$ rpki-client -vvf rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft File: XpnXCH3VTqLn519cgIcHE4Posp4.mft (raw, json) Hash identifier: 8F9NnqUFFp5K7hD2vHNynezh6oOFzNzFjjWoFT4bPb0= Subject key identifier: F7:3A:8C:B9:D5:1B:0A:49:0A:47:18:28:20:87:60:C9:17:5C:90:E4 Authority key identifier: 5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E Certificate issuer: /CN=A91F81D3/serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Certificate serial: 0B10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft Manifest number: 0AF1 Signing time: Fri 22 Aug 2025 19:32:31 +0000 Manifest this update: Fri 22 Aug 2025 19:32:31 +0000 Manifest next update: Fri 29 Aug 2025 19:32:31 +0000 Files and hashes: 1: XpnXCH3VTqLn519cgIcHE4Posp4.crl (hash: 0HgrQZwFqIC5lAiHvjuH80zO29gRulyAZpez0TiReOg=) 2: E4A8C1240A3611F08B9CFD4FC4F9AE02.roa (hash: pW6ZkmsKrYO4khbqPdFp+1VATISq0kaXo2DoENq+wFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:32:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2832 (0xb10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F81D3, serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Validity Not Before: Aug 22 19:32:31 2025 GMT Not After : Aug 29 19:32:31 2025 GMT Subject: CN=68a8c5cf-c691 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ef:c8:84:4b:2f:18:b9:d7:53:fd:84:06:6f: 53:b6:31:fe:1d:57:23:8f:bb:f4:af:21:02:de:05: 8f:ee:95:2b:64:6f:e9:3e:af:16:b4:98:a6:6b:cd: 03:b0:df:db:ed:2b:04:10:9f:15:66:e5:6f:98:58: 66:4e:2e:4e:1c:f3:ac:92:0b:d1:3a:ca:f7:ab:77: bc:ca:ef:ba:4e:11:cc:9e:07:52:fa:ee:5c:a8:e3: d7:b7:ff:0a:85:c5:2a:12:6a:41:d1:5e:7f:36:6b: e7:78:fa:89:43:1d:05:57:12:2b:2c:ae:25:16:73: be:be:f1:b2:cd:49:10:62:e7:bc:e5:5f:9c:94:99: 8d:27:7e:02:2d:40:da:55:c1:39:08:8a:e9:4f:fe: 58:55:2d:62:f2:24:9a:e7:1a:c5:ca:c6:69:7f:74: af:3c:5f:94:34:ce:67:2c:0f:33:d3:a1:b2:d6:a8: 38:73:aa:c6:73:32:25:63:5a:c3:c7:6a:17:91:05: 37:28:23:04:b2:fc:7c:5c:db:6a:3d:0e:8e:50:1b: 7c:f9:f3:37:74:67:ea:06:2c:fd:21:fe:66:c6:39: e4:3e:ca:d4:8d:80:ab:1a:b5:d9:51:79:3d:fd:cc: db:cb:1e:9f:69:03:14:3a:00:d0:05:19:4d:55:b6: 57:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:3A:8C:B9:D5:1B:0A:49:0A:47:18:28:20:87:60:C9:17:5C:90:E4 X509v3 Authority Key Identifier: keyid:5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:ba:1e:cc:dd:2b:64:b3:ec:17:f2:ea:92:e1:f9:17:65:77: e3:a1:dd:fb:e9:51:53:a1:84:d7:14:e2:60:75:89:91:89:67: be:45:23:3e:f7:0e:c5:ef:54:38:bf:60:ea:fe:c4:85:00:31: 23:3c:63:3b:da:18:e0:14:2b:dc:be:39:3c:ca:f1:61:e1:6e: 28:b1:12:9d:22:4a:f6:eb:71:17:26:fb:48:0b:ac:bc:fd:5a: b8:b2:9e:b5:f6:cf:79:a6:7b:56:37:4a:e3:f3:ea:3c:1c:e7: a0:ed:d1:4f:48:f2:9c:ee:0b:f0:f1:5d:ea:b5:61:2a:a9:e0: f3:a1:8a:80:fc:ac:3f:ec:18:06:40:2f:b0:58:15:9f:3a:4a: ee:67:36:db:5a:10:31:57:d4:15:5b:09:f0:ed:9b:0c:0f:ad: dd:53:10:4e:c3:48:27:ed:fc:f3:26:39:5b:e4:9d:45:ee:65: 48:35:06:7e:11:38:e1:96:bf:1a:ab:08:90:06:c5:48:f1:3f: 1c:87:e3:90:90:eb:f4:f0:6b:a5:51:78:40:08:04:40:41:7a: 0f:75:d1:78:03:0b:33:18:b9:81:6a:df:e7:ed:84:98:a6:9c: a2:ee:b2:6f:83:ea:31:be:a7:da:e5:79:6a:f0:67:d5:d8:36: c2:59:eb:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxRDMxMTAvBgNVBAUTKDVFOTlENzA4N0RENTRFQTJFN0U3NUY1QzgwODcwNzEz ODNFOEIyOUUwHhcNMjUwODIyMTkzMjMxWhcNMjUwODI5MTkzMjMxWjAYMRYwFAYD VQQDEw02OGE4YzVjZi1jNjkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxe/IhEsvGLnXU/2EBm9TtjH+HVcjj7v0ryEC3gWP7pUrZG/pPq8WtJima80D sN/b7SsEEJ8VZuVvmFhmTi5OHPOskgvROsr3q3e8yu+6ThHMngdS+u5cqOPXt/8K hcUqEmpB0V5/NmvnePqJQx0FVxIrLK4lFnO+vvGyzUkQYue85V+clJmNJ34CLUDa VcE5CIrpT/5YVS1i8iSa5xrFysZpf3SvPF+UNM5nLA8z06Gy1qg4c6rGczIlY1rD x2oXkQU3KCMEsvx8XNtqPQ6OUBt8+fM3dGfqBiz9If5mxjnkPsrUjYCrGrXZUXk9 /czbyx6faQMUOgDQBRlNVbZXewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPc6jLnV GwpJCkcYKCCHYMkXXJDkMB8GA1UdIwQYMBaAFF6Z1wh91U6i5+dfXICHBxOD6LKe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODFEMy8wQTg0NTlGNDUy MzUxMUVBOUEwQ0IyNzNDNEY5QUUwMi9YcG5YQ0gzVlRxTG41MTljZ0ljSEU0UG9z cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hwblhDSDNWVHFMbjUxOWNnSWNIRTRQb3NwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODFEMy8wQTg0NTlGNDUyMzUxMUVBOUEwQ0IyNzNDNEY5QUUwMi9YcG5YQ0gzVlRx TG41MTljZ0ljSEU0UG9zcDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDKuh7M3Stks+wX8uqS4fkXZXfjod376VFToYTXFOJgdYmRiWe+RSM+ 9w7F71Q4v2Dq/sSFADEjPGM72hjgFCvcvjk8yvFh4W4osRKdIkr263EXJvtIC6y8 /Vq4sp619s95pntWN0rj8+o8HOeg7dFPSPKc7gvw8V3qtWEqqeDzoYqA/Kw/7BgG QC+wWBWfOkruZzbbWhAxV9QVWwnw7ZsMD63dUxBOw0gn7fzzJjlb5J1F7mVINQZ+ ETjhlr8aqwiQBsVI8T8ch+OQkOv08GulUXhACARAQXoPddF4AwszGLmBat/n7YSY ppyi7rJvg+oxvqfa5Xlq8GfV2DbCWeuM -----END CERTIFICATE-----Generated at Sat Aug 23 18:39:29 2025 by rpki-client