$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft File: XEzzdpk9EYUoJw3ZUvMCztV18dw.mft (raw, json) Hash identifier: H3BOBPwJkp7UcbjU8uMvwXSFn7ZFrvL5qQUiOw3Zt1U= Subject key identifier: FE:67:16:32:B9:7D:2A:FC:DB:0A:86:07:AB:82:F7:CB:39:53:2D:EA Authority key identifier: 5C:4C:F3:76:99:3D:11:85:28:27:0D:D9:52:F3:02:CE:D5:75:F1:DC Certificate issuer: /CN=A91FBD89/serialNumber=5C4CF376993D118528270DD952F302CED575F1DC Certificate serial: 0535 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEzzdpk9EYUoJw3ZUvMCztV18dw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft Manifest number: 0535 Signing time: Fri 22 Aug 2025 23:42:41 +0000 Manifest this update: Fri 22 Aug 2025 23:42:41 +0000 Manifest next update: Fri 29 Aug 2025 23:42:41 +0000 Files and hashes: 1: XEzzdpk9EYUoJw3ZUvMCztV18dw.crl (hash: AhsQ92dqoR+rKR0v4fE5q/jvo/ezNNYXFpAljv7GvCI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.crl rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEzzdpk9EYUoJw3ZUvMCztV18dw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:42:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1333 (0x535) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBD89, serialNumber=5C4CF376993D118528270DD952F302CED575F1DC Validity Not Before: Aug 22 23:42:41 2025 GMT Not After : Aug 29 23:42:41 2025 GMT Subject: CN=68a90071-a78e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:e3:8a:64:75:36:c8:c0:e0:e9:fa:0a:b6:bd: d2:e1:79:0f:8e:2a:2c:a1:27:9c:70:55:67:26:c4: 9d:8e:ea:c8:73:58:bc:02:40:29:2b:fe:dc:b0:ae: d5:cb:3a:88:4f:e4:5b:14:d9:ed:a9:02:a6:a1:18: 99:32:46:0e:33:dd:31:8e:ea:36:36:96:74:98:9b: 18:a8:f9:ae:9b:d4:6c:88:ef:19:bb:5b:0f:f0:99: 37:c8:10:13:80:d5:4f:ec:62:b8:ac:da:93:c2:15: 75:b4:b4:f5:f8:20:24:fb:a1:8f:87:0c:fe:65:cf: 90:99:12:82:99:9c:e3:41:c5:4d:bf:31:57:c2:85: a6:7f:6a:ea:de:94:e2:d9:d1:bf:f1:a1:40:6a:2a: d8:8f:11:9f:22:ee:2b:63:83:5e:fb:07:a4:bc:cc: 4a:77:96:93:ff:f3:0b:02:29:e2:65:d0:88:65:a2: 07:4b:66:37:69:03:32:0c:d3:0d:7a:44:63:ee:5c: 2f:4b:10:72:e6:de:14:fb:8d:59:91:8c:87:6b:dd: b2:f9:e1:29:59:ef:dc:d3:a2:cb:98:71:fb:1a:31: 1e:9a:a6:5b:d6:24:16:95:54:fb:73:2e:b7:0f:22: 88:86:65:12:11:be:92:28:e7:a4:43:05:73:88:2d: 7d:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:67:16:32:B9:7D:2A:FC:DB:0A:86:07:AB:82:F7:CB:39:53:2D:EA X509v3 Authority Key Identifier: keyid:5C:4C:F3:76:99:3D:11:85:28:27:0D:D9:52:F3:02:CE:D5:75:F1:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEzzdpk9EYUoJw3ZUvMCztV18dw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:dc:32:c7:f3:f3:14:d6:d7:80:ce:a0:6b:19:91:7c:f4:92: 9a:b4:04:31:6f:0d:3f:b6:3d:5e:f8:51:7b:64:97:39:e4:b5: f6:e5:d5:a7:63:d6:a8:20:67:e4:b7:d5:09:25:fa:45:95:0c: a7:52:ad:81:79:62:06:8f:41:6e:ef:8a:cb:f1:25:dc:ab:30: b5:16:01:96:dd:4c:50:1c:8a:1c:ad:0d:6f:46:0c:ba:91:d4: 88:f7:60:11:c3:5b:43:11:19:65:7e:fb:82:76:42:1d:8e:58: 81:78:ef:c7:42:04:e5:e1:12:f1:47:50:fd:7a:92:12:66:54: bf:7e:49:04:1c:47:02:0c:ed:a2:4e:7f:f7:db:ac:37:47:01: fd:ef:0f:40:52:b9:70:cc:c2:60:e7:2d:e8:40:51:bd:f3:5f: fa:38:f0:85:22:40:5c:6d:05:06:00:5c:d7:fb:62:ac:a9:4d: bb:ce:15:40:b4:ca:d1:71:55:59:c8:03:26:32:c5:f4:a8:6b: 42:c5:74:76:ad:5b:1b:ff:6f:f6:f8:90:c1:5b:82:f9:5e:c0: 48:cd:0c:10:d4:03:d4:b5:ae:84:fe:a9:30:86:d4:ce:03:5e: 22:7e:8f:84:4e:e4:92:21:b0:06:eb:64:cd:8a:7d:02:1f:2d: 44:a9:92:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJEODkxMTAvBgNVBAUTKDVDNENGMzc2OTkzRDExODUyODI3MEREOTUyRjMwMkNF RDU3NUYxREMwHhcNMjUwODIyMjM0MjQxWhcNMjUwODI5MjM0MjQxWjAYMRYwFAYD VQQDEw02OGE5MDA3MS1hNzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5OOKZHU2yMDg6foKtr3S4XkPjiosoSeccFVnJsSdjurIc1i8AkApK/7csK7V yzqIT+RbFNntqQKmoRiZMkYOM90xjuo2NpZ0mJsYqPmum9RsiO8Zu1sP8Jk3yBAT gNVP7GK4rNqTwhV1tLT1+CAk+6GPhwz+Zc+QmRKCmZzjQcVNvzFXwoWmf2rq3pTi 2dG/8aFAairYjxGfIu4rY4Ne+wekvMxKd5aT//MLAiniZdCIZaIHS2Y3aQMyDNMN ekRj7lwvSxBy5t4U+41ZkYyHa92y+eEpWe/c06LLmHH7GjEemqZb1iQWlVT7cy63 DyKIhmUSEb6SKOekQwVziC19ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP5nFjK5 fSr82wqGB6uC98s5Uy3qMB8GA1UdIwQYMBaAFFxM83aZPRGFKCcN2VLzAs7VdfHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkQ4OS9GMzdDODhFRTBC N0UxMUVDODMxMjk2NDhDNEY5QUUwMi9YRXp6ZHBrOUVZVW9KdzNaVXZNQ3p0VjE4 ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hFenpkcGs5RVlVb0p3M1pVdk1DenRWMThkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkQ4OS9GMzdDODhFRTBCN0UxMUVDODMxMjk2NDhDNEY5QUUwMi9YRXp6ZHBrOUVZ VW9KdzNaVXZNQ3p0VjE4ZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAE3DLH8/MU1teAzqBrGZF89JKatAQxbw0/tj1e+FF7ZJc55LX25dWn Y9aoIGfkt9UJJfpFlQynUq2BeWIGj0Fu74rL8SXcqzC1FgGW3UxQHIocrQ1vRgy6 kdSI92ARw1tDERllfvuCdkIdjliBeO/HQgTl4RLxR1D9epISZlS/fkkEHEcCDO2i Tn/326w3RwH97w9AUrlwzMJg5y3oQFG981/6OPCFIkBcbQUGAFzX+2KsqU27zhVA tMrRcVVZyAMmMsX0qGtCxXR2rVsb/2/2+JDBW4L5XsBIzQwQ1APUta6E/qkwhtTO A14ifo+ETuSSIbAG62TNin0CHy1EqZIg -----END CERTIFICATE-----Generated at Sat Aug 23 23:58:36 2025 by rpki-client