$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft File: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft (raw, json) Hash identifier: F3WALdNsWZ3mh4+ZZyZ9qSVYHWQz29ZVe0eNn21qN7c= Subject key identifier: F4:9A:1F:7A:FA:AC:0B:A2:65:57:D0:3C:CF:6C:AA:29:04:2E:25:54 Authority key identifier: C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 Certificate issuer: /CN=A91AAF73/serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Certificate serial: 0164 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft Manifest number: 0162 Signing time: Sat 23 Aug 2025 04:05:28 +0000 Manifest this update: Sat 23 Aug 2025 04:05:27 +0000 Manifest next update: Sat 30 Aug 2025 04:05:27 +0000 Files and hashes: 1: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl (hash: Kw7I9onPAXiLcXiR7rIqB5bKywR/Ta4R3wr1cWR3IDQ=) 2: 4B2F1F725E7811EE9307D234C4F9AE02.roa (hash: MT11dCBCJZcHWXZx/470dhBVNTyr6a/ASCVfjrKRXRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:05:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 356 (0x164) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF73, serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Validity Not Before: Aug 23 04:05:27 2025 GMT Not After : Aug 30 04:05:27 2025 GMT Subject: CN=68a93e08-e1aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:eb:93:1f:34:df:a1:6b:d7:37:e6:4e:c4:d1: 15:ce:63:60:9a:c9:49:82:5b:87:53:97:9f:75:42: 22:f2:49:c2:e5:e8:24:b8:66:84:8f:71:07:81:fe: dd:1a:e4:56:1f:fa:c0:9d:fa:c1:00:77:cc:5e:83: ef:d1:f6:5d:76:ce:c8:de:11:38:e4:06:34:ea:8d: d7:8f:d2:2a:94:75:97:3b:eb:9c:04:ba:68:d0:9f: cb:75:6f:ef:1c:7d:c4:e9:89:17:e3:21:1f:bf:9b: ce:ed:fb:c6:a2:7d:52:20:6b:78:a9:d1:ed:8d:19: 6b:a6:cb:0f:38:7f:75:5d:20:17:b4:2d:18:b2:09: 09:81:85:ed:14:cb:b7:3e:88:90:2f:76:41:1e:4c: 0b:24:b8:10:8e:9d:db:b6:5f:ea:3e:2b:8a:51:ff: 49:80:73:a3:af:43:4e:7c:2b:65:e6:be:33:a8:e3: 48:8d:8b:88:44:76:cb:fb:d6:06:a6:9e:a1:20:f8: ba:c3:f5:b7:87:e6:3f:e0:89:b3:17:98:d6:5d:51: c0:5c:fa:ee:13:36:4d:82:59:b3:26:99:08:a6:9d: c7:0d:d7:06:05:a8:74:b0:75:94:fa:79:6e:85:a2: 8e:fc:15:76:1e:72:d1:3d:d6:5c:59:38:e1:9a:67: 24:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:9A:1F:7A:FA:AC:0B:A2:65:57:D0:3C:CF:6C:AA:29:04:2E:25:54 X509v3 Authority Key Identifier: keyid:C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:6a:cd:ab:95:98:f4:0f:d7:e0:df:5f:8f:d9:12:c4:e5:2e: 49:13:69:af:c8:ff:7d:f0:b0:1c:09:f9:84:42:89:72:92:00: 79:10:3e:e0:a4:d5:5d:aa:e8:13:9d:cb:dd:d8:7a:a9:9c:ab: 4f:6c:e2:10:d3:94:e3:65:7a:6a:6f:13:ef:0e:c8:30:d5:b0: 49:c5:3c:68:0a:be:80:ce:48:f1:83:11:62:04:0c:46:d6:5f: 5a:38:f0:08:de:f1:b9:c9:b7:4f:7c:b0:c8:63:35:82:a4:f6: 91:55:6e:c3:bf:54:81:18:6b:45:64:47:49:50:d7:22:cb:2a: 9e:98:98:33:d3:26:77:6f:bc:08:9a:9a:51:e8:0a:ab:ae:67: 89:75:d0:66:95:ef:f3:4b:37:b8:6d:9c:95:79:95:9a:2b:a0: e6:f6:16:48:51:2f:06:38:1f:9a:65:5a:f3:6c:c9:67:c5:c7: 70:3a:93:dd:4f:27:1c:08:4b:d4:eb:62:dd:11:6e:6b:d8:90: 1d:0b:25:0d:19:08:5d:d6:b8:52:3a:d6:c0:6d:c0:87:f0:b5: 26:d5:9f:93:8f:e6:f4:51:67:7a:f1:d4:41:3d:27:ba:e7:bf: 89:34:e0:6a:24:b9:26:72:e4:09:89:33:0f:72:5b:48:20:34: bf:13:4e:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFGNzMxMTAvBgNVBAUTKEM0MDVGMDYxRTMzQjA3MTdDOTA0RkMxREYzRTc5QkNE Nzk1MjBGQTYwHhcNMjUwODIzMDQwNTI3WhcNMjUwODMwMDQwNTI3WjAYMRYwFAYD VQQDEw02OGE5M2UwOC1lMWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+uTHzTfoWvXN+ZOxNEVzmNgmslJgluHU5efdUIi8knC5egkuGaEj3EHgf7d GuRWH/rAnfrBAHfMXoPv0fZdds7I3hE45AY06o3Xj9IqlHWXO+ucBLpo0J/LdW/v HH3E6YkX4yEfv5vO7fvGon1SIGt4qdHtjRlrpssPOH91XSAXtC0YsgkJgYXtFMu3 PoiQL3ZBHkwLJLgQjp3btl/qPiuKUf9JgHOjr0NOfCtl5r4zqONIjYuIRHbL+9YG pp6hIPi6w/W3h+Y/4ImzF5jWXVHAXPruEzZNglmzJpkIpp3HDdcGBah0sHWU+nlu haKO/BV2HnLRPdZcWTjhmmckPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPSaH3r6 rAuiZVfQPM9sqikELiVUMB8GA1UdIwQYMBaAFMQF8GHjOwcXyQT8HfPnm815Ug+m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUY3My9ENUZGMUY0MDVF NzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4ZkpCUHdkOC1lYnpYbFNE NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hBWHdZZU03QnhmSkJQd2Q4LWVielhsU0Q2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUY3My9ENUZGMUY0MDVFNzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4 ZkpCUHdkOC1lYnpYbFNENlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcas2rlZj0D9fg31+P2RLE5S5JE2mvyP998LAcCfmEQolykgB5ED7g pNVdqugTncvd2HqpnKtPbOIQ05TjZXpqbxPvDsgw1bBJxTxoCr6AzkjxgxFiBAxG 1l9aOPAI3vG5ybdPfLDIYzWCpPaRVW7Dv1SBGGtFZEdJUNciyyqemJgz0yZ3b7wI mppR6AqrrmeJddBmle/zSze4bZyVeZWaK6Dm9hZIUS8GOB+aZVrzbMlnxcdwOpPd TyccCEvU62LdEW5r2JAdCyUNGQhd1rhSOtbAbcCH8LUm1Z+Tj+b0UWd68dRBPSe6 57+JNOBqJLkmcuQJiTMPcltIIDS/E07L -----END CERTIFICATE-----Generated at Sat Aug 23 20:30:28 2025 by rpki-client