$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.mft File: XOe82cbkE4HMCvkJkN2gNpOF5lU.mft (raw, json) Hash identifier: ev3X32x81i3LkrOKPFOuLAcgIAL8W4ukdfbJf7WjKi4= Subject key identifier: AA:95:A3:54:46:D5:F3:CD:B9:A5:68:6F:9F:54:A1:89:AE:C8:99:6D Authority key identifier: 5C:E7:BC:D9:C6:E4:13:81:CC:0A:F9:09:90:DD:A0:36:93:85:E6:55 Certificate issuer: /CN=A91EC3A8/serialNumber=5CE7BCD9C6E41381CC0AF90990DDA0369385E655 Certificate serial: 049D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOe82cbkE4HMCvkJkN2gNpOF5lU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.mft Manifest number: 0491 Signing time: Sat 23 Aug 2025 00:13:40 +0000 Manifest this update: Sat 23 Aug 2025 00:13:40 +0000 Manifest next update: Sat 30 Aug 2025 00:13:40 +0000 Files and hashes: 1: XOe82cbkE4HMCvkJkN2gNpOF5lU.crl (hash: TjW6Id1EDToOHc0/1SitQhKQmYvOPESjtbBe/OVVwh8=) 2: 11330A4663F611ECB344F979C4F9AE02.roa (hash: EUhD1CogfYx019LqOHk5ZADPXKjO2pURWvfLLk3fqG8=) 3: 10A8D0E263F611ECB344F979C4F9AE02.roa (hash: 0C7V986gHLfF3RPO5trmAPFLdLtlvzlCJ3+47YeVJHU=) 4: C71919900BEE11EDBB84E711C4F9AE02.roa (hash: CMOccFw4JW9T0ieBo3En9p6kBriebw6aKjGeEamJ19Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.crl rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOe82cbkE4HMCvkJkN2gNpOF5lU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:13:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1181 (0x49d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC3A8, serialNumber=5CE7BCD9C6E41381CC0AF90990DDA0369385E655 Validity Not Before: Aug 23 00:13:40 2025 GMT Not After : Aug 30 00:13:40 2025 GMT Subject: CN=68a907b4-abf4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:bd:5a:2d:51:28:d6:3e:d1:35:4b:30:6c:08: 61:50:46:cd:57:11:c0:7c:55:bb:63:fd:9a:bc:d1: e7:9c:e6:9a:a8:3b:04:4b:ba:41:18:ba:15:1b:8d: aa:24:08:67:9f:d6:17:64:bf:ef:a5:cd:32:4c:25: c9:21:a9:ed:72:18:73:28:81:9d:4f:15:42:3b:54: d8:d8:9e:f5:7f:13:04:97:56:ac:7e:73:06:55:05: 12:01:e1:2d:77:e4:08:4d:a9:02:51:97:01:b2:d0: ca:28:b2:56:81:28:4a:e8:25:00:8e:92:ad:aa:e1: 3c:ee:4b:70:47:cd:64:5f:3b:c2:36:a5:cf:6c:d2: 1c:c3:90:75:83:35:39:79:d4:5f:39:bf:80:ee:05: fb:41:36:51:0d:e2:a4:be:5e:83:db:bf:ee:16:78: 44:e2:ef:b2:bc:5c:9f:72:32:63:b9:8c:b5:48:84: 3d:ba:b8:b0:0d:80:b7:35:28:1e:7e:59:33:ea:62: fa:65:77:1b:b5:60:38:87:79:79:5c:f9:e6:60:a8: 24:9e:8c:31:2e:46:e1:18:51:e6:47:a6:2c:3b:10: 41:1b:97:a8:13:5d:d1:81:19:f7:11:a9:fc:62:3b: b2:c5:bf:d3:df:27:72:98:6b:5c:f3:de:8c:07:a3: 96:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:95:A3:54:46:D5:F3:CD:B9:A5:68:6F:9F:54:A1:89:AE:C8:99:6D X509v3 Authority Key Identifier: keyid:5C:E7:BC:D9:C6:E4:13:81:CC:0A:F9:09:90:DD:A0:36:93:85:E6:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOe82cbkE4HMCvkJkN2gNpOF5lU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:b9:11:c5:6f:f7:c8:4a:e6:b3:7a:81:eb:ef:44:b5:9d:87: ae:e1:96:e0:18:d5:97:7e:26:44:ad:24:b4:73:6c:57:d4:fd: ae:81:dc:31:03:a6:aa:bc:4e:7f:82:7a:27:3a:cb:b4:be:68: dd:4c:46:88:71:2c:41:b2:30:ce:7d:61:71:f3:da:aa:6b:2d: 2d:38:c0:2d:da:29:97:68:84:c7:70:3c:31:1c:b1:39:a3:a1: 9d:dd:f1:9a:9c:49:2b:19:69:ca:05:5a:45:02:84:a1:f3:83: 72:bf:75:0e:d5:22:3f:f6:fc:9a:44:be:f3:35:4d:6a:74:6a: 87:74:4a:bd:90:fc:68:43:84:14:97:c3:ac:8c:8f:7c:f0:47: 4e:c7:7f:12:9d:55:30:c4:8d:6a:43:d7:21:7a:8d:7b:3c:27: 21:13:6b:4a:e9:70:73:f7:8b:b5:b1:02:4e:ec:5c:01:41:37: 33:26:e7:17:64:2f:7a:7b:53:db:74:7d:01:a3:de:28:d4:2f: 3d:e4:69:a0:56:e6:c7:a0:73:cd:59:d6:7d:cc:db:b1:60:a1: 7b:fc:b8:18:ff:ee:ed:5d:55:4f:e3:3c:67:0f:9c:02:03:ac: d3:a5:65:da:0f:bc:83:66:43:c4:cf:33:ff:32:62:b6:e1:b8: 4b:e2:e2:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUMzQTgxMTAvBgNVBAUTKDVDRTdCQ0Q5QzZFNDEzODFDQzBBRjkwOTkwRERBMDM2 OTM4NUU2NTUwHhcNMjUwODIzMDAxMzQwWhcNMjUwODMwMDAxMzQwWjAYMRYwFAYD VQQDEw02OGE5MDdiNC1hYmY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyL1aLVEo1j7RNUswbAhhUEbNVxHAfFW7Y/2avNHnnOaaqDsES7pBGLoVG42q JAhnn9YXZL/vpc0yTCXJIantchhzKIGdTxVCO1TY2J71fxMEl1asfnMGVQUSAeEt d+QITakCUZcBstDKKLJWgShK6CUAjpKtquE87ktwR81kXzvCNqXPbNIcw5B1gzU5 edRfOb+A7gX7QTZRDeKkvl6D27/uFnhE4u+yvFyfcjJjuYy1SIQ9uriwDYC3NSge flkz6mL6ZXcbtWA4h3l5XPnmYKgknowxLkbhGFHmR6YsOxBBG5eoE13RgRn3Ean8 Yjuyxb/T3ydymGtc896MB6OWrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKqVo1RG 1fPNuaVob59UoYmuyJltMB8GA1UdIwQYMBaAFFznvNnG5BOBzAr5CZDdoDaTheZV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzNBOC8yMUZBMDI3MjRD NkMxMUVDQkJDRkFEMjZDNEY5QUUwMi9YT2U4MmNia0U0SE1DdmtKa04yZ05wT0Y1 bFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hPZTgyY2JrRTRITUN2a0prTjJnTnBPRjVsVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzNBOC8yMUZBMDI3MjRDNkMxMUVDQkJDRkFEMjZDNEY5QUUwMi9YT2U4MmNia0U0 SE1DdmtKa04yZ05wT0Y1bFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQuRHFb/fISuazeoHr70S1nYeu4ZbgGNWXfiZErSS0c2xX1P2ugdwx A6aqvE5/gnonOsu0vmjdTEaIcSxBsjDOfWFx89qqay0tOMAt2imXaITHcDwxHLE5 o6Gd3fGanEkrGWnKBVpFAoSh84Nyv3UO1SI/9vyaRL7zNU1qdGqHdEq9kPxoQ4QU l8OsjI988EdOx38SnVUwxI1qQ9cheo17PCchE2tK6XBz94u1sQJO7FwBQTczJucX ZC96e1PbdH0Bo94o1C895GmgVubHoHPNWdZ9zNuxYKF7/LgY/+7tXVVP4zxnD5wC A6zTpWXaD7yDZkPEzzP/MmK24bhL4uLP -----END CERTIFICATE-----Generated at Sat Aug 23 17:51:35 2025 by rpki-client