$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft File: XwBNV-s29CZy5m8wBfZGm2KJFxs.mft (raw, json) Hash identifier: NRjexLFA7pTxms0rWLYVeawJNNGUTv5FI6cKLZjq8fk= Subject key identifier: 2B:1F:67:94:F7:CC:F2:E3:A3:FA:3C:86:F9:26:65:75:C9:B5:F8:3F Authority key identifier: 5F:00:4D:57:EB:36:F4:26:72:E6:6F:30:05:F6:46:9B:62:89:17:1B Certificate issuer: /CN=A91C1025/serialNumber=5F004D57EB36F42672E66F3005F6469B6289171B Certificate serial: 82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft Manifest number: 7F Signing time: Thu 03 Jul 2025 06:57:56 +0000 Manifest this update: Thu 03 Jul 2025 06:57:56 +0000 Manifest next update: Thu 10 Jul 2025 06:57:56 +0000 Files and hashes: 1: XwBNV-s29CZy5m8wBfZGm2KJFxs.crl (hash: MjagrL1PqTenewbSit/MFkg4zLT/5Sem/wNk0sdKn70=) 2: 3D04EA589D9211EF8083B245C4F9AE02.roa (hash: Iqqm3XnZxAwHyLfxm5fiQ2PL3nIt3cAVFXF23TPN80A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.crl rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 130 (0x82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1025, serialNumber=5F004D57EB36F42672E66F3005F6469B6289171B Validity Not Before: Jul 3 06:57:56 2025 GMT Not After : Jul 10 06:57:56 2025 GMT Subject: CN=686629f4-cba7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:57:f0:6d:7a:d4:7f:c4:84:13:14:38:c1:a6: 90:ff:03:60:f4:70:32:ed:a3:25:38:5f:e8:bd:c4: 1a:6d:7e:52:84:a7:70:14:6e:29:f1:90:be:a1:18: aa:22:91:1f:a5:19:d8:df:2d:d4:3e:52:a7:81:de: 57:2a:a6:a5:1d:05:4f:a5:b8:05:0b:0f:56:8a:2f: a5:46:df:11:d4:ec:e1:4a:e8:fd:fe:56:83:d9:b0: 58:1e:88:fe:cd:24:04:77:c2:89:86:90:e5:f1:10: 8b:ca:2b:85:42:1d:b0:bf:7b:b0:11:07:4e:88:2f: af:76:a0:bb:10:66:17:15:59:1f:12:8f:43:02:17: 76:fa:e6:40:5d:e1:1a:70:5e:cb:05:42:ee:92:58: 24:97:b5:dc:3d:2e:dd:10:09:93:59:61:7a:71:6f: b0:33:53:04:4f:16:31:63:68:a3:26:56:37:d4:2e: d5:d4:8a:80:82:31:54:b8:5d:92:5b:fb:80:e2:fe: 50:df:0d:45:22:35:76:41:ef:fe:62:f6:48:24:1d: 54:14:75:a5:2a:96:3b:00:9b:4a:3e:f7:0c:c5:ef: 41:05:75:6d:e6:20:ad:b0:52:f9:a4:30:4c:7e:d3: f3:bd:7a:a4:4f:06:e0:db:bc:bb:f4:35:a6:fb:33: 3f:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:1F:67:94:F7:CC:F2:E3:A3:FA:3C:86:F9:26:65:75:C9:B5:F8:3F X509v3 Authority Key Identifier: keyid:5F:00:4D:57:EB:36:F4:26:72:E6:6F:30:05:F6:46:9B:62:89:17:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:2d:28:05:ff:6a:5e:34:9f:fd:53:21:a6:4d:c7:dd:87:76: f7:7e:f2:aa:68:ba:72:7f:85:45:6f:89:bf:bf:9a:d6:aa:a7: 92:be:5b:29:66:e3:78:d0:a3:81:19:99:97:e7:81:c5:e8:b9: 79:09:e1:41:c6:f8:89:f4:81:11:b1:0b:bf:a4:e9:e5:b7:dc: 05:e2:3c:39:bb:ee:ff:22:25:61:67:25:21:0f:00:f8:32:2f: 2e:34:74:85:f0:e0:fb:ad:f0:d1:13:54:eb:81:b5:21:a1:2b: df:1e:11:7d:92:8a:77:65:4f:55:a6:9e:b3:79:83:f8:44:da: 5f:e4:2f:9f:f5:7c:b2:5a:f8:ef:1b:86:ef:1a:18:f8:62:d1: 35:b5:41:57:a3:8c:81:82:d1:b3:e0:57:c2:66:3b:6c:20:ab: 12:ee:1b:fd:80:e1:a1:bc:04:bf:2c:27:c7:6c:bd:38:c8:c6: b4:47:8a:b8:44:8d:39:78:e9:49:b4:47:57:a6:92:6b:c3:0c: f5:26:c5:5d:8b:bc:c3:1b:b1:79:d3:17:9e:83:12:86:46:b6: 0a:fc:6d:95:46:99:26:7c:9f:e5:41:68:ae:d5:79:1d:80:67: 26:08:aa:d3:9e:6d:03:b2:e6:b0:a7:33:6c:20:c9:40:80:9f: 0c:b0:62:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEwMjUxMTAvBgNVBAUTKDVGMDA0RDU3RUIzNkY0MjY3MkU2NkYzMDA1RjY0NjlC NjI4OTE3MUIwHhcNMjUwNzAzMDY1NzU2WhcNMjUwNzEwMDY1NzU2WjAYMRYwFAYD VQQDEw02ODY2MjlmNC1jYmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6lfwbXrUf8SEExQ4waaQ/wNg9HAy7aMlOF/ovcQabX5ShKdwFG4p8ZC+oRiq IpEfpRnY3y3UPlKngd5XKqalHQVPpbgFCw9Wii+lRt8R1OzhSuj9/laD2bBYHoj+ zSQEd8KJhpDl8RCLyiuFQh2wv3uwEQdOiC+vdqC7EGYXFVkfEo9DAhd2+uZAXeEa cF7LBULuklgkl7XcPS7dEAmTWWF6cW+wM1METxYxY2ijJlY31C7V1IqAgjFUuF2S W/uA4v5Q3w1FIjV2Qe/+YvZIJB1UFHWlKpY7AJtKPvcMxe9BBXVt5iCtsFL5pDBM ftPzvXqkTwbg27y79DWm+zM/AwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCsfZ5T3 zPLjo/o8hvkmZXXJtfg/MB8GA1UdIwQYMBaAFF8ATVfrNvQmcuZvMAX2RptiiRcb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTAyNS85NTZGNjYyQzlE ODQxMUVGODE3RTE0MjBDNEY5QUUwMi9Yd0JOVi1zMjlDWnk1bTh3QmZaR20yS0pG eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h3Qk5WLXMyOUNaeTVtOHdCZlpHbTJLSkZ4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTAyNS85NTZGNjYyQzlEODQxMUVGODE3RTE0MjBDNEY5QUUwMi9Yd0JOVi1zMjlD Wnk1bTh3QmZaR20yS0pGeHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBLSgF/2peNJ/9UyGmTcfdh3b3fvKqaLpyf4VFb4m/v5rWqqeSvlsp ZuN40KOBGZmX54HF6Ll5CeFBxviJ9IERsQu/pOnlt9wF4jw5u+7/IiVhZyUhDwD4 Mi8uNHSF8OD7rfDRE1TrgbUhoSvfHhF9kop3ZU9Vpp6zeYP4RNpf5C+f9XyyWvjv G4bvGhj4YtE1tUFXo4yBgtGz4FfCZjtsIKsS7hv9gOGhvAS/LCfHbL04yMa0R4q4 RI05eOlJtEdXppJrwwz1JsVdi7zDG7F50xeegxKGRrYK/G2VRpkmfJ/lQWiu1Xkd gGcmCKrTnm0DsuawpzNsIMlAgJ8MsGLh -----END CERTIFICATE-----Generated at Fri Jul 4 12:04:14 2025 by rpki-client