$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft File: xdQJ-106qXOpUMnDHMMBVfNJP2I.mft (raw, json) Hash identifier: 6nqsIuiX8MulOicYMeugpVbLkzodc+R55mMMEHe2sAE= Subject key identifier: 4A:6C:FD:41:97:58:42:C1:AE:7E:26:BF:14:FD:09:07:83:33:C7:75 Authority key identifier: C5:D4:09:FB:5D:3A:A9:73:A9:50:C9:C3:1C:C3:01:55:F3:49:3F:62 Certificate issuer: /CN=A91D6884/serialNumber=C5D409FB5D3AA973A950C9C31CC30155F3493F62 Certificate serial: 0162 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft Manifest number: 015F Signing time: Sat 23 Aug 2025 04:10:15 +0000 Manifest this update: Sat 23 Aug 2025 04:10:15 +0000 Manifest next update: Sat 30 Aug 2025 04:10:15 +0000 Files and hashes: 1: xdQJ-106qXOpUMnDHMMBVfNJP2I.crl (hash: 2mSpmCewGhfVazgqTjYpenv3wHnPErevj0KjuCG5zu8=) 2: 5CF4C0D4FADD11EE8083D572C4F9AE02.roa (hash: tBK54wCyQ2wcX6ZNsRYGZb85q/LNuJrcbm5n2EF4GsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.crl rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 354 (0x162) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6884, serialNumber=C5D409FB5D3AA973A950C9C31CC30155F3493F62 Validity Not Before: Aug 23 04:10:15 2025 GMT Not After : Aug 30 04:10:15 2025 GMT Subject: CN=68a93f27-3791 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:22:8b:f2:63:0e:fa:84:de:12:3b:9b:30:a9: e2:ab:6c:e8:e1:f5:c0:42:31:89:d4:ec:b2:00:ad: f6:25:f0:34:5a:26:b1:fb:49:60:6d:51:28:93:d4: a9:42:c3:62:ee:c2:e1:76:26:d5:3e:43:5d:cb:ad: b1:54:0e:99:4b:7e:6b:db:2a:c5:b5:d4:6a:38:54: 07:f1:4d:92:ed:b1:19:5c:59:ef:04:58:a1:8e:25: 15:9f:58:cd:78:5d:05:f8:21:ff:87:8f:c5:53:77: 39:5b:e3:70:b9:f9:d7:8d:4a:9e:f3:09:cb:ab:4a: 95:d6:5c:4d:26:d0:e6:aa:0a:40:81:64:da:c2:1c: a5:b5:8c:83:d7:57:fd:39:48:06:1c:f9:b5:f2:10: d0:e1:1a:ca:6d:fe:4b:25:5c:9d:00:4f:39:ff:a0: b0:57:53:99:ee:01:78:de:ca:bc:d7:56:e7:2b:b4: 84:90:6a:6e:a0:4d:b6:08:cd:30:09:ad:29:c7:a4: 36:af:a7:6c:2f:21:a3:42:2d:8e:77:80:4b:67:e4: d6:0a:cf:85:c8:1e:49:1b:b1:2b:8f:8f:77:5d:f1: 43:31:3c:b7:b6:43:1d:4b:e9:a1:65:5f:c2:73:e6: a7:38:50:9e:14:61:ca:e8:5f:66:09:6c:bd:e4:c0: f1:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:6C:FD:41:97:58:42:C1:AE:7E:26:BF:14:FD:09:07:83:33:C7:75 X509v3 Authority Key Identifier: keyid:C5:D4:09:FB:5D:3A:A9:73:A9:50:C9:C3:1C:C3:01:55:F3:49:3F:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:68:ba:9a:0f:df:98:a1:8b:40:fa:b0:28:c1:f4:73:e9:f6: 3a:89:9d:1b:74:53:30:96:6a:cc:68:69:8b:92:31:40:54:9e: bc:18:92:9b:28:d0:3f:88:04:20:a8:fd:4e:f2:81:bd:61:d4: a2:1c:d7:9e:ae:d7:13:70:15:6c:60:63:92:35:8c:3a:34:b4: 00:30:52:9a:b3:de:6b:d2:fe:1b:72:5d:65:c1:4f:4c:74:3e: 4e:c0:29:1b:ad:df:86:0a:af:9c:fa:80:30:51:59:d7:fe:56: c3:60:a0:66:5a:46:40:33:e7:3b:9a:96:ee:da:b6:c2:1f:53: 21:a1:40:42:9c:1f:ab:6f:e1:52:ac:d6:4e:d1:7e:10:a4:03: a2:f6:a6:b4:9a:e2:69:eb:a2:7f:77:ef:7f:75:f3:c2:9b:f8: 53:ae:7c:f0:7c:ef:34:02:e2:1e:b9:2b:27:0e:46:2b:91:96: fe:db:bb:68:ef:3a:a1:cb:f5:8f:eb:09:1d:ea:45:d9:c3:27: ed:c8:b4:86:d0:c7:b4:32:ed:45:53:5a:3c:ba:12:3f:62:8c: 85:63:90:f6:92:13:93:97:26:81:a2:8c:71:19:8d:40:a8:a6: ee:59:48:8d:26:e8:50:79:ab:f3:bb:ca:d8:0d:fd:14:6d:77: 97:91:71:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY4ODQxMTAvBgNVBAUTKEM1RDQwOUZCNUQzQUE5NzNBOTUwQzlDMzFDQzMwMTU1 RjM0OTNGNjIwHhcNMjUwODIzMDQxMDE1WhcNMjUwODMwMDQxMDE1WjAYMRYwFAYD VQQDEw02OGE5M2YyNy0zNzkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwyKL8mMO+oTeEjubMKniq2zo4fXAQjGJ1OyyAK32JfA0Wiax+0lgbVEok9Sp QsNi7sLhdibVPkNdy62xVA6ZS35r2yrFtdRqOFQH8U2S7bEZXFnvBFihjiUVn1jN eF0F+CH/h4/FU3c5W+NwufnXjUqe8wnLq0qV1lxNJtDmqgpAgWTawhyltYyD11f9 OUgGHPm18hDQ4RrKbf5LJVydAE85/6CwV1OZ7gF43sq811bnK7SEkGpuoE22CM0w Ca0px6Q2r6dsLyGjQi2Od4BLZ+TWCs+FyB5JG7Erj493XfFDMTy3tkMdS+mhZV/C c+anOFCeFGHK6F9mCWy95MDx4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEps/UGX WELBrn4mvxT9CQeDM8d1MB8GA1UdIwQYMBaAFMXUCftdOqlzqVDJwxzDAVXzST9i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjg4NC8yQTk1MDI1NjY5 NzUxMUVFQjcwQTU1MEVDNEY5QUUwMi94ZFFKLTEwNnFYT3BVTW5ESE1NQlZmTkpQ MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hkUUotMTA2cVhPcFVNbkRITU1CVmZOSlAySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Njg4NC8yQTk1MDI1NjY5NzUxMUVFQjcwQTU1MEVDNEY5QUUwMi94ZFFKLTEwNnFY T3BVTW5ESE1NQlZmTkpQMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcaLqaD9+YoYtA+rAowfRz6fY6iZ0bdFMwlmrMaGmLkjFAVJ68GJKb KNA/iAQgqP1O8oG9YdSiHNeertcTcBVsYGOSNYw6NLQAMFKas95r0v4bcl1lwU9M dD5OwCkbrd+GCq+c+oAwUVnX/lbDYKBmWkZAM+c7mpbu2rbCH1MhoUBCnB+rb+FS rNZO0X4QpAOi9qa0muJp66J/d+9/dfPCm/hTrnzwfO80AuIeuSsnDkYrkZb+27to 7zqhy/WP6wkd6kXZwyftyLSG0Me0Mu1FU1o8uhI/YoyFY5D2khOTlyaBooxxGY1A qKbuWUiNJuhQeavzu8rYDf0UbXeXkXHz -----END CERTIFICATE-----Generated at Sun Aug 24 00:44:15 2025 by rpki-client