$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft File: XYnzqvmxOgelsmTy3rpk1cUAZRw.mft (raw, json) Hash identifier: 64ELREcQuqLHorIxLhbTmgryvXn45mHtdwwNvnPS1Ds= Subject key identifier: F1:6D:84:0A:67:B2:34:81:B4:F0:FA:50:86:89:C5:18:DF:E0:0B:73 Authority key identifier: 5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C Certificate issuer: /CN=A91D5240/serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Certificate serial: 01F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft Manifest number: 01E8 Signing time: Sat 23 Aug 2025 02:44:57 +0000 Manifest this update: Sat 23 Aug 2025 02:44:56 +0000 Manifest next update: Sat 30 Aug 2025 02:44:56 +0000 Files and hashes: 1: XYnzqvmxOgelsmTy3rpk1cUAZRw.crl (hash: 89SCcMUAIK9OrRjm+Vn1Dn9KBQjb2+L/tlKF9VmZAwk=) 2: 9EA7B7D8A63911ED874E6630C4F9AE02.roa (hash: 6o0EUZvJBerht1y6bzh1g89SRPPeQ5cLEU5AQhJzOAU=) 3: 5DCE1A1AA63C11ED9306165AC4F9AE02.roa (hash: QPGj0eJqXgnGukiRaT/QHSiAaiIAXjZCnZKqvteNQAI=) 4: 9FBA5FCCA63911ED874E6630C4F9AE02.roa (hash: lCV4Wc/C2vG49K6yvqo7KO+pzcjtBqjnxvlmY9cM+oI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:44:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 499 (0x1f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5240, serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Validity Not Before: Aug 23 02:44:56 2025 GMT Not After : Aug 30 02:44:56 2025 GMT Subject: CN=68a92b29-1456 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:4c:74:59:6d:37:5d:1b:92:76:78:84:37:43: 8a:2d:3a:56:65:fe:20:8d:c9:da:76:1c:55:c0:1b: cc:c8:c1:1d:a8:4e:57:a7:82:c4:7c:f4:ae:82:7c: 08:1e:01:15:0e:35:20:a4:50:f5:ac:de:83:37:89: 8d:72:8a:2d:b0:2c:cb:3c:da:bd:13:e3:cb:60:bd: 54:a9:42:9c:1f:9f:5a:7c:9a:ed:8b:ee:76:7b:65: c6:1e:da:3e:74:31:21:bb:1a:c2:52:e1:91:6c:8d: f5:07:df:5e:7a:ca:34:b0:d3:11:4c:15:3b:32:23: f4:fe:00:8c:0b:b0:40:e6:93:a4:72:34:10:ad:f8: d3:84:14:08:97:98:87:c1:cc:c4:91:52:0a:a7:52: 3e:2a:6a:ab:82:d2:a5:8c:f1:f4:9e:9e:b2:b1:9a: 80:f6:49:3e:47:c0:3a:5f:47:c8:7a:b6:ad:cb:b3: 4e:d5:89:39:34:5f:a9:9d:11:e0:a7:e5:42:c9:b7: cf:85:87:15:31:9f:b3:5f:cb:aa:be:0e:1b:c5:6d: d2:a7:b2:09:92:62:85:f5:e2:48:2a:9d:65:a6:0e: 16:f1:24:ce:e5:0b:31:2f:f3:6e:7b:34:d8:f9:95: 5f:e0:2b:d0:2e:3f:88:6d:66:7d:80:8f:dd:05:c1: 62:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:6D:84:0A:67:B2:34:81:B4:F0:FA:50:86:89:C5:18:DF:E0:0B:73 X509v3 Authority Key Identifier: keyid:5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:df:71:4e:fa:b5:13:92:b0:f0:d0:32:5c:73:1b:28:94:09: db:a6:95:28:f3:37:37:61:b6:db:27:a0:e9:2e:b2:51:38:66: 62:8a:4d:0c:5e:6b:34:41:fc:66:70:93:98:17:a1:4f:4e:79: e7:f5:91:fe:2b:06:99:0f:3f:bb:8e:62:c2:66:26:ae:73:48: 6d:84:bf:d7:6a:82:6e:20:4c:20:a3:2b:5f:3c:7f:ca:90:14: c1:00:9e:95:4d:01:3e:e3:09:51:4b:23:02:07:2c:d3:18:91: af:55:02:40:cf:79:c5:4d:36:91:08:54:51:fd:40:2e:e0:7a: 8d:3b:3f:16:d3:fa:8e:8f:9a:01:53:a0:b6:5b:1a:ed:a0:e5: 5e:1b:fc:a9:b8:27:6c:df:ae:4e:74:34:df:7f:b7:81:b8:5f: a6:af:47:c9:0a:51:80:90:fd:e2:2f:79:e4:e4:dd:e8:b2:6c: 06:2b:e3:25:ff:72:28:46:3f:12:f6:b6:92:25:12:9f:c6:9f: c3:1f:04:88:fd:1a:e4:18:c1:d4:9e:33:80:6b:e2:18:2e:11: ee:12:70:b1:bc:d6:4e:1d:64:f8:56:cf:51:1e:44:66:89:6a: 9e:f7:d4:11:a1:54:5a:a4:29:62:f5:e8:be:be:bb:d9:0f:11: 88:61:7b:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUyNDAxMTAvBgNVBAUTKDVEODlGM0FBRjlCMTNBMDdBNUIyNjRGMkRFQkE2NEQ1 QzUwMDY1MUMwHhcNMjUwODIzMDI0NDU2WhcNMjUwODMwMDI0NDU2WjAYMRYwFAYD VQQDEw02OGE5MmIyOS0xNDU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAskx0WW03XRuSdniEN0OKLTpWZf4gjcnadhxVwBvMyMEdqE5Xp4LEfPSugnwI HgEVDjUgpFD1rN6DN4mNcootsCzLPNq9E+PLYL1UqUKcH59afJrti+52e2XGHto+ dDEhuxrCUuGRbI31B99eeso0sNMRTBU7MiP0/gCMC7BA5pOkcjQQrfjThBQIl5iH wczEkVIKp1I+KmqrgtKljPH0np6ysZqA9kk+R8A6X0fIeraty7NO1Yk5NF+pnRHg p+VCybfPhYcVMZ+zX8uqvg4bxW3Sp7IJkmKF9eJIKp1lpg4W8STO5QsxL/NuezTY +ZVf4CvQLj+IbWZ9gI/dBcFiEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPFthApn sjSBtPD6UIaJxRjf4AtzMB8GA1UdIwQYMBaAFF2J86r5sToHpbJk8t66ZNXFAGUc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTI0MC8yN0RERTdEODlC N0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9nZWxzbVR5M3JwazFjVUFa UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hZbnpxdm14T2dlbHNtVHkzcnBrMWNVQVpSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTI0MC8yN0RERTdEODlCN0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9n ZWxzbVR5M3JwazFjVUFaUncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB533FO+rUTkrDw0DJccxsolAnbppUo8zc3YbbbJ6DpLrJROGZiik0M Xms0QfxmcJOYF6FPTnnn9ZH+KwaZDz+7jmLCZiauc0hthL/XaoJuIEwgoytfPH/K kBTBAJ6VTQE+4wlRSyMCByzTGJGvVQJAz3nFTTaRCFRR/UAu4HqNOz8W0/qOj5oB U6C2WxrtoOVeG/ypuCds365OdDTff7eBuF+mr0fJClGAkP3iL3nk5N3osmwGK+Ml /3IoRj8S9raSJRKfxp/DHwSI/RrkGMHUnjOAa+IYLhHuEnCxvNZOHWT4Vs9RHkRm iWqe99QRoVRapCli9ei+vrvZDxGIYXti -----END CERTIFICATE-----Generated at Sat Aug 23 21:35:37 2025 by rpki-client