$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFE4E/D165E4A27BE311EF88D9C753C4F9AE02/xyACdnoQ7C_xRRWiqrhuYUCXp1w.mft File: xyACdnoQ7C_xRRWiqrhuYUCXp1w.mft (raw, json) Hash identifier: PlI0CZBzFlEb+pgZl8+u3J2cuTNlPFTTkwiJrJasBug= Subject key identifier: B8:45:98:52:0D:3F:AD:B8:F8:31:CE:91:7A:30:D7:66:BE:46:5A:CF Authority key identifier: C7:20:02:76:7A:10:EC:2F:F1:45:15:A2:AA:B8:6E:61:40:97:A7:5C Certificate issuer: /CN=A91BFE4E/serialNumber=C72002767A10EC2FF14515A2AAB86E614097A75C Certificate serial: AB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xyACdnoQ7C_xRRWiqrhuYUCXp1w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFE4E/D165E4A27BE311EF88D9C753C4F9AE02/xyACdnoQ7C_xRRWiqrhuYUCXp1w.mft Manifest number: AA Signing time: Sat 23 Aug 2025 06:21:11 +0000 Manifest this update: Sat 23 Aug 2025 06:21:11 +0000 Manifest next update: Sat 30 Aug 2025 06:21:11 +0000 Files and hashes: 1: xyACdnoQ7C_xRRWiqrhuYUCXp1w.crl (hash: xh5+qbbs20iYT1uD2eWJ8/QAh3UfuRNCtmixQOVSf4c=) 2: CB31DFEA7BE411EFB6955155C4F9AE02.roa (hash: aGiRG+xUGgWwAx/G6pVvTX9ourgHUuGhOXJQLlTyA9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFE4E/D165E4A27BE311EF88D9C753C4F9AE02/xyACdnoQ7C_xRRWiqrhuYUCXp1w.crl rsync://rpki.apnic.net/member_repository/A91BFE4E/D165E4A27BE311EF88D9C753C4F9AE02/xyACdnoQ7C_xRRWiqrhuYUCXp1w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xyACdnoQ7C_xRRWiqrhuYUCXp1w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 171 (0xab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFE4E, serialNumber=C72002767A10EC2FF14515A2AAB86E614097A75C Validity Not Before: Aug 23 06:21:11 2025 GMT Not After : Aug 30 06:21:11 2025 GMT Subject: CN=68a95dd7-9eb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:55:0b:a0:bf:38:4b:b8:b2:ea:7f:bc:89:bb: 00:14:05:16:c4:13:f5:dd:b8:bd:6a:e8:76:59:da: 52:27:49:18:02:d2:be:78:bc:0c:fe:84:fb:4e:ce: 9d:16:b1:5e:c9:f7:54:97:c5:e9:02:1a:8a:53:0b: 05:4a:77:fb:64:1c:fd:e4:d1:81:ef:13:15:e6:74: 06:8c:93:39:c6:8a:ba:27:7d:89:be:fa:14:dd:05: ba:9d:d6:ed:18:7c:89:95:b6:f2:82:74:5e:09:10: 7a:b5:d0:cc:f2:4d:08:e7:64:fb:7a:40:9b:a8:8c: b9:ea:70:26:7a:6d:d5:01:66:35:eb:85:61:af:2a: b2:82:cc:8d:a2:d7:c2:7c:3e:b7:b7:17:97:96:9b: 8f:f4:95:60:a9:a3:ce:64:5b:40:52:23:1a:34:bb: db:a4:63:94:12:97:d1:f4:14:66:60:fa:d2:2a:fc: bb:b9:04:23:5d:7a:c5:ff:6a:78:2e:46:35:8a:a3: f7:e4:df:d4:fb:ad:21:68:62:50:bb:ae:81:8e:cc: 67:76:4b:52:9e:27:af:d1:82:a1:ba:17:e6:1e:7a: 39:ff:47:50:17:92:7c:73:84:c2:9f:dc:07:1a:3c: f8:09:ea:f1:73:9e:0c:8e:c2:2a:75:f2:66:78:db: 11:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:45:98:52:0D:3F:AD:B8:F8:31:CE:91:7A:30:D7:66:BE:46:5A:CF X509v3 Authority Key Identifier: keyid:C7:20:02:76:7A:10:EC:2F:F1:45:15:A2:AA:B8:6E:61:40:97:A7:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/D165E4A27BE311EF88D9C753C4F9AE02/xyACdnoQ7C_xRRWiqrhuYUCXp1w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xyACdnoQ7C_xRRWiqrhuYUCXp1w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/D165E4A27BE311EF88D9C753C4F9AE02/xyACdnoQ7C_xRRWiqrhuYUCXp1w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:34:36:5d:25:6d:91:6e:9c:04:c5:27:c1:26:7e:21:92:2b: 07:d4:4d:72:6f:87:17:2d:c6:cd:ec:7f:bc:ba:da:83:9e:b3: 5e:e6:d0:da:27:67:39:97:ea:a7:81:b0:b7:4e:71:f3:5b:16: c0:ee:01:26:e6:43:e5:1c:8a:fc:4c:74:3b:fb:9e:81:ee:e3: 8f:15:e3:d8:cf:83:f8:fd:de:4c:c8:74:9c:6f:ce:9d:f9:f6: f6:8c:cf:c7:93:d8:c9:ce:90:7b:95:2e:ad:09:2b:ff:05:b9: 2d:c9:b6:4d:e7:07:51:b1:05:46:8e:8b:fd:22:c3:c0:45:d3: ff:7e:0c:76:a9:78:59:98:0e:0f:1a:b6:60:96:67:7b:b2:68: 96:bb:60:cf:e7:c7:f5:89:02:8b:82:aa:61:ed:6e:5f:05:81: ef:a9:3b:3c:8a:8d:34:e4:bc:0c:10:80:64:3a:b8:61:85:dd: 01:cd:4f:9d:d1:be:82:0c:98:68:1a:fc:37:08:ec:94:95:74: 86:31:21:d2:27:e3:6a:97:93:b5:3c:ce:a0:94:53:2e:f9:70: 5b:cd:ac:91:a1:4c:33:ec:6a:49:02:33:ac:fa:f3:1a:48:91: 64:8b:fc:e3:16:e8:2d:54:31:e8:22:b1:c1:45:98:18:f3:8b: 1a:a4:2a:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZFNEUxMTAvBgNVBAUTKEM3MjAwMjc2N0ExMEVDMkZGMTQ1MTVBMkFBQjg2RTYx NDA5N0E3NUMwHhcNMjUwODIzMDYyMTExWhcNMjUwODMwMDYyMTExWjAYMRYwFAYD VQQDEw02OGE5NWRkNy05ZWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA31ULoL84S7iy6n+8ibsAFAUWxBP13bi9auh2WdpSJ0kYAtK+eLwM/oT7Ts6d FrFeyfdUl8XpAhqKUwsFSnf7ZBz95NGB7xMV5nQGjJM5xoq6J32JvvoU3QW6ndbt GHyJlbbygnReCRB6tdDM8k0I52T7ekCbqIy56nAmem3VAWY164VhryqygsyNotfC fD63txeXlpuP9JVgqaPOZFtAUiMaNLvbpGOUEpfR9BRmYPrSKvy7uQQjXXrF/2p4 LkY1iqP35N/U+60haGJQu66BjsxndktSniev0YKhuhfmHno5/0dQF5J8c4TCn9wH Gjz4Cerxc54MjsIqdfJmeNsRlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLhFmFIN P624+DHOkXow12a+RlrPMB8GA1UdIwQYMBaAFMcgAnZ6EOwv8UUVoqq4bmFAl6dc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkU0RS9EMTY1RTRBMjdC RTMxMUVGODhEOUM3NTNDNEY5QUUwMi94eUFDZG5vUTdDX3hSUldpcXJodVlVQ1hw MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3h5QUNkbm9RN0NfeFJSV2lxcmh1WVVDWHAxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RkU0RS9EMTY1RTRBMjdCRTMxMUVGODhEOUM3NTNDNEY5QUUwMi94eUFDZG5vUTdD X3hSUldpcXJodVlVQ1hwMXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgNDZdJW2RbpwExSfBJn4hkisH1E1yb4cXLcbN7H+8utqDnrNe5tDa J2c5l+qngbC3TnHzWxbA7gEm5kPlHIr8THQ7+56B7uOPFePYz4P4/d5MyHScb86d +fb2jM/Hk9jJzpB7lS6tCSv/BbktybZN5wdRsQVGjov9IsPARdP/fgx2qXhZmA4P GrZglmd7smiWu2DP58f1iQKLgqph7W5fBYHvqTs8io005LwMEIBkOrhhhd0BzU+d 0b6CDJhoGvw3COyUlXSGMSHSJ+Nql5O1PM6glFMu+XBbzayRoUwz7GpJAjOs+vMa SJFki/zjFugtVDHoIrHBRZgY84sapCq8 -----END CERTIFICATE-----Generated at Sat Aug 23 10:45:28 2025 by rpki-client