$ rpki-client -vvf rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft File: xPuRgT57oJnZHpxIFyCUuZBcDxE.mft (raw, json) Hash identifier: SbhkP0l3gDknx2bLfsJDN3BkxOF3Syx+0lslbC305Dg= Subject key identifier: CD:6F:4C:F5:74:20:09:14:3B:55:7A:35:8C:5A:F3:F9:83:63:60:35 Authority key identifier: C4:FB:91:81:3E:7B:A0:99:D9:1E:9C:48:17:20:94:B9:90:5C:0F:11 Certificate issuer: /CN=A919B3BC/serialNumber=C4FB91813E7BA099D91E9C48172094B9905C0F11 Certificate serial: 1E58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPuRgT57oJnZHpxIFyCUuZBcDxE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft Manifest number: 1E3A Signing time: Fri 22 Aug 2025 16:08:55 +0000 Manifest this update: Fri 22 Aug 2025 16:08:55 +0000 Manifest next update: Fri 29 Aug 2025 16:08:55 +0000 Files and hashes: 1: xPuRgT57oJnZHpxIFyCUuZBcDxE.crl (hash: ZPkj2eEMRXtC1sp2knvQH1+VTO5oy1GDh9km7TM4dgo=) 2: 6553E9461A0611F08E7AD42AC4F9AE02.roa (hash: f1rUI1t3KqdGMKeqiBAUTM/laLwJwP3gycWHTBm/djM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.crl rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPuRgT57oJnZHpxIFyCUuZBcDxE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:08:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7768 (0x1e58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B3BC, serialNumber=C4FB91813E7BA099D91E9C48172094B9905C0F11 Validity Not Before: Aug 22 16:08:55 2025 GMT Not After : Aug 29 16:08:55 2025 GMT Subject: CN=68a89617-f3b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:70:64:33:a9:03:9f:a6:9f:7d:87:ad:b9:c5: 30:e5:08:74:29:e7:2d:89:cf:5e:89:9f:f1:55:b7: f8:ea:d4:08:54:0e:06:f5:2e:82:c3:4e:1e:47:77: 1c:dd:14:f2:10:bd:80:e7:b2:a3:ad:15:50:ef:2f: 90:7d:ac:55:0a:5e:61:01:ef:49:eb:8c:52:7d:2e: 4a:3b:0a:f6:f9:5f:a1:21:6c:40:0c:77:fc:74:a2: a4:03:71:27:f2:2b:27:71:f5:c0:28:04:d2:87:eb: f3:05:a2:e3:3d:a8:38:f3:7e:79:67:14:ad:db:76: f6:11:c9:07:4e:97:5b:c4:2f:7c:84:78:fe:2e:85: c8:8c:da:16:67:4e:de:c5:73:d5:2e:2b:5b:b1:46: e4:55:a0:f9:c5:95:fd:76:87:16:23:10:2e:77:91: da:a5:ef:16:1b:4a:b6:3f:6d:13:d5:ed:e7:d8:b4: fd:cf:0d:00:30:14:01:00:98:9b:86:af:9a:0f:d1: 35:2e:8d:32:01:49:8b:08:01:a3:65:1d:79:c8:46: 72:e9:72:f6:bd:46:d9:72:82:cd:a2:75:e4:06:f5: 0e:33:ca:7c:37:97:c6:c5:ca:08:11:64:45:e1:30: ad:56:39:5c:4e:7c:db:8a:93:ad:8b:ea:69:be:4f: 3b:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:6F:4C:F5:74:20:09:14:3B:55:7A:35:8C:5A:F3:F9:83:63:60:35 X509v3 Authority Key Identifier: keyid:C4:FB:91:81:3E:7B:A0:99:D9:1E:9C:48:17:20:94:B9:90:5C:0F:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPuRgT57oJnZHpxIFyCUuZBcDxE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:bd:a0:96:25:67:0b:42:ef:bc:9e:7c:a7:28:c0:c0:63:d5: 57:f1:20:3b:32:01:48:9a:1b:9a:cb:18:73:83:7e:e8:49:32: 93:28:2c:0b:7e:5b:a9:73:7d:23:06:38:d7:7e:23:8e:4f:b6: b7:0a:fb:7a:9e:93:6f:a9:8a:68:ef:16:51:f8:20:b7:45:c8: 19:00:30:c1:1a:17:97:ff:7e:a5:7b:d3:fc:c9:1e:ab:39:30: 73:e2:38:20:54:a8:c8:5b:ba:92:4d:56:51:6c:e2:02:cf:9e: 1b:d3:7e:18:76:56:cb:d7:1c:48:cd:66:05:2a:d8:25:5d:a2: 52:9a:04:28:88:34:8a:57:55:e1:47:22:10:b0:06:87:43:bb: 73:e1:53:00:83:86:58:c6:36:57:49:e2:20:bd:79:d9:c8:0a: 16:d7:ab:2a:16:6c:a5:c9:9c:af:52:a5:d7:c8:02:e6:84:bf: e3:02:09:87:02:29:6b:4d:37:50:6c:50:d9:3e:90:24:c5:56: 82:2c:eb:ab:b0:0e:3b:d0:c3:7f:94:08:5c:be:9f:41:50:45: ab:fe:5c:6a:b3:50:ca:af:88:70:06:77:e5:3b:59:7f:5d:b2: f8:63:42:49:68:fe:81:52:8d:ba:8b:d1:9a:60:50:fb:1f:d4: d4:eb:91:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHlgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUIzQkMxMTAvBgNVBAUTKEM0RkI5MTgxM0U3QkEwOTlEOTFFOUM0ODE3MjA5NEI5 OTA1QzBGMTEwHhcNMjUwODIyMTYwODU1WhcNMjUwODI5MTYwODU1WjAYMRYwFAYD VQQDEw02OGE4OTYxNy1mM2IyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs3BkM6kDn6affYetucUw5Qh0Kectic9eiZ/xVbf46tQIVA4G9S6Cw04eR3cc 3RTyEL2A57KjrRVQ7y+QfaxVCl5hAe9J64xSfS5KOwr2+V+hIWxADHf8dKKkA3En 8isncfXAKATSh+vzBaLjPag48355ZxSt23b2EckHTpdbxC98hHj+LoXIjNoWZ07e xXPVLitbsUbkVaD5xZX9docWIxAud5Hape8WG0q2P20T1e3n2LT9zw0AMBQBAJib hq+aD9E1Lo0yAUmLCAGjZR15yEZy6XL2vUbZcoLNonXkBvUOM8p8N5fGxcoIEWRF 4TCtVjlcTnzbipOti+ppvk87ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM1vTPV0 IAkUO1V6NYxa8/mDY2A1MB8GA1UdIwQYMBaAFMT7kYE+e6CZ2R6cSBcglLmQXA8R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjNCQy8zODEyNDRGRThG OUIxMUU2QkVDNUNCMjVDNEY5QUUwMi94UHVSZ1Q1N29KblpIcHhJRnlDVXVaQmNE eEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hQdVJnVDU3b0puWkhweElGeUNVdVpCY0R4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjNCQy8zODEyNDRGRThGOUIxMUU2QkVDNUNCMjVDNEY5QUUwMi94UHVSZ1Q1N29K blpIcHhJRnlDVXVaQmNEeEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfvaCWJWcLQu+8nnynKMDAY9VX8SA7MgFImhuayxhzg37oSTKTKCwL flupc30jBjjXfiOOT7a3Cvt6npNvqYpo7xZR+CC3RcgZADDBGheX/36le9P8yR6r OTBz4jggVKjIW7qSTVZRbOICz54b034YdlbL1xxIzWYFKtglXaJSmgQoiDSKV1Xh RyIQsAaHQ7tz4VMAg4ZYxjZXSeIgvXnZyAoW16sqFmylyZyvUqXXyALmhL/jAgmH AilrTTdQbFDZPpAkxVaCLOursA470MN/lAhcvp9BUEWr/lxqs1DKr4hwBnflO1l/ XbL4Y0JJaP6BUo26i9GaYFD7H9TU65EO -----END CERTIFICATE-----Generated at Sun Aug 24 05:15:06 2025 by rpki-client