$ rpki-client -vvf rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft File: XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft (raw, json) Hash identifier: 9a3SgP2Lc3NXa7yiw3naUC/2ULM2+M9XLloxJG6v7sA= Subject key identifier: 46:2F:C8:8B:F3:B4:63:8F:89:FF:8B:62:39:0F:A1:83:2C:7E:2F:D3 Authority key identifier: 5F:1C:53:4A:EE:FF:4E:38:0C:E5:A0:9A:10:84:BF:8F:57:09:ED:08 Certificate issuer: /CN=A91A467D/serialNumber=5F1C534AEEFF4E380CE5A09A1084BF8F5709ED08 Certificate serial: 0B02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft Manifest number: 0AFB Signing time: Fri 18 Jul 2025 19:36:04 +0000 Manifest this update: Fri 18 Jul 2025 19:36:02 +0000 Manifest next update: Fri 25 Jul 2025 19:36:02 +0000 Files and hashes: 1: XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl (hash: lBY8u+neZLanxrqNoiioULc0P8GUZT6L0qEDO5AYqcI=) 2: 43272DE249AA11EABABC8610C4F9AE02.roa (hash: ArNuSAGS500F2Au8BkBemb4Fqw5PMgC4H5tbUjnLNK4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 19:36:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2818 (0xb02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A467D, serialNumber=5F1C534AEEFF4E380CE5A09A1084BF8F5709ED08 Validity Not Before: Jul 18 19:36:02 2025 GMT Not After : Jul 25 19:36:02 2025 GMT Subject: CN=687aa223-fbeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c0:7e:7c:cc:1c:5d:b5:8b:36:fe:09:b3:a8: 67:cf:57:25:2c:7d:ed:58:b7:8f:61:7b:be:3b:87: b3:de:cc:ad:b8:21:16:26:8d:36:c2:98:6d:71:bf: 34:a6:dd:2b:df:0a:fd:bf:7d:8f:9f:94:24:65:61: e0:9a:61:3d:1f:43:af:4d:4a:ad:d6:dc:86:61:2c: f0:bd:d7:27:bb:db:97:b3:e0:5e:20:b0:75:0f:b4: 34:25:0e:86:06:51:48:75:c9:e0:cf:26:c1:5d:dd: 64:59:12:13:11:df:fc:ee:df:c1:19:8a:b3:cf:7e: 66:58:1a:bf:c7:1f:63:1a:a0:16:91:be:0c:4c:42: 24:5c:10:a2:62:f0:2a:12:a2:e0:9a:fb:35:41:a3: b1:54:8a:83:b0:f2:32:59:10:39:44:62:b8:ed:eb: 80:0a:f0:49:86:a3:8e:44:fb:0c:e0:8d:49:3c:6f: f8:14:9e:cc:57:48:4e:bd:59:e5:b7:9d:a6:fa:d5: 49:64:8f:8e:32:3e:c4:d9:64:c6:79:2a:df:08:be: f2:5c:2b:ea:bc:87:07:7a:54:65:e5:96:47:2e:ed: 49:35:d2:b6:6f:77:37:90:82:48:72:54:52:23:73: 0c:35:04:71:87:1b:61:35:c5:ee:17:3b:42:98:6f: 5a:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:2F:C8:8B:F3:B4:63:8F:89:FF:8B:62:39:0F:A1:83:2C:7E:2F:D3 X509v3 Authority Key Identifier: keyid:5F:1C:53:4A:EE:FF:4E:38:0C:E5:A0:9A:10:84:BF:8F:57:09:ED:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:4e:b7:b6:9e:0c:bf:3e:70:32:02:ef:69:07:30:78:c8:24: b7:17:30:90:61:c3:00:ae:ef:86:62:fb:b5:eb:fc:ab:64:86: 87:8d:d5:97:44:7e:bf:95:8d:75:8a:f1:48:ad:e3:04:de:7a: 39:5f:dc:35:4d:04:48:ff:56:0e:ed:91:70:0b:2a:a4:48:f8: e7:3f:34:58:21:95:8a:39:38:09:c1:6a:1c:33:a9:1b:b2:a7: 74:64:0a:e0:f8:d8:e6:e1:c5:a5:9d:5f:14:4e:e3:5f:7c:2d: 26:0a:4d:b6:7e:5c:9e:cd:9b:96:2e:6d:b7:c8:2c:a6:b5:09: 60:b6:f4:9d:71:f9:63:d8:58:77:28:50:84:f9:ff:44:49:7f: bc:84:b8:17:f1:dc:a5:4c:23:e7:27:02:b9:ed:31:53:27:34: 2e:4a:a0:f4:10:4a:2d:f4:2e:3b:33:af:ca:73:1e:33:f1:6d: 3a:53:d3:88:a9:d8:c5:ee:bf:57:5e:6c:2f:8e:2a:a1:d5:45: 64:8d:20:d0:a6:20:92:2d:0e:52:c6:2b:3c:d8:9b:32:7e:46: ad:03:69:26:80:d9:37:73:52:1e:e6:dc:14:7d:ae:c7:31:b3: e4:d8:01:65:64:c0:23:9b:49:7f:e0:e0:24:95:a9:7e:56:fd: af:33:35:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ2N0QxMTAvBgNVBAUTKDVGMUM1MzRBRUVGRjRFMzgwQ0U1QTA5QTEwODRCRjhG NTcwOUVEMDgwHhcNMjUwNzE4MTkzNjAyWhcNMjUwNzI1MTkzNjAyWjAYMRYwFAYD VQQDEw02ODdhYTIyMy1mYmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApMB+fMwcXbWLNv4Js6hnz1clLH3tWLePYXu+O4ez3sytuCEWJo02wphtcb80 pt0r3wr9v32Pn5QkZWHgmmE9H0OvTUqt1tyGYSzwvdcnu9uXs+BeILB1D7Q0JQ6G BlFIdcngzybBXd1kWRITEd/87t/BGYqzz35mWBq/xx9jGqAWkb4MTEIkXBCiYvAq EqLgmvs1QaOxVIqDsPIyWRA5RGK47euACvBJhqOORPsM4I1JPG/4FJ7MV0hOvVnl t52m+tVJZI+OMj7E2WTGeSrfCL7yXCvqvIcHelRl5ZZHLu1JNdK2b3c3kIJIclRS I3MMNQRxhxthNcXuFztCmG9aLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEYvyIvz tGOPif+LYjkPoYMsfi/TMB8GA1UdIwQYMBaAFF8cU0ru/044DOWgmhCEv49XCe0I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDY3RC84NDhFN0QxODQ5 QTkxMUVBQTZGREQzMEZDNEY5QUUwMi9YeHhUU3U3X1RqZ001YUNhRUlTX2oxY0o3 UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h4eFRTdTdfVGpnTTVhQ2FFSVNfajFjSjdRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDY3RC84NDhFN0QxODQ5QTkxMUVBQTZGREQzMEZDNEY5QUUwMi9YeHhUU3U3X1Rq Z001YUNhRUlTX2oxY0o3UWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzTre2ngy/PnAyAu9pBzB4yCS3FzCQYcMAru+GYvu16/yrZIaHjdWX RH6/lY11ivFIreME3no5X9w1TQRI/1YO7ZFwCyqkSPjnPzRYIZWKOTgJwWocM6kb sqd0ZArg+Njm4cWlnV8UTuNffC0mCk22flyezZuWLm23yCymtQlgtvSdcflj2Fh3 KFCE+f9ESX+8hLgX8dylTCPnJwK57TFTJzQuSqD0EEot9C47M6/Kcx4z8W06U9OI qdjF7r9XXmwvjiqh1UVkjSDQpiCSLQ5Sxis82JsyfkatA2kmgNk3c1Ie5twUfa7H MbPk2AFlZMAjm0l/4OAklal+Vv2vMzUo -----END CERTIFICATE-----Generated at Sun Jul 20 07:25:15 2025 by rpki-client