$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.mft File: XBJjPm2nhhExvM_qH3t6vTUdIy8.mft (raw, json) Hash identifier: fvXLt5/KAXFxx0lOAzu9oEMn5LkV9OFWf2MSmP1QgG4= Subject key identifier: 36:CD:38:EE:F1:B7:14:04:72:17:2F:75:BF:19:34:A5:16:24:96:2C Authority key identifier: 5C:12:63:3E:6D:A7:86:11:31:BC:CF:EA:1F:7B:7A:BD:35:1D:23:2F Certificate issuer: /CN=A91A5577/serialNumber=5C12633E6DA7861131BCCFEA1F7B7ABD351D232F Certificate serial: 02C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBJjPm2nhhExvM_qH3t6vTUdIy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.mft Manifest number: 02B5 Signing time: Fri 25 Jul 2025 01:53:25 +0000 Manifest this update: Fri 25 Jul 2025 01:53:24 +0000 Manifest next update: Fri 01 Aug 2025 01:53:24 +0000 Files and hashes: 1: XBJjPm2nhhExvM_qH3t6vTUdIy8.crl (hash: wipZhiUW2FIeajpCrGC3wBD6+bHGoBTBaypBUtSZ56I=) 2: 92F62AF0032811ED8DFE1842C4F9AE02.roa (hash: 5ddtdaIVi4uZX5Kvh4OHCGdOxyTvl3WbsBWufhivC2Q=) 3: 6B10211E032B11ED8B3C5B4EC4F9AE02.roa (hash: ELuUl8jYoHQdUknrof/L+Xlspg+bgQj1KmK60+o/Jfs=) 4: 418966DA032011ED84D6CA1EC4F9AE02.roa (hash: KuSwuFXT3RlQeIGfpEWkiu/ifBNFInANnuYBrAg51Cc=) 5: 94584738031A11ED934E3D58C4F9AE02.roa (hash: cMcwlHYnO9+mh5veotjRirRXB4y0F0TlStRvvkDezXU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.crl rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBJjPm2nhhExvM_qH3t6vTUdIy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 01 Aug 2025 01:53:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 710 (0x2c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5577, serialNumber=5C12633E6DA7861131BCCFEA1F7B7ABD351D232F Validity Not Before: Jul 25 01:53:24 2025 GMT Not After : Aug 1 01:53:24 2025 GMT Subject: CN=6882e394-4b75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:c8:6a:24:13:e6:01:c8:5c:9b:14:71:8b:76: 69:e5:89:91:b8:26:52:38:42:b0:8e:12:ba:34:12: 10:47:f4:d8:e1:63:9c:61:36:dd:6e:95:01:07:6d: 32:3f:e6:16:ff:fe:98:66:d8:05:24:48:9e:11:82: fa:f9:8c:99:1b:d7:a2:ac:8a:d7:dc:df:5e:97:56: b2:be:39:61:ac:73:c1:5b:f0:72:c4:38:0f:f0:40: 1b:a5:85:9a:db:8b:f7:3b:12:2c:53:48:b8:48:84: e6:b6:9e:f4:bf:78:de:c7:71:c5:66:36:b0:93:4b: d1:c1:30:2e:f6:aa:84:28:45:f9:63:11:df:c6:f6: 40:cc:ed:00:37:91:ed:0c:b6:b5:a1:00:11:18:d1: 0d:4d:f8:12:74:7a:de:8b:61:57:b0:1b:6a:e1:3d: ad:62:33:dd:5f:42:64:ea:6a:31:81:dd:93:ef:2d: 01:f9:e9:14:74:65:2a:51:ef:bc:c7:2c:0d:68:24: fa:8c:82:d4:25:ef:b7:9f:97:79:f5:0d:0e:dd:e6: 04:ca:26:d1:df:6c:ba:d1:9f:99:af:30:4d:bc:5f: b3:ab:53:ac:84:fb:ab:b3:10:c7:cd:95:ff:37:25: 97:74:6e:e6:4b:9b:35:ec:72:18:5c:f4:41:bc:67: ca:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:CD:38:EE:F1:B7:14:04:72:17:2F:75:BF:19:34:A5:16:24:96:2C X509v3 Authority Key Identifier: keyid:5C:12:63:3E:6D:A7:86:11:31:BC:CF:EA:1F:7B:7A:BD:35:1D:23:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBJjPm2nhhExvM_qH3t6vTUdIy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:84:5c:de:ec:ff:c7:90:85:7b:4c:48:c1:a3:1c:4c:2c:2a: 86:e7:0d:a0:89:d8:82:c6:56:df:27:39:44:79:ca:fe:88:f0: 7c:6b:e2:10:a9:b0:35:76:74:e2:64:f9:61:a2:48:51:c0:50: e5:01:08:cf:19:da:c3:fe:0e:e5:1d:0b:9e:1a:57:4c:36:50: 25:69:3a:dd:4c:e9:6d:e0:2a:f2:cb:c7:21:07:d1:c8:df:aa: 50:1f:2d:1b:53:f9:b7:26:18:7b:1c:6d:96:7b:a4:d5:11:74: 41:d9:10:81:b5:e5:08:52:93:13:a1:3f:bf:6d:55:57:e6:1d: d5:6b:27:b3:34:0b:31:26:97:6a:7c:29:5b:b8:3b:f7:c9:2f: 50:05:02:91:30:5f:de:f2:93:29:da:a9:c1:74:28:b9:d2:e6: c3:65:f3:d6:ac:0b:1d:db:b7:1b:f8:04:af:82:c3:12:25:98: 10:00:fc:3f:8c:1d:cd:e7:12:5d:0b:bf:a0:41:96:50:0b:f1: 3d:88:94:47:b3:0e:9e:d7:50:ba:d0:17:95:bf:fe:40:3d:a5: 8b:a1:c6:df:15:9e:21:31:00:d9:39:f6:7f:67:c1:6f:dc:a7: 8e:74:06:d8:07:eb:a5:01:2c:b6:84:e8:35:ff:c2:27:9e:20: 2b:d0:5f:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU1NzcxMTAvBgNVBAUTKDVDMTI2MzNFNkRBNzg2MTEzMUJDQ0ZFQTFGN0I3QUJE MzUxRDIzMkYwHhcNMjUwNzI1MDE1MzI0WhcNMjUwODAxMDE1MzI0WjAYMRYwFAYD VQQDEw02ODgyZTM5NC00Yjc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA78hqJBPmAchcmxRxi3Zp5YmRuCZSOEKwjhK6NBIQR/TY4WOcYTbdbpUBB20y P+YW//6YZtgFJEieEYL6+YyZG9eirIrX3N9el1ayvjlhrHPBW/ByxDgP8EAbpYWa 24v3OxIsU0i4SITmtp70v3jex3HFZjawk0vRwTAu9qqEKEX5YxHfxvZAzO0AN5Ht DLa1oQARGNENTfgSdHrei2FXsBtq4T2tYjPdX0Jk6moxgd2T7y0B+ekUdGUqUe+8 xywNaCT6jILUJe+3n5d59Q0O3eYEyibR32y60Z+ZrzBNvF+zq1OshPursxDHzZX/ NyWXdG7mS5s17HIYXPRBvGfKIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDbNOO7x txQEchcvdb8ZNKUWJJYsMB8GA1UdIwQYMBaAFFwSYz5tp4YRMbzP6h97er01HSMv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTU3Ny85MDNFNEM3ODAz MTYxMUVEOTBGODg0NEZDNEY5QUUwMi9YQkpqUG0ybmhoRXh2TV9xSDN0NnZUVWRJ eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hCSmpQbTJuaGhFeHZNX3FIM3Q2dlRVZEl5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTU3Ny85MDNFNEM3ODAzMTYxMUVEOTBGODg0NEZDNEY5QUUwMi9YQkpqUG0ybmho RXh2TV9xSDN0NnZUVWRJeTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbhFze7P/HkIV7TEjBoxxMLCqG5w2gidiCxlbfJzlEecr+iPB8a+IQ qbA1dnTiZPlhokhRwFDlAQjPGdrD/g7lHQueGldMNlAlaTrdTOlt4Cryy8chB9HI 36pQHy0bU/m3Jhh7HG2We6TVEXRB2RCBteUIUpMToT+/bVVX5h3VayezNAsxJpdq fClbuDv3yS9QBQKRMF/e8pMp2qnBdCi50ubDZfPWrAsd27cb+ASvgsMSJZgQAPw/ jB3N5xJdC7+gQZZQC/E9iJRHsw6e11C60BeVv/5APaWLocbfFZ4hMQDZOfZ/Z8Fv 3KeOdAbYB+ulASy2hOg1/8InniAr0F+c -----END CERTIFICATE-----Generated at Fri Jul 25 22:56:13 2025 by rpki-client