$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.mft File: xgie68VWt39k5EJJpouV1b2UHkA.mft (raw, json) Hash identifier: S3/Yj0B8GWDyGbe86me1jpTmr2FpmD1VcmG5xauFpgY= Subject key identifier: 12:12:EF:9C:63:CF:1E:05:05:DE:EF:D0:19:2F:5F:24:18:02:8E:A3 Authority key identifier: C6:08:9E:EB:C5:56:B7:7F:64:E4:42:49:A6:8B:95:D5:BD:94:1E:40 Certificate issuer: /CN=A91ADFD3/serialNumber=C6089EEBC556B77F64E44249A68B95D5BD941E40 Certificate serial: 235D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgie68VWt39k5EJJpouV1b2UHkA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.mft Manifest number: 232F Signing time: Fri 22 Aug 2025 15:53:25 +0000 Manifest this update: Fri 22 Aug 2025 15:53:25 +0000 Manifest next update: Fri 29 Aug 2025 15:53:25 +0000 Files and hashes: 1: xgie68VWt39k5EJJpouV1b2UHkA.crl (hash: MomqMwKImcM7N09BFQE6BN41PwDlTsE7k/Nnulyd9+s=) 2: 6880FA2C59D211EAB77C8C13C4F9AE02.roa (hash: lXOFb0YJQZdFFX90oDPgUqBGFkT5p8wJoFtkhJ/Uo9A=) 3: 678DA8FE59D211EAB77C8C13C4F9AE02.roa (hash: p5KqoJW3tDR/PENRBzb6MlrbIycp47ssNfWx91ehau4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.crl rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgie68VWt39k5EJJpouV1b2UHkA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:53:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9053 (0x235d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADFD3, serialNumber=C6089EEBC556B77F64E44249A68B95D5BD941E40 Validity Not Before: Aug 22 15:53:25 2025 GMT Not After : Aug 29 15:53:25 2025 GMT Subject: CN=68a89275-a933 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:3e:60:c1:8d:ea:3e:a1:75:ba:d3:09:6b:3e: 34:f8:33:f5:28:7a:2c:9a:a8:43:2a:f9:44:49:5b: 48:6a:ae:18:39:6a:d4:4e:41:8f:56:e9:4a:ae:04: 4d:e5:ee:e2:30:c2:00:b5:4a:6c:41:e3:4f:77:3f: 1f:be:b8:c8:08:fb:8c:4c:21:d4:89:09:f5:7f:7a: a1:b7:97:f6:57:79:83:dd:da:96:35:bf:af:8a:28: b0:a5:11:0c:97:da:6c:34:5e:0c:6b:70:ee:0e:e1: 41:94:4f:11:df:79:96:1c:a1:76:b2:7e:c7:70:6f: 44:5a:8f:e8:2a:63:37:54:31:39:8a:0a:4a:8f:80: 8d:75:a8:2a:1d:43:fb:cc:9f:2b:ae:28:1f:a6:0f: 53:7a:85:1b:60:d8:5f:13:90:e8:95:0e:75:93:63: ea:50:b0:d6:65:5e:5b:6d:cd:92:e3:0e:ba:bd:f3: 17:c8:2f:db:23:c0:9c:95:16:72:0b:d7:d7:42:21: 19:be:d7:01:b9:e7:44:39:bc:d0:51:93:2a:4d:db: 70:f8:59:6d:0b:3e:8d:c1:e4:58:04:0b:e1:ee:ed: 10:68:c3:00:c6:68:c5:49:4e:49:1d:b0:bc:dd:4c: 1a:48:17:3d:ea:84:e6:f9:b2:02:68:dc:3c:f6:6a: e1:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:12:EF:9C:63:CF:1E:05:05:DE:EF:D0:19:2F:5F:24:18:02:8E:A3 X509v3 Authority Key Identifier: keyid:C6:08:9E:EB:C5:56:B7:7F:64:E4:42:49:A6:8B:95:D5:BD:94:1E:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgie68VWt39k5EJJpouV1b2UHkA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:40:5a:e8:bc:f5:6d:e7:66:0d:ba:a7:5a:e1:24:ec:50:ee: 84:ef:db:d0:23:6f:8e:9c:07:25:d7:d2:0f:48:8b:c5:11:d3: db:66:5f:cc:d0:ad:c3:f2:e3:e8:ae:6a:49:57:18:26:c5:bf: b2:a6:85:3c:4f:1f:32:c3:63:ee:a0:e1:e0:76:30:01:fc:1b: 01:81:e1:f5:b4:4c:a5:57:32:86:61:6f:6f:85:1e:d4:2a:35: ef:b9:5d:86:a9:d3:87:60:8c:69:57:5f:74:92:0a:a6:f8:09: 21:7e:da:8f:a6:6d:37:23:47:5d:6e:ac:d6:1f:87:be:48:2d: 32:3c:d6:17:72:b3:57:bb:61:43:10:91:e4:14:c9:b9:75:6f: ac:4e:a8:75:2f:0a:10:f2:cc:f3:3a:c5:15:0e:cc:f0:03:6e: 30:a5:1e:e6:0e:56:5e:1e:e5:6f:cd:25:4f:d3:d0:21:b3:f5: 58:67:6c:7a:7e:1f:66:d1:11:89:cd:4e:04:a2:bd:4e:25:ca: 21:99:01:75:15:ce:8f:e5:e8:f4:76:83:8b:5b:77:df:d8:b1: 78:0c:92:98:cb:57:98:06:91:40:f8:de:13:63:29:61:75:e6: 2a:29:84:db:b8:3b:99:2c:22:da:66:2f:a9:e4:20:d0:1f:72: 94:ee:bc:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICI10wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURGRDMxMTAvBgNVBAUTKEM2MDg5RUVCQzU1NkI3N0Y2NEU0NDI0OUE2OEI5NUQ1 QkQ5NDFFNDAwHhcNMjUwODIyMTU1MzI1WhcNMjUwODI5MTU1MzI1WjAYMRYwFAYD VQQDEw02OGE4OTI3NS1hOTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwT5gwY3qPqF1utMJaz40+DP1KHosmqhDKvlESVtIaq4YOWrUTkGPVulKrgRN 5e7iMMIAtUpsQeNPdz8fvrjICPuMTCHUiQn1f3qht5f2V3mD3dqWNb+viiiwpREM l9psNF4Ma3DuDuFBlE8R33mWHKF2sn7HcG9EWo/oKmM3VDE5igpKj4CNdagqHUP7 zJ8rrigfpg9TeoUbYNhfE5DolQ51k2PqULDWZV5bbc2S4w66vfMXyC/bI8CclRZy C9fXQiEZvtcBuedEObzQUZMqTdtw+FltCz6NweRYBAvh7u0QaMMAxmjFSU5JHbC8 3UwaSBc96oTm+bICaNw89mrh+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBIS75xj zx4FBd7v0BkvXyQYAo6jMB8GA1UdIwQYMBaAFMYInuvFVrd/ZORCSaaLldW9lB5A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREZEMy8xRkQxQThCRTk0 ODYxMUU1QUUwQzhCNzJDNEY5QUUwMi94Z2llNjhWV3QzOWs1RUpKcG91VjFiMlVI a0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hnaWU2OFZXdDM5azVFSkpwb3VWMWIyVUhrQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB REZEMy8xRkQxQThCRTk0ODYxMUU1QUUwQzhCNzJDNEY5QUUwMi94Z2llNjhWV3Qz OWs1RUpKcG91VjFiMlVIa0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiQFrovPVt52YNuqda4STsUO6E79vQI2+OnAcl19IPSIvFEdPbZl/M 0K3D8uPormpJVxgmxb+ypoU8Tx8yw2PuoOHgdjAB/BsBgeH1tEylVzKGYW9vhR7U KjXvuV2GqdOHYIxpV190kgqm+AkhftqPpm03I0ddbqzWH4e+SC0yPNYXcrNXu2FD EJHkFMm5dW+sTqh1LwoQ8szzOsUVDszwA24wpR7mDlZeHuVvzSVP09Ahs/VYZ2x6 fh9m0RGJzU4Eor1OJcohmQF1Fc6P5ej0doOLW3ff2LF4DJKYy1eYBpFA+N4TYylh deYqKYTbuDuZLCLaZi+p5CDQH3KU7rxz -----END CERTIFICATE-----Generated at Sat Aug 23 15:31:23 2025 by rpki-client