$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft File: X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft (raw, json) Hash identifier: W34YElUgkkvOLx4SIG3uwZtIIyUbN6tcS7hPp8pTHkk= Subject key identifier: DB:47:83:88:D7:82:CD:C0:F7:E2:FA:EA:3F:0B:2C:49:92:BB:E5:7F Authority key identifier: 5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D Certificate issuer: /CN=A91DF856/serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Certificate serial: 42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft Manifest number: 41 Signing time: Sat 23 Aug 2025 07:41:51 +0000 Manifest this update: Sat 23 Aug 2025 07:41:51 +0000 Manifest next update: Sat 30 Aug 2025 07:41:51 +0000 Files and hashes: 1: X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl (hash: QH606f7aJ5aNhMyMqq3bjlfvz/wabBlIOl0aOdRRJ9s=) 2: B245BA601C4311F08254DE40C4F9AE02.roa (hash: cR1hA1Kx4PPiBeW49KPuxZm4E1WoNdgwAMLfYPZP980=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:41:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF856, serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Validity Not Before: Aug 23 07:41:51 2025 GMT Not After : Aug 30 07:41:51 2025 GMT Subject: CN=68a970bf-17e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:37:37:e5:dc:97:25:5f:a7:6b:38:d4:1a:b0: e1:e1:a5:a2:09:ff:06:79:01:c6:53:2f:02:8a:36: 57:a5:04:53:32:04:c5:1d:15:1d:32:3a:95:49:cb: ef:82:a6:74:0d:b8:fc:79:a5:be:86:18:c4:bf:20: 20:66:0a:b6:38:ea:11:1c:49:26:a6:30:32:13:af: f7:57:14:d0:4d:4a:9f:95:72:9d:6d:fa:83:4b:c0: 39:6c:6a:a5:3b:84:f6:9e:ec:41:b4:2c:41:d3:c1: 3a:fe:8d:09:6b:fb:3d:bc:d2:f6:2f:b4:a6:f1:4f: f0:c2:b4:0d:a8:de:43:07:63:3c:2c:73:24:d7:88: 9e:7c:f3:d8:46:fc:58:03:ba:25:73:a3:b0:58:8a: dc:26:63:d0:ca:cb:4c:11:c3:95:12:a4:29:34:2f: 9e:d6:58:ad:f5:ba:78:80:42:99:89:b3:34:df:35: 3d:5c:6e:89:ef:0a:15:85:c0:f0:54:73:36:28:e3: 1e:e3:54:f0:4e:f3:c0:e5:f3:0a:7e:c7:9b:18:94: cd:9b:70:f4:70:a5:5a:93:79:43:e6:e2:41:4c:91: 7b:d5:17:87:2d:f8:b3:30:24:b7:cc:49:81:0e:08: 17:6e:7b:77:15:ee:7f:cc:fa:f5:58:45:75:a3:9b: e8:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:47:83:88:D7:82:CD:C0:F7:E2:FA:EA:3F:0B:2C:49:92:BB:E5:7F X509v3 Authority Key Identifier: keyid:5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:af:3d:cc:47:1b:05:25:65:d1:62:8f:d3:f2:6f:38:e0:02: f8:3c:22:e5:7e:ee:90:6f:73:fe:60:0c:ae:52:5b:7c:4b:30: 3d:c3:57:12:1e:db:8d:ae:c9:84:4c:86:7a:b2:b2:57:16:95: 30:de:ba:f3:a5:ec:90:03:20:bf:44:c8:6b:c0:7c:3f:9c:8e: 43:15:14:59:c6:f5:ed:b7:8d:6c:cb:cc:af:07:e3:99:5e:40: 42:d9:9d:b9:1d:10:3d:12:41:37:6d:61:3a:99:ae:d0:66:29: f5:7b:81:67:a6:73:6a:27:db:9e:63:89:1b:c5:e0:79:78:8a: 03:b2:b0:1b:4a:b4:d6:f0:a2:26:50:df:6f:01:60:37:e0:97: 4b:3a:5e:e3:14:9b:79:27:21:d2:34:9c:a6:33:cf:16:34:a6: cb:b3:7f:7c:b5:e6:e5:41:e3:f3:fa:50:a2:c3:ac:e3:53:6d: 47:41:c4:a8:85:12:af:32:cd:7d:32:16:13:bb:ce:24:15:96: 08:af:88:e8:06:03:65:f3:d1:02:4a:06:66:b7:d6:5e:d2:de: 93:98:0e:ad:ec:87:a3:b9:b9:8e:d7:b0:34:31:fc:b9:85:b6: 90:7d:75:26:6e:f7:6d:49:5c:54:e1:90:fa:da:4c:96:f5:72: 1b:0c:56:c2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE Rjg1NjExMC8GA1UEBRMoNUY2OTkxODZBMkVCQ0Q0NUIxRkY2QTBBNEFGNjA2MDZG M0IzRDA4RDAeFw0yNTA4MjMwNzQxNTFaFw0yNTA4MzAwNzQxNTFaMBgxFjAUBgNV BAMTDTY4YTk3MGJmLTE3ZTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCcNzfl3JclX6drONQasOHhpaIJ/wZ5AcZTLwKKNlelBFMyBMUdFR0yOpVJy++C pnQNuPx5pb6GGMS/ICBmCrY46hEcSSamMDITr/dXFNBNSp+Vcp1t+oNLwDlsaqU7 hPae7EG0LEHTwTr+jQlr+z280vYvtKbxT/DCtA2o3kMHYzwscyTXiJ5889hG/FgD uiVzo7BYitwmY9DKy0wRw5USpCk0L57WWK31uniAQpmJszTfNT1cbonvChWFwPBU czYo4x7jVPBO88Dl8wp+x5sYlM2bcPRwpVqTeUPm4kFMkXvVF4ct+LMwJLfMSYEO CBdue3cV7n/M+vVYRXWjm+jTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU20eDiNeC zcD34vrqPwssSZK75X8wHwYDVR0jBBgwFoAUX2mRhqLrzUWx/2oKSvYGBvOz0I0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURGODU2L0VGRjJBMEEwMUM0 MTExRjBBOTgyMUYzRUM0RjlBRTAyL1gybVJocUxyelVXeF8yb0tTdllHQnZPejBJ MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWDJtUmhxTHJ6VVd4XzJvS1N2WUdCdk96MEkwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURG ODU2L0VGRjJBMEEwMUM0MTExRjBBOTgyMUYzRUM0RjlBRTAyL1gybVJocUxyelVX eF8yb0tTdllHQnZPejBJMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEOvPcxHGwUlZdFij9PybzjgAvg8IuV+7pBvc/5gDK5SW3xLMD3DVxIe 242uyYRMhnqyslcWlTDeuvOl7JADIL9EyGvAfD+cjkMVFFnG9e23jWzLzK8H45le QELZnbkdED0SQTdtYTqZrtBmKfV7gWemc2on255jiRvF4Hl4igOysBtKtNbwoiZQ 328BYDfgl0s6XuMUm3knIdI0nKYzzxY0psuzf3y15uVB4/P6UKLDrONTbUdBxKiF Eq8yzX0yFhO7ziQVlgiviOgGA2Xz0QJKBma31l7S3pOYDq3sh6O5uY7XsDQx/LmF tpB9dSZu921JXFThkPraTJb1chsMVsI= -----END CERTIFICATE-----Generated at Sun Aug 24 03:05:17 2025 by rpki-client