$ rpki-client -vvf rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.mft File: XqGnuALn5-_HfKGjjlL3Ks1GOTA.mft (raw, json) Hash identifier: uX0IwZEtJFaA+DgAUfiRIqA3rpzG1pNan0HlKCTjyec= Subject key identifier: 40:12:EB:B3:07:86:1A:23:C4:CC:7D:07:0A:87:25:3A:C9:19:47:DB Authority key identifier: 5E:A1:A7:B8:02:E7:E7:EF:C7:7C:A1:A3:8E:52:F7:2A:CD:46:39:30 Certificate issuer: /CN=A919A998/serialNumber=5EA1A7B802E7E7EFC77CA1A38E52F72ACD463930 Certificate serial: 0D28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqGnuALn5-_HfKGjjlL3Ks1GOTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.mft Manifest number: 0D00 Signing time: Fri 22 Aug 2025 18:13:38 +0000 Manifest this update: Fri 22 Aug 2025 18:13:38 +0000 Manifest next update: Fri 29 Aug 2025 18:13:38 +0000 Files and hashes: 1: XqGnuALn5-_HfKGjjlL3Ks1GOTA.crl (hash: /w4lxApVMF9djwMTqduBiPdd8lrrhBsN8SZB4mdydKA=) 2: 6EA46446646511EFA9435879C4F9AE02.roa (hash: wKDEdStmrZZfi1N+sozcMYpUpj9M6UZTKjL7qa1uJ/0=) 3: 65DCB430F25A11E9937D9D73C4F9AE02.roa (hash: gaKPScXkAxsuY8VAZ/bdwS1+gAnXATdqGjlvtSNl84I=) 4: 3BC4C576426D11EFAD9E7D10C4F9AE02.roa (hash: 9VMgA4YRxMIjWK/lK97cgRReFAG7X/1dXoRMnmEvJtU=) 5: 49ADA7183C6111F0BB3B1A85C4F9AE02.roa (hash: Xs7PI8yOiwfltHePVx4QJDu9U0Lph/VszEHjm+alpiE=) 6: 653CF2F6F25A11E9937D9D73C4F9AE02.roa (hash: OIcrwBZfO0r9AZzqec0EZieuFLydO0IeQ37B1ozdZjo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.crl rsync://rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqGnuALn5-_HfKGjjlL3Ks1GOTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:13:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3368 (0xd28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A998, serialNumber=5EA1A7B802E7E7EFC77CA1A38E52F72ACD463930 Validity Not Before: Aug 22 18:13:38 2025 GMT Not After : Aug 29 18:13:38 2025 GMT Subject: CN=68a8b352-cde3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:54:6e:34:b5:17:a7:a8:85:7a:cb:d6:9f:9c: 4f:60:ba:46:0c:3c:00:f7:aa:12:df:a5:ad:e8:8f: 6f:7d:e3:62:a2:a3:f6:f3:66:48:53:15:44:4a:ea: 08:fe:fe:1a:71:0d:cf:ec:1f:fa:86:16:a5:54:85: 1a:17:b8:c3:de:d9:a0:95:85:79:d2:cd:b6:91:cf: c3:1c:f4:25:a4:2d:65:3d:96:df:de:5e:92:54:2f: df:8f:b2:1b:f6:33:52:a0:29:9f:83:3b:f1:40:09: 36:6c:24:44:f5:94:a4:d1:0c:de:50:0d:27:45:e8: b4:cd:41:81:56:c1:58:18:d3:ac:f7:b0:21:1c:5b: e9:e1:6b:45:c1:b6:56:82:9d:8d:fa:fa:5a:ae:8d: 58:78:79:38:80:ac:3d:f5:5b:f8:7f:0b:a3:c9:ec: ac:ff:93:a4:e8:bc:b8:4d:35:42:1b:d0:a9:f6:bd: a9:93:66:a3:a7:6d:c4:84:c2:b3:7c:16:70:ec:cc: c4:dc:24:f2:4b:a4:bd:a8:56:b2:bd:98:70:0f:bc: 26:0d:02:fd:8c:b3:01:53:a9:ee:0b:7a:db:cd:7c: 90:b9:e0:df:43:ca:ae:db:2e:d5:d5:6b:db:21:e4: 7d:06:44:d4:2e:f5:ea:e2:3a:09:04:76:19:d6:e8: 3c:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:12:EB:B3:07:86:1A:23:C4:CC:7D:07:0A:87:25:3A:C9:19:47:DB X509v3 Authority Key Identifier: keyid:5E:A1:A7:B8:02:E7:E7:EF:C7:7C:A1:A3:8E:52:F7:2A:CD:46:39:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqGnuALn5-_HfKGjjlL3Ks1GOTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A998/AB34FBD4F25811E9B75E3C70C4F9AE02/XqGnuALn5-_HfKGjjlL3Ks1GOTA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:bd:90:e5:63:0a:51:7a:ed:f0:42:65:cd:04:67:90:aa:9c: 90:7d:61:82:3d:5d:4e:c1:4d:8f:86:af:ee:04:e0:e8:68:a9: 12:c5:60:64:3e:2a:38:1e:5a:4e:00:66:9e:04:20:d1:84:1e: 0d:98:30:42:d7:0c:9c:85:69:9b:e0:b6:0c:6b:8a:63:09:70: 26:cf:b7:b8:3a:47:96:bb:05:bd:9d:1e:8b:c2:b0:a1:de:82: 5d:be:30:8b:33:11:5e:47:83:fe:e5:af:b3:6d:b7:92:68:1b: 48:1b:47:98:2d:93:7e:f7:6e:11:66:3c:00:86:43:98:7d:21: 6d:7c:09:e4:6d:37:a2:38:6f:ce:99:36:00:44:47:e6:2a:8d: 2d:6c:1c:58:a4:5b:c4:d1:66:8e:19:f2:e9:9c:64:2f:58:f8: 10:41:7b:00:c4:3f:e7:89:51:82:37:85:5e:f2:d2:75:61:a7: d3:45:b3:d4:62:0b:8e:88:49:82:e3:51:e6:94:18:fc:4a:16: e0:38:98:e0:fa:69:23:21:3f:97:1a:75:f6:2f:fb:6d:51:ba: ad:88:ea:e3:a3:d1:a1:b1:33:eb:a9:66:aa:4c:ec:bb:8b:ff: 56:bb:a0:21:ba:1b:ce:9b:db:9c:25:a4:b4:a5:c1:79:f5:bd: f0:1d:02:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE5OTgxMTAvBgNVBAUTKDVFQTFBN0I4MDJFN0U3RUZDNzdDQTFBMzhFNTJGNzJB Q0Q0NjM5MzAwHhcNMjUwODIyMTgxMzM4WhcNMjUwODI5MTgxMzM4WjAYMRYwFAYD VQQDEw02OGE4YjM1Mi1jZGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw1RuNLUXp6iFesvWn5xPYLpGDDwA96oS36Wt6I9vfeNioqP282ZIUxVESuoI /v4acQ3P7B/6hhalVIUaF7jD3tmglYV50s22kc/DHPQlpC1lPZbf3l6SVC/fj7Ib 9jNSoCmfgzvxQAk2bCRE9ZSk0QzeUA0nRei0zUGBVsFYGNOs97AhHFvp4WtFwbZW gp2N+vparo1YeHk4gKw99Vv4fwujyeys/5Ok6Ly4TTVCG9Cp9r2pk2ajp23EhMKz fBZw7MzE3CTyS6S9qFayvZhwD7wmDQL9jLMBU6nuC3rbzXyQueDfQ8qu2y7V1Wvb IeR9BkTULvXq4joJBHYZ1ug8IwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEAS67MH hhojxMx9BwqHJTrJGUfbMB8GA1UdIwQYMBaAFF6hp7gC5+fvx3yho45S9yrNRjkw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTk5OC9BQjM0RkJENEYy NTgxMUU5Qjc1RTNDNzBDNEY5QUUwMi9YcUdudUFMbjUtX0hmS0dqamxMM0tzMUdP VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hxR251QUxuNS1fSGZLR2pqbEwzS3MxR09UQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTk5OC9BQjM0RkJENEYyNTgxMUU5Qjc1RTNDNzBDNEY5QUUwMi9YcUdudUFMbjUt X0hmS0dqamxMM0tzMUdPVEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnvZDlYwpReu3wQmXNBGeQqpyQfWGCPV1OwU2Phq/uBODoaKkSxWBk Pio4HlpOAGaeBCDRhB4NmDBC1wychWmb4LYMa4pjCXAmz7e4OkeWuwW9nR6LwrCh 3oJdvjCLMxFeR4P+5a+zbbeSaBtIG0eYLZN+924RZjwAhkOYfSFtfAnkbTeiOG/O mTYAREfmKo0tbBxYpFvE0WaOGfLpnGQvWPgQQXsAxD/niVGCN4Ve8tJ1YafTRbPU YguOiEmC41HmlBj8ShbgOJjg+mkjIT+XGnX2L/ttUbqtiOrjo9GhsTPrqWaqTOy7 i/9Wu6AhuhvOm9ucJaS0pcF59b3wHQLt -----END CERTIFICATE-----Generated at Sun Aug 24 04:49:09 2025 by rpki-client