$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.mft File: Xs7vXyjy82UFPfuM780W4cPehK4.mft (raw, json) Hash identifier: b/LABNFW04USzrPhxWZ23pAXwh5kLYd2PCDeJ3FnHtk= Subject key identifier: 20:2F:21:29:8E:FC:5C:42:72:2A:D6:3D:F0:10:EF:52:F6:1F:AB:0B Authority key identifier: 5E:CE:EF:5F:28:F2:F3:65:05:3D:FB:8C:EF:CD:16:E1:C3:DE:84:AE Certificate issuer: /CN=A91DB8D9/serialNumber=5ECEEF5F28F2F365053DFB8CEFCD16E1C3DE84AE Certificate serial: 03D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xs7vXyjy82UFPfuM780W4cPehK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.mft Manifest number: 03CE Signing time: Sat 23 Aug 2025 00:51:56 +0000 Manifest this update: Sat 23 Aug 2025 00:51:55 +0000 Manifest next update: Sat 30 Aug 2025 00:51:55 +0000 Files and hashes: 1: Xs7vXyjy82UFPfuM780W4cPehK4.crl (hash: Sp0/vlz3mk80wUrvqxLhF3G7ZXsGuZOeoWsBE2AnF/Q=) 2: 728139D62FA311F0A9129814C4F9AE02.roa (hash: guIJtqQN+EFa/f6cWPw4iUlLONR7odnIq46PWDEQXBE=) 3: F31E86967B2311EF93801A72C4F9AE02.roa (hash: Um+5nEX9UGWaeunNGOXHeeYETiEJM95laBvW70lUPDE=) 4: 7E044E58A06B11ECBF29B644C4F9AE02.roa (hash: EglzY5P8gEG+IosP670+janTnu12u5QYgDoCSiDyeR8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.crl rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xs7vXyjy82UFPfuM780W4cPehK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:51:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 983 (0x3d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB8D9, serialNumber=5ECEEF5F28F2F365053DFB8CEFCD16E1C3DE84AE Validity Not Before: Aug 23 00:51:55 2025 GMT Not After : Aug 30 00:51:55 2025 GMT Subject: CN=68a910ab-43d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:07:ce:e2:6d:51:0d:90:69:f4:2c:65:2a:0b: ba:3e:66:5d:cf:b0:87:f3:24:0a:49:bc:a1:11:e5: 1e:f3:82:02:ce:8f:67:11:70:b5:2f:9b:a3:33:6c: 1c:41:2f:82:e7:65:b7:e0:f7:8d:79:7c:2f:47:5a: c3:c7:c7:8d:23:e0:16:1a:38:c9:f0:99:de:29:8e: d5:5e:57:a4:a7:36:96:31:b3:b1:07:33:ca:80:30: bd:66:c3:04:8d:0c:25:69:67:d6:34:6f:4f:8f:52: ae:21:5f:87:40:eb:cd:f2:64:86:b7:2f:bd:3c:ae: a5:c2:43:97:ae:29:47:3a:ca:22:55:32:2e:19:c5: b8:ec:de:ea:ce:7a:16:c1:58:6e:4f:6b:59:2a:27: d5:f0:8d:45:ae:6e:7c:97:08:bb:c0:db:d4:97:6c: 8d:d6:26:a2:6f:9b:8d:e2:45:a6:f7:4e:48:7c:df: 11:1e:8b:80:f8:a5:8f:b6:ff:86:4d:87:31:6f:88: 74:d0:8d:39:3c:cf:f1:4c:ed:52:9e:d5:b3:60:ae: e6:b0:63:f3:21:0f:ad:ec:0b:52:25:18:32:13:43: fd:a0:bf:bd:ce:9a:c9:71:fe:01:ef:e1:6a:5b:8a: 84:72:f1:d2:39:bd:e1:b5:8b:19:36:80:58:90:5a: 64:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:2F:21:29:8E:FC:5C:42:72:2A:D6:3D:F0:10:EF:52:F6:1F:AB:0B X509v3 Authority Key Identifier: keyid:5E:CE:EF:5F:28:F2:F3:65:05:3D:FB:8C:EF:CD:16:E1:C3:DE:84:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xs7vXyjy82UFPfuM780W4cPehK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:bb:32:4d:8c:fb:62:32:8b:ab:3a:4d:90:9f:10:0a:88:2b: 92:93:3b:f3:89:e5:c2:6f:83:5b:14:9b:96:2f:2e:fb:21:0a: 90:75:91:f5:e7:64:0b:e1:a8:e4:81:ad:74:5c:f2:e6:d5:57: 49:f9:04:a0:57:79:dd:bf:6e:b9:31:e9:c9:11:d9:df:18:7b: 5e:e8:a9:d2:9d:87:18:70:e7:ec:c2:60:8f:be:d6:c8:0d:fb: a0:1e:0f:9d:64:7f:26:6a:d2:92:86:0e:75:44:1b:b6:de:60: 81:50:ef:10:ab:44:64:a3:82:d4:22:93:53:c7:79:17:8f:79: 71:ef:c1:d9:27:eb:b0:50:71:dc:a6:d4:14:b5:c3:9b:51:9e: 8a:67:41:47:c9:78:99:93:ca:ca:de:34:11:13:9a:3e:1f:3f: a6:28:f8:0f:66:f8:d2:00:9f:b2:19:7b:58:ee:fd:13:e9:3d: b9:65:f7:81:a8:c6:5e:b9:76:01:d4:e1:32:2a:84:d1:da:91: c3:81:25:7d:48:96:de:45:5a:c7:85:59:61:69:ac:59:80:28: 84:84:e9:27:5d:65:e5:5f:66:3a:93:7c:9c:25:b8:89:48:3c: 29:36:c9:56:77:74:37:76:dc:c9:40:35:4b:29:36:d9:7a:1f: f0:5f:47:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI4RDkxMTAvBgNVBAUTKDVFQ0VFRjVGMjhGMkYzNjUwNTNERkI4Q0VGQ0QxNkUx QzNERTg0QUUwHhcNMjUwODIzMDA1MTU1WhcNMjUwODMwMDA1MTU1WjAYMRYwFAYD VQQDEw02OGE5MTBhYi00M2QxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQfO4m1RDZBp9CxlKgu6PmZdz7CH8yQKSbyhEeUe84ICzo9nEXC1L5ujM2wc QS+C52W34PeNeXwvR1rDx8eNI+AWGjjJ8JneKY7VXlekpzaWMbOxBzPKgDC9ZsME jQwlaWfWNG9Pj1KuIV+HQOvN8mSGty+9PK6lwkOXrilHOsoiVTIuGcW47N7qznoW wVhuT2tZKifV8I1Frm58lwi7wNvUl2yN1iaib5uN4kWm905IfN8RHouA+KWPtv+G TYcxb4h00I05PM/xTO1SntWzYK7msGPzIQ+t7AtSJRgyE0P9oL+9zprJcf4B7+Fq W4qEcvHSOb3htYsZNoBYkFpkUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCAvISmO /FxCcirWPfAQ71L2H6sLMB8GA1UdIwQYMBaAFF7O718o8vNlBT37jO/NFuHD3oSu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjhEOS84QjAwMjM3NjlB MDIxMUVDOEI4MTc3ODVDNEY5QUUwMi9Yczd2WHlqeTgyVUZQZnVNNzgwVzRjUGVo SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hzN3ZYeWp5ODJVRlBmdU03ODBXNGNQZWhLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjhEOS84QjAwMjM3NjlBMDIxMUVDOEI4MTc3ODVDNEY5QUUwMi9Yczd2WHlqeTgy VUZQZnVNNzgwVzRjUGVoSzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzuzJNjPtiMourOk2QnxAKiCuSkzvzieXCb4NbFJuWLy77IQqQdZH1 52QL4ajkga10XPLm1VdJ+QSgV3ndv265MenJEdnfGHte6KnSnYcYcOfswmCPvtbI DfugHg+dZH8matKShg51RBu23mCBUO8Qq0Rko4LUIpNTx3kXj3lx78HZJ+uwUHHc ptQUtcObUZ6KZ0FHyXiZk8rK3jQRE5o+Hz+mKPgPZvjSAJ+yGXtY7v0T6T25ZfeB qMZeuXYB1OEyKoTR2pHDgSV9SJbeRVrHhVlhaaxZgCiEhOknXWXlX2Y6k3ycJbiJ SDwpNslWd3Q3dtzJQDVLKTbZeh/wX0fk -----END CERTIFICATE-----Generated at Sat Aug 23 21:37:13 2025 by rpki-client