$ rpki-client -vvf rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft File: XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft (raw, json) Hash identifier: BYn66oJ0VndcrR9xliBXfUMvloi5XWRnZrhGDS4Rg2g= Subject key identifier: 4A:59:37:CE:A0:71:45:B7:69:8A:8E:FA:68:8C:91:32:A5:CD:9A:FD Authority key identifier: 5C:F5:5B:88:A6:69:DC:7E:82:11:5F:80:60:69:F3:C9:3C:E6:5C:B5 Certificate issuer: /CN=A91D318A/serialNumber=5CF55B88A669DC7E82115F806069F3C93CE65CB5 Certificate serial: 0146 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPVbiKZp3H6CEV-AYGnzyTzmXLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft Manifest number: 0146 Signing time: Sat 23 Aug 2025 04:23:49 +0000 Manifest this update: Sat 23 Aug 2025 04:23:49 +0000 Manifest next update: Sat 30 Aug 2025 04:23:49 +0000 Files and hashes: 1: XPVbiKZp3H6CEV-AYGnzyTzmXLU.crl (hash: E0s0BZKZ7JwWI1mQw9fs2e2PrHcTrLpnvIjvpcv99gc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.crl rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPVbiKZp3H6CEV-AYGnzyTzmXLU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:23:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 326 (0x146) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D318A, serialNumber=5CF55B88A669DC7E82115F806069F3C93CE65CB5 Validity Not Before: Aug 23 04:23:49 2025 GMT Not After : Aug 30 04:23:49 2025 GMT Subject: CN=68a94255-ae3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:8e:d4:88:9a:63:1b:38:db:2a:e2:c2:5a:06: e7:66:81:4f:21:8e:eb:70:ba:7a:1a:21:4d:a6:bd: e8:c9:10:5b:22:ba:03:e1:ec:3f:3f:66:7f:17:92: f0:8e:74:fa:2b:b4:d1:35:97:de:4e:41:88:e6:86: b7:a2:1d:1e:b5:2c:4d:d5:8f:a8:b4:b6:0c:1a:7e: ca:60:1a:28:d0:8b:88:f8:db:ec:7b:cb:22:31:9c: eb:56:40:e0:19:c6:c9:7a:98:37:8c:c7:b4:f3:a6: d6:16:ef:42:d5:e2:c9:fc:32:4e:f8:ce:f7:27:80: 4d:2d:9d:ee:60:48:2a:a1:75:f3:42:d5:c2:4c:09: 04:30:fb:01:08:6a:3e:35:98:cf:de:3c:1d:59:b3: 93:66:4c:1e:50:67:98:48:b0:d4:cb:9c:c8:5d:13: 63:3d:31:99:22:d2:1e:9c:bc:9a:19:fb:1c:e9:29: 74:fe:d8:1f:41:02:6b:8e:43:de:32:3e:4c:28:de: 9c:fc:6d:3c:75:a4:96:58:f4:3d:69:6f:ad:ac:35: 80:0d:14:7b:09:59:8c:c5:3c:23:b3:55:e1:5d:fb: b5:0b:8e:2b:52:42:e8:b2:9c:53:27:75:b7:4a:ad: 46:bb:1c:a2:15:09:60:bc:84:ea:6c:6b:86:f3:12: 84:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:59:37:CE:A0:71:45:B7:69:8A:8E:FA:68:8C:91:32:A5:CD:9A:FD X509v3 Authority Key Identifier: keyid:5C:F5:5B:88:A6:69:DC:7E:82:11:5F:80:60:69:F3:C9:3C:E6:5C:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPVbiKZp3H6CEV-AYGnzyTzmXLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:b0:f4:1e:58:65:67:1d:aa:d0:0e:a9:a0:32:9e:ba:71:31: f4:24:8a:14:db:27:66:1f:99:fe:01:29:95:e7:c9:fa:b9:e4: 31:39:d6:9e:bd:bc:e5:fb:da:7a:e2:09:38:fc:16:f1:55:23: 56:9c:79:c8:d0:77:b1:0d:d2:50:30:f8:14:71:91:4f:1e:20: ad:48:b9:8e:c0:a0:30:49:43:51:dd:98:bd:10:23:0e:f1:89: 96:ab:7b:b9:2e:1c:98:02:5c:49:87:9d:f5:0e:97:6c:4a:05: 62:a0:db:67:37:68:3a:89:a6:8d:f1:b6:dc:d5:cc:5e:fb:09: e3:e9:0c:b2:61:70:d5:5b:67:ee:a6:3a:92:be:c9:41:4e:7d: 59:e2:79:40:ac:a0:9f:53:d8:43:8c:26:da:a7:41:05:93:ae: 4f:56:f9:e4:66:a4:d9:ea:37:a3:69:ee:9d:54:bc:60:cf:8c: 0b:cb:3e:8a:56:37:c8:4c:cf:dd:88:12:98:fc:7f:ef:92:35: 13:8f:1b:aa:6d:d9:6e:2d:ff:95:09:fa:83:5b:d3:76:00:db: 72:61:8d:46:13:0f:4c:d7:c2:60:2c:95:05:41:d8:0c:4d:82: 1b:71:8e:81:11:3d:7f:ba:c0:19:9a:10:a5:c3:d8:d8:8a:b4: 39:44:1f:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxOEExMTAvBgNVBAUTKDVDRjU1Qjg4QTY2OURDN0U4MjExNUY4MDYwNjlGM0M5 M0NFNjVDQjUwHhcNMjUwODIzMDQyMzQ5WhcNMjUwODMwMDQyMzQ5WjAYMRYwFAYD VQQDEw02OGE5NDI1NS1hZTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzo7UiJpjGzjbKuLCWgbnZoFPIY7rcLp6GiFNpr3oyRBbIroD4ew/P2Z/F5Lw jnT6K7TRNZfeTkGI5oa3oh0etSxN1Y+otLYMGn7KYBoo0IuI+Nvse8siMZzrVkDg GcbJepg3jMe086bWFu9C1eLJ/DJO+M73J4BNLZ3uYEgqoXXzQtXCTAkEMPsBCGo+ NZjP3jwdWbOTZkweUGeYSLDUy5zIXRNjPTGZItIenLyaGfsc6Sl0/tgfQQJrjkPe Mj5MKN6c/G08daSWWPQ9aW+trDWADRR7CVmMxTwjs1XhXfu1C44rUkLospxTJ3W3 Sq1GuxyiFQlgvITqbGuG8xKElwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEpZN86g cUW3aYqO+miMkTKlzZr9MB8GA1UdIwQYMBaAFFz1W4imadx+ghFfgGBp88k85ly1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzE4QS9GNUI1Q0E4MDg3 RTYxMUVFOTdFNkM3NDZDNEY5QUUwMi9YUFZiaUtacDNINkNFVi1BWUduenlUem1Y TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hQVmJpS1pwM0g2Q0VWLUFZR256eVR6bVhMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzE4QS9GNUI1Q0E4MDg3RTYxMUVFOTdFNkM3NDZDNEY5QUUwMi9YUFZiaUtacDNI NkNFVi1BWUduenlUem1YTFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFsPQeWGVnHarQDqmgMp66cTH0JIoU2ydmH5n+ASmV58n6ueQxOdae vbzl+9p64gk4/BbxVSNWnHnI0HexDdJQMPgUcZFPHiCtSLmOwKAwSUNR3Zi9ECMO 8YmWq3u5LhyYAlxJh531DpdsSgVioNtnN2g6iaaN8bbc1cxe+wnj6QyyYXDVW2fu pjqSvslBTn1Z4nlArKCfU9hDjCbap0EFk65PVvnkZqTZ6jejae6dVLxgz4wLyz6K VjfITM/diBKY/H/vkjUTjxuqbdluLf+VCfqDW9N2ANtyYY1GEw9M18JgLJUFQdgM TYIbcY6BET1/usAZmhClw9jYirQ5RB+l -----END CERTIFICATE-----Generated at Sun Aug 24 03:12:20 2025 by rpki-client