$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft File: -XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft (raw, json) Hash identifier: 54iYlq7iC/m/rWDfAUPdS41m5x8bASsjz3VseicH8kI= Subject key identifier: 5C:AC:BA:37:FB:FF:87:7B:FA:4A:9F:EF:43:07:6B:28:8F:81:14:7F Authority key identifier: F9:72:E7:5E:3D:03:E5:CE:19:01:93:0C:43:D1:6D:C4:A8:9C:47:92 Certificate issuer: /CN=A91C9484/serialNumber=F972E75E3D03E5CE1901930C43D16DC4A89C4792 Certificate serial: 34E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft Manifest number: 34CF Signing time: Fri 22 Aug 2025 14:48:25 +0000 Manifest this update: Fri 22 Aug 2025 14:48:24 +0000 Manifest next update: Fri 29 Aug 2025 14:48:24 +0000 Files and hashes: 1: -XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl (hash: 50ViwrsLq55OVYBFJB7VlN2RN/C+TYYNXTcslmARKiQ=) 2: 49036D2CB0D711E58B185E0FC4F9AE02.roa (hash: AsLmLNpdLhba6hfcYMLpd0sVqrUh2auGXL+sqK0hCjo=) 3: FFC89DF8CECD11EEA4AA6D44C4F9AE02.roa (hash: LT0aNSmVv5vvmR7dpu4yqP0BpA8hfoKsmy5XfMM5RqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:48:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13542 (0x34e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9484, serialNumber=F972E75E3D03E5CE1901930C43D16DC4A89C4792 Validity Not Before: Aug 22 14:48:24 2025 GMT Not After : Aug 29 14:48:24 2025 GMT Subject: CN=68a88338-7f69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:6f:dc:df:90:a5:be:a2:e0:44:0d:14:a5:94: 83:eb:b9:88:6a:69:71:d0:e9:50:15:37:e6:73:4c: f9:ff:cd:e7:6c:36:f1:a1:70:53:26:eb:e8:00:fe: 7a:af:ec:0e:79:41:51:6b:9d:73:7a:bc:e7:52:3c: 22:8f:cc:b5:d7:2b:6a:c3:4e:7d:91:f8:a3:af:05: 35:de:1e:08:07:89:e4:bc:34:57:11:53:15:85:48: 99:26:90:92:27:f7:9e:32:97:bd:25:40:6f:6e:b4: 0e:3d:73:43:86:7e:06:cb:6f:9f:11:1a:4b:1a:9b: 63:cf:d1:0c:4d:10:d0:4b:5b:2e:21:ed:7f:fb:64: 80:91:2c:34:38:f6:95:2c:49:2d:29:86:b2:16:a0: 6b:74:07:60:ac:c3:9f:99:f6:9f:1c:34:cc:13:94: 05:04:ba:dd:89:25:5b:a1:a8:94:0f:6a:9b:71:03: b6:e8:00:da:a4:a9:df:9b:73:74:40:43:03:2b:56: d6:17:a2:8f:bf:a7:8c:f9:a0:04:04:58:2e:51:0c: a5:ac:c0:79:28:5e:d3:6d:55:60:96:a5:68:55:95: 0f:94:68:38:71:9f:ed:9f:24:18:e3:a9:d6:34:2f: 1c:71:f0:ac:93:45:e6:29:b5:61:a3:dc:a5:13:3d: 4a:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:AC:BA:37:FB:FF:87:7B:FA:4A:9F:EF:43:07:6B:28:8F:81:14:7F X509v3 Authority Key Identifier: keyid:F9:72:E7:5E:3D:03:E5:CE:19:01:93:0C:43:D1:6D:C4:A8:9C:47:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:36:58:19:07:03:4c:65:9d:d6:98:a5:aa:af:31:0a:1c:fc: 00:d6:e7:89:77:86:8b:af:8e:f1:fd:e6:0a:05:44:44:8a:00: a0:8c:d7:05:17:ca:21:85:c0:b8:ad:69:f4:b3:da:e9:b8:89: 09:bd:98:c6:cb:ed:dc:03:b8:53:c4:64:bc:6f:fc:4f:ee:87: 5f:13:5c:e7:c1:fa:b4:56:99:a9:c7:10:c4:45:29:04:a0:5a: a1:45:ea:cf:f1:35:0f:7c:18:3e:9b:f1:00:3e:3e:fb:d5:32: 15:29:2b:6d:d2:2e:8e:c5:a5:8f:66:b9:5e:0c:bd:e1:ae:ab: f6:66:c4:65:37:63:46:1f:10:86:e1:62:c4:ee:57:80:18:ca: 50:08:bb:9b:b6:12:be:b0:0a:4f:8b:4e:c0:cd:b7:79:4a:18: b3:12:12:b6:97:bc:3a:e6:f5:d9:30:2b:b0:9b:de:69:4d:56: 65:75:7f:7c:b7:ee:da:96:9d:2d:b0:b6:29:bf:af:e6:b4:7e: af:f9:3c:9f:58:c5:0a:97:cf:7c:4a:69:af:2d:8b:36:23:28: 86:de:b2:a1:f9:ee:f7:9d:b0:3d:bd:1a:0e:bc:d9:9f:59:74: 60:ff:3a:c9:66:68:dc:82:d0:35:a1:ae:25:af:93:23:de:2d: d8:dc:08:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk0ODQxMTAvBgNVBAUTKEY5NzJFNzVFM0QwM0U1Q0UxOTAxOTMwQzQzRDE2REM0 QTg5QzQ3OTIwHhcNMjUwODIyMTQ0ODI0WhcNMjUwODI5MTQ0ODI0WjAYMRYwFAYD VQQDEw02OGE4ODMzOC03ZjY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwW/c35ClvqLgRA0UpZSD67mIamlx0OlQFTfmc0z5/83nbDbxoXBTJuvoAP56 r+wOeUFRa51zerznUjwij8y11ytqw059kfijrwU13h4IB4nkvDRXEVMVhUiZJpCS J/eeMpe9JUBvbrQOPXNDhn4Gy2+fERpLGptjz9EMTRDQS1suIe1/+2SAkSw0OPaV LEktKYayFqBrdAdgrMOfmfafHDTME5QFBLrdiSVboaiUD2qbcQO26ADapKnfm3N0 QEMDK1bWF6KPv6eM+aAEBFguUQylrMB5KF7TbVVglqVoVZUPlGg4cZ/tnyQY46nW NC8ccfCsk0XmKbVho9ylEz1KmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFysujf7 /4d7+kqf70MHayiPgRR/MB8GA1UdIwQYMBaAFPly5149A+XOGQGTDEPRbcSonEeS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTQ4NC82RkYwRERFMDFE OTQxMUUyOURFQ0I1RjgwOEIwMkNEMi8tWExuWGowRDVjNFpBWk1NUTlGdHhLaWNS NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1YTG5YajBENWM0WkFaTU1ROUZ0eEtpY1I1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTQ4NC82RkYwRERFMDFEOTQxMUUyOURFQ0I1RjgwOEIwMkNEMi8tWExuWGowRDVj NFpBWk1NUTlGdHhLaWNSNUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfNlgZBwNMZZ3WmKWqrzEKHPwA1ueJd4aLr47x/eYKBUREigCgjNcF F8ohhcC4rWn0s9rpuIkJvZjGy+3cA7hTxGS8b/xP7odfE1znwfq0VpmpxxDERSkE oFqhRerP8TUPfBg+m/EAPj771TIVKStt0i6OxaWPZrleDL3hrqv2ZsRlN2NGHxCG 4WLE7leAGMpQCLubthK+sApPi07Azbd5ShizEhK2l7w65vXZMCuwm95pTVZldX98 t+7alp0tsLYpv6/mtH6v+TyfWMUKl898SmmvLYs2IyiG3rKh+e73nbA9vRoOvNmf WXRg/zrJZmjcgtA1oa4lr5Mj3i3Y3Agd -----END CERTIFICATE-----Generated at Sat Aug 23 19:25:53 2025 by rpki-client