$ rpki-client -vvf rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft File: XKzlv2VarPfLxicsXGl_N3oGzow.mft (raw, json) Hash identifier: CFV0jDAO45hFLFYFlWww9ry6bhf0d+W3p30TG9vrQAA= Subject key identifier: F6:75:04:7C:E4:4B:63:35:A3:A6:7B:5B:00:B4:61:2C:F1:F3:10:1A Authority key identifier: 5C:AC:E5:BF:65:5A:AC:F7:CB:C6:27:2C:5C:69:7F:37:7A:06:CE:8C Certificate issuer: /CN=A917C9BF/serialNumber=5CACE5BF655AACF7CBC6272C5C697F377A06CE8C Certificate serial: A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft Manifest number: A4 Signing time: Fri 25 Jul 2025 06:37:55 +0000 Manifest this update: Fri 25 Jul 2025 06:37:55 +0000 Manifest next update: Fri 01 Aug 2025 06:37:55 +0000 Files and hashes: 1: XKzlv2VarPfLxicsXGl_N3oGzow.crl (hash: agxL4Wi6UNzVpYe8vnISdhrwskErbQFC6FviqumzU6U=) 2: 15875DC27B5E11EFAB71253BC4F9AE02.roa (hash: 0W2/njWu/4NeHHOITSUzSzI4ic/vgB1fnauNrzPM4sc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.crl rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 01 Aug 2025 06:37:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 169 (0xa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C9BF, serialNumber=5CACE5BF655AACF7CBC6272C5C697F377A06CE8C Validity Not Before: Jul 25 06:37:55 2025 GMT Not After : Aug 1 06:37:55 2025 GMT Subject: CN=68832643-8efd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:0a:17:ec:4a:81:b8:fe:5f:d6:cd:4f:b9:7a: a0:ac:24:8e:d6:e1:76:5e:0b:2e:14:98:09:99:74: b4:10:90:bd:e6:69:16:03:9c:4e:7d:f3:7c:87:72: 37:c6:b7:db:a6:8f:1d:9e:a2:93:ad:6f:6a:9c:af: 16:26:a1:9d:c5:e2:e9:22:78:a4:9d:2b:37:b3:69: 5c:7a:08:f7:5e:84:b1:47:ec:a6:6e:f9:47:73:44: a1:2d:c7:b3:c8:ac:c3:c6:da:77:18:cb:72:3b:1d: fb:e2:fa:25:ad:02:1a:ad:4f:a0:8c:49:6e:c9:5d: fe:7c:91:11:d7:26:1a:f5:f9:43:57:7e:bb:2b:bb: 56:eb:9d:6c:b8:9a:7a:c7:7a:6d:a9:73:f7:21:47: f3:c8:02:0c:dc:4d:e3:33:f0:75:cc:57:65:93:2e: 6d:69:f2:18:0e:18:0e:6e:56:a4:1c:ca:15:c0:fc: 8f:dc:63:60:82:93:b4:a2:dc:e2:63:cd:17:ac:4d: 3b:89:c1:d9:2d:ab:97:73:af:4f:b5:98:10:fb:1e: ef:46:56:5a:f4:0a:0f:63:f3:a5:0b:92:2f:03:d5: a9:41:79:8b:20:1e:b2:52:5e:05:49:09:35:2f:2e: 42:2e:7b:6a:39:70:cf:d0:09:0b:72:10:12:8c:9b: 05:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:75:04:7C:E4:4B:63:35:A3:A6:7B:5B:00:B4:61:2C:F1:F3:10:1A X509v3 Authority Key Identifier: keyid:5C:AC:E5:BF:65:5A:AC:F7:CB:C6:27:2C:5C:69:7F:37:7A:06:CE:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKzlv2VarPfLxicsXGl_N3oGzow.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C9BF/BE1D4A347B4D11EFB0236C78C4F9AE02/XKzlv2VarPfLxicsXGl_N3oGzow.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:3b:66:0d:60:e0:a2:cc:30:3f:6c:1e:45:9f:42:58:15:4a: fb:e3:1f:93:e6:e9:f0:49:10:f3:15:98:d4:20:a7:90:0f:4b: bd:90:d7:21:ba:18:17:b9:ac:d0:6b:a7:af:5f:87:db:6a:3c: ab:99:be:45:01:41:1c:e7:3d:d6:db:ab:72:f9:d3:d8:cd:7d: 96:ac:44:11:10:81:9e:37:8f:49:e9:89:46:36:c0:8e:d5:4f: d3:5c:19:5e:f9:7e:c8:78:bc:8b:94:92:e7:27:80:da:9a:81: c9:c0:39:90:dc:dc:f2:02:fd:1c:0f:b9:96:a6:5a:a5:a6:9e: 53:a9:88:dd:32:d8:2f:9f:f6:ac:53:eb:55:02:14:0d:00:bf: c4:a1:b3:1a:7f:ce:31:77:85:05:10:41:e7:c5:a0:8f:b9:af: d4:73:74:74:0b:3c:6f:e6:a9:ad:10:41:d4:45:d6:5e:7d:15: 36:44:91:21:4e:23:4d:9d:cc:62:4b:03:20:cb:75:b1:15:5f: cf:2b:af:b9:3b:78:8d:f2:7d:cd:92:80:3a:88:52:4e:41:e1: 16:19:52:1f:2f:18:87:9c:b6:21:f1:2d:15:34:62:89:f3:74: c5:fc:e6:21:cf:5b:67:2a:7a:84:35:58:5f:bc:ab:d1:f0:9f: 11:a2:1c:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5QkYxMTAvBgNVBAUTKDVDQUNFNUJGNjU1QUFDRjdDQkM2MjcyQzVDNjk3RjM3 N0EwNkNFOEMwHhcNMjUwNzI1MDYzNzU1WhcNMjUwODAxMDYzNzU1WjAYMRYwFAYD VQQDEw02ODgzMjY0My04ZWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvAoX7EqBuP5f1s1PuXqgrCSO1uF2XgsuFJgJmXS0EJC95mkWA5xOffN8h3I3 xrfbpo8dnqKTrW9qnK8WJqGdxeLpIniknSs3s2lcegj3XoSxR+ymbvlHc0ShLcez yKzDxtp3GMtyOx374volrQIarU+gjEluyV3+fJER1yYa9flDV367K7tW651suJp6 x3ptqXP3IUfzyAIM3E3jM/B1zFdlky5tafIYDhgOblakHMoVwPyP3GNggpO0otzi Y80XrE07icHZLauXc69PtZgQ+x7vRlZa9AoPY/OlC5IvA9WpQXmLIB6yUl4FSQk1 Ly5CLntqOXDP0AkLchASjJsFmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPZ1BHzk S2M1o6Z7WwC0YSzx8xAaMB8GA1UdIwQYMBaAFFys5b9lWqz3y8YnLFxpfzd6Bs6M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzlCRi9CRTFENEEzNDdC NEQxMUVGQjAyMzZDNzhDNEY5QUUwMi9YS3psdjJWYXJQZkx4aWNzWEdsX04zb0d6 b3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hLemx2MlZhclBmTHhpY3NYR2xfTjNvR3pvdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzlCRi9CRTFENEEzNDdCNEQxMUVGQjAyMzZDNzhDNEY5QUUwMi9YS3psdjJWYXJQ Zkx4aWNzWEdsX04zb0d6b3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWO2YNYOCizDA/bB5Fn0JYFUr74x+T5unwSRDzFZjUIKeQD0u9kNch uhgXuazQa6evX4fbajyrmb5FAUEc5z3W26ty+dPYzX2WrEQREIGeN49J6YlGNsCO 1U/TXBle+X7IeLyLlJLnJ4DamoHJwDmQ3NzyAv0cD7mWplqlpp5TqYjdMtgvn/as U+tVAhQNAL/EobMaf84xd4UFEEHnxaCPua/Uc3R0Czxv5qmtEEHURdZefRU2RJEh TiNNncxiSwMgy3WxFV/PK6+5O3iN8n3NkoA6iFJOQeEWGVIfLxiHnLYh8S0VNGKJ 83TF/OYhz1tnKnqENVhfvKvR8J8RohyF -----END CERTIFICATE-----Generated at Sat Jul 26 11:53:31 2025 by rpki-client