$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft File: X45P1KbdY15DeC5aBVYiyrJlSjc.mft (raw, json) Hash identifier: n97EInNQklsQtYEu7ubIfM33kl2a4YGBy+88R8dpqeo= Subject key identifier: B1:55:A5:49:5E:9E:07:3C:B0:82:06:F1:70:18:AF:91:CF:C8:32:E8 Authority key identifier: 5F:8E:4F:D4:A6:DD:63:5E:43:78:2E:5A:05:56:22:CA:B2:65:4A:37 Certificate issuer: /CN=A91BCF31/serialNumber=5F8E4FD4A6DD635E43782E5A055622CAB2654A37 Certificate serial: 0929 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft Manifest number: 0922 Signing time: Fri 22 Aug 2025 20:23:54 +0000 Manifest this update: Fri 22 Aug 2025 20:23:54 +0000 Manifest next update: Fri 29 Aug 2025 20:23:54 +0000 Files and hashes: 1: X45P1KbdY15DeC5aBVYiyrJlSjc.crl (hash: L1/GQ+aGdtLQ7InhXaHW3RshASRLFJkVVSeEcKsKmrI=) 2: B757FF4EAB8311EA9983D717C4F9AE02.roa (hash: q5IkP0u3/4X3zrB3YXKIdUEoegOtePooQhqPih9d+0I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.crl rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:23:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2345 (0x929) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCF31, serialNumber=5F8E4FD4A6DD635E43782E5A055622CAB2654A37 Validity Not Before: Aug 22 20:23:54 2025 GMT Not After : Aug 29 20:23:54 2025 GMT Subject: CN=68a8d1da-038e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:80:be:e1:5c:3c:00:3e:17:d2:de:e3:10:4a: 46:be:71:a4:2c:d6:58:f5:e9:3e:fd:22:39:f9:ef: 9a:af:20:7d:0e:32:12:f7:ce:f3:5d:b5:ce:13:aa: b5:f0:48:99:49:f9:51:7f:36:4c:ec:ae:dd:6b:c9: 32:fe:a5:a8:8c:2b:ec:0f:16:a4:00:65:d3:5d:da: aa:e4:e3:0c:f5:95:14:d5:ca:93:4f:b3:e0:30:c3: 6b:5a:d1:c2:8d:26:aa:d3:b0:7c:4c:ee:32:05:3d: e3:1f:89:d5:d0:cf:27:86:d7:a6:ec:5d:95:66:f7: c9:22:66:0c:8f:19:bc:d4:bf:23:e7:be:e1:bd:0a: 36:e9:7d:de:46:46:6c:31:0a:d2:44:be:5d:56:94: 29:b4:02:90:1b:3f:3a:51:3b:8e:fd:71:ab:13:54: 08:97:01:ab:31:18:a7:4d:16:d9:4a:9b:16:5f:af: e3:5c:4e:6f:d2:4a:41:f7:92:d9:ea:cb:2c:4a:e2: 0f:b5:e3:bf:98:f8:54:82:1f:31:0c:7e:bc:71:12: 4a:84:20:39:28:aa:31:6e:6b:b5:1c:c6:d0:7a:01: 34:ac:bb:74:53:7a:6d:b5:fb:11:38:70:e9:bc:8a: ed:83:b7:d4:92:bb:ed:56:19:c0:9a:2f:f5:8c:d3: 8d:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:55:A5:49:5E:9E:07:3C:B0:82:06:F1:70:18:AF:91:CF:C8:32:E8 X509v3 Authority Key Identifier: keyid:5F:8E:4F:D4:A6:DD:63:5E:43:78:2E:5A:05:56:22:CA:B2:65:4A:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:2a:57:35:99:32:02:27:e5:d5:a3:db:2c:45:3e:f4:89:5c: fd:3a:56:88:91:3b:dd:6e:82:9e:db:8d:d4:c2:d5:6a:e8:da: 44:3d:b9:02:ec:31:63:d3:8e:e5:c5:bc:36:c9:bc:76:28:87: 30:0f:e4:4f:86:ce:33:c4:4c:f4:95:62:21:15:5e:01:f4:70: 6e:79:46:6b:3f:03:b5:9d:f4:27:20:38:8e:ba:33:56:94:5e: c8:09:08:69:1a:52:8e:a2:4b:bf:9f:d6:10:5a:b5:53:52:42: a0:0f:78:e7:f8:63:81:bf:2d:62:70:3c:58:92:89:7a:a7:07: d5:5c:48:7a:32:1f:77:ec:21:d2:fe:ef:f9:cd:ea:39:d7:21: 29:f2:5f:ee:94:e5:c2:61:50:e1:7e:7d:58:9d:32:bf:af:71: 2f:da:2b:24:05:57:a8:0c:21:ef:11:e5:ba:22:55:c5:3f:39: 7c:02:49:27:b9:49:b0:ae:d1:f1:9c:b4:a4:8d:1b:8f:34:c2: fe:f2:aa:5f:d8:f9:bf:03:12:98:5d:81:52:6d:f8:07:30:37: d5:73:7c:e6:d2:8e:ff:89:5d:71:ab:8f:14:31:09:89:e3:88: f2:4f:f9:29:9c:8b:b8:b2:3e:20:93:e7:b5:65:3b:ec:94:26: 96:65:2d:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCSkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkNGMzExMTAvBgNVBAUTKDVGOEU0RkQ0QTZERDYzNUU0Mzc4MkU1QTA1NTYyMkNB QjI2NTRBMzcwHhcNMjUwODIyMjAyMzU0WhcNMjUwODI5MjAyMzU0WjAYMRYwFAYD VQQDEw02OGE4ZDFkYS0wMzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYC+4Vw8AD4X0t7jEEpGvnGkLNZY9ek+/SI5+e+aryB9DjIS987zXbXOE6q1 8EiZSflRfzZM7K7da8ky/qWojCvsDxakAGXTXdqq5OMM9ZUU1cqTT7PgMMNrWtHC jSaq07B8TO4yBT3jH4nV0M8nhtem7F2VZvfJImYMjxm81L8j577hvQo26X3eRkZs MQrSRL5dVpQptAKQGz86UTuO/XGrE1QIlwGrMRinTRbZSpsWX6/jXE5v0kpB95LZ 6sssSuIPteO/mPhUgh8xDH68cRJKhCA5KKoxbmu1HMbQegE0rLt0U3pttfsROHDp vIrtg7fUkrvtVhnAmi/1jNON+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLFVpUle ngc8sIIG8XAYr5HPyDLoMB8GA1UdIwQYMBaAFF+OT9Sm3WNeQ3guWgVWIsqyZUo3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQ0YzMS9BRjdGRUQ2MkFB NEUxMUVBOUQ4RUM3ODJDNEY5QUUwMi9YNDVQMUtiZFkxNURlQzVhQlZZaXlySmxT amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0NVAxS2JkWTE1RGVDNWFCVllpeXJKbFNqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Q0YzMS9BRjdGRUQ2MkFBNEUxMUVBOUQ4RUM3ODJDNEY5QUUwMi9YNDVQMUtiZFkx NURlQzVhQlZZaXlySmxTamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACKlc1mTICJ+XVo9ssRT70iVz9OlaIkTvdboKe243UwtVq6NpEPbkC 7DFj047lxbw2ybx2KIcwD+RPhs4zxEz0lWIhFV4B9HBueUZrPwO1nfQnIDiOujNW lF7ICQhpGlKOoku/n9YQWrVTUkKgD3jn+GOBvy1icDxYkol6pwfVXEh6Mh937CHS /u/5zeo51yEp8l/ulOXCYVDhfn1YnTK/r3Ev2iskBVeoDCHvEeW6IlXFPzl8Akkn uUmwrtHxnLSkjRuPNML+8qpf2Pm/AxKYXYFSbfgHMDfVc3zm0o7/iV1xq48UMQmJ 44jyT/kpnIu4sj4gk+e1ZTvslCaWZS02 -----END CERTIFICATE-----Generated at Sun Aug 24 05:14:54 2025 by rpki-client