$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft File: XerjhTD4FfvwubP472N1B4bIrAo.mft (raw, json) Hash identifier: tSqh+JoceaAaVkoyhwUtktogOsrE9uIlO4aVkjAuym8= Subject key identifier: 44:43:F7:C9:DB:89:03:BB:74:0C:D8:D5:94:35:D8:FB:D8:FF:DB:84 Authority key identifier: 5D:EA:E3:85:30:F8:15:FB:F0:B9:B3:F8:EF:63:75:07:86:C8:AC:0A Certificate issuer: /CN=A91A4481/serialNumber=5DEAE38530F815FBF0B9B3F8EF63750786C8AC0A Certificate serial: FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft Manifest number: F8 Signing time: Sat 23 Aug 2025 05:20:27 +0000 Manifest this update: Sat 23 Aug 2025 05:20:26 +0000 Manifest next update: Sat 30 Aug 2025 05:20:26 +0000 Files and hashes: 1: XerjhTD4FfvwubP472N1B4bIrAo.crl (hash: +/wZE6x8uNBw7aLtGJ5yPU+UkSwHIWsyfYRWKnWkq44=) 2: 5B08B12602C211EF9A1E4567C4F9AE02.roa (hash: K+g6F2DggfqAEcFUFS+CObch7aX7JFtpiO+kkOJ8Xy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.crl rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:20:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 250 (0xfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4481, serialNumber=5DEAE38530F815FBF0B9B3F8EF63750786C8AC0A Validity Not Before: Aug 23 05:20:26 2025 GMT Not After : Aug 30 05:20:26 2025 GMT Subject: CN=68a94f9a-12ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e6:80:27:d8:38:2a:3a:39:04:e8:bd:d0:7a: c9:ef:7a:d1:6f:df:f9:c1:37:23:2d:24:8b:04:05: 15:83:76:ef:07:1d:5f:82:fe:12:22:37:c2:32:86: bf:d7:da:de:20:c4:7d:d3:38:68:ef:eb:49:2b:6b: 63:62:6c:e5:b5:a4:1e:a2:ab:a0:bc:28:d6:93:46: ab:77:33:a4:e2:b0:12:26:bb:f1:7b:67:19:82:55: ce:25:32:45:94:bd:d1:8d:02:9f:da:eb:56:7e:2f: b6:e5:04:f8:17:88:4c:45:43:70:8f:fa:88:ec:d5: ec:e4:d2:66:85:14:25:87:d2:22:12:d7:7a:f5:84: 19:88:4e:1c:97:a8:ff:d4:67:c7:cf:80:ec:40:71: eb:7d:c7:fc:42:05:c5:d7:11:4f:c2:bf:b0:f1:7d: 3f:56:fc:80:48:1d:94:0d:ac:aa:f4:fe:46:16:d6: 4c:f3:90:ff:ec:ab:f7:fd:f7:fd:c9:28:db:b5:0e: a7:dc:24:be:a8:8f:59:c9:27:38:66:f3:45:a7:a1: 6e:a0:b8:77:b6:96:b2:a4:90:16:70:8b:00:11:a0: b0:ee:f3:e1:bf:b2:f4:1e:41:52:f2:74:33:0c:31: a5:b3:30:74:b1:e5:30:0f:d8:85:2c:4c:96:46:01: a4:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:43:F7:C9:DB:89:03:BB:74:0C:D8:D5:94:35:D8:FB:D8:FF:DB:84 X509v3 Authority Key Identifier: keyid:5D:EA:E3:85:30:F8:15:FB:F0:B9:B3:F8:EF:63:75:07:86:C8:AC:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:34:be:bb:44:b4:5b:38:9b:ff:12:7e:26:ff:f3:8d:5c:02: 4f:42:63:35:74:64:39:39:0c:51:cf:fb:98:9f:0a:67:98:d6: e2:91:06:3b:72:37:76:bc:41:1c:50:7a:6b:20:4a:89:6c:a4: 86:cb:69:4b:17:f8:ab:2b:dc:5c:05:75:2a:9c:d3:2a:d5:0b: 22:81:8c:69:08:37:a7:24:27:6d:63:14:e0:4d:a5:bf:cd:01: de:8d:12:df:26:71:0f:f7:16:fd:88:7d:37:21:b0:1c:88:35: e6:27:10:14:c1:a9:7f:5b:66:06:cb:15:70:72:e8:4f:46:bb: b9:98:98:76:dc:a2:b4:d3:16:a5:02:9b:0c:73:eb:03:38:69: d1:f5:ef:bc:02:78:b9:e0:0b:16:7c:55:d3:fd:f6:74:d4:13: 7c:2e:79:9c:54:0f:a9:4f:ca:5c:db:66:4c:fd:48:e0:e7:14: 4d:02:1b:35:84:76:15:7a:61:b2:64:2a:e9:f8:11:3c:2a:3d: 2b:89:10:7c:f6:d0:e6:37:53:05:cc:86:ae:8c:0c:be:53:d4: 0e:ee:db:d4:e9:78:06:86:85:6a:47:aa:f6:e2:2f:bc:68:f6: b6:e8:99:4c:62:90:f8:0d:72:72:85:96:f0:86:f5:d7:cc:3a: b4:1d:48:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0ODExMTAvBgNVBAUTKDVERUFFMzg1MzBGODE1RkJGMEI5QjNGOEVGNjM3NTA3 ODZDOEFDMEEwHhcNMjUwODIzMDUyMDI2WhcNMjUwODMwMDUyMDI2WjAYMRYwFAYD VQQDEw02OGE5NGY5YS0xMmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAveaAJ9g4Kjo5BOi90HrJ73rRb9/5wTcjLSSLBAUVg3bvBx1fgv4SIjfCMoa/ 19reIMR90zho7+tJK2tjYmzltaQeoqugvCjWk0ardzOk4rASJrvxe2cZglXOJTJF lL3RjQKf2utWfi+25QT4F4hMRUNwj/qI7NXs5NJmhRQlh9IiEtd69YQZiE4cl6j/ 1GfHz4DsQHHrfcf8QgXF1xFPwr+w8X0/VvyASB2UDayq9P5GFtZM85D/7Kv3/ff9 ySjbtQ6n3CS+qI9ZySc4ZvNFp6FuoLh3tpaypJAWcIsAEaCw7vPhv7L0HkFS8nQz DDGlszB0seUwD9iFLEyWRgGkeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFERD98nb iQO7dAzY1ZQ12PvY/9uEMB8GA1UdIwQYMBaAFF3q44Uw+BX78Lmz+O9jdQeGyKwK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQ4MS9CQzg0MEY0NjAy QzExMUVGQUYzQ0I0NjVDNEY5QUUwMi9YZXJqaFRENEZmdnd1YlA0NzJOMUI0Ykly QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hlcmpoVEQ0RmZ2d3ViUDQ3Mk4xQjRiSXJBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDQ4MS9CQzg0MEY0NjAyQzExMUVGQUYzQ0I0NjVDNEY5QUUwMi9YZXJqaFRENEZm dnd1YlA0NzJOMUI0YklyQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYNL67RLRbOJv/En4m//ONXAJPQmM1dGQ5OQxRz/uYnwpnmNbikQY7 cjd2vEEcUHprIEqJbKSGy2lLF/irK9xcBXUqnNMq1QsigYxpCDenJCdtYxTgTaW/ zQHejRLfJnEP9xb9iH03IbAciDXmJxAUwal/W2YGyxVwcuhPRru5mJh23KK00xal ApsMc+sDOGnR9e+8Ani54AsWfFXT/fZ01BN8LnmcVA+pT8pc22ZM/Ujg5xRNAhs1 hHYVemGyZCrp+BE8Kj0riRB89tDmN1MFzIaujAy+U9QO7tvU6XgGhoVqR6r24i+8 aPa26JlMYpD4DXJyhZbwhvXXzDq0HUhz -----END CERTIFICATE-----Generated at Sat Aug 23 20:23:18 2025 by rpki-client