$ rpki-client -vvf rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.mft File: xLYlA-bWcCrCnQC_NQyLLBLnnwU.mft (raw, json) Hash identifier: JUhxEJArsR6XdrfQf94ZSqasWiIeWfGCzdcy/qdWRgk= Subject key identifier: 76:73:50:D2:3B:64:BF:E6:7F:80:78:84:BC:95:75:03:A2:27:60:A3 Authority key identifier: C4:B6:25:03:E6:D6:70:2A:C2:9D:00:BF:35:0C:8B:2C:12:E7:9F:05 Certificate issuer: /CN=A91A76AD/serialNumber=C4B62503E6D6702AC29D00BF350C8B2C12E79F05 Certificate serial: 0124 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xLYlA-bWcCrCnQC_NQyLLBLnnwU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.mft Manifest number: 0124 Signing time: Sat 23 Aug 2025 04:50:06 +0000 Manifest this update: Sat 23 Aug 2025 04:50:05 +0000 Manifest next update: Sat 30 Aug 2025 04:50:05 +0000 Files and hashes: 1: xLYlA-bWcCrCnQC_NQyLLBLnnwU.crl (hash: 3kG5xyDgL5FQF11SFzhE+IgiwebX9p8uLbyGoksfTeI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.crl rsync://rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xLYlA-bWcCrCnQC_NQyLLBLnnwU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:50:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 292 (0x124) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A76AD, serialNumber=C4B62503E6D6702AC29D00BF350C8B2C12E79F05 Validity Not Before: Aug 23 04:50:05 2025 GMT Not After : Aug 30 04:50:05 2025 GMT Subject: CN=68a9487d-80c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:6b:9f:06:08:67:f6:f9:c6:be:92:4f:17:a0: 17:e5:97:0c:c2:19:d3:92:ca:7a:fd:09:78:60:5a: ad:19:f2:64:05:94:1a:de:5b:0e:56:73:2d:b9:cc: 36:31:66:d6:9c:26:1e:41:10:b3:c2:f3:c4:b5:e5: b8:0c:55:53:94:92:ab:bc:d6:0d:57:21:20:be:5e: 1d:c9:8c:7d:31:49:7f:9b:d0:9d:bd:d7:2f:4d:33: 7a:be:d9:5c:6a:9f:54:2c:6b:19:45:61:39:76:94: 84:a7:ac:03:01:fc:c9:92:d2:e7:aa:1a:ce:a4:30: d6:04:41:45:ce:c8:44:9d:3a:5e:71:20:38:e1:f7: ee:8c:3c:c8:3a:02:00:bd:ff:b8:2a:70:85:a4:74: 6c:c9:45:62:94:75:3d:f5:e1:4f:2d:91:6b:d2:b5: 43:f6:97:b4:07:fa:cc:44:5e:71:7a:a0:c9:3c:bb: 61:17:f5:90:ff:95:80:0b:69:60:53:a4:60:33:55: 57:f4:31:30:82:a1:e8:73:a3:fa:0c:a2:54:21:c5: 0c:28:51:12:f3:64:42:f5:e1:8d:9b:31:0d:92:aa: e6:ca:e3:c4:8f:c1:56:4a:50:d0:71:3d:fb:0b:ae: 39:52:11:1f:c8:31:6d:b2:7a:fe:9f:ae:34:59:0b: ef:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:73:50:D2:3B:64:BF:E6:7F:80:78:84:BC:95:75:03:A2:27:60:A3 X509v3 Authority Key Identifier: keyid:C4:B6:25:03:E6:D6:70:2A:C2:9D:00:BF:35:0C:8B:2C:12:E7:9F:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xLYlA-bWcCrCnQC_NQyLLBLnnwU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:95:a0:69:0c:7c:f8:28:3c:6a:16:f7:25:bb:6d:a0:35:5b: 0a:f7:eb:a2:0b:9a:a7:bb:13:a0:c3:57:e2:81:50:30:c4:3b: 5f:5b:2c:a6:96:43:6a:1e:1c:a7:8d:de:e9:8d:da:85:85:0a: 49:95:bc:9c:07:05:19:f8:6b:03:3e:bf:19:d7:8e:ea:31:a3: b1:9c:cd:e1:7d:43:44:4e:f6:1a:41:9d:50:9d:4d:73:f6:7f: d0:f3:01:88:36:7c:93:2c:d2:59:2d:16:55:16:c1:f5:04:ed: 3c:b9:47:db:ef:69:42:d5:34:c0:e1:c0:a9:c6:e3:e4:89:b4: 6f:d8:b4:83:c8:ad:19:c8:2d:6d:50:b0:82:b5:5e:45:c8:c1: 47:a3:9a:b8:6a:95:b4:0b:76:75:f7:9a:d9:08:f7:9e:af:15: 30:82:22:5f:1b:26:d2:69:4b:aa:8b:3e:fe:96:96:9c:f4:52: 37:b1:68:cf:3f:c6:b0:4d:6e:eb:da:a9:88:33:e1:bd:56:58: 59:f1:35:c6:d3:14:a7:16:43:00:ac:b6:2d:27:50:6d:31:1f: 6f:c9:b1:f6:be:e8:76:93:6e:30:a3:3f:26:e3:92:05:0a:0d: e7:85:6a:3a:0b:bf:17:a5:2c:7e:6f:31:a6:37:d2:dc:99:a2: ca:9e:d5:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc2QUQxMTAvBgNVBAUTKEM0QjYyNTAzRTZENjcwMkFDMjlEMDBCRjM1MEM4QjJD MTJFNzlGMDUwHhcNMjUwODIzMDQ1MDA1WhcNMjUwODMwMDQ1MDA1WjAYMRYwFAYD VQQDEw02OGE5NDg3ZC04MGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtmufBghn9vnGvpJPF6AX5ZcMwhnTksp6/Ql4YFqtGfJkBZQa3lsOVnMtucw2 MWbWnCYeQRCzwvPEteW4DFVTlJKrvNYNVyEgvl4dyYx9MUl/m9CdvdcvTTN6vtlc ap9ULGsZRWE5dpSEp6wDAfzJktLnqhrOpDDWBEFFzshEnTpecSA44ffujDzIOgIA vf+4KnCFpHRsyUVilHU99eFPLZFr0rVD9pe0B/rMRF5xeqDJPLthF/WQ/5WAC2lg U6RgM1VX9DEwgqHoc6P6DKJUIcUMKFES82RC9eGNmzENkqrmyuPEj8FWSlDQcT37 C645UhEfyDFtsnr+n640WQvvDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHZzUNI7 ZL/mf4B4hLyVdQOiJ2CjMB8GA1UdIwQYMBaAFMS2JQPm1nAqwp0AvzUMiywS558F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzZBRC8wN0Y1MkU0NkJF ODAxMUVFOTY3ODRENjJDNEY5QUUwMi94TFlsQS1iV2NDckNuUUNfTlF5TExCTG5u d1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hMWWxBLWJXY0NyQ25RQ19OUXlMTEJMbm53VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzZBRC8wN0Y1MkU0NkJFODAxMUVFOTY3ODRENjJDNEY5QUUwMi94TFlsQS1iV2ND ckNuUUNfTlF5TExCTG5ud1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBlaBpDHz4KDxqFvclu22gNVsK9+uiC5qnuxOgw1figVAwxDtfWyym lkNqHhynjd7pjdqFhQpJlbycBwUZ+GsDPr8Z147qMaOxnM3hfUNETvYaQZ1QnU1z 9n/Q8wGINnyTLNJZLRZVFsH1BO08uUfb72lC1TTA4cCpxuPkibRv2LSDyK0ZyC1t ULCCtV5FyMFHo5q4apW0C3Z195rZCPeerxUwgiJfGybSaUuqiz7+lpac9FI3sWjP P8awTW7r2qmIM+G9VlhZ8TXG0xSnFkMArLYtJ1BtMR9vybH2vuh2k24woz8m45IF Cg3nhWo6C78XpSx+bzGmN9LcmaLKntW6 -----END CERTIFICATE-----Generated at Sat Aug 23 16:44:54 2025 by rpki-client