$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft File: XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft (raw, json) Hash identifier: ZGRB52OJb32Wiy5wxO8uy3Qzso8yaHTEk8P/scktMwY= Subject key identifier: 69:04:0C:29:5B:20:39:73:01:13:36:3A:E3:EF:12:CF:12:E7:02:71 Authority key identifier: 5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F Certificate issuer: /CN=A91F0C73/serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F Certificate serial: 02F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft Manifest number: 02F0 Signing time: Sat 23 Aug 2025 01:32:22 +0000 Manifest this update: Sat 23 Aug 2025 01:32:21 +0000 Manifest next update: Sat 30 Aug 2025 01:32:21 +0000 Files and hashes: 1: XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl (hash: sI74uzcM8Hq9YDMu/y4E7OApjf05c1b1f9yJe1oSlEI=) 2: FA3FF1D4F13D11EC9B673A2AC4F9AE02.roa (hash: nZ6WbCIcnJ/FBBpCbBgjvy3HpKuHRhBq1WSGZ+ZBH8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:32:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 758 (0x2f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0C73, serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F Validity Not Before: Aug 23 01:32:21 2025 GMT Not After : Aug 30 01:32:21 2025 GMT Subject: CN=68a91a26-608b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:1e:5a:fd:38:b0:9d:9b:f4:59:01:e5:f0:ca: d9:3c:11:e1:5d:5e:fd:4d:fe:f7:6d:42:d6:67:8d: 1e:03:c7:1d:80:56:7e:e8:6a:bc:c6:e6:72:e6:d6: 75:ef:99:54:39:20:bc:55:dd:27:c3:c8:68:aa:01: 7b:ee:63:9c:96:d2:a6:b3:ac:43:b9:74:2e:75:ac: c7:c2:98:ee:af:d8:30:e4:af:83:d2:f1:27:0f:2d: a8:53:bb:8d:5a:1c:f3:4b:c6:e8:f5:ec:24:e9:f8: dc:71:59:16:e0:8a:04:66:e7:33:6a:dd:f3:49:be: 23:f4:88:03:7e:00:e9:15:cb:2f:b4:8b:a9:30:2f: ce:42:37:d7:2c:47:c9:af:7a:1d:d5:4d:fe:2c:67: ff:d1:c0:79:0b:5e:5f:47:b0:67:9e:b2:90:d5:11: 41:75:c8:f6:97:18:58:c3:66:86:66:db:a2:27:60: 8e:b5:29:a8:0d:b0:6e:df:e4:5b:95:eb:5b:e2:e5: 80:53:37:07:b1:15:e6:be:df:08:3e:62:9b:71:4b: e4:c2:32:27:9e:41:cb:d2:3a:29:b5:92:95:21:3e: f1:c1:aa:8c:c6:b4:fd:ba:2f:88:c3:26:41:24:e7: 27:c5:5b:7d:44:c6:47:f2:71:ad:d0:9f:48:d1:dd: 28:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:04:0C:29:5B:20:39:73:01:13:36:3A:E3:EF:12:CF:12:E7:02:71 X509v3 Authority Key Identifier: keyid:5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:c8:00:c1:a3:51:1f:41:db:f2:bb:78:ad:ba:6c:f3:88:3a: 01:90:92:80:8f:05:47:27:30:ae:ff:32:0f:2e:4e:f5:e8:bc: 91:48:a0:9c:30:4f:bf:03:da:43:a4:9a:a1:88:ef:9a:a8:a4: 3e:3d:97:95:bc:a7:b9:8e:84:ca:57:97:ee:f1:bb:9b:d5:53: 5d:ee:94:d0:a9:ae:a0:6c:42:af:15:f2:7a:b4:50:89:bf:96: c6:45:62:41:70:08:62:f1:70:b9:6c:7b:03:9a:0f:aa:e1:3a: a8:73:25:c0:83:c6:31:52:b7:9d:81:4f:29:66:d2:28:10:43: 6c:09:22:b9:f7:27:6b:5b:1b:58:3e:a2:c4:60:1b:2d:c0:b4: c8:a8:f5:79:68:ad:1e:0d:33:d7:2f:80:91:13:a7:86:67:22: eb:96:8c:e6:83:91:d2:4c:47:8c:f0:85:34:39:9a:89:f8:6a: c5:6f:3d:32:d4:dc:8c:c9:78:02:31:38:6b:1f:c9:ca:52:c3: 1d:7c:b4:26:ee:84:9b:a7:6d:14:8c:f8:30:b5:aa:e7:f1:dd: 79:0f:c9:76:71:a5:ee:5c:6a:b2:80:02:a3:74:0b:07:c7:d7: 59:a6:be:14:db:cb:72:17:8e:d7:54:85:fe:61:3c:e0:3f:fb: fa:95:55:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBDNzMxMTAvBgNVBAUTKDVFNzA5OTQ5QkFBNDBBN0Q0N0Q0NEQyMTE2OTBCMzc3 RTA1MUM0NUYwHhcNMjUwODIzMDEzMjIxWhcNMjUwODMwMDEzMjIxWjAYMRYwFAYD VQQDEw02OGE5MWEyNi02MDhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3B5a/TiwnZv0WQHl8MrZPBHhXV79Tf73bULWZ40eA8cdgFZ+6Gq8xuZy5tZ1 75lUOSC8Vd0nw8hoqgF77mOcltKms6xDuXQudazHwpjur9gw5K+D0vEnDy2oU7uN WhzzS8bo9ewk6fjccVkW4IoEZuczat3zSb4j9IgDfgDpFcsvtIupMC/OQjfXLEfJ r3od1U3+LGf/0cB5C15fR7BnnrKQ1RFBdcj2lxhYw2aGZtuiJ2COtSmoDbBu3+Rb letb4uWAUzcHsRXmvt8IPmKbcUvkwjInnkHL0joptZKVIT7xwaqMxrT9ui+IwyZB JOcnxVt9RMZH8nGt0J9I0d0olQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGkEDClb IDlzARM2OuPvEs8S5wJxMB8GA1UdIwQYMBaAFF5wmUm6pAp9R9RNIRaQs3fgUcRf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEM3My84MjE0NTdEMkYx MzcxMUVDOTdGNzRGMENDNEY5QUUwMi9YbkNaU2Jxa0NuMUgxRTBoRnBDemQtQlJ4 RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huQ1pTYnFrQ24xSDFFMGhGcEN6ZC1CUnhGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEM3My84MjE0NTdEMkYxMzcxMUVDOTdGNzRGMENDNEY5QUUwMi9YbkNaU2Jxa0Nu MUgxRTBoRnBDemQtQlJ4RjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiyADBo1EfQdvyu3itumzziDoBkJKAjwVHJzCu/zIPLk716LyRSKCc ME+/A9pDpJqhiO+aqKQ+PZeVvKe5joTKV5fu8bub1VNd7pTQqa6gbEKvFfJ6tFCJ v5bGRWJBcAhi8XC5bHsDmg+q4TqocyXAg8YxUredgU8pZtIoEENsCSK59ydrWxtY PqLEYBstwLTIqPV5aK0eDTPXL4CRE6eGZyLrlozmg5HSTEeM8IU0OZqJ+GrFbz0y 1NyMyXgCMThrH8nKUsMdfLQm7oSbp20UjPgwtarn8d15D8l2caXuXGqygAKjdAsH x9dZpr4U28tyF47XVIX+YTzgP/v6lVWh -----END CERTIFICATE-----Generated at Sat Aug 23 20:34:06 2025 by rpki-client