$ rpki-client -vvf rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft File: xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft (raw, json) Hash identifier: r2EmP//on/KmDrzY3QesSTNo6/P/QvlM3l/qRkIjgEY= Subject key identifier: 43:5D:63:A3:3F:62:75:0A:CE:8B:86:A1:EF:82:C4:FC:55:CB:09:2B Authority key identifier: C7:0B:F3:DF:F4:50:23:D4:1A:F4:C4:DF:5D:76:50:40:B9:24:1A:C7 Certificate issuer: /CN=A91243FE/serialNumber=C70BF3DFF45023D41AF4C4DF5D765040B9241AC7 Certificate serial: 03C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft Manifest number: 03C3 Signing time: Sat 19 Jul 2025 01:03:16 +0000 Manifest this update: Sat 19 Jul 2025 01:03:15 +0000 Manifest next update: Sat 26 Jul 2025 01:03:15 +0000 Files and hashes: 1: xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl (hash: xZtX3bm01z4YpiqFVSn2MECkIfdfdDIKss/iJFSFK+M=) 2: 5ADF4C92956811EC9028F155C4F9AE02.roa (hash: 6C9pOBCK4sWDlaS78t/pprsEcl/8A0s9Wlk6KVMoAhE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 01:03:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 967 (0x3c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91243FE, serialNumber=C70BF3DFF45023D41AF4C4DF5D765040B9241AC7 Validity Not Before: Jul 19 01:03:15 2025 GMT Not After : Jul 26 01:03:15 2025 GMT Subject: CN=687aeed3-abd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:9f:98:6a:89:76:d1:45:55:04:dd:43:3a:5a: 55:cf:71:d8:5a:91:8b:33:18:14:aa:82:b0:08:96: 2d:d5:8b:89:26:74:59:4f:64:6b:88:ba:2b:7e:fd: 0c:df:68:4f:e2:89:56:9d:cc:8c:f4:7c:c6:fe:ad: b3:0b:e4:93:a1:4d:aa:63:cb:9a:b4:de:86:14:7c: 25:31:f4:60:57:5a:77:d9:e3:1c:80:8e:64:ed:90: cf:8a:2b:c0:b5:04:a7:c8:b6:d9:93:a4:52:52:a3: 82:04:7f:99:6a:d2:bf:64:95:3d:0d:7f:5b:1a:c3: a8:1a:3f:ec:64:2f:7a:c0:75:d6:d7:83:df:05:01: 6b:bd:03:d8:89:62:66:e2:94:37:6b:5b:f2:ba:3b: cd:5a:4d:07:38:44:33:80:ce:41:14:50:ca:b5:38: dc:4f:ef:63:80:0e:d5:39:32:e9:3d:28:36:af:1f: 23:9d:d8:78:a2:71:b2:9f:b9:5d:d6:18:cb:6a:4d: 05:bf:fd:d5:4c:ea:2d:a3:27:bc:10:11:35:e0:91: 02:f9:0e:ea:9c:f0:af:aa:51:a1:3c:5d:b0:ca:ce: ea:be:03:28:6c:86:3a:c8:77:cb:5e:d1:ed:dc:f8: 78:9d:9a:6d:ab:f7:7a:7e:ab:42:34:4c:1c:83:4f: 01:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:5D:63:A3:3F:62:75:0A:CE:8B:86:A1:EF:82:C4:FC:55:CB:09:2B X509v3 Authority Key Identifier: keyid:C7:0B:F3:DF:F4:50:23:D4:1A:F4:C4:DF:5D:76:50:40:B9:24:1A:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:0d:c1:25:b2:1a:ac:44:ba:87:8c:23:f9:1e:21:6a:62:c8: ed:a9:8b:50:57:71:d7:01:d9:36:9e:6a:29:96:ff:66:37:a9: 36:87:45:50:0f:cc:94:cc:85:d8:86:69:a9:04:81:3b:fe:5c: d0:84:9e:ef:61:ac:95:56:b5:f1:7d:13:6f:e4:bb:a9:71:65: b2:33:75:28:c7:37:27:ad:95:5d:93:aa:2c:19:6a:26:11:2b: 21:ba:45:d2:3c:23:5e:5f:79:31:a0:44:31:9e:9f:1d:82:f6: a4:ac:a0:d1:84:d4:b1:36:1f:9c:21:2f:30:71:6a:31:62:f6: b6:8b:e0:e7:17:c0:5e:73:4d:8b:d5:3d:19:e3:99:ab:f1:fd: fe:41:cb:c5:de:46:3c:a3:fa:49:9a:37:c8:f8:71:00:62:70: 56:26:00:19:af:7f:ae:34:4b:c0:ae:03:f8:4b:50:18:51:ff: 8a:2e:50:6d:48:61:5c:84:5a:e5:c5:b0:0f:07:dd:3a:47:d3: 01:ee:65:33:a0:e7:5a:1b:1f:a1:1a:6a:93:8f:42:08:57:19: e2:51:62:4a:70:0e:11:2e:a6:26:76:f6:29:33:a7:f6:24:08: 45:4c:60:52:7b:dd:ca:5e:5e:e1:a6:f3:fb:c1:7d:41:5c:59: 2e:ee:a7:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQzRkUxMTAvBgNVBAUTKEM3MEJGM0RGRjQ1MDIzRDQxQUY0QzRERjVENzY1MDQw QjkyNDFBQzcwHhcNMjUwNzE5MDEwMzE1WhcNMjUwNzI2MDEwMzE1WjAYMRYwFAYD VQQDEw02ODdhZWVkMy1hYmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsZ+Yaol20UVVBN1DOlpVz3HYWpGLMxgUqoKwCJYt1YuJJnRZT2RriLorfv0M 32hP4olWncyM9HzG/q2zC+SToU2qY8uatN6GFHwlMfRgV1p32eMcgI5k7ZDPiivA tQSnyLbZk6RSUqOCBH+ZatK/ZJU9DX9bGsOoGj/sZC96wHXW14PfBQFrvQPYiWJm 4pQ3a1vyujvNWk0HOEQzgM5BFFDKtTjcT+9jgA7VOTLpPSg2rx8jndh4onGyn7ld 1hjLak0Fv/3VTOotoye8EBE14JEC+Q7qnPCvqlGhPF2wys7qvgMobIY6yHfLXtHt 3Ph4nZptq/d6fqtCNEwcg08BwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFENdY6M/ YnUKzouGoe+CxPxVywkrMB8GA1UdIwQYMBaAFMcL89/0UCPUGvTE3112UEC5JBrH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDNGRS85ODE0ODA2Mjk1 NjUxMUVDOTE4M0JFNTNDNEY5QUUwMi94d3Z6M19SUUk5UWE5TVRmWFhaUVFMa2tH c2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h3dnozX1JRSTlRYTlNVGZYWFpRUUxra0dzYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDNGRS85ODE0ODA2Mjk1NjUxMUVDOTE4M0JFNTNDNEY5QUUwMi94d3Z6M19SUUk5 UWE5TVRmWFhaUVFMa2tHc2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACDcElshqsRLqHjCP5HiFqYsjtqYtQV3HXAdk2nmoplv9mN6k2h0VQ D8yUzIXYhmmpBIE7/lzQhJ7vYayVVrXxfRNv5LupcWWyM3UoxzcnrZVdk6osGWom ESshukXSPCNeX3kxoEQxnp8dgvakrKDRhNSxNh+cIS8wcWoxYva2i+DnF8Bec02L 1T0Z45mr8f3+QcvF3kY8o/pJmjfI+HEAYnBWJgAZr3+uNEvArgP4S1AYUf+KLlBt SGFchFrlxbAPB906R9MB7mUzoOdaGx+hGmqTj0IIVxniUWJKcA4RLqYmdvYpM6f2 JAhFTGBSe93KXl7hpvP7wX1BXFku7qeN -----END CERTIFICATE-----Generated at Sun Jul 20 04:06:28 2025 by rpki-client