$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft File: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft (raw, json) Hash identifier: /A1bpc1hsk61Qi19ikQhnx7oDMffR0FzZTudqXn29rI= Subject key identifier: 10:7C:AF:0A:FF:0F:F8:2F:15:8D:9E:06:07:67:01:10:2E:19:BD:9E Authority key identifier: C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 Certificate issuer: /CN=A91AAF73/serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Certificate serial: 0152 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft Manifest number: 0150 Signing time: Sat 19 Jul 2025 04:21:11 +0000 Manifest this update: Sat 19 Jul 2025 04:21:10 +0000 Manifest next update: Sat 26 Jul 2025 04:21:10 +0000 Files and hashes: 1: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl (hash: fYxl3sL1y88MsMUGCv4G4y8VEJBgiOsHHgwHixpY0cQ=) 2: 4B2F1F725E7811EE9307D234C4F9AE02.roa (hash: MT11dCBCJZcHWXZx/470dhBVNTyr6a/ASCVfjrKRXRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 04:21:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 338 (0x152) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF73, serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Validity Not Before: Jul 19 04:21:10 2025 GMT Not After : Jul 26 04:21:10 2025 GMT Subject: CN=687b1d36-185a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a2:b8:55:1d:30:fc:de:ad:1c:f3:2f:2b:3b: 7d:da:ed:f1:77:43:dc:77:b6:ec:25:43:89:1d:b9: 03:8e:04:e9:67:24:11:96:11:e1:7f:dd:0a:54:c3: 56:10:6d:ad:05:55:47:ae:ff:b4:2b:da:65:83:e8: 9c:b3:36:e8:77:cc:bc:c7:9e:d4:21:f9:ef:9c:1a: 53:e7:bf:3b:2b:64:f0:c6:da:9a:01:97:2d:48:a9: 98:31:a6:36:36:f3:98:dd:95:ed:3c:b6:a8:1c:a8: 57:70:ac:9e:d7:85:2f:22:8d:84:00:6c:cf:f9:11: 48:9c:94:ba:e0:f4:c3:c7:22:3d:41:50:18:a5:08: cf:df:90:61:ae:46:13:fd:9f:8f:86:76:90:95:e0: 5d:11:17:73:a1:04:f7:3a:b6:06:da:e6:cc:78:62: 6b:09:fd:41:ad:2a:4a:a1:b8:6d:1b:99:e8:1b:eb: 69:70:ee:ec:11:c5:62:1b:5a:23:8e:b4:3e:2c:ec: 47:9b:da:0d:2d:5f:b7:fd:62:bf:0a:1d:78:ab:d9: 8a:3a:e6:66:bd:04:2e:cb:29:71:71:9d:de:d1:02: 30:ce:80:d9:99:8f:0e:8e:57:49:d4:50:f8:2f:a7: 1d:4e:e0:5d:d4:c4:bb:45:fa:c5:03:d3:72:a8:7d: 93:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:7C:AF:0A:FF:0F:F8:2F:15:8D:9E:06:07:67:01:10:2E:19:BD:9E X509v3 Authority Key Identifier: keyid:C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:09:1c:45:a8:fc:41:da:0a:ef:53:54:34:fb:cf:a8:a6:f6: 19:a7:91:aa:89:18:3c:17:6e:ce:35:a3:49:0b:65:79:ee:8a: 74:33:df:b5:da:33:6f:28:0a:27:dc:e4:1d:5d:b8:72:9f:bd: 89:8c:3f:f1:b2:ff:e1:00:11:84:3e:d5:56:e8:69:0e:b2:a3: b3:de:8d:a4:6a:ba:e0:45:04:29:11:6a:1c:82:ef:68:ac:36: f0:5d:0f:29:64:33:4d:1c:1a:6b:af:ec:5f:3b:7b:d6:9a:8e: 02:92:61:1c:06:60:3b:b8:0d:20:59:ea:1d:0a:e7:34:95:87: 84:9f:37:5b:66:b8:8d:a3:3d:90:ca:99:7c:03:e9:78:54:2f: 29:0a:ad:02:eb:ed:de:33:3c:14:e0:f9:75:9c:c7:bc:0a:62: ff:9a:31:56:87:5b:a3:f4:ce:60:b5:65:a0:7d:cc:74:6c:9d: 68:56:04:a8:90:10:4f:a7:a4:5b:3e:5b:c7:f1:4d:cb:a3:87: 24:37:5c:af:2a:39:a3:a7:d7:b6:88:b5:16:f0:12:8a:53:3d: c1:67:82:c4:1d:17:91:ad:64:bb:f3:dc:de:43:70:d8:db:13: fc:75:bd:8c:1e:52:77:d2:42:8f:09:b8:56:71:bf:be:0d:71: ac:30:bd:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFGNzMxMTAvBgNVBAUTKEM0MDVGMDYxRTMzQjA3MTdDOTA0RkMxREYzRTc5QkNE Nzk1MjBGQTYwHhcNMjUwNzE5MDQyMTEwWhcNMjUwNzI2MDQyMTEwWjAYMRYwFAYD VQQDEw02ODdiMWQzNi0xODVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtaK4VR0w/N6tHPMvKzt92u3xd0Pcd7bsJUOJHbkDjgTpZyQRlhHhf90KVMNW EG2tBVVHrv+0K9plg+icszbod8y8x57UIfnvnBpT5787K2TwxtqaAZctSKmYMaY2 NvOY3ZXtPLaoHKhXcKye14UvIo2EAGzP+RFInJS64PTDxyI9QVAYpQjP35BhrkYT /Z+PhnaQleBdERdzoQT3OrYG2ubMeGJrCf1BrSpKobhtG5noG+tpcO7sEcViG1oj jrQ+LOxHm9oNLV+3/WK/Ch14q9mKOuZmvQQuyylxcZ3e0QIwzoDZmY8OjldJ1FD4 L6cdTuBd1MS7RfrFA9NyqH2TxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBB8rwr/ D/gvFY2eBgdnARAuGb2eMB8GA1UdIwQYMBaAFMQF8GHjOwcXyQT8HfPnm815Ug+m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUY3My9ENUZGMUY0MDVF NzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4ZkpCUHdkOC1lYnpYbFNE NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hBWHdZZU03QnhmSkJQd2Q4LWVielhsU0Q2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUY3My9ENUZGMUY0MDVFNzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4 ZkpCUHdkOC1lYnpYbFNENlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2CRxFqPxB2grvU1Q0+8+opvYZp5GqiRg8F27ONaNJC2V57op0M9+1 2jNvKAon3OQdXbhyn72JjD/xsv/hABGEPtVW6GkOsqOz3o2karrgRQQpEWocgu9o rDbwXQ8pZDNNHBprr+xfO3vWmo4CkmEcBmA7uA0gWeodCuc0lYeEnzdbZriNoz2Q ypl8A+l4VC8pCq0C6+3eMzwU4Pl1nMe8CmL/mjFWh1uj9M5gtWWgfcx0bJ1oVgSo kBBPp6RbPlvH8U3Lo4ckN1yvKjmjp9e2iLUW8BKKUz3BZ4LEHReRrWS789zeQ3DY 2xP8db2MHlJ30kKPCbhWcb++DXGsML1p -----END CERTIFICATE-----Generated at Sun Jul 20 08:00:33 2025 by rpki-client