$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft File: XAo1I_02RadjWvJRmtzQAuEy-84.mft (raw, json) Hash identifier: JXj2qdMkfI/W87hoHQnRSwxUa8sAjBqpU6uzIGmq9ks= Subject key identifier: 27:C3:9F:2C:6F:32:33:D8:8B:EB:A3:0D:50:8D:03:C4:FB:AA:64:97 Authority key identifier: 5C:0A:35:23:FD:36:45:A7:63:5A:F2:51:9A:DC:D0:02:E1:32:FB:CE Certificate issuer: /CN=A91B0F90/serialNumber=5C0A3523FD3645A7635AF2519ADCD002E132FBCE Certificate serial: 65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft Manifest number: 5B Signing time: Mon 21 Jul 2025 07:28:53 +0000 Manifest this update: Mon 21 Jul 2025 07:28:53 +0000 Manifest next update: Mon 28 Jul 2025 07:28:52 +0000 Files and hashes: 1: XAo1I_02RadjWvJRmtzQAuEy-84.crl (hash: +8Qf0YoAnu8MJdSBYtE/JJqoWwjp2N3KP+FWU5O4EqI=) 2: 304DD002EFAB11EF97C9610FC4F9AE02.roa (hash: nY9SnH3XV0jBQtfc+UOqx27pO7JEzdlFPgYbBdgEcrs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.crl rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 07:28:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 101 (0x65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0F90, serialNumber=5C0A3523FD3645A7635AF2519ADCD002E132FBCE Validity Not Before: Jul 21 07:28:53 2025 GMT Not After : Jul 28 07:28:52 2025 GMT Subject: CN=687dec35-c14f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ec:69:9f:7b:2e:81:6c:65:85:2f:ec:bb:e8: af:70:28:3e:61:0b:20:be:18:ff:79:84:1f:fa:36: 3c:f2:93:8c:9e:fc:7c:fb:c1:85:75:e2:07:9d:ac: 33:13:48:67:d1:1d:d3:19:4b:45:0a:ea:8e:a3:4b: 31:e2:51:74:4d:62:db:00:e9:1c:ff:73:5a:dc:94: 07:2e:d5:59:3d:f6:85:55:e4:25:ab:5d:b6:47:2f: e6:0c:05:df:f6:e9:9c:52:ef:69:ef:6b:e3:1f:0a: a0:e0:89:07:a3:10:8b:75:7c:67:00:24:e8:f8:dc: e1:80:fc:dd:f2:56:67:f6:49:4a:95:36:2b:9c:92: b5:80:d1:80:0c:17:45:b6:90:0b:cd:d6:ce:c0:6a: 66:b4:e5:df:78:e0:8a:76:69:a3:83:07:04:ee:a6: dc:24:9b:be:ad:fb:99:ca:e7:86:e6:ac:e1:52:70: c7:f0:b9:bb:b6:93:d0:8a:07:92:da:dc:bc:52:14: 30:3b:10:b8:12:cd:54:69:e4:93:67:c2:38:e5:bd: 32:6e:7e:54:ce:b2:45:3a:c0:9f:47:3b:fa:5c:e5: a5:f6:29:0b:60:2a:84:70:f5:df:5c:07:d3:aa:47: cb:95:70:a6:8e:07:e1:d4:ac:77:af:6a:1e:b2:28: 04:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:C3:9F:2C:6F:32:33:D8:8B:EB:A3:0D:50:8D:03:C4:FB:AA:64:97 X509v3 Authority Key Identifier: keyid:5C:0A:35:23:FD:36:45:A7:63:5A:F2:51:9A:DC:D0:02:E1:32:FB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:70:76:c7:fe:bd:f9:da:5e:0f:6b:a9:0b:4a:53:6f:1e:ba: 50:93:b2:7b:d0:34:3f:7b:a1:84:2c:61:28:e5:e8:fa:81:c5: e9:a4:30:7e:38:a9:90:98:49:e5:bd:4e:b6:6e:86:5d:0f:b1: d9:ad:76:a3:55:16:71:b4:fd:8c:84:32:0d:05:cd:1f:ed:8c: 19:07:6b:08:95:50:dd:68:95:74:97:79:f0:99:92:b3:bb:f1: c3:86:1c:1d:07:06:19:87:2b:f2:7b:66:37:1a:6d:d9:d5:df: 1f:f0:51:af:b1:af:0f:89:b8:d0:6f:eb:0c:a3:d6:82:5a:a3: ce:65:4e:a5:47:32:a2:85:33:3d:74:ec:25:8e:e8:2d:e3:af: 99:84:da:17:bf:20:e1:f1:85:38:ce:cb:52:34:57:f9:92:9d: fc:f4:5e:5d:1a:c9:a4:a4:33:4f:e0:e5:fa:75:d2:72:7f:15: e8:07:2d:40:30:65:cc:a4:ca:6e:f9:3b:ef:10:fd:65:b2:ec: 1c:5c:ef:2c:c6:6d:7f:43:8d:97:08:f4:18:29:7d:a9:1a:e8: 85:d9:89:b9:4c:d4:27:62:a7:04:a7:a0:83:14:05:e0:56:72: b3:9a:12:2f:99:e0:82:27:f9:e4:4d:ed:11:c6:1c:5d:a6:f4: 3b:f6:2a:5d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MEY5MDExMC8GA1UEBRMoNUMwQTM1MjNGRDM2NDVBNzYzNUFGMjUxOUFEQ0QwMDJF MTMyRkJDRTAeFw0yNTA3MjEwNzI4NTNaFw0yNTA3MjgwNzI4NTJaMBgxFjAUBgNV BAMTDTY4N2RlYzM1LWMxNGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC57Gmfey6BbGWFL+y76K9wKD5hCyC+GP95hB/6Njzyk4ye/Hz7wYV14gedrDMT SGfRHdMZS0UK6o6jSzHiUXRNYtsA6Rz/c1rclAcu1Vk99oVV5CWrXbZHL+YMBd/2 6ZxS72nva+MfCqDgiQejEIt1fGcAJOj43OGA/N3yVmf2SUqVNiuckrWA0YAMF0W2 kAvN1s7Aama05d944Ip2aaODBwTuptwkm76t+5nK54bmrOFScMfwubu2k9CKB5La 3LxSFDA7ELgSzVRp5JNnwjjlvTJuflTOskU6wJ9HO/pc5aX2KQtgKoRw9d9cB9Oq R8uVcKaOB+HUrHevah6yKATdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJ8OfLG8y M9iL66MNUI0DxPuqZJcwHwYDVR0jBBgwFoAUXAo1I/02RadjWvJRmtzQAuEy+84w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIwRjkwLzA0Nzc5QjlDRUQ4 MTExRUZBMDAzNjYxNkM0RjlBRTAyL1hBbzFJXzAyUmFkald2SlJtdHpRQXVFeS04 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWEFvMUlfMDJSYWRqV3ZKUm10elFBdUV5LTg0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIw RjkwLzA0Nzc5QjlDRUQ4MTExRUZBMDAzNjYxNkM0RjlBRTAyL1hBbzFJXzAyUmFk ald2SlJtdHpRQXVFeS04NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHxwdsf+vfnaXg9rqQtKU28eulCTsnvQND97oYQsYSjl6PqBxemkMH44 qZCYSeW9TrZuhl0PsdmtdqNVFnG0/YyEMg0FzR/tjBkHawiVUN1olXSXefCZkrO7 8cOGHB0HBhmHK/J7ZjcabdnV3x/wUa+xrw+JuNBv6wyj1oJao85lTqVHMqKFMz10 7CWO6C3jr5mE2he/IOHxhTjOy1I0V/mSnfz0Xl0ayaSkM0/g5fp10nJ/FegHLUAw Zcykym75O+8Q/WWy7Bxc7yzGbX9DjZcI9Bgpfaka6IXZiblM1CdipwSnoIMUBeBW crOaEi+Z4IIn+eRN7RHGHF2m9Dv2Kl0= -----END CERTIFICATE-----Generated at Wed Jul 23 02:03:42 2025 by rpki-client