$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft File: xbajYOSK75Kf3CcpbR1S9b9umRY.mft (raw, json) Hash identifier: N/BHPB5I+4XciNM7zqSgk2ikNmWdhc9pvzpTToyeFjE= Subject key identifier: D7:58:04:B3:59:53:F3:A2:34:69:F4:20:3A:E2:CA:83:4A:D2:A4:9F Authority key identifier: C5:B6:A3:60:E4:8A:EF:92:9F:DC:27:29:6D:1D:52:F5:BF:6E:99:16 Certificate issuer: /CN=A91FD088/serialNumber=C5B6A360E48AEF929FDC27296D1D52F5BF6E9916 Certificate serial: 07E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft Manifest number: 07DF Signing time: Fri 22 Aug 2025 21:11:49 +0000 Manifest this update: Fri 22 Aug 2025 21:11:48 +0000 Manifest next update: Fri 29 Aug 2025 21:11:48 +0000 Files and hashes: 1: xbajYOSK75Kf3CcpbR1S9b9umRY.crl (hash: Lw+KnPuiEXxlF6PnIOb3K0Ee+sxfxh6hQx2yp/41KHQ=) 2: 423EA4CC039B11EBB3C1465CC4F9AE02.roa (hash: LsVQKkTp9V5mDiVUJekj0bvUgPf5aQfKDpRqhhkjvWs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.crl rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:11:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2022 (0x7e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD088, serialNumber=C5B6A360E48AEF929FDC27296D1D52F5BF6E9916 Validity Not Before: Aug 22 21:11:48 2025 GMT Not After : Aug 29 21:11:48 2025 GMT Subject: CN=68a8dd14-5718 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:9f:54:32:a2:e1:d6:52:73:6b:97:75:b2:83: c3:71:17:da:97:a4:9c:eb:52:5c:cc:4b:9f:70:f7: 53:e8:eb:a6:06:66:fe:75:22:67:7b:aa:06:f1:e8: 9b:9e:9c:f3:26:4b:f8:2f:e3:60:5b:9f:c3:f2:ca: c5:30:75:96:4c:cf:0f:e5:7c:12:21:9b:5f:19:43: 31:35:c5:f3:fa:26:5e:b3:db:3a:49:cb:dd:c6:4d: 95:a1:66:66:01:00:1e:c0:6a:5a:a3:8e:36:d1:55: ac:ef:39:ca:a5:30:ec:54:80:63:08:c0:2f:ee:94: f9:7e:74:fa:4d:54:bd:f0:bb:a7:a3:05:54:b3:6d: 4c:80:e5:07:00:68:e9:06:d0:2f:50:12:3e:3e:d1: a3:81:ea:fa:13:92:80:75:aa:72:f6:c4:4a:81:f2: ac:7c:03:bd:08:a8:cb:ab:01:ef:05:56:52:3b:1b: 9b:78:ae:68:7e:db:ca:f9:ca:6b:b2:cc:56:65:03: 68:67:61:87:27:cc:b2:23:d6:5a:34:29:77:23:80: 7d:27:11:0b:00:e2:b8:e2:93:d9:be:b2:2d:77:09: 75:66:b3:0f:d2:44:d8:51:5c:88:62:b7:16:d8:2b: 10:9e:77:c6:84:7c:bd:c7:70:17:ab:bd:d7:a7:2a: df:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:58:04:B3:59:53:F3:A2:34:69:F4:20:3A:E2:CA:83:4A:D2:A4:9F X509v3 Authority Key Identifier: keyid:C5:B6:A3:60:E4:8A:EF:92:9F:DC:27:29:6D:1D:52:F5:BF:6E:99:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:d6:d5:55:4d:9a:35:22:4a:bb:5c:fa:fb:a6:47:44:b5:97: e3:24:56:b2:cc:86:16:84:d1:a5:7a:d0:3f:c1:72:da:cf:23: b7:c4:ce:25:4e:0f:43:ef:66:84:b4:86:80:8d:51:90:7a:13: 44:f6:f1:f2:9a:90:ed:cd:bf:89:09:76:98:30:34:55:a0:92: 6d:d4:c0:6e:ea:f2:1c:95:22:55:63:4d:ab:fb:c9:7d:62:71: 31:10:b5:9d:45:3b:0a:72:07:42:72:3e:d3:80:e3:cd:48:12: f5:85:f7:ad:32:d8:e3:7e:6d:ae:9f:ca:d9:22:78:19:65:f4: 1e:ab:6d:68:68:e5:8a:3b:b6:e0:c5:c2:03:dc:ae:16:71:e7: c2:dc:b6:c6:0c:10:c9:b1:59:e7:bc:d9:ba:8c:af:b4:8f:c4: 1e:77:7c:52:ef:5f:67:ee:3e:45:19:fb:a6:7b:60:9e:86:96: 3f:dc:61:54:d0:e6:26:ab:8e:a3:20:e1:e2:1c:4b:95:85:f2: 6d:db:c9:7d:84:42:3a:ce:27:e9:3a:ff:23:54:86:f5:50:15: 65:63:89:b8:f0:40:a7:d2:0b:e6:70:72:96:3c:53:cd:c6:ab: f7:dc:e7:16:81:7c:a6:8b:43:2b:0e:7d:26:a2:42:e3:60:1d: a6:79:b0:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQwODgxMTAvBgNVBAUTKEM1QjZBMzYwRTQ4QUVGOTI5RkRDMjcyOTZEMUQ1MkY1 QkY2RTk5MTYwHhcNMjUwODIyMjExMTQ4WhcNMjUwODI5MjExMTQ4WjAYMRYwFAYD VQQDEw02OGE4ZGQxNC01NzE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlp9UMqLh1lJza5d1soPDcRfal6Sc61JczEufcPdT6OumBmb+dSJne6oG8eib npzzJkv4L+NgW5/D8srFMHWWTM8P5XwSIZtfGUMxNcXz+iZes9s6Scvdxk2VoWZm AQAewGpao4420VWs7znKpTDsVIBjCMAv7pT5fnT6TVS98LunowVUs21MgOUHAGjp BtAvUBI+PtGjger6E5KAdapy9sRKgfKsfAO9CKjLqwHvBVZSOxubeK5oftvK+cpr ssxWZQNoZ2GHJ8yyI9ZaNCl3I4B9JxELAOK44pPZvrItdwl1ZrMP0kTYUVyIYrcW 2CsQnnfGhHy9x3AXq73XpyrfkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNdYBLNZ U/OiNGn0IDriyoNK0qSfMB8GA1UdIwQYMBaAFMW2o2Dkiu+Sn9wnKW0dUvW/bpkW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDA4OC80NEJBN0NBMkZE OUQxMUVBQTA0RUI4N0RDNEY5QUUwMi94YmFqWU9TSzc1S2YzQ2NwYlIxUzliOXVt UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hiYWpZT1NLNzVLZjNDY3BiUjFTOWI5dW1SWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDA4OC80NEJBN0NBMkZEOUQxMUVBQTA0RUI4N0RDNEY5QUUwMi94YmFqWU9TSzc1 S2YzQ2NwYlIxUzliOXVtUlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAT1tVVTZo1Ikq7XPr7pkdEtZfjJFayzIYWhNGletA/wXLazyO3xM4l Tg9D72aEtIaAjVGQehNE9vHympDtzb+JCXaYMDRVoJJt1MBu6vIclSJVY02r+8l9 YnExELWdRTsKcgdCcj7TgOPNSBL1hfetMtjjfm2un8rZIngZZfQeq21oaOWKO7bg xcID3K4WcefC3LbGDBDJsVnnvNm6jK+0j8Qed3xS719n7j5FGfume2CehpY/3GFU 0OYmq46jIOHiHEuVhfJt28l9hEI6zifpOv8jVIb1UBVlY4m48ECn0gvmcHKWPFPN xqv33OcWgXymi0MrDn0mokLjYB2mebDn -----END CERTIFICATE-----Generated at Sat Aug 23 21:01:37 2025 by rpki-client