$ rpki-client -vvf rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft File: XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft (raw, json) Hash identifier: lnaQqp3rOv30pqYAaWxs4Z+wIm+ZpU1MIx5phNcdbd8= Subject key identifier: B3:8D:36:BE:8A:44:DA:39:7E:BD:D5:2D:DD:17:00:8C:06:BA:F2:4E Authority key identifier: 5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A Certificate issuer: /CN=A91524AF/serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Certificate serial: 04A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft Manifest number: 048C Signing time: Sat 19 Jul 2025 00:29:30 +0000 Manifest this update: Sat 19 Jul 2025 00:29:29 +0000 Manifest next update: Sat 26 Jul 2025 00:29:29 +0000 Files and hashes: 1: XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl (hash: BVQD3WrXowmBTXkYb2DYcurI4Y/P76pe8Cncvyolg1U=) 2: BEB34436FE3211EFAA1D9A4EC4F9AE02.roa (hash: yFDpBLHsX38bp2JcWh75H9eK/2yaSCGu63FKHuPPshA=) 3: 87840F3AFBD111EFB4804F27C4F9AE02.roa (hash: 4ehbMo37a6ch/Exe1ear/YvsEg7kjNmAG4ZYn9dhULQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:29:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1187 (0x4a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91524AF, serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Validity Not Before: Jul 19 00:29:29 2025 GMT Not After : Jul 26 00:29:29 2025 GMT Subject: CN=687ae6e9-a41e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:e4:60:ce:41:3b:77:c1:5e:0d:76:b0:83:36: 8e:d6:80:e4:1a:40:89:16:61:86:c8:62:11:48:ec: f5:3b:66:b3:04:67:be:74:84:63:b9:42:36:24:23: 91:59:de:cf:b2:4c:36:35:d5:7b:c3:e5:90:36:4b: b7:41:5d:88:6f:9d:ac:f2:d8:41:26:49:b0:21:e4: 12:6e:1e:87:fc:2a:71:23:e1:15:f4:2c:ed:4d:73: 83:80:4d:0c:61:84:76:58:93:1c:33:59:75:69:c3: 40:d3:49:91:94:28:87:ae:31:67:e7:b6:b6:09:3e: b7:bc:c2:dc:51:de:90:81:99:f8:85:1f:c5:d4:af: 76:98:2d:06:02:cb:37:20:9c:f5:5e:7e:c8:97:34: 42:e3:1c:39:82:ee:05:ea:7c:54:88:e2:c1:d4:06: b2:39:11:6a:7b:45:f2:10:59:4f:37:90:07:73:ef: d7:55:61:89:b2:34:a7:ea:96:cf:22:81:7a:e4:af: e0:d4:3f:cf:7c:36:94:a0:9c:04:c0:46:45:b4:4a: a0:ee:1c:ec:30:b9:fd:25:7a:b1:fe:3b:5a:60:e7: 93:9e:a1:b9:05:db:f7:3d:57:24:03:7d:d7:54:08: 5b:17:4e:ac:5c:b6:11:5e:b9:c1:f6:61:b0:b3:3e: 01:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:8D:36:BE:8A:44:DA:39:7E:BD:D5:2D:DD:17:00:8C:06:BA:F2:4E X509v3 Authority Key Identifier: keyid:5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:15:8d:c8:80:e6:5f:76:4c:9a:5a:23:6f:c5:3c:7b:64:a1: ba:ec:58:76:27:b7:b0:2a:f5:de:47:68:ba:a8:7d:41:e0:dd: c7:3c:9a:39:8c:f9:24:8f:d8:21:c4:d0:f7:dd:c0:8c:d5:48: e0:03:76:f0:70:88:d3:29:1a:bc:70:c6:68:a8:1a:b8:52:2f: 0a:10:22:6c:f1:05:f1:8d:2a:56:28:03:37:49:1d:fc:00:0e: fb:14:7d:d5:2f:3f:e0:ba:29:be:20:ca:89:dd:6f:32:85:77: 84:e3:4f:a4:bf:79:51:cc:29:68:75:9d:db:73:8d:8e:cf:e7: 41:6f:3c:b0:41:3e:a6:bf:d1:b7:a0:7b:6d:b6:7d:9d:b1:58: 6c:e7:7d:94:8a:db:ef:28:22:6c:77:09:51:b3:43:85:c9:66: 72:c8:3b:d6:8c:f4:72:55:e3:cd:5d:9b:1d:9c:83:38:81:11: 9c:63:c8:05:e3:e0:58:55:72:11:e4:01:bc:d0:da:7f:4e:36: 40:99:94:cb:dd:b5:46:6b:d8:2c:0c:fb:7e:a3:93:84:9f:c7: 95:8c:8f:15:84:df:6d:11:8e:8b:14:ad:cf:07:36:d3:03:82: 1d:56:7f:48:67:31:b8:4f:83:b6:c5:e7:49:88:c6:64:36:28: 4d:3f:66:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI0QUYxMTAvBgNVBAUTKDVDMzE1REFGQzUzQTgyRkRENjJDNzIwMDVDNzY0NDMz M0JDMDI5N0EwHhcNMjUwNzE5MDAyOTI5WhcNMjUwNzI2MDAyOTI5WjAYMRYwFAYD VQQDEw02ODdhZTZlOS1hNDFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxeRgzkE7d8FeDXawgzaO1oDkGkCJFmGGyGIRSOz1O2azBGe+dIRjuUI2JCOR Wd7Pskw2NdV7w+WQNku3QV2Ib52s8thBJkmwIeQSbh6H/CpxI+EV9CztTXODgE0M YYR2WJMcM1l1acNA00mRlCiHrjFn57a2CT63vMLcUd6QgZn4hR/F1K92mC0GAss3 IJz1Xn7IlzRC4xw5gu4F6nxUiOLB1AayORFqe0XyEFlPN5AHc+/XVWGJsjSn6pbP IoF65K/g1D/PfDaUoJwEwEZFtEqg7hzsMLn9JXqx/jtaYOeTnqG5Bdv3PVckA33X VAhbF06sXLYRXrnB9mGwsz4BFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLONNr6K RNo5fr3VLd0XAIwGuvJOMB8GA1UdIwQYMBaAFFwxXa/FOoL91ixyAFx2RDM7wCl6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjRBRi83NkM3RjBGNDUx RjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2M1dMSElBWEhaRU16dkFL WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hERmRyOFU2Z3YzV0xISUFYSFpFTXp2QUtYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjRBRi83NkM3RjBGNDUxRjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2 M1dMSElBWEhaRU16dkFLWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJFY3IgOZfdkyaWiNvxTx7ZKG67Fh2J7ewKvXeR2i6qH1B4N3HPJo5 jPkkj9ghxND33cCM1UjgA3bwcIjTKRq8cMZoqBq4Ui8KECJs8QXxjSpWKAM3SR38 AA77FH3VLz/guim+IMqJ3W8yhXeE40+kv3lRzClodZ3bc42Oz+dBbzywQT6mv9G3 oHtttn2dsVhs532UitvvKCJsdwlRs0OFyWZyyDvWjPRyVePNXZsdnIM4gRGcY8gF 4+BYVXIR5AG80Np/TjZAmZTL3bVGa9gsDPt+o5OEn8eVjI8VhN9tEY6LFK3PBzbT A4IdVn9IZzG4T4O2xedJiMZkNihNP2aH -----END CERTIFICATE-----Generated at Sun Jul 20 14:20:44 2025 by rpki-client