$ rpki-client -vvf rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft File: XLz7z59AY6eYAiqPHiafvf6jb_g.mft (raw, json) Hash identifier: 2laSSveSFkHJEwE8yINZEhHECT46wNqoPx5WPCopnxw= Subject key identifier: 53:60:61:F2:8C:C3:BB:15:AE:3C:73:EE:2D:5B:71:A1:7E:8F:38:4C Authority key identifier: 5C:BC:FB:CF:9F:40:63:A7:98:02:2A:8F:1E:26:9F:BD:FE:A3:6F:F8 Certificate issuer: /CN=A917F4F2/serialNumber=5CBCFBCF9F4063A798022A8F1E269FBDFEA36FF8 Certificate serial: 0307 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft Manifest number: 0303 Signing time: Mon 21 Jul 2025 01:30:53 +0000 Manifest this update: Mon 21 Jul 2025 01:30:53 +0000 Manifest next update: Mon 28 Jul 2025 01:30:53 +0000 Files and hashes: 1: XLz7z59AY6eYAiqPHiafvf6jb_g.crl (hash: RqFgmFyXb7h82Lg5Mt9Ih+MEQydbpajK4AFC+FeIBfQ=) 2: CA455C5CE0B311ECBC9BEA63C4F9AE02.roa (hash: +ZSBEXRcgClmiO74ln8lB46inGp0vsN6jKOzaxEdX6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.crl rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 01:30:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 775 (0x307) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F4F2, serialNumber=5CBCFBCF9F4063A798022A8F1E269FBDFEA36FF8 Validity Not Before: Jul 21 01:30:53 2025 GMT Not After : Jul 28 01:30:53 2025 GMT Subject: CN=687d984d-1d15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b0:6b:f9:31:04:ba:b1:9a:d6:4e:9a:8e:47: 29:90:4b:0e:cd:69:2a:99:c4:48:61:1b:85:53:35: 20:57:9f:b6:20:d2:62:83:45:87:32:18:b6:67:24: f0:27:ea:42:4c:9d:8c:6c:73:d7:01:d3:09:93:7e: 2c:ac:e2:ff:82:7f:82:62:10:d0:4a:64:b6:da:66: f5:6b:73:0d:67:9e:12:8d:42:b2:d6:dc:fe:aa:38: 24:c1:3b:20:e1:06:de:d4:e1:68:fe:7c:87:33:da: de:1c:e5:71:16:8c:f9:04:7d:ad:87:80:86:14:48: 5d:f9:9e:6a:05:64:68:fc:c1:a2:9e:6a:87:82:4c: 82:05:79:62:3c:99:08:ab:16:e7:e2:6c:a3:17:e2: 9a:81:e7:74:82:5c:f2:0a:31:21:69:11:0c:94:01: e8:0b:46:1a:f4:a4:2a:e4:5f:81:93:d8:b0:1b:48: c6:ac:64:ee:ff:6b:66:29:f4:3c:e3:39:63:b3:0f: be:fe:cc:0e:c0:85:11:81:78:b5:71:c5:0c:03:2f: a4:ac:e2:1d:97:f2:15:bd:e0:2b:2f:35:de:6c:f7: 88:78:fc:77:5c:ba:f8:4f:68:0f:e2:3f:89:b3:75: b9:6d:1c:02:d4:8e:a2:48:53:01:18:08:85:36:be: f1:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:60:61:F2:8C:C3:BB:15:AE:3C:73:EE:2D:5B:71:A1:7E:8F:38:4C X509v3 Authority Key Identifier: keyid:5C:BC:FB:CF:9F:40:63:A7:98:02:2A:8F:1E:26:9F:BD:FE:A3:6F:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:47:08:30:d3:96:4f:c1:e3:f9:74:f8:e8:e0:eb:3b:18:e9: 47:d0:81:91:98:67:80:4c:2e:fb:04:a6:27:55:67:6f:42:0c: d1:b6:a3:6d:72:79:62:4c:ac:68:e6:1b:d0:0f:bb:40:34:cb: 92:35:32:2c:dc:7d:cf:a8:b1:a7:b5:9c:86:30:14:b3:40:15: c6:40:4d:73:07:be:2a:65:1b:3b:2f:27:44:e8:e3:ef:23:77: 12:9e:92:21:48:be:31:5e:c8:96:8b:15:76:8f:3a:79:a3:0d: ba:1d:57:0f:b3:3f:ce:d4:e6:7c:e5:15:40:5a:ec:73:c2:72: ae:ac:fe:e2:df:a3:4c:d7:f4:c7:a0:52:70:4b:65:20:d2:53: 2d:ea:b2:db:85:bb:11:9c:c3:4e:72:a2:2e:fc:5a:85:68:96: 74:96:cb:f2:21:5e:a3:9e:9a:36:ee:17:0b:56:75:3f:2e:85: 9a:a1:27:5d:8f:0e:6a:aa:56:be:40:a1:5b:e8:78:80:3d:91: d0:24:63:6b:e7:6d:56:71:8a:2a:3f:5c:ef:43:4e:ab:65:13: 01:65:ee:a0:c2:51:fd:53:f2:7a:d4:1f:21:09:6e:37:04:e9: 04:8e:40:73:b7:31:e5:0c:8d:0a:ad:4e:ba:da:7b:a0:d1:c5: 3e:87:b0:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y0RjIxMTAvBgNVBAUTKDVDQkNGQkNGOUY0MDYzQTc5ODAyMkE4RjFFMjY5RkJE RkVBMzZGRjgwHhcNMjUwNzIxMDEzMDUzWhcNMjUwNzI4MDEzMDUzWjAYMRYwFAYD VQQDEw02ODdkOTg0ZC0xZDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx7Br+TEEurGa1k6ajkcpkEsOzWkqmcRIYRuFUzUgV5+2INJig0WHMhi2ZyTw J+pCTJ2MbHPXAdMJk34srOL/gn+CYhDQSmS22mb1a3MNZ54SjUKy1tz+qjgkwTsg 4Qbe1OFo/nyHM9reHOVxFoz5BH2th4CGFEhd+Z5qBWRo/MGinmqHgkyCBXliPJkI qxbn4myjF+Kaged0glzyCjEhaREMlAHoC0Ya9KQq5F+Bk9iwG0jGrGTu/2tmKfQ8 4zljsw++/swOwIURgXi1ccUMAy+krOIdl/IVveArLzXebPeIePx3XLr4T2gP4j+J s3W5bRwC1I6iSFMBGAiFNr7xRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFNgYfKM w7sVrjxz7i1bcaF+jzhMMB8GA1UdIwQYMBaAFFy8+8+fQGOnmAIqjx4mn73+o2/4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjRGMi8zNEQ1NTQzMkUw QUYxMUVDODI5MDJGNkRDNEY5QUUwMi9YTHo3ejU5QVk2ZVlBaXFQSGlhZnZmNmpi X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hMejd6NTlBWTZlWUFpcVBIaWFmdmY2amJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjRGMi8zNEQ1NTQzMkUwQUYxMUVDODI5MDJGNkRDNEY5QUUwMi9YTHo3ejU5QVk2 ZVlBaXFQSGlhZnZmNmpiX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxRwgw05ZPweP5dPjo4Os7GOlH0IGRmGeATC77BKYnVWdvQgzRtqNt cnliTKxo5hvQD7tANMuSNTIs3H3PqLGntZyGMBSzQBXGQE1zB74qZRs7LydE6OPv I3cSnpIhSL4xXsiWixV2jzp5ow26HVcPsz/O1OZ85RVAWuxzwnKurP7i36NM1/TH oFJwS2Ug0lMt6rLbhbsRnMNOcqIu/FqFaJZ0lsvyIV6jnpo27hcLVnU/LoWaoSdd jw5qqla+QKFb6HiAPZHQJGNr521WcYoqP1zvQ06rZRMBZe6gwlH9U/J61B8hCW43 BOkEjkBztzHlDI0KrU662nug0cU+h7AF -----END CERTIFICATE-----Generated at Tue Jul 22 12:09:47 2025 by rpki-client