:a6:d1:28:1b:2d:7a:62:70:c9:52:48: 83:da:be:6b:8b:e0:05:03:dd:ea:4e:cb:2e:d5:ed: a9:4b:55:69:ae:78:42:38:55:3d:4e:d9:3c:b7:ef: 8f:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:93:D0:58:46:FB:21:B2:A6:6E:BF:19:28:4B:EA:AE:1B:7E:67:62 X509v3 Authority Key Identifier: keyid:5C:17:AF:2E:0A:AF:49:0C:EA:A8:4E:2A:AA:71:48:3D:03:95:F1:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBevLgqvSQzqqE4qqnFIPQOV8eQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:d2:5a:c9:c1:23:81:41:62:92:fe:45:d8:31:1c:e3:c5:a0: ad:31:e1:77:fa:ad:f1:e6:9d:a6:79:e5:7c:4f:b8:ca:a4:26: 24:9c:45:86:ff:c3:2b:59:cd:66:ed:91:8e:e1:bb:14:61:23: 76:57:ee:c2:1f:c2:36:87:7c:37:19:09:43:1a:ee:10:14:f4: 27:03:7a:fb:7d:63:c6:41:2a:84:ea:ff:17:1c:0c:5a:7d:36: 0e:86:5d:f0:eb:f1:95:10:8c:f5:a4:83:06:05:fc:46:cb:ce: 58:4b:29:2e:e0:3c:10:15:a1:ce:d4:67:df:cb:2e:2f:c4:10: 70:d5:43:b4:b4:29:33:ae:94:14:b4:8a:86:89:d1:c4:4b:df: 20:8e:30:47:2d:d6:bd:3c:87:e5:90:99:1d:17:e0:4d:46:28: a2:fb:59:62:d3:d0:14:dd:40:09:9d:74:eb:27:0c:d1:95:4e: b6:da:cc:d5:79:58:f5:63:55:71:d6:79:9f:d8:f5:46:39:72: 4c:03:da:b8:df:2c:6a:da:be:2d:79:e4:cc:e3:13:23:18:4e: de:12:f1:1e:3c:be:a1:56:c7:09:ef:ad:f3:0b:dd:9d:0b:99: 6d:5e:89:ec:e0:62:3b:88:88:7d:54:9c:cd:bc:dd:81:5a:0a: 3a:97:6f:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTIzQTkxMTAvBgNVBAUTKDVDMTdBRjJFMEFBRjQ5MENFQUE4NEUyQUFBNzE0ODNE MDM5NUYxRTQwHhcNMjUwODIzMDMyMTQxWhcNMjUwODMwMDMyMTQxWjAYMRYwFAYD VQQDEw02OGE5MzNjNS1mYTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvqFyF4y3ICz7D6bHouO1rbuL29SQBEAOdxG0/Y6AqtTKlJdqDMpKoiQuBTN6 YXu4/7yL7T/XLMutIY5p+95TMKDSYj8jVx0TsHx2w5dHrEbekcnLjEwaKOebrYd0 vOLqfnt+t6mBk8bzsIHez2ymWDZBD8cIFqupyRHmbFyfCSgUeddxUs1H6ax9A8nH zqcZ2nSwdUACUVLRMDdWJxvKXUp01JUS5TbQe2C44khxOU73RYUGRfdtYbTcpuOc uPQfsp+6Vp7CkvozEUCUU1i1dDDX7jUkptEoGy16YnDJUkiD2r5ri+AFA93qTssu 1e2pS1VprnhCOFU9Ttk8t++PXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP6T0FhG +yGypm6/GShL6q4bfmdiMB8GA1UdIwQYMBaAFFwXry4Kr0kM6qhOKqpxSD0DlfHk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MjNBOS9BNjM4NzY4NEZB QTUxMUVEQjJCMjk1N0ZDNEY5QUUwMi9YQmV2TGdxdlNRenFxRTRxcW5GSVBRT1Y4 ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hCZXZMZ3F2U1F6cXFFNHFxbkZJUFFPVjhlUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MjNBOS9BNjM4NzY4NEZBQTUxMUVEQjJCMjk1N0ZDNEY5QUUwMi9YQmV2TGdxdlNR enFxRTRxcW5GSVBRT1Y4ZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAy0lrJwSOBQWKS/kXYMRzjxaCtMeF3+q3x5p2meeV8T7jKpCYknEWG /8MrWc1m7ZGO4bsUYSN2V+7CH8I2h3w3GQlDGu4QFPQnA3r7fWPGQSqE6v8XHAxa fTYOhl3w6/GVEIz1pIMGBfxGy85YSyku4DwQFaHO1Gffyy4vxBBw1UO0tCkzrpQU tIqGidHES98gjjBHLda9PIflkJkdF+BNRiii+1li09AU3UAJnXTrJwzRlU622szV eVj1Y1Vx1nmf2PVGOXJMA9q43yxq2r4teeTM4xMjGE7eEvEePL6hVscJ763zC92d C5ltXons4GI7iIh9VJzNvN2BWgo6l282 -----END CERTIFICATE-----Generated at Sat Aug 23 20:35:29 2025 by rpki-client