$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft File: XwBNV-s29CZy5m8wBfZGm2KJFxs.mft (raw, json) Hash identifier: Lpnq/Nd+lxmvi3xBsdl1rCfYMFwYaISRzuiCOCVcx1o= Subject key identifier: B0:C1:59:6B:37:95:C1:58:CA:29:85:F6:1D:61:AD:D4:8C:E4:80:C7 Authority key identifier: 5F:00:4D:57:EB:36:F4:26:72:E6:6F:30:05:F6:46:9B:62:89:17:1B Certificate issuer: /CN=A91C1025/serialNumber=5F004D57EB36F42672E66F3005F6469B6289171B Certificate serial: 9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft Manifest number: 99 Signing time: Sat 23 Aug 2025 06:39:19 +0000 Manifest this update: Sat 23 Aug 2025 06:39:18 +0000 Manifest next update: Sat 30 Aug 2025 06:39:18 +0000 Files and hashes: 1: XwBNV-s29CZy5m8wBfZGm2KJFxs.crl (hash: lT9AGgALdSmGm6OUPC/03J6T8dbwkNimP+/uBkt9JH0=) 2: 3D04EA589D9211EF8083B245C4F9AE02.roa (hash: Iqqm3XnZxAwHyLfxm5fiQ2PL3nIt3cAVFXF23TPN80A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.crl rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:39:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 156 (0x9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1025, serialNumber=5F004D57EB36F42672E66F3005F6469B6289171B Validity Not Before: Aug 23 06:39:18 2025 GMT Not After : Aug 30 06:39:18 2025 GMT Subject: CN=68a96216-14bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:fd:fe:55:2d:d5:f1:2c:8d:1e:bf:72:f7:87: 5f:62:c1:30:76:bb:83:86:f8:d1:f4:f7:ae:09:1a: dd:a5:3e:8d:f0:24:c4:02:37:a7:67:19:4a:e0:f3: 9a:5b:a4:d5:08:7b:32:80:48:39:40:99:44:c0:bd: 26:69:b7:3a:fc:cb:31:88:1e:12:58:6e:c0:8c:e0: 5d:50:da:be:ca:a5:82:48:a8:ce:12:d6:b1:3e:11: ba:2e:af:97:82:0f:30:d8:c8:68:2d:a0:e2:7b:f6: f4:a8:86:80:17:b9:c0:6e:5a:39:d4:13:7e:c8:1c: ee:b2:25:2f:47:23:95:5c:f6:33:c2:0e:cc:43:65: 22:9f:6f:24:53:28:ad:f8:b5:5f:39:fe:08:ae:41: a8:9a:2d:26:89:bc:68:62:5e:33:43:a5:0b:f1:b4: b7:03:88:f0:6e:eb:61:2d:c6:79:6c:80:e3:e2:ab: 72:33:03:aa:8c:41:b8:ec:ea:72:76:87:22:a0:fd: 17:8f:f1:3f:89:11:2b:04:57:81:b0:20:7f:74:9f: 39:8c:bf:5a:fb:fd:66:60:05:de:37:a9:98:67:54: 72:51:d3:8e:51:c0:3c:f6:71:7d:6f:22:26:b8:17: 0f:2a:ee:0e:d7:c6:7a:a2:df:2d:b5:b0:6a:ab:18: 36:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:C1:59:6B:37:95:C1:58:CA:29:85:F6:1D:61:AD:D4:8C:E4:80:C7 X509v3 Authority Key Identifier: keyid:5F:00:4D:57:EB:36:F4:26:72:E6:6F:30:05:F6:46:9B:62:89:17:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:22:95:d7:0b:4f:64:40:29:d9:2d:7b:a4:fd:fd:43:6a:94: fa:9e:a8:5b:ee:ac:ee:be:eb:fc:35:5b:5e:bc:a1:b4:f1:30: 92:3e:b8:95:a1:c6:f4:17:07:e8:48:a5:02:d8:f8:77:ca:92: fc:76:cc:14:3c:be:9d:14:62:95:d4:fc:6a:8b:69:fb:ca:8e: 40:ae:8e:8f:05:11:f4:58:0f:ed:88:0e:7f:44:8d:0c:fd:0d: ec:6f:9b:d8:b8:db:32:04:69:04:b9:db:6f:31:34:13:eb:d5: 5a:34:0e:ef:64:09:18:af:11:ec:f5:66:e7:64:92:22:85:63: eb:1d:54:1b:06:0f:4b:b3:d4:c4:4d:2b:36:6f:be:34:d0:ba: 31:93:b7:04:b6:7e:d9:62:b9:e5:53:01:40:1b:19:50:92:d2: 9f:68:43:6d:ff:30:3c:b9:c0:db:99:b7:f0:69:55:15:ba:1c: 15:a1:3a:b1:4d:27:53:90:d4:c0:43:8c:1a:6f:6d:cb:30:18: d4:66:dd:0d:80:4b:fc:93:78:c4:73:d0:73:c6:b9:dd:f2:d8: 29:73:3e:8c:4f:b8:04:59:58:c1:02:f5:df:47:cf:59:3a:d1: 54:8c:69:8e:11:75:65:e6:82:74:5a:1e:a9:31:b0:f3:d8:14: d2:d1:ab:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEwMjUxMTAvBgNVBAUTKDVGMDA0RDU3RUIzNkY0MjY3MkU2NkYzMDA1RjY0NjlC NjI4OTE3MUIwHhcNMjUwODIzMDYzOTE4WhcNMjUwODMwMDYzOTE4WjAYMRYwFAYD VQQDEw02OGE5NjIxNi0xNGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzv3+VS3V8SyNHr9y94dfYsEwdruDhvjR9PeuCRrdpT6N8CTEAjenZxlK4POa W6TVCHsygEg5QJlEwL0mabc6/MsxiB4SWG7AjOBdUNq+yqWCSKjOEtaxPhG6Lq+X gg8w2MhoLaDie/b0qIaAF7nAblo51BN+yBzusiUvRyOVXPYzwg7MQ2Uin28kUyit +LVfOf4IrkGomi0mibxoYl4zQ6UL8bS3A4jwbuthLcZ5bIDj4qtyMwOqjEG47Opy docioP0Xj/E/iRErBFeBsCB/dJ85jL9a+/1mYAXeN6mYZ1RyUdOOUcA89nF9byIm uBcPKu4O18Z6ot8ttbBqqxg2iQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLDBWWs3 lcFYyimF9h1hrdSM5IDHMB8GA1UdIwQYMBaAFF8ATVfrNvQmcuZvMAX2RptiiRcb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTAyNS85NTZGNjYyQzlE ODQxMUVGODE3RTE0MjBDNEY5QUUwMi9Yd0JOVi1zMjlDWnk1bTh3QmZaR20yS0pG eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h3Qk5WLXMyOUNaeTVtOHdCZlpHbTJLSkZ4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTAyNS85NTZGNjYyQzlEODQxMUVGODE3RTE0MjBDNEY5QUUwMi9Yd0JOVi1zMjlD Wnk1bTh3QmZaR20yS0pGeHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfIpXXC09kQCnZLXuk/f1DapT6nqhb7qzuvuv8NVtevKG08TCSPriV ocb0FwfoSKUC2Ph3ypL8dswUPL6dFGKV1Pxqi2n7yo5Aro6PBRH0WA/tiA5/RI0M /Q3sb5vYuNsyBGkEudtvMTQT69VaNA7vZAkYrxHs9WbnZJIihWPrHVQbBg9Ls9TE TSs2b7400Loxk7cEtn7ZYrnlUwFAGxlQktKfaENt/zA8ucDbmbfwaVUVuhwVoTqx TSdTkNTAQ4wab23LMBjUZt0NgEv8k3jEc9Bzxrnd8tgpcz6MT7gEWVjBAvXfR89Z OtFUjGmOEXVl5oJ0Wh6pMbDz2BTS0asp -----END CERTIFICATE-----Generated at Sat Aug 23 20:38:48 2025 by rpki-client