$ rpki-client -vvf rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft File: XucUYNY3KKxeq5GKVB0NcFFXfU0.mft (raw, json) Hash identifier: 8Z2GABLCmu9BbmDWZqv3nkbjvHT86p1UVpncWQb8hnA= Subject key identifier: 45:D1:58:62:D2:F5:6B:07:DB:EE:2A:4F:E5:1A:4D:EC:94:58:54:01 Authority key identifier: 5E:E7:14:60:D6:37:28:AC:5E:AB:91:8A:54:1D:0D:70:51:57:7D:4D Certificate issuer: /CN=A91B758E/serialNumber=5EE71460D63728AC5EAB918A541D0D7051577D4D Certificate serial: 0104 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XucUYNY3KKxeq5GKVB0NcFFXfU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft Manifest number: 0104 Signing time: Mon 21 Jul 2025 05:10:23 +0000 Manifest this update: Mon 21 Jul 2025 05:10:22 +0000 Manifest next update: Mon 28 Jul 2025 05:10:22 +0000 Files and hashes: 1: XucUYNY3KKxeq5GKVB0NcFFXfU0.crl (hash: G4qjbcYeaNSj8CABtl7NVAKPqZ8yk563YLSFrMr2JBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.crl rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XucUYNY3KKxeq5GKVB0NcFFXfU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 05:10:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 260 (0x104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B758E, serialNumber=5EE71460D63728AC5EAB918A541D0D7051577D4D Validity Not Before: Jul 21 05:10:22 2025 GMT Not After : Jul 28 05:10:22 2025 GMT Subject: CN=687dcbbe-62aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:e6:65:ff:d7:a3:7e:f1:44:b0:45:10:70:6c: 7c:0a:6b:83:f8:d8:d9:d1:15:c4:3d:14:45:a4:01: 43:2a:2e:64:10:34:1e:f7:7e:7f:a1:fa:03:ab:66: 8b:19:14:e6:e8:e2:07:5f:cb:83:c0:f6:3c:29:69: df:88:ad:4e:de:ea:54:9e:b8:32:4e:32:25:35:0f: 3b:ac:b2:b0:50:da:bb:6f:ce:1d:f3:b4:6a:68:2e: 62:e0:2e:0a:b8:bd:b3:4c:a5:40:a2:34:a4:7b:6f: a9:20:4c:14:72:99:09:16:f3:df:ef:a0:7c:e6:c4: ac:22:77:39:a4:a9:5b:31:fb:70:7f:76:11:e6:68: a3:5e:fc:ed:f8:8c:fe:b8:f5:d6:9c:51:1d:83:e4: 7f:f3:46:5d:89:f3:46:f8:88:50:22:9c:b4:db:c1: 6e:c5:3c:d5:d5:0e:37:42:df:9d:32:5a:d3:c4:91: ef:8f:04:56:b8:6a:af:f0:86:ef:92:bf:a0:b3:94: 00:9c:ff:5e:5e:28:57:b8:03:81:0d:fb:14:19:1a: b2:1b:8e:72:81:cf:df:06:a0:f3:3e:78:93:bf:67: a1:bc:4e:85:f6:23:81:20:19:20:ff:06:4c:65:5d: bf:51:a4:f2:4a:c2:a4:6c:2c:d0:a8:00:17:18:d6: ae:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:D1:58:62:D2:F5:6B:07:DB:EE:2A:4F:E5:1A:4D:EC:94:58:54:01 X509v3 Authority Key Identifier: keyid:5E:E7:14:60:D6:37:28:AC:5E:AB:91:8A:54:1D:0D:70:51:57:7D:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XucUYNY3KKxeq5GKVB0NcFFXfU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:25:0b:bd:59:7d:ce:b7:59:e3:c2:c5:14:1e:32:a4:2a:b1: 43:da:60:f5:88:ae:56:0b:2d:fb:05:84:67:5e:92:6a:75:e3: 33:03:51:d1:0b:13:1f:04:d0:bd:a5:ff:13:fc:ed:9b:f6:d0: af:61:30:36:1e:ca:65:60:f1:d2:65:21:0a:80:36:8e:c4:60: e9:d6:8f:9f:27:4f:17:f3:08:4c:e0:bf:fa:8c:ac:e9:3f:90: 5d:7e:9f:c9:8e:c9:65:f8:68:02:2a:26:2f:91:10:3e:eb:df: ef:a3:33:e6:da:c6:e8:b2:76:1a:e7:75:bb:ba:78:3e:55:86: 47:80:06:95:08:bc:6e:54:ae:31:31:b9:e2:22:fa:65:2a:c2: ee:66:20:7b:42:8d:0e:b4:1c:45:82:e2:10:34:3a:67:20:79: 36:df:fa:41:ef:46:76:c2:ab:4a:70:a5:da:a9:17:da:1e:12: 93:6e:b7:ab:9b:13:42:b1:72:5d:f9:2a:fa:a1:77:00:76:56: cb:cd:7f:a4:f5:84:f8:da:2c:14:6e:c3:aa:5e:98:18:d1:88: 4b:8e:df:27:a2:11:5e:ae:78:d7:a8:71:9c:02:f7:c7:f1:f5: a2:af:a3:04:cf:13:d5:4c:20:ac:97:5e:7a:c1:b0:07:ac:fb: 25:56:e8:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc1OEUxMTAvBgNVBAUTKDVFRTcxNDYwRDYzNzI4QUM1RUFCOTE4QTU0MUQwRDcw NTE1NzdENEQwHhcNMjUwNzIxMDUxMDIyWhcNMjUwNzI4MDUxMDIyWjAYMRYwFAYD VQQDEw02ODdkY2JiZS02MmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2uZl/9ejfvFEsEUQcGx8CmuD+NjZ0RXEPRRFpAFDKi5kEDQe935/ofoDq2aL GRTm6OIHX8uDwPY8KWnfiK1O3upUnrgyTjIlNQ87rLKwUNq7b84d87RqaC5i4C4K uL2zTKVAojSke2+pIEwUcpkJFvPf76B85sSsInc5pKlbMftwf3YR5mijXvzt+Iz+ uPXWnFEdg+R/80ZdifNG+IhQIpy028FuxTzV1Q43Qt+dMlrTxJHvjwRWuGqv8Ibv kr+gs5QAnP9eXihXuAOBDfsUGRqyG45ygc/fBqDzPniTv2ehvE6F9iOBIBkg/wZM ZV2/UaTySsKkbCzQqAAXGNaukQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEXRWGLS 9WsH2+4qT+UaTeyUWFQBMB8GA1UdIwQYMBaAFF7nFGDWNyisXquRilQdDXBRV31N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzU4RS9FNzk5RjkyMkQ1 M0QxMUVFOEYxRThBODVDNEY5QUUwMi9YdWNVWU5ZM0tLeGVxNUdLVkIwTmNGRlhm VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h1Y1VZTlkzS0t4ZXE1R0tWQjBOY0ZGWGZVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzU4RS9FNzk5RjkyMkQ1M0QxMUVFOEYxRThBODVDNEY5QUUwMi9YdWNVWU5ZM0tL eGVxNUdLVkIwTmNGRlhmVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4JQu9WX3Ot1njwsUUHjKkKrFD2mD1iK5WCy37BYRnXpJqdeMzA1HR CxMfBNC9pf8T/O2b9tCvYTA2HsplYPHSZSEKgDaOxGDp1o+fJ08X8whM4L/6jKzp P5Bdfp/Jjsll+GgCKiYvkRA+69/vozPm2sbosnYa53W7ung+VYZHgAaVCLxuVK4x MbniIvplKsLuZiB7Qo0OtBxFguIQNDpnIHk23/pB70Z2wqtKcKXaqRfaHhKTbrer mxNCsXJd+Sr6oXcAdlbLzX+k9YT42iwUbsOqXpgY0YhLjt8nohFernjXqHGcAvfH 8fWir6MEzxPVTCCsl156wbAHrPslVugW -----END CERTIFICATE-----Generated at Mon Jul 21 07:00:29 2025 by rpki-client