$ rpki-client -vvf rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft File: X3A2SNc_YGlFARjbom-WaC1a5so.mft (raw, json) Hash identifier: GEwHJGt5JnyqbJQ+JB9KUcFUxCu6iskKXpaXyhDwqus= Subject key identifier: 7C:70:D2:A4:75:9A:A2:44:37:88:FE:35:B3:49:34:38:78:CB:CF:7B Authority key identifier: 5F:70:36:48:D7:3F:60:69:45:01:18:DB:A2:6F:96:68:2D:5A:E6:CA Certificate issuer: /CN=A91508BB/serialNumber=5F703648D73F6069450118DBA26F96682D5AE6CA Certificate serial: 349D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft Manifest number: 349D Signing time: Fri 18 Jul 2025 14:39:07 +0000 Manifest this update: Fri 18 Jul 2025 14:39:06 +0000 Manifest next update: Fri 25 Jul 2025 14:39:06 +0000 Files and hashes: 1: X3A2SNc_YGlFARjbom-WaC1a5so.crl (hash: gWLZiHcU/T2YEtP6CNQwLcejym9pe5jmBwOSmE/AKE4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.crl rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 14:39:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13469 (0x349d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91508BB, serialNumber=5F703648D73F6069450118DBA26F96682D5AE6CA Validity Not Before: Jul 18 14:39:06 2025 GMT Not After : Jul 25 14:39:06 2025 GMT Subject: CN=687a5c8b-c7ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b5:ec:80:29:1a:ea:f2:be:46:f3:5a:68:9b: b0:a9:32:c8:b0:f0:b8:88:17:94:f5:dd:28:18:db: e8:38:46:7c:51:c9:fe:4d:31:35:37:11:20:36:44: de:e1:73:c5:8c:f5:2f:d8:07:c8:80:d3:ce:77:8f: e3:d0:c6:de:72:10:56:12:75:6a:21:a2:6b:fa:70: 94:b5:56:3b:92:e5:88:8a:60:45:33:13:64:6e:1c: 8d:d9:c4:e4:79:e2:d6:af:99:a4:c8:0f:43:fc:23: 5e:19:e7:c9:65:3d:8d:f4:a2:d2:70:99:eb:a9:7a: 0b:fe:04:37:ec:0c:b1:80:06:23:1c:7f:db:b9:4f: a3:72:e2:c7:0d:06:be:a7:47:9e:a0:f0:9f:e7:01: 19:f7:e5:c6:ae:a3:81:3f:85:7f:07:2c:9c:00:a8: 4a:b3:b1:c2:4e:cd:16:5f:58:d7:a4:10:08:e6:03: c9:14:7a:87:9c:b6:9d:f4:8b:f0:fb:ba:d8:ac:df: ad:c5:32:bb:03:08:63:08:5a:40:f8:74:3a:ba:09: dc:5a:90:54:a4:83:47:0f:f4:0e:c8:ad:7f:07:10: f8:31:62:a4:a2:44:c9:44:17:45:3e:6e:17:96:ea: 6d:03:96:c3:a1:ce:87:0f:cd:84:61:1e:7d:aa:76: 0c:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:70:D2:A4:75:9A:A2:44:37:88:FE:35:B3:49:34:38:78:CB:CF:7B X509v3 Authority Key Identifier: keyid:5F:70:36:48:D7:3F:60:69:45:01:18:DB:A2:6F:96:68:2D:5A:E6:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:10:6c:71:98:d2:57:f5:46:37:9a:12:83:b0:46:15:94:f5: 8d:91:62:09:bb:5d:22:5a:b3:a7:35:ba:a6:bb:4a:d6:41:12: 66:c3:8d:77:2e:1b:d6:49:33:dd:b4:b1:95:51:8a:a8:8d:81: c1:54:6a:f9:7a:3a:30:b8:68:de:a1:13:a6:3e:34:41:15:9a: 81:57:7d:8e:11:53:d0:92:fa:99:1f:9c:7a:b0:f4:ec:b2:02: 9e:73:6c:97:13:77:59:4f:23:ff:55:c9:e6:83:4a:59:e3:12: ac:26:05:68:cc:c9:da:c6:c5:8e:f5:3a:41:6f:d7:d5:29:23: 48:5c:8e:c0:ee:c1:bb:30:18:9d:6a:c4:fb:e7:df:f0:61:07: 41:03:9e:6c:9c:61:d9:24:44:87:38:27:f2:1c:45:f8:34:53: bf:b5:d2:0d:89:0f:15:e9:e2:78:f4:55:f0:fa:9e:11:63:38: 3b:94:db:79:e1:8e:be:41:f4:22:88:2d:af:0f:97:93:df:1c: 99:64:d2:36:7d:56:96:ac:2f:0a:10:7d:0d:69:76:12:7d:5b: 46:d5:29:15:3a:9d:f4:98:11:1e:29:fe:92:da:b4:23:5e:3e: 6c:19:47:f5:15:48:fc:70:fd:41:a9:b1:20:69:b7:b9:80:09: 0b:a5:10:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA4QkIxMTAvBgNVBAUTKDVGNzAzNjQ4RDczRjYwNjk0NTAxMThEQkEyNkY5NjY4 MkQ1QUU2Q0EwHhcNMjUwNzE4MTQzOTA2WhcNMjUwNzI1MTQzOTA2WjAYMRYwFAYD VQQDEw02ODdhNWM4Yi1jN2ZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqrXsgCka6vK+RvNaaJuwqTLIsPC4iBeU9d0oGNvoOEZ8Ucn+TTE1NxEgNkTe 4XPFjPUv2AfIgNPOd4/j0MbechBWEnVqIaJr+nCUtVY7kuWIimBFMxNkbhyN2cTk eeLWr5mkyA9D/CNeGefJZT2N9KLScJnrqXoL/gQ37AyxgAYjHH/buU+jcuLHDQa+ p0eeoPCf5wEZ9+XGrqOBP4V/ByycAKhKs7HCTs0WX1jXpBAI5gPJFHqHnLad9Ivw +7rYrN+txTK7AwhjCFpA+HQ6ugncWpBUpINHD/QOyK1/BxD4MWKkokTJRBdFPm4X luptA5bDoc6HD82EYR59qnYMGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHxw0qR1 mqJEN4j+NbNJNDh4y897MB8GA1UdIwQYMBaAFF9wNkjXP2BpRQEY26JvlmgtWubK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDhCQi81QTBEOTU4ODFE OEQxMUUyQTlENjA3RUIwOEIwMkNEMi9YM0EyU05jX1lHbEZBUmpib20tV2FDMWE1 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gzQTJTTmNfWUdsRkFSamJvbS1XYUMxYTVzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDhCQi81QTBEOTU4ODFEOEQxMUUyQTlENjA3RUIwOEIwMkNEMi9YM0EyU05jX1lH bEZBUmpib20tV2FDMWE1c28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHEGxxmNJX9UY3mhKDsEYVlPWNkWIJu10iWrOnNbqmu0rWQRJmw413 LhvWSTPdtLGVUYqojYHBVGr5ejowuGjeoROmPjRBFZqBV32OEVPQkvqZH5x6sPTs sgKec2yXE3dZTyP/Vcnmg0pZ4xKsJgVozMnaxsWO9TpBb9fVKSNIXI7A7sG7MBid asT759/wYQdBA55snGHZJESHOCfyHEX4NFO/tdINiQ8V6eJ49FXw+p4RYzg7lNt5 4Y6+QfQiiC2vD5eT3xyZZNI2fVaWrC8KEH0NaXYSfVtG1SkVOp30mBEeKf6S2rQj Xj5sGUf1FUj8cP1BqbEgabe5gAkLpRAk -----END CERTIFICATE-----Generated at Sun Jul 20 10:29:15 2025 by rpki-client