$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft File: xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft (raw, json) Hash identifier: Sevp7OcKFYpX1EORW9UHWZhnKPbc1SYJo90LSla+nOo= Subject key identifier: 2B:58:CE:69:BF:70:CF:8B:E4:5E:04:D2:FA:28:FC:9C:D3:68:B0:D8 Authority key identifier: C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED Certificate issuer: /CN=A91EBFAE/serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Certificate serial: 2519 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft Manifest number: 2519 Signing time: Wed 02 Jul 2025 14:32:57 +0000 Manifest this update: Wed 02 Jul 2025 14:32:56 +0000 Manifest next update: Wed 09 Jul 2025 14:32:56 +0000 Files and hashes: 1: xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl (hash: B/Pkc2QEKCDm4Jz6GNaHpCqA3NHxvKBidnD+rVSmR7c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 14:32:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9497 (0x2519) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFAE, serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Validity Not Before: Jul 2 14:32:56 2025 GMT Not After : Jul 9 14:32:56 2025 GMT Subject: CN=68654319-4057 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:fa:d8:03:7c:29:43:e2:b3:ec:47:eb:4a:a7: d1:26:08:ec:05:48:fb:30:ef:71:36:dd:e2:a3:5a: c7:45:d2:2d:96:eb:7e:d8:e8:04:31:be:2f:99:9b: 6a:cb:91:0f:22:54:80:f4:91:25:2a:cc:dd:d1:c7: 88:81:1d:51:7c:d0:ed:14:8d:d9:9f:df:7c:19:74: 5e:78:b9:0b:a2:36:df:c4:ea:80:94:ae:a7:da:e0: 66:d1:02:29:5c:68:15:12:fb:5b:fd:c4:15:30:6b: a7:07:fd:46:ee:52:fa:d5:a8:0f:4f:84:71:31:21: ba:a1:c1:09:f4:60:37:cb:51:9f:fe:0b:c7:2f:d2: e5:51:0b:e1:aa:5a:5c:3e:2e:c6:17:a4:a2:94:2c: 82:e2:db:73:de:60:48:39:b1:cf:e6:bd:b3:98:fe: 70:e9:a1:64:83:c5:fe:1b:7c:16:77:ef:dd:8b:64: 9e:60:96:bb:88:12:8a:68:f1:86:a7:01:8e:f8:54: 4a:b1:a7:91:f0:02:02:5c:2e:ed:93:01:8b:34:b2: ca:3c:f0:71:4c:54:b1:43:62:ba:98:93:2c:33:95: a8:d6:5c:ce:86:d8:df:a2:0c:24:8b:6d:af:30:89: 2d:ac:c2:1e:80:e0:c6:b1:41:f2:70:b6:c8:76:b9: e4:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:58:CE:69:BF:70:CF:8B:E4:5E:04:D2:FA:28:FC:9C:D3:68:B0:D8 X509v3 Authority Key Identifier: keyid:C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:0f:81:92:f0:61:7e:b9:e9:d4:d5:50:1c:42:c7:74:4e:30: 51:32:2c:4c:a4:dc:7c:ac:e8:74:67:2e:77:38:21:ae:29:27: 88:97:0a:4a:cb:ad:08:a0:11:a1:01:33:49:f6:f3:36:76:8d: 90:ae:14:f1:75:31:13:13:75:b5:e3:ff:67:24:dc:0c:da:31: 42:18:6b:b2:11:32:17:be:3b:20:b3:43:fd:c1:ea:db:af:3a: d0:ca:15:5b:e1:9d:f5:33:4c:90:55:ad:53:39:5d:c6:b7:8a: 2f:90:16:51:da:6a:aa:de:43:17:ef:14:49:0d:d9:8e:c8:f2: 58:67:54:79:3c:ae:32:bb:19:af:24:79:1c:33:99:13:2a:88: 13:f5:c1:ea:fa:4d:87:f8:2b:da:e4:51:d1:79:f4:e6:b3:6b: fa:1a:2d:80:b3:53:0c:3a:98:b8:cc:5d:8c:0e:3a:a0:13:a5: 6b:06:32:17:cb:26:62:7b:4b:37:be:bf:44:f4:e1:a7:59:9a: 27:85:cf:af:8d:9f:53:75:cc:a1:04:d0:bb:1f:5d:38:94:b9: 1c:dd:a7:2f:0d:3e:a2:56:6a:ce:50:44:8b:a5:dd:5a:fc:8c: c2:3d:b6:58:e5:1e:30:27:3f:e1:ac:d5:d7:8b:b9:31:d1:2c: 76:a0:31:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJRkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQUUxMTAvBgNVBAUTKEM2NTNFRjc3QjE5RDEwOENGNUM1OUFFMTgwMUYwMjAw M0FCNTVFRUQwHhcNMjUwNzAyMTQzMjU2WhcNMjUwNzA5MTQzMjU2WjAYMRYwFAYD VQQDEw02ODY1NDMxOS00MDU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArvrYA3wpQ+Kz7EfrSqfRJgjsBUj7MO9xNt3io1rHRdItlut+2OgEMb4vmZtq y5EPIlSA9JElKszd0ceIgR1RfNDtFI3Zn998GXReeLkLojbfxOqAlK6n2uBm0QIp XGgVEvtb/cQVMGunB/1G7lL61agPT4RxMSG6ocEJ9GA3y1Gf/gvHL9LlUQvhqlpc Pi7GF6SilCyC4ttz3mBIObHP5r2zmP5w6aFkg8X+G3wWd+/di2SeYJa7iBKKaPGG pwGO+FRKsaeR8AICXC7tkwGLNLLKPPBxTFSxQ2K6mJMsM5Wo1lzOhtjfogwki22v MIktrMIegODGsUHycLbIdrnkuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCtYzmm/ cM+L5F4E0voo/JzTaLDYMB8GA1UdIwQYMBaAFMZT73exnRCM9cWa4YAfAgA6tV7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZBRS9FRDMyNDQwQTI5 MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJejF4WnJoZ0I4Q0FEcTFY dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hsUHZkN0dkRUl6MXhacmhnQjhDQURxMVh1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZBRS9FRDMyNDQwQTI5MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJ ejF4WnJoZ0I4Q0FEcTFYdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATD4GS8GF+uenU1VAcQsd0TjBRMixMpNx8rOh0Zy53OCGuKSeIlwpK y60IoBGhATNJ9vM2do2QrhTxdTETE3W14/9nJNwM2jFCGGuyETIXvjsgs0P9werb rzrQyhVb4Z31M0yQVa1TOV3Gt4ovkBZR2mqq3kMX7xRJDdmOyPJYZ1R5PK4yuxmv JHkcM5kTKogT9cHq+k2H+Cva5FHRefTms2v6Gi2As1MMOpi4zF2MDjqgE6VrBjIX yyZie0s3vr9E9OGnWZonhc+vjZ9TdcyhBNC7H104lLkc3acvDT6iVmrOUESLpd1a /IzCPbZY5R4wJz/hrNXXi7kx0Sx2oDGg -----END CERTIFICATE-----Generated at Fri Jul 4 06:29:55 2025 by rpki-client