$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft File: Xx7oK_cJomzAAJlbR0geVPbzgG4.mft (raw, json) Hash identifier: Bp14tQN6NFAorWyWp6CcyaZTry20v1vX6ScktbCazyo= Subject key identifier: 3D:B1:16:79:4F:88:5C:DC:97:7C:32:66:1F:28:8F:12:A6:98:DE:46 Authority key identifier: 5F:1E:E8:2B:F7:09:A2:6C:C0:00:99:5B:47:48:1E:54:F6:F3:80:6E Certificate issuer: /CN=A91F9E0A/serialNumber=5F1EE82BF709A26CC000995B47481E54F6F3806E Certificate serial: D9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xx7oK_cJomzAAJlbR0geVPbzgG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft Manifest number: D6 Signing time: Sat 23 Aug 2025 05:46:51 +0000 Manifest this update: Sat 23 Aug 2025 05:46:51 +0000 Manifest next update: Sat 30 Aug 2025 05:46:51 +0000 Files and hashes: 1: Xx7oK_cJomzAAJlbR0geVPbzgG4.crl (hash: sN4qF/CLS/Shlk+FzRg2W1Yt92+9cXFU+ErEVGLOuqY=) 2: 9F4A37143EA511EF882FE276C4F9AE02.roa (hash: Fv8xkDsRWA8eLIqnsR0IaMI8SIsrnp9IiFE0Bfh81LU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.crl rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xx7oK_cJomzAAJlbR0geVPbzgG4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9E0A, serialNumber=5F1EE82BF709A26CC000995B47481E54F6F3806E Validity Not Before: Aug 23 05:46:51 2025 GMT Not After : Aug 30 05:46:51 2025 GMT Subject: CN=68a955cb-db5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a5:ff:7c:db:b8:ba:58:48:19:79:fa:62:df: 2b:2f:3c:f8:4d:cf:cb:02:93:af:9b:dd:66:42:4d: 7f:15:5b:ce:2a:43:26:03:14:d7:6d:07:98:89:21: 9a:34:fc:ab:7b:3f:ed:c6:51:e3:93:bf:59:6a:ba: 5d:01:41:11:11:8a:fd:19:d2:fa:a4:11:67:78:b6: 24:b9:be:db:eb:63:c9:32:1b:47:ba:e9:6d:f1:3d: 47:25:0c:00:d1:50:94:5c:b1:7f:af:0c:52:4a:06: a6:8d:cc:ad:72:d8:0d:7c:58:31:03:2c:26:e5:7e: 72:83:bb:98:c6:86:5d:83:d0:aa:1f:52:b5:ca:72: 8b:a3:73:f4:30:8a:22:c5:1c:84:a6:8c:a7:70:1b: 3b:ab:8d:4c:f3:74:5c:f6:e0:78:a2:1a:a2:58:77: 01:12:0d:02:a9:5b:18:81:34:e9:61:28:62:f0:d0: 66:5a:39:96:70:85:0c:09:d2:6c:01:f7:32:6a:b7: 58:3e:8a:2f:c6:72:a1:95:c8:3d:2c:89:0e:8d:79: 2c:dd:4f:88:8f:56:f7:25:b8:16:e6:a0:2f:2d:e3: 24:80:02:52:89:22:99:fa:dd:a9:db:46:40:07:6b: 5d:71:53:57:5e:0c:d7:68:b5:c0:08:4c:93:cd:55: a4:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:B1:16:79:4F:88:5C:DC:97:7C:32:66:1F:28:8F:12:A6:98:DE:46 X509v3 Authority Key Identifier: keyid:5F:1E:E8:2B:F7:09:A2:6C:C0:00:99:5B:47:48:1E:54:F6:F3:80:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xx7oK_cJomzAAJlbR0geVPbzgG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:6a:89:e1:b7:df:5f:64:3b:e4:ea:ff:4c:90:5c:72:ec:6c: d2:78:8a:a6:74:05:bf:9b:e8:fa:bd:86:77:0b:68:ba:dc:62: 61:e3:3a:df:d1:ed:92:8d:e7:db:3d:6d:3b:89:89:4d:b8:37: 79:e5:52:89:ba:7a:d3:63:86:cd:63:71:23:8a:e3:6a:a3:ab: 44:c3:dc:97:95:40:55:9c:ce:eb:1e:57:c5:d7:ca:cd:9d:9b: 29:61:6d:c5:9e:c0:0e:37:03:b4:a7:b4:fc:19:91:35:5a:cc: b1:ce:d3:84:bd:65:29:18:bd:4e:f6:fe:76:4f:b9:81:7d:ec: 24:cc:20:62:32:13:8b:ea:4a:b4:42:3a:ba:1d:d7:93:37:46: d7:54:b0:8c:87:ad:79:0e:82:9f:2a:cc:7a:44:5b:ac:7e:0b: 50:f2:93:7a:b5:7f:3d:25:79:62:e0:22:7e:bc:6d:69:52:69: e9:9c:f0:8c:72:a5:01:78:61:8f:cb:6c:d9:9f:f3:3f:e6:77: 71:e7:a1:22:a4:55:30:4c:47:d1:7c:d5:c1:dc:b8:07:0a:92: 0c:d9:bf:11:02:97:5d:ba:29:9f:66:35:09:6f:fd:ff:f9:fa: d1:53:b9:d1:f1:4f:be:a8:cf:5a:2a:11:ea:38:8d:40:91:a4: 6d:f3:e2:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlFMEExMTAvBgNVBAUTKDVGMUVFODJCRjcwOUEyNkNDMDAwOTk1QjQ3NDgxRTU0 RjZGMzgwNkUwHhcNMjUwODIzMDU0NjUxWhcNMjUwODMwMDU0NjUxWjAYMRYwFAYD VQQDEw02OGE5NTVjYi1kYjVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtKX/fNu4ulhIGXn6Yt8rLzz4Tc/LApOvm91mQk1/FVvOKkMmAxTXbQeYiSGa NPyrez/txlHjk79ZarpdAUEREYr9GdL6pBFneLYkub7b62PJMhtHuult8T1HJQwA 0VCUXLF/rwxSSgamjcytctgNfFgxAywm5X5yg7uYxoZdg9CqH1K1ynKLo3P0MIoi xRyEpoyncBs7q41M83Rc9uB4ohqiWHcBEg0CqVsYgTTpYShi8NBmWjmWcIUMCdJs AfcyardYPoovxnKhlcg9LIkOjXks3U+Ij1b3JbgW5qAvLeMkgAJSiSKZ+t2p20ZA B2tdcVNXXgzXaLXACEyTzVWkHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD2xFnlP iFzcl3wyZh8ojxKmmN5GMB8GA1UdIwQYMBaAFF8e6Cv3CaJswACZW0dIHlT284Bu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUUwQS8wM0IwNTJENDNF NjkxMUVGQTJDRTY3NkFDNEY5QUUwMi9YeDdvS19jSm9tekFBSmxiUjBnZVZQYnpn RzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1h4N29LX2NKb216QUFKbGJSMGdlVlBiemdHNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUUwQS8wM0IwNTJENDNFNjkxMUVGQTJDRTY3NkFDNEY5QUUwMi9YeDdvS19jSm9t ekFBSmxiUjBnZVZQYnpnRzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgaonht99fZDvk6v9MkFxy7GzSeIqmdAW/m+j6vYZ3C2i63GJh4zrf 0e2SjefbPW07iYlNuDd55VKJunrTY4bNY3EjiuNqo6tEw9yXlUBVnM7rHlfF18rN nZspYW3FnsAONwO0p7T8GZE1WsyxztOEvWUpGL1O9v52T7mBfewkzCBiMhOL6kq0 Qjq6HdeTN0bXVLCMh615DoKfKsx6RFusfgtQ8pN6tX89JXli4CJ+vG1pUmnpnPCM cqUBeGGPy2zZn/M/5ndx56EipFUwTEfRfNXB3LgHCpIM2b8RApdduimfZjUJb/3/ +frRU7nR8U++qM9aKhHqOI1AkaRt8+JE -----END CERTIFICATE-----Generated at Sat Aug 23 22:15:22 2025 by rpki-client