$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft File: XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft (raw, json) Hash identifier: OvlQBZdNX0b/2JJZ520/wrDBmK+/b0WVSi10jgCiQ7c= Subject key identifier: 8F:68:E6:0E:AF:52:10:06:7D:D1:9A:19:ED:21:A8:A1:41:39:F9:49 Authority key identifier: 5E:3C:F0:25:1D:8A:60:06:B8:28:5B:D0:94:9F:CD:9B:A3:F9:EB:B8 Certificate issuer: /CN=A91C9561/serialNumber=5E3CF0251D8A6006B8285BD0949FCD9BA3F9EBB8 Certificate serial: 0321 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft Manifest number: 0320 Signing time: Sat 23 Aug 2025 01:22:51 +0000 Manifest this update: Sat 23 Aug 2025 01:22:50 +0000 Manifest next update: Sat 30 Aug 2025 01:22:50 +0000 Files and hashes: 1: XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl (hash: u+kh+4g2WMz9Fo4/eL4qQNV0tHWUejpVNiB/daNx17Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:22:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 801 (0x321) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9561, serialNumber=5E3CF0251D8A6006B8285BD0949FCD9BA3F9EBB8 Validity Not Before: Aug 23 01:22:50 2025 GMT Not After : Aug 30 01:22:50 2025 GMT Subject: CN=68a917ea-6d4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:42:11:9a:2b:7c:85:68:a3:1d:19:57:5e:b6: 7d:33:b1:ce:cd:10:0a:ec:7a:51:1c:b7:04:c1:5b: 66:08:f6:4f:b5:60:6d:ee:a9:14:36:d6:92:f9:14: 6c:09:2a:1f:d4:ac:1e:95:9e:cd:8c:ab:1b:c9:ca: 22:a2:55:2a:4b:4b:4e:10:06:2f:83:55:d9:be:f5: ab:f6:90:b7:27:d6:fa:43:34:49:34:a5:a3:78:33: 74:a9:64:48:18:fd:2f:b0:af:71:a6:f7:5f:8a:3e: 36:de:ea:3b:53:f1:6b:cc:f7:b3:4a:e8:4c:cf:aa: 33:70:e7:92:a9:c0:ee:81:aa:67:14:3f:1b:31:9e: 6f:2c:0b:58:fa:70:75:f2:e8:2c:aa:98:41:13:7c: ff:e4:6e:b7:17:a3:48:2e:a8:5c:28:23:83:7a:ed: ea:d9:73:16:64:2b:c5:9b:6e:4a:19:b3:03:4b:36: 7e:dc:34:fa:e1:90:d2:29:1c:d0:db:a3:66:2c:dc: 0b:93:f1:51:f9:31:5d:35:35:ce:23:7b:05:91:33: 7f:1a:d7:12:2c:35:71:30:51:ee:f0:10:b2:a9:34: 31:70:f7:33:f8:fe:8e:70:f1:37:60:7f:0c:cd:96: 87:9d:04:46:6c:7f:32:91:a3:82:45:d2:66:27:5d: 00:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:68:E6:0E:AF:52:10:06:7D:D1:9A:19:ED:21:A8:A1:41:39:F9:49 X509v3 Authority Key Identifier: keyid:5E:3C:F0:25:1D:8A:60:06:B8:28:5B:D0:94:9F:CD:9B:A3:F9:EB:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:a3:73:56:6a:f8:ab:d9:ec:8b:dc:a0:63:be:66:b1:fc:5d: d4:50:f8:59:de:09:d8:49:32:38:46:41:d4:d9:41:1a:91:41: 2d:af:22:c2:f6:b8:6a:68:d9:e1:73:6b:da:12:df:2a:fd:e4: e0:52:d4:22:b7:ef:2d:b2:a3:ce:56:45:6c:44:bf:1c:df:90: ad:ab:ec:87:b2:90:d6:cc:6d:7f:fb:34:de:0d:e8:55:15:c8: 93:2c:39:b6:8e:f3:f3:28:2d:7b:7a:0c:4a:de:37:a5:c4:86: 17:9f:8f:b0:96:35:a3:8d:9f:a0:81:31:3f:08:ff:62:ad:c8: a6:d7:e1:80:a2:39:81:50:2a:cd:12:06:8c:43:4b:d0:0f:05: 0c:2f:55:fd:3b:e3:d3:63:24:0e:ca:74:ee:dd:4b:a4:68:db: 54:ee:99:eb:8b:5b:17:8b:03:3c:7a:80:a0:b7:06:57:9a:b9: f9:82:60:cc:b6:ee:7a:94:22:f3:6d:31:7e:b9:a7:43:15:60: e4:28:86:9f:b2:ca:9a:d4:77:bb:0d:64:8e:d0:86:5c:c8:14: 48:12:de:00:d0:21:07:a8:74:8a:f0:cd:80:f0:bb:25:ea:53: 3f:82:05:94:5e:24:6f:fe:39:8f:53:74:eb:e0:de:14:cb:de: 87:cf:0f:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAyEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk1NjExMTAvBgNVBAUTKDVFM0NGMDI1MUQ4QTYwMDZCODI4NUJEMDk0OUZDRDlC QTNGOUVCQjgwHhcNMjUwODIzMDEyMjUwWhcNMjUwODMwMDEyMjUwWjAYMRYwFAYD VQQDEw02OGE5MTdlYS02ZDRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnkIRmit8hWijHRlXXrZ9M7HOzRAK7HpRHLcEwVtmCPZPtWBt7qkUNtaS+RRs CSof1KwelZ7NjKsbycoiolUqS0tOEAYvg1XZvvWr9pC3J9b6QzRJNKWjeDN0qWRI GP0vsK9xpvdfij423uo7U/FrzPezSuhMz6ozcOeSqcDugapnFD8bMZ5vLAtY+nB1 8ugsqphBE3z/5G63F6NILqhcKCODeu3q2XMWZCvFm25KGbMDSzZ+3DT64ZDSKRzQ 26NmLNwLk/FR+TFdNTXOI3sFkTN/GtcSLDVxMFHu8BCyqTQxcPcz+P6OcPE3YH8M zZaHnQRGbH8ykaOCRdJmJ10AfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI9o5g6v UhAGfdGaGe0hqKFBOflJMB8GA1UdIwQYMBaAFF488CUdimAGuChb0JSfzZuj+eu4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTU2MS9DOUE4REZEQURB NjkxMUVDOUM4MTUzNThDNEY5QUUwMi9Yanp3SlIyS1lBYTRLRnZRbEpfTm02UDU2 N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hqendKUjJLWUFhNEtGdlFsSl9ObTZQNTY3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTU2MS9DOUE4REZEQURBNjkxMUVDOUM4MTUzNThDNEY5QUUwMi9Yanp3SlIyS1lB YTRLRnZRbEpfTm02UDU2N2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4o3NWavir2eyL3KBjvmax/F3UUPhZ3gnYSTI4RkHU2UEakUEtryLC 9rhqaNnhc2vaEt8q/eTgUtQit+8tsqPOVkVsRL8c35Ctq+yHspDWzG1/+zTeDehV FciTLDm2jvPzKC17egxK3jelxIYXn4+wljWjjZ+ggTE/CP9ircim1+GAojmBUCrN EgaMQ0vQDwUML1X9O+PTYyQOynTu3UukaNtU7pnri1sXiwM8eoCgtwZXmrn5gmDM tu56lCLzbTF+uadDFWDkKIafssqa1He7DWSO0IZcyBRIEt4A0CEHqHSK8M2A8Lsl 6lM/ggWUXiRv/jmPU3Tr4N4Uy96Hzw+h -----END CERTIFICATE-----Generated at Sat Aug 23 16:53:28 2025 by rpki-client