$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft File: XRhbcS2TBWvydLi3qJjGklTruYM.mft (raw, json) Hash identifier: rWJPhZIeVesqpELpDHgWn10SEUl53gE9uJ6fh2v2dIk= Subject key identifier: 98:B3:3D:0F:E7:22:FC:0F:7E:9D:E6:6A:91:73:31:5F:E0:9F:40:E6 Authority key identifier: 5D:18:5B:71:2D:93:05:6B:F2:74:B8:B7:A8:98:C6:92:54:EB:B9:83 Certificate issuer: /CN=A91AE972/serialNumber=5D185B712D93056BF274B8B7A898C69254EBB983 Certificate serial: 015C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft Manifest number: 014D Signing time: Sat 23 Aug 2025 04:37:30 +0000 Manifest this update: Sat 23 Aug 2025 04:37:30 +0000 Manifest next update: Sat 30 Aug 2025 04:37:30 +0000 Files and hashes: 1: XRhbcS2TBWvydLi3qJjGklTruYM.crl (hash: HCEHYcC/G9uf7Fz8KvUmGvqPCPSL4b62m7pifymRozQ=) 2: C863991849FA11F0B806FE48C4F9AE02.roa (hash: hkLckuw5otkBSXdsjVbPLtt1WgA/Ric4lgUGja07WIw=) 3: DCCEA912A3EB11EE8049E335C4F9AE02.roa (hash: mJeqjVOv7jvR5HIjSJKMtiF4WeNSaF9wcOpOHqbk62w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.crl rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:37:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 348 (0x15c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE972, serialNumber=5D185B712D93056BF274B8B7A898C69254EBB983 Validity Not Before: Aug 23 04:37:30 2025 GMT Not After : Aug 30 04:37:30 2025 GMT Subject: CN=68a9458a-0919 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:aa:5e:dc:2d:f9:dc:d9:d5:94:3c:23:fb:ff: ac:55:47:5c:2e:de:74:d5:ff:d2:14:8e:49:ec:90: 83:36:b8:5c:4b:53:dc:72:b7:57:70:ff:02:10:52: e8:d3:0d:63:09:db:de:20:94:88:86:26:8f:55:31: ba:65:fe:a7:76:45:69:8b:ce:66:cf:b4:05:7c:df: 67:e0:9e:e1:b2:4a:b3:e9:bf:c3:06:ee:1b:44:ad: e8:9d:74:dd:ba:ae:18:5f:9c:01:c2:81:e2:d7:97: 42:d3:d7:df:e1:f4:4a:df:f0:20:51:b5:79:f4:a3: c4:f9:b9:a1:0a:24:fa:53:79:06:3b:a0:a8:9d:38: 33:4c:89:19:cb:47:ea:e5:23:fd:7b:79:7c:ef:16: 46:76:62:66:d3:1a:e6:eb:04:77:72:13:ba:56:9b: d1:dd:35:db:f1:0f:c5:02:8f:f3:36:aa:99:57:e0: f2:47:3b:ab:6d:02:67:8c:1d:96:59:d1:b4:8f:69: af:9d:b8:3d:2a:2f:83:90:37:0a:b2:f3:1d:23:c9: 1a:b1:f4:90:af:79:30:c8:e0:e2:66:44:73:d4:4d: 14:eb:26:db:3e:49:a6:bb:27:3d:38:ae:c0:01:1b: 40:bc:31:aa:5b:2a:fe:80:85:f3:bf:85:92:2e:36: e9:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:B3:3D:0F:E7:22:FC:0F:7E:9D:E6:6A:91:73:31:5F:E0:9F:40:E6 X509v3 Authority Key Identifier: keyid:5D:18:5B:71:2D:93:05:6B:F2:74:B8:B7:A8:98:C6:92:54:EB:B9:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XRhbcS2TBWvydLi3qJjGklTruYM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE972/245B3DDCA3E611EEADF94855C4F9AE02/XRhbcS2TBWvydLi3qJjGklTruYM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:68:2a:a6:e7:30:5d:0d:2e:a1:d1:f5:72:92:78:19:bc:54: d3:a6:58:8a:41:25:b3:c7:c1:b5:95:4f:47:de:80:1b:ff:c7: 4e:01:8f:4f:79:7b:d5:a2:f5:ab:bc:77:8d:09:bd:ed:c3:26: 56:3b:b3:4c:91:6b:50:02:ef:f8:f9:7d:e5:1a:fa:3d:80:0d: 85:1a:d8:a7:db:59:4f:2e:f4:97:b1:d8:04:19:0d:c6:f9:f9: b2:db:72:d3:f4:7a:3f:98:37:56:94:61:c2:61:55:a0:64:21: f0:da:74:11:b1:d7:b5:1e:74:b1:34:c5:01:79:be:4c:80:e6: bd:70:71:49:66:cb:30:18:c3:6d:3d:6a:f8:7a:1d:8b:43:c9: 7e:cc:bd:c5:5f:51:f6:9c:cd:ce:87:4c:f3:d4:75:bd:96:52: ce:6e:36:96:86:43:1a:9b:3c:db:5a:be:1a:79:08:cd:6d:28: 23:f1:cc:61:1c:f6:74:52:f4:83:31:62:eb:38:b7:08:b0:f5: 61:d1:3b:b4:39:99:3a:4d:3d:4a:43:6c:b3:d2:76:65:73:16: b8:af:92:51:2e:86:45:a4:4b:92:17:71:50:e0:ee:7e:13:74: e9:1b:3f:d6:d2:f8:49:fd:6b:d7:4f:b5:57:de:8e:01:a3:30: b7:bb:2a:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU5NzIxMTAvBgNVBAUTKDVEMTg1QjcxMkQ5MzA1NkJGMjc0QjhCN0E4OThDNjky NTRFQkI5ODMwHhcNMjUwODIzMDQzNzMwWhcNMjUwODMwMDQzNzMwWjAYMRYwFAYD VQQDEw02OGE5NDU4YS0wOTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxKpe3C353NnVlDwj+/+sVUdcLt501f/SFI5J7JCDNrhcS1PccrdXcP8CEFLo 0w1jCdveIJSIhiaPVTG6Zf6ndkVpi85mz7QFfN9n4J7hskqz6b/DBu4bRK3onXTd uq4YX5wBwoHi15dC09ff4fRK3/AgUbV59KPE+bmhCiT6U3kGO6ConTgzTIkZy0fq 5SP9e3l87xZGdmJm0xrm6wR3chO6VpvR3TXb8Q/FAo/zNqqZV+DyRzurbQJnjB2W WdG0j2mvnbg9Ki+DkDcKsvMdI8kasfSQr3kwyODiZkRz1E0U6ybbPkmmuyc9OK7A ARtAvDGqWyr+gIXzv4WSLjbpCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJizPQ/n IvwPfp3mapFzMV/gn0DmMB8GA1UdIwQYMBaAFF0YW3EtkwVr8nS4t6iYxpJU67mD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTk3Mi8yNDVCM0REQ0Ez RTYxMUVFQURGOTQ4NTVDNEY5QUUwMi9YUmhiY1MyVEJXdnlkTGkzcUpqR2tsVHJ1 WU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hSaGJjUzJUQld2eWRMaTNxSmpHa2xUcnVZTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTk3Mi8yNDVCM0REQ0EzRTYxMUVFQURGOTQ4NTVDNEY5QUUwMi9YUmhiY1MyVEJX dnlkTGkzcUpqR2tsVHJ1WU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaaCqm5zBdDS6h0fVykngZvFTTpliKQSWzx8G1lU9H3oAb/8dOAY9P eXvVovWrvHeNCb3twyZWO7NMkWtQAu/4+X3lGvo9gA2FGtin21lPLvSXsdgEGQ3G +fmy23LT9Ho/mDdWlGHCYVWgZCHw2nQRsde1HnSxNMUBeb5MgOa9cHFJZsswGMNt PWr4eh2LQ8l+zL3FX1H2nM3Oh0zz1HW9llLObjaWhkMamzzbWr4aeQjNbSgj8cxh HPZ0UvSDMWLrOLcIsPVh0Tu0OZk6TT1KQ2yz0nZlcxa4r5JRLoZFpEuSF3FQ4O5+ E3TpGz/W0vhJ/WvXT7VX3o4BozC3uyrx -----END CERTIFICATE-----Generated at Sat Aug 23 17:14:10 2025 by rpki-client