$ rpki-client -vvf rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft File: XrCY701WVcxmtq-Bw83kBi2ALzs.mft (raw, json) Hash identifier: l82YOVJci7DFUUtykrAyWbv8SJiHu9o0/2xSWZp9QMI= Subject key identifier: EA:9A:66:19:CD:3D:A5:68:4E:BC:8C:D4:3D:13:6F:41:E8:3C:08:10 Authority key identifier: 5E:B0:98:EF:4D:56:55:CC:66:B6:AF:81:C3:CD:E4:06:2D:80:2F:3B Certificate issuer: /CN=A919E3FB/serialNumber=5EB098EF4D5655CC66B6AF81C3CDE4062D802F3B Certificate serial: 04F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft Manifest number: 04F0 Signing time: Fri 22 Aug 2025 23:54:05 +0000 Manifest this update: Fri 22 Aug 2025 23:54:05 +0000 Manifest next update: Fri 29 Aug 2025 23:54:05 +0000 Files and hashes: 1: XrCY701WVcxmtq-Bw83kBi2ALzs.crl (hash: 5DkF7fdRFKn8UfH6fSnee4xHmUW2KCDJE4Vq3gkdYy0=) 2: B4D8E692267111ECA0546981C4F9AE02.roa (hash: APl5b4vCPo52FjFgWioqB5D0vfXVOhLUTwuTuf6xSiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.crl rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:54:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1269 (0x4f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E3FB, serialNumber=5EB098EF4D5655CC66B6AF81C3CDE4062D802F3B Validity Not Before: Aug 22 23:54:05 2025 GMT Not After : Aug 29 23:54:05 2025 GMT Subject: CN=68a9031d-7684 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:d7:43:10:4f:22:5f:72:6b:c1:b7:3c:9a:df: 3e:9a:91:98:3d:34:33:b4:92:e3:18:58:dd:f7:6e: 1f:4a:20:a3:bd:71:96:30:3d:f0:6c:e4:06:09:f1: 38:15:2f:36:7e:f6:64:e2:30:51:47:c4:73:56:e0: 75:0e:7d:57:35:c1:67:fb:d7:d4:a6:2a:5f:ba:b2: 9b:65:34:83:68:41:0a:ff:e6:91:0d:b8:22:6e:77: 50:37:c0:bb:a9:ac:7b:db:d4:81:57:af:e4:87:1b: 7f:b9:24:2c:d0:07:1f:55:02:e9:09:c7:3a:75:c8: 95:01:5d:25:10:59:b6:e9:cb:8b:40:53:14:29:88: d2:13:c3:38:ee:bc:a9:e7:7c:bc:f3:27:97:09:e0: 28:d3:a4:14:93:8e:6a:c9:4c:b1:fc:f9:ec:d1:cf: 62:d6:ca:c1:e7:2a:e9:f0:ef:73:fe:3f:2d:08:1a: 4c:7a:13:92:21:d2:49:25:df:83:8d:4b:7f:a7:11: b6:a5:fd:c8:6d:63:12:ee:f1:82:94:8c:21:89:76: ab:a3:c9:ae:98:9d:a6:43:22:db:66:b3:7b:19:6e: ed:c3:78:45:bd:4c:35:ed:06:85:c1:fa:f5:8b:ff: 99:08:f5:62:36:76:a3:3e:f2:b3:c3:42:f0:ff:fd: 86:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:9A:66:19:CD:3D:A5:68:4E:BC:8C:D4:3D:13:6F:41:E8:3C:08:10 X509v3 Authority Key Identifier: keyid:5E:B0:98:EF:4D:56:55:CC:66:B6:AF:81:C3:CD:E4:06:2D:80:2F:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:c5:3c:9a:9b:b7:2e:19:69:7b:36:97:63:ca:6c:75:e5:95: 66:fe:06:40:b5:01:3d:4a:57:d8:2e:41:44:3e:71:6b:b3:f8: a6:35:7c:f7:80:ab:e9:48:e6:90:8a:b4:d2:39:eb:59:60:9b: 9c:ae:b8:66:4e:d6:3d:21:0d:1c:5f:2f:42:95:6e:49:d6:89: bc:2c:3a:96:82:ee:4c:49:88:78:79:c5:15:ba:06:06:f9:c6: f6:fb:89:5d:08:7f:7c:5b:9b:15:29:a6:bd:d0:0e:51:a5:9a: 91:df:e3:3d:55:94:52:da:ea:b3:aa:c7:45:75:36:9b:21:38: 27:22:0d:ec:85:eb:34:1c:6c:dc:a8:45:53:9b:40:ae:fb:df: b9:13:e9:fc:37:87:f1:7f:58:ac:a4:e3:e3:3f:ae:cb:9e:f5: fb:cb:4d:70:ea:f5:af:e8:bf:29:45:8f:ae:c5:fa:e5:af:20: 21:6c:8b:94:3c:c4:e8:ce:5e:ab:ca:32:70:c2:ce:4f:46:f7: 74:5d:30:53:d6:b3:b7:de:93:ee:a2:03:7c:0b:08:96:3d:6f: 86:5a:8a:14:86:e9:a9:2d:2e:b0:0a:92:26:42:32:b3:f9:ea: e0:e6:72:1a:2e:70:f8:4d:d9:63:44:67:89:01:4f:5a:ef:fa: dc:04:2e:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUUzRkIxMTAvBgNVBAUTKDVFQjA5OEVGNEQ1NjU1Q0M2NkI2QUY4MUMzQ0RFNDA2 MkQ4MDJGM0IwHhcNMjUwODIyMjM1NDA1WhcNMjUwODI5MjM1NDA1WjAYMRYwFAYD VQQDEw02OGE5MDMxZC03Njg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1tdDEE8iX3Jrwbc8mt8+mpGYPTQztJLjGFjd924fSiCjvXGWMD3wbOQGCfE4 FS82fvZk4jBRR8RzVuB1Dn1XNcFn+9fUpipfurKbZTSDaEEK/+aRDbgibndQN8C7 qax729SBV6/khxt/uSQs0AcfVQLpCcc6dciVAV0lEFm26cuLQFMUKYjSE8M47ryp 53y88yeXCeAo06QUk45qyUyx/Pns0c9i1srB5yrp8O9z/j8tCBpMehOSIdJJJd+D jUt/pxG2pf3IbWMS7vGClIwhiXaro8mumJ2mQyLbZrN7GW7tw3hFvUw17QaFwfr1 i/+ZCPViNnajPvKzw0Lw//2G3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOqaZhnN PaVoTryM1D0Tb0HoPAgQMB8GA1UdIwQYMBaAFF6wmO9NVlXMZravgcPN5AYtgC87 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTNGQi9GREQ0NEMyMjI2 NkUxMUVDQUMwOTdDN0JDNEY5QUUwMi9YckNZNzAxV1ZjeG10cS1Cdzgza0JpMkFM enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hyQ1k3MDFXVmN4bXRxLUJ3ODNrQmkyQUx6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTNGQi9GREQ0NEMyMjI2NkUxMUVDQUMwOTdDN0JDNEY5QUUwMi9YckNZNzAxV1Zj eG10cS1Cdzgza0JpMkFMenMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZxTyam7cuGWl7Npdjymx15ZVm/gZAtQE9SlfYLkFEPnFrs/imNXz3 gKvpSOaQirTSOetZYJucrrhmTtY9IQ0cXy9ClW5J1om8LDqWgu5MSYh4ecUVugYG +cb2+4ldCH98W5sVKaa90A5RpZqR3+M9VZRS2uqzqsdFdTabITgnIg3shes0HGzc qEVTm0Cu+9+5E+n8N4fxf1ispOPjP67LnvX7y01w6vWv6L8pRY+uxfrlryAhbIuU PMTozl6ryjJwws5PRvd0XTBT1rO33pPuogN8CwiWPW+GWooUhumpLS6wCpImQjKz +erg5nIaLnD4TdljRGeJAU9a7/rcBC5C -----END CERTIFICATE-----Generated at Sun Aug 24 00:15:42 2025 by rpki-client