$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6E96/7B9D3DEA385C11EC9C258778C4F9AE02/xVznjEX0hWCLgkNgYAPYCooWzNY.mft File: xVznjEX0hWCLgkNgYAPYCooWzNY.mft (raw, json) Hash identifier: caoTHh/10qQ9Idgi+G2r7A58sORw/kE8FbZphnvWQEE= Subject key identifier: AF:E4:BF:B9:1D:01:DB:75:1B:CA:41:36:D3:EC:E0:B2:D1:39:F9:39 Authority key identifier: C5:5C:E7:8C:45:F4:85:60:8B:82:43:60:60:03:D8:0A:8A:16:CC:D6 Certificate issuer: /CN=A91E6E96/serialNumber=C55CE78C45F485608B8243606003D80A8A16CCD6 Certificate serial: 04C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVznjEX0hWCLgkNgYAPYCooWzNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6E96/7B9D3DEA385C11EC9C258778C4F9AE02/xVznjEX0hWCLgkNgYAPYCooWzNY.mft Manifest number: 04C2 Signing time: Sat 23 Aug 2025 00:04:15 +0000 Manifest this update: Sat 23 Aug 2025 00:04:15 +0000 Manifest next update: Sat 30 Aug 2025 00:04:15 +0000 Files and hashes: 1: xVznjEX0hWCLgkNgYAPYCooWzNY.crl (hash: +qsA6/Rtdt4xzMHihQcGOISzc4ENYY31b/aDS8xC3Uo=) 2: 64DE26F6386011EC83DC2E23C4F9AE02.roa (hash: U5GEFoFbAoED1KEx2xWUb5hktSCjTMeSRDs24OHWcTE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6E96/7B9D3DEA385C11EC9C258778C4F9AE02/xVznjEX0hWCLgkNgYAPYCooWzNY.crl rsync://rpki.apnic.net/member_repository/A91E6E96/7B9D3DEA385C11EC9C258778C4F9AE02/xVznjEX0hWCLgkNgYAPYCooWzNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVznjEX0hWCLgkNgYAPYCooWzNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:04:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1222 (0x4c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6E96, serialNumber=C55CE78C45F485608B8243606003D80A8A16CCD6 Validity Not Before: Aug 23 00:04:15 2025 GMT Not After : Aug 30 00:04:15 2025 GMT Subject: CN=68a9057f-96a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:ed:92:6b:da:fc:fb:9a:12:a2:55:36:cc:d3: 2f:34:03:ad:94:2e:ac:55:1e:86:3c:73:e8:56:d2: 24:2b:5a:d1:bd:11:7b:fd:2b:ff:ae:6b:70:97:5d: 1a:e3:9a:be:2b:db:e3:4b:25:44:0c:25:b6:9f:ea: 8a:06:96:f8:e8:6e:64:8e:c5:56:7f:1a:bf:a3:f8: 36:ec:7a:fb:35:64:1e:93:9d:37:a3:2d:a9:a8:6f: ca:eb:85:9a:3a:4e:12:50:00:b2:5a:39:c2:c9:a8: 6e:17:77:f8:49:97:9e:53:2f:5a:e2:4e:82:ef:8e: eb:54:fd:34:b2:bb:11:48:c0:a1:d8:6c:23:2f:03: 3c:e9:f6:20:18:71:77:38:bb:c0:81:8b:1e:a2:c3: 1c:92:16:85:35:73:8e:98:54:7c:d6:74:61:94:38: 5a:99:2f:26:ab:5f:6e:74:16:b3:64:3d:47:40:03: 64:a4:6c:8f:c7:29:94:f1:fd:fd:c5:38:e1:ba:47: b1:da:a4:26:b6:eb:1e:ff:18:f5:3d:4a:6b:3c:35: 95:a0:b5:a5:d4:dd:4d:6b:ec:9a:fe:62:fc:29:52: 3b:73:06:3a:ac:33:88:39:10:25:a2:98:e6:54:a3: 04:58:42:1c:7b:81:4a:5d:2a:39:34:b4:5b:e3:63: a9:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:E4:BF:B9:1D:01:DB:75:1B:CA:41:36:D3:EC:E0:B2:D1:39:F9:39 X509v3 Authority Key Identifier: keyid:C5:5C:E7:8C:45:F4:85:60:8B:82:43:60:60:03:D8:0A:8A:16:CC:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6E96/7B9D3DEA385C11EC9C258778C4F9AE02/xVznjEX0hWCLgkNgYAPYCooWzNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVznjEX0hWCLgkNgYAPYCooWzNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6E96/7B9D3DEA385C11EC9C258778C4F9AE02/xVznjEX0hWCLgkNgYAPYCooWzNY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:51:d5:f6:ab:76:2f:85:75:0e:a7:96:45:b5:97:48:9a:0f: 02:14:29:02:5f:71:d9:57:76:82:6d:83:2b:14:0d:f0:f2:af: a2:81:e8:fc:f4:5b:d2:1a:07:0f:bd:5c:a1:9b:5d:d3:02:a3: a6:31:67:15:a6:b2:8e:95:5b:ed:a6:dc:4e:ec:a9:12:21:42: 87:e0:52:1e:04:2a:e2:c3:cc:df:bc:6d:34:3e:88:b2:ed:da: 86:c4:ed:82:4c:30:61:f0:44:2a:4a:50:92:f9:78:86:8f:05: 65:52:a6:62:ad:c1:7a:8d:2f:5f:0b:1f:26:19:4a:65:5a:8a: 26:67:f2:a8:74:51:02:d1:c3:2d:50:b5:57:11:c6:0a:3b:fc: 1a:0f:7e:d7:d2:29:fb:9a:2d:9e:ef:d8:fa:b3:86:52:03:ad: 06:d4:eb:68:e0:4c:7d:1d:f4:4f:55:aa:8c:1b:c2:d0:08:52: 33:c4:65:e7:79:3b:2e:b5:d9:7f:ba:20:ff:4a:0c:97:f8:f8: 52:aa:6b:60:d5:f5:52:f8:fd:5b:04:bb:da:b0:75:4c:4f:11: e2:e3:92:8a:83:6b:9d:65:26:a5:7b:b5:5b:a3:ef:62:b8:11: 2e:f5:8b:85:25:e6:9e:2e:ad:78:9a:4e:09:e7:35:ac:30:4c: df:61:44:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZFOTYxMTAvBgNVBAUTKEM1NUNFNzhDNDVGNDg1NjA4QjgyNDM2MDYwMDNEODBB OEExNkNDRDYwHhcNMjUwODIzMDAwNDE1WhcNMjUwODMwMDAwNDE1WjAYMRYwFAYD VQQDEw02OGE5MDU3Zi05NmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8u2Sa9r8+5oSolU2zNMvNAOtlC6sVR6GPHPoVtIkK1rRvRF7/Sv/rmtwl10a 45q+K9vjSyVEDCW2n+qKBpb46G5kjsVWfxq/o/g27Hr7NWQek503oy2pqG/K64Wa Ok4SUACyWjnCyahuF3f4SZeeUy9a4k6C747rVP00srsRSMCh2GwjLwM86fYgGHF3 OLvAgYseosMckhaFNXOOmFR81nRhlDhamS8mq19udBazZD1HQANkpGyPxymU8f39 xTjhukex2qQmtuse/xj1PUprPDWVoLWl1N1Na+ya/mL8KVI7cwY6rDOIORAlopjm VKMEWEIce4FKXSo5NLRb42OpZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK/kv7kd Adt1G8pBNtPs4LLROfk5MB8GA1UdIwQYMBaAFMVc54xF9IVgi4JDYGAD2AqKFszW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkU5Ni83QjlEM0RFQTM4 NUMxMUVDOUMyNTg3NzhDNEY5QUUwMi94VnpuakVYMGhXQ0xna05nWUFQWUNvb1d6 TlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hWem5qRVgwaFdDTGdrTmdZQVBZQ29vV3pOWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkU5Ni83QjlEM0RFQTM4NUMxMUVDOUMyNTg3NzhDNEY5QUUwMi94VnpuakVYMGhX Q0xna05nWUFQWUNvb1d6TlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeUdX2q3YvhXUOp5ZFtZdImg8CFCkCX3HZV3aCbYMrFA3w8q+igej8 9FvSGgcPvVyhm13TAqOmMWcVprKOlVvtptxO7KkSIUKH4FIeBCriw8zfvG00Poiy 7dqGxO2CTDBh8EQqSlCS+XiGjwVlUqZircF6jS9fCx8mGUplWoomZ/KodFEC0cMt ULVXEcYKO/waD37X0in7mi2e79j6s4ZSA60G1Oto4Ex9HfRPVaqMG8LQCFIzxGXn eTsutdl/uiD/SgyX+PhSqmtg1fVS+P1bBLvasHVMTxHi45KKg2udZSale7Vbo+9i uBEu9YuFJeaeLq14mk4J5zWsMEzfYUQ8 -----END CERTIFICATE-----Generated at Sat Aug 23 21:27:39 2025 by rpki-client