$ rpki-client -vvf rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft File: XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft (raw, json) Hash identifier: VLMzuMc/X8VBcqT53hH9Om7iz4onfHBnIgqXR0UaU0A= Subject key identifier: EF:AB:D2:C3:EE:AB:C2:81:E4:70:AA:69:14:03:70:D2:5B:F7:75:AE Authority key identifier: 5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1 Certificate issuer: /CN=A91B23B3/serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1 Certificate serial: 09DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft Manifest number: 09BC Signing time: Fri 22 Aug 2025 20:10:13 +0000 Manifest this update: Fri 22 Aug 2025 20:10:12 +0000 Manifest next update: Fri 29 Aug 2025 20:10:12 +0000 Files and hashes: 1: XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl (hash: vA4FssjEU/25GsEmmUjXMjZGgK5N6WQppqVlYTGZYlo=) 2: 3818D9A09A9011EFB14F1729C4F9AE02.roa (hash: XjGmTLSTgsODpSCPTs5pCmUy9NRCIk0AE9Vg9MOaVdU=) 3: 2109DFF2EFBB11EC95A1FD0DC4F9AE02.roa (hash: 2XvjAuC6Hirm3HWv88SHGUEeMWi9XgXjvYQVlXNxZVI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:10:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2527 (0x9df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B23B3, serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1 Validity Not Before: Aug 22 20:10:12 2025 GMT Not After : Aug 29 20:10:12 2025 GMT Subject: CN=68a8cea4-485c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:9f:93:70:63:d8:58:33:ff:3b:d1:e4:1d:7d: 2c:a3:37:c0:73:ed:0a:3b:d0:7c:a8:45:e1:d5:c8: 5f:6d:00:2f:e8:36:07:6d:16:4e:ab:c0:d8:54:b1: 26:70:25:ff:76:3d:43:2d:8b:46:99:cc:80:7a:2e: 81:c0:01:bf:f7:60:96:89:fd:ec:b5:8e:9e:92:63: a2:9d:ee:cf:90:03:7f:1b:94:d6:c3:d5:60:24:16: e2:eb:6c:99:b8:5d:61:c3:3c:f6:fd:4a:af:b9:4b: d2:60:da:20:c3:75:ee:cd:fd:79:14:54:6c:18:52: 95:5f:c7:f4:2b:7a:ec:f7:c1:90:40:51:b6:7c:6a: 2e:e4:59:e5:60:ac:3f:0b:7d:a6:b7:2e:0c:33:4e: a3:86:fe:c9:c0:b4:50:d2:62:57:68:9f:55:c0:51: 52:42:d1:c6:9f:9e:dc:de:90:c3:9d:c0:61:5f:0b: 25:c1:8e:2d:ca:40:f8:35:d5:e7:42:d5:97:5a:82: 0a:68:12:27:a8:a8:22:ee:06:a2:5d:03:dd:c5:a0: 0f:fd:86:9e:40:40:39:f7:f0:16:f7:0c:d4:67:90: 4c:02:33:70:d4:39:e9:53:47:0d:f7:84:fb:a7:bb: d3:dd:29:a8:f0:05:90:61:48:2c:a1:41:28:35:80: 15:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:AB:D2:C3:EE:AB:C2:81:E4:70:AA:69:14:03:70:D2:5B:F7:75:AE X509v3 Authority Key Identifier: keyid:5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:5d:37:34:f8:9f:0b:5f:d5:41:7d:0a:df:bc:c3:3b:a4:4f: 4b:fd:05:cf:50:34:32:96:5e:4f:a5:ec:7e:7e:0f:86:d7:6c: 11:f1:fd:c5:09:e9:36:0f:8b:60:ba:9e:38:b9:b4:cd:b2:00: a2:db:38:d2:b0:f9:8d:38:90:71:9b:93:56:f3:27:f6:eb:66: 64:a9:de:c7:c8:41:55:cf:7d:56:cc:bb:77:60:e2:f8:d5:4a: ba:68:20:54:0d:9c:9f:ed:82:bd:ab:a1:ef:d1:40:c4:03:1c: 71:76:13:da:d2:32:b0:c3:8d:c3:74:e2:92:8c:86:8f:9d:fe: d8:b1:a4:a2:cb:a2:7c:f6:30:be:fd:6f:95:6e:ca:8e:22:26: a9:57:ff:e9:51:24:f5:0b:41:2f:02:dd:f1:77:4a:d0:dd:12: 9b:e6:e0:41:f0:e3:75:b4:6e:5e:3c:ed:25:64:ee:26:9b:cb: 11:f5:b4:1c:8c:da:1c:38:1a:b0:30:b4:fe:66:7a:d6:ce:b9: e4:a0:4e:90:77:e5:37:da:bb:99:e2:2a:68:8d:b7:59:2d:4a: 20:2d:3a:33:26:76:c6:a2:bb:ef:3b:3b:df:3e:e0:16:3b:34: 44:6f:82:b9:87:23:4c:f3:d6:35:61:43:5f:8b:2c:91:08:61: c9:02:be:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjIzQjMxMTAvBgNVBAUTKDVDMzY4NDM5Q0JDNUY1QTQ1NzE1RDY0NzZCRUFBNjY4 NkQwOTUxQjEwHhcNMjUwODIyMjAxMDEyWhcNMjUwODI5MjAxMDEyWjAYMRYwFAYD VQQDEw02OGE4Y2VhNC00ODVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Z+TcGPYWDP/O9HkHX0sozfAc+0KO9B8qEXh1chfbQAv6DYHbRZOq8DYVLEm cCX/dj1DLYtGmcyAei6BwAG/92CWif3stY6ekmOine7PkAN/G5TWw9VgJBbi62yZ uF1hwzz2/UqvuUvSYNogw3Xuzf15FFRsGFKVX8f0K3rs98GQQFG2fGou5FnlYKw/ C32mty4MM06jhv7JwLRQ0mJXaJ9VwFFSQtHGn57c3pDDncBhXwslwY4tykD4NdXn QtWXWoIKaBInqKgi7gaiXQPdxaAP/YaeQEA59/AW9wzUZ5BMAjNw1DnpU0cN94T7 p7vT3Smo8AWQYUgsoUEoNYAV5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO+r0sPu q8KB5HCqaRQDcNJb93WuMB8GA1UdIwQYMBaAFFw2hDnLxfWkVxXWR2vqpmhtCVGx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjNCMy9FNjQ2NUExMDhF OTgxMUVBQUI1OEJEM0FDNEY5QUUwMi9YRGFFT2N2RjlhUlhGZFpIYS1xbWFHMEpV YkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEYUVPY3ZGOWFSWEZkWkhhLXFtYUcwSlViRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjNCMy9FNjQ2NUExMDhFOTgxMUVBQUI1OEJEM0FDNEY5QUUwMi9YRGFFT2N2Rjlh UlhGZFpIYS1xbWFHMEpVYkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOXTc0+J8LX9VBfQrfvMM7pE9L/QXPUDQyll5Ppex+fg+G12wR8f3F Cek2D4tgup44ubTNsgCi2zjSsPmNOJBxm5NW8yf262Zkqd7HyEFVz31WzLt3YOL4 1Uq6aCBUDZyf7YK9q6Hv0UDEAxxxdhPa0jKww43DdOKSjIaPnf7YsaSiy6J89jC+ /W+VbsqOIiapV//pUST1C0EvAt3xd0rQ3RKb5uBB8ON1tG5ePO0lZO4mm8sR9bQc jNocOBqwMLT+ZnrWzrnkoE6Qd+U32ruZ4ipojbdZLUogLTozJnbGorvvOzvfPuAW OzREb4K5hyNM89Y1YUNfiyyRCGHJAr4m -----END CERTIFICATE-----Generated at Sat Aug 23 17:07:51 2025 by rpki-client