$ rpki-client -vvf rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.mft File: xGIlbhG2PuqR1z02Q867tRojUK8.mft (raw, json) Hash identifier: o084k/ZGKLI3Vhfxx2mItix99NF9mGg43RatMbSyujA= Subject key identifier: BA:08:D6:65:65:E7:48:98:79:12:90:C3:F9:B5:ED:D2:74:AE:2F:F2 Authority key identifier: C4:62:25:6E:11:B6:3E:EA:91:D7:3D:36:43:CE:BB:B5:1A:23:50:AF Certificate issuer: /CN=A91A210A/serialNumber=C462256E11B63EEA91D73D3643CEBBB51A2350AF Certificate serial: 1072 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGIlbhG2PuqR1z02Q867tRojUK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.mft Manifest number: 1066 Signing time: Fri 18 Jul 2025 17:32:57 +0000 Manifest this update: Fri 18 Jul 2025 17:32:57 +0000 Manifest next update: Fri 25 Jul 2025 17:32:57 +0000 Files and hashes: 1: xGIlbhG2PuqR1z02Q867tRojUK8.crl (hash: XDiOmhM/ONxUfMIVqdU5tLZFVKtkQ2q7i3WmOeQ4zPc=) 2: 797BF786FB2C11EFA405F334C4F9AE02.roa (hash: zI34h0FmFtZZLolHCnykLI2wVD3iOXp1eKhUZqTjA48=) 3: 691023063A8311E99AF5572DC4F9AE02.roa (hash: Uy8f9hnHu5ZNhfoO9b7+eo6ci2jsbvNnSUlZAZd6nGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.crl rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGIlbhG2PuqR1z02Q867tRojUK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 17:32:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4210 (0x1072) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A210A, serialNumber=C462256E11B63EEA91D73D3643CEBBB51A2350AF Validity Not Before: Jul 18 17:32:57 2025 GMT Not After : Jul 25 17:32:57 2025 GMT Subject: CN=687a8549-0cc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d4:4a:a7:f9:5c:19:f8:3d:3f:30:52:2d:a2: 1a:69:52:69:59:46:3b:64:56:99:90:41:28:a0:ec: cf:7b:f8:ca:62:c1:75:dc:6e:48:81:0a:aa:e6:68: 24:9d:e5:8f:75:33:58:14:05:28:49:27:7c:44:45: 6e:b1:59:39:b2:92:c0:b9:9f:4e:82:e5:2c:44:cb: 42:64:fd:05:a0:f6:b0:85:0c:f5:09:a4:74:f4:63: b5:d8:83:25:f4:62:6f:27:78:41:ff:dd:fa:9b:76: 43:b3:b3:9c:20:e9:72:46:c6:d4:a8:78:a6:b2:2a: 81:b0:75:4a:b8:66:10:c3:9b:72:6a:67:13:df:df: d5:95:eb:38:5a:cd:3a:48:71:ce:97:02:87:62:64: de:18:45:9e:3d:09:91:3f:45:21:30:34:f1:d5:a5: d6:72:32:30:b5:3f:05:a4:6f:ab:be:ef:a2:b3:bc: a0:a2:74:72:90:90:c3:b1:91:f3:43:9a:74:a0:9e: bd:c6:fc:51:31:d9:1c:be:49:df:0a:93:0f:c7:91: 5f:59:31:86:84:2b:52:bd:4a:95:95:08:98:41:87: 8e:96:94:f3:39:62:25:45:81:f9:99:db:37:48:16: c7:b9:b5:34:ce:1b:d9:cd:27:45:cf:36:e8:46:33: 16:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:08:D6:65:65:E7:48:98:79:12:90:C3:F9:B5:ED:D2:74:AE:2F:F2 X509v3 Authority Key Identifier: keyid:C4:62:25:6E:11:B6:3E:EA:91:D7:3D:36:43:CE:BB:B5:1A:23:50:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGIlbhG2PuqR1z02Q867tRojUK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A210A/A538ADB83A8211E9A4C2812CC4F9AE02/xGIlbhG2PuqR1z02Q867tRojUK8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:98:d1:41:27:4e:c3:1b:da:97:d7:49:bf:12:c1:df:e9:38: cb:6e:5c:58:fe:3d:3a:f5:34:b0:9b:75:44:7d:f1:5e:2b:5a: fa:cb:85:19:ea:d1:9c:e9:43:8c:2e:ef:a8:14:d3:3d:66:88: df:d5:d7:87:d2:f5:7c:d3:f4:9b:7d:86:5f:e3:99:3d:f0:68: bd:a6:d1:f2:cf:da:66:15:4f:80:cc:4c:2c:d4:0f:0c:67:40: f3:c4:d0:6c:8a:8c:c0:c5:fc:81:aa:99:c1:1d:84:be:36:ed: 4a:b0:cd:51:62:b9:10:ca:8d:a8:df:da:60:11:2e:9a:16:69: 27:5d:e2:e9:02:ad:95:7f:78:1a:c8:37:e0:e4:5a:84:85:64: 40:1c:15:4d:44:22:b2:29:76:ae:5a:0a:8a:91:0f:35:0f:ff: 45:27:93:ce:c6:ec:25:2d:87:dc:3e:f4:33:22:ea:79:d2:fc: 9c:28:ff:eb:15:d1:82:96:d0:45:6a:4f:5c:cb:10:af:5a:49: 3d:cc:4c:dd:0f:1e:77:93:36:90:88:c8:55:5a:ce:58:30:96: e0:02:b2:3e:e8:4e:72:23:63:20:00:ec:19:35:06:c4:46:9e: 13:e6:6e:44:f6:2f:1b:4c:39:2b:d6:17:d0:3b:d2:56:26:63: d5:2f:cb:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEHIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTIxMEExMTAvBgNVBAUTKEM0NjIyNTZFMTFCNjNFRUE5MUQ3M0QzNjQzQ0VCQkI1 MUEyMzUwQUYwHhcNMjUwNzE4MTczMjU3WhcNMjUwNzI1MTczMjU3WjAYMRYwFAYD VQQDEw02ODdhODU0OS0wY2M5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArdRKp/lcGfg9PzBSLaIaaVJpWUY7ZFaZkEEooOzPe/jKYsF13G5IgQqq5mgk neWPdTNYFAUoSSd8REVusVk5spLAuZ9OguUsRMtCZP0FoPawhQz1CaR09GO12IMl 9GJvJ3hB/936m3ZDs7OcIOlyRsbUqHimsiqBsHVKuGYQw5tyamcT39/Vles4Ws06 SHHOlwKHYmTeGEWePQmRP0UhMDTx1aXWcjIwtT8FpG+rvu+is7ygonRykJDDsZHz Q5p0oJ69xvxRMdkcvknfCpMPx5FfWTGGhCtSvUqVlQiYQYeOlpTzOWIlRYH5mds3 SBbHubU0zhvZzSdFzzboRjMW/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLoI1mVl 50iYeRKQw/m17dJ0ri/yMB8GA1UdIwQYMBaAFMRiJW4Rtj7qkdc9NkPOu7UaI1Cv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjEwQS9BNTM4QURCODNB ODIxMUU5QTRDMjgxMkNDNEY5QUUwMi94R0lsYmhHMlB1cVIxejAyUTg2N3RSb2pV SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hHSWxiaEcyUHVxUjF6MDJRODY3dFJvalVLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjEwQS9BNTM4QURCODNBODIxMUU5QTRDMjgxMkNDNEY5QUUwMi94R0lsYmhHMlB1 cVIxejAyUTg2N3RSb2pVSzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6mNFBJ07DG9qX10m/EsHf6TjLblxY/j069TSwm3VEffFeK1r6y4UZ 6tGc6UOMLu+oFNM9Zojf1deH0vV80/SbfYZf45k98Gi9ptHyz9pmFU+AzEws1A8M Z0DzxNBsiozAxfyBqpnBHYS+Nu1KsM1RYrkQyo2o39pgES6aFmknXeLpAq2Vf3ga yDfg5FqEhWRAHBVNRCKyKXauWgqKkQ81D/9FJ5POxuwlLYfcPvQzIup50vycKP/r FdGCltBFak9cyxCvWkk9zEzdDx53kzaQiMhVWs5YMJbgArI+6E5yI2MgAOwZNQbE Rp4T5m5E9i8bTDkr1hfQO9JWJmPVL8u6 -----END CERTIFICATE-----Generated at Sun Jul 20 14:05:13 2025 by rpki-client