$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft File: XwBNV-s29CZy5m8wBfZGm2KJFxs.mft (raw, json) Hash identifier: JmDWqgoedgHjiNiOW2I49Q2awUTQOd9lpGILWNSUzhs= Subject key identifier: 4E:55:96:93:10:25:A2:91:9D:70:9A:1C:40:EA:C2:F1:A3:EF:7B:F5 Authority key identifier: 5F:00:4D:57:EB:36:F4:26:72:E6:6F:30:05:F6:46:9B:62:89:17:1B Certificate issuer: /CN=A91C1025/serialNumber=5F004D57EB36F42672E66F3005F6469B6289171B Certificate serial: 8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft Manifest number: 88 Signing time: Mon 21 Jul 2025 06:48:10 +0000 Manifest this update: Mon 21 Jul 2025 06:48:10 +0000 Manifest next update: Mon 28 Jul 2025 06:48:10 +0000 Files and hashes: 1: XwBNV-s29CZy5m8wBfZGm2KJFxs.crl (hash: ptHZXb7FNEQnQNpSVQp4scONA5sog22Y36XFU3iSdW0=) 2: 3D04EA589D9211EF8083B245C4F9AE02.roa (hash: Iqqm3XnZxAwHyLfxm5fiQ2PL3nIt3cAVFXF23TPN80A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.crl rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 06:48:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 139 (0x8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1025, serialNumber=5F004D57EB36F42672E66F3005F6469B6289171B Validity Not Before: Jul 21 06:48:10 2025 GMT Not After : Jul 28 06:48:10 2025 GMT Subject: CN=687de2aa-6719 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:dd:2a:11:d3:82:38:2f:7d:31:e2:87:65:7a: 98:d8:51:ec:68:80:fa:eb:15:e8:fa:fc:d8:35:6d: 6c:be:6b:8e:63:82:4c:b2:4c:6a:26:9f:a2:29:2f: ab:a3:ad:1b:3f:3c:8f:0a:9c:53:4d:d9:d6:20:45: bc:63:a6:c3:43:f2:5d:6c:57:dd:01:15:76:80:d2: 5a:f3:be:ac:f7:95:1b:3f:98:b5:9d:e8:b7:4f:d4: ca:d6:32:f3:e2:c4:72:ed:b3:bc:8d:6c:8e:43:60: 3a:5b:30:bf:77:77:86:40:75:17:69:71:db:bf:6d: 07:c9:38:f9:46:ff:aa:b2:1a:f9:d0:56:d3:dc:33: a3:9c:b0:7e:dc:0a:0f:75:65:16:20:ce:0b:67:eb: 53:d1:e0:51:2e:b1:77:6c:7b:a9:bb:6c:30:64:9f: ee:17:52:2e:e5:7e:ae:13:4a:96:24:d7:d0:6f:19: 45:e7:f0:66:f6:c5:70:43:18:14:05:b3:25:0a:92: f6:60:9b:51:a0:fc:77:3c:6d:51:1c:b7:cf:89:af: c1:81:a0:8c:e2:39:5f:1b:15:8e:b3:a0:7e:70:14: 61:37:e9:45:1d:2d:e0:19:27:a8:c0:82:f8:83:81: 9e:8b:48:79:4f:05:d5:99:93:74:ae:df:4d:5f:19: 61:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:55:96:93:10:25:A2:91:9D:70:9A:1C:40:EA:C2:F1:A3:EF:7B:F5 X509v3 Authority Key Identifier: keyid:5F:00:4D:57:EB:36:F4:26:72:E6:6F:30:05:F6:46:9B:62:89:17:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:dc:45:8c:ba:f7:48:92:4e:5d:3a:85:fd:c1:2d:db:e8:0e: 92:69:e5:ba:7c:97:86:fe:cc:f2:ac:88:74:4c:59:51:f4:89: fb:c1:ae:87:2c:d5:bb:5d:c1:25:12:49:cd:34:9a:2b:53:81: 14:8d:2f:05:f5:e3:5b:c9:d0:4c:62:ee:67:0d:76:ec:f4:85: 71:81:b2:69:ba:dc:79:8b:c3:31:2c:57:d1:79:12:ff:32:d2: 52:b4:b6:8d:53:ac:ec:f5:1d:51:3a:08:34:55:34:4d:68:67: 0e:31:7c:86:c8:1b:8c:ad:91:9e:3e:cb:63:f3:89:15:87:1e: a1:a3:04:91:f1:5a:5f:b9:bc:89:8e:78:a4:e3:21:bc:92:3d: 39:2e:17:da:2c:36:dc:91:85:bd:70:b1:60:ef:cc:a8:a7:8b: 73:3a:e2:26:fe:11:dd:fe:5d:90:ac:d6:a3:b9:4d:8c:21:df: a5:5d:97:60:21:f0:02:61:78:2c:82:93:c6:7f:e4:d4:a0:4f: 84:dc:88:28:7a:0d:32:23:63:40:99:ed:67:0a:a8:ca:51:36: b5:14:f0:8f:f5:e5:83:21:ac:5a:a1:25:cc:92:88:26:bf:78: 14:be:4e:25:b5:ef:fb:9e:96:c1:26:37:4b:c1:ee:60:c1:aa: da:87:af:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEwMjUxMTAvBgNVBAUTKDVGMDA0RDU3RUIzNkY0MjY3MkU2NkYzMDA1RjY0NjlC NjI4OTE3MUIwHhcNMjUwNzIxMDY0ODEwWhcNMjUwNzI4MDY0ODEwWjAYMRYwFAYD VQQDEw02ODdkZTJhYS02NzE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlN0qEdOCOC99MeKHZXqY2FHsaID66xXo+vzYNW1svmuOY4JMskxqJp+iKS+r o60bPzyPCpxTTdnWIEW8Y6bDQ/JdbFfdARV2gNJa876s95UbP5i1nei3T9TK1jLz 4sRy7bO8jWyOQ2A6WzC/d3eGQHUXaXHbv20HyTj5Rv+qshr50FbT3DOjnLB+3AoP dWUWIM4LZ+tT0eBRLrF3bHupu2wwZJ/uF1Iu5X6uE0qWJNfQbxlF5/Bm9sVwQxgU BbMlCpL2YJtRoPx3PG1RHLfPia/BgaCM4jlfGxWOs6B+cBRhN+lFHS3gGSeowIL4 g4Gei0h5TwXVmZN0rt9NXxlhwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE5VlpMQ JaKRnXCaHEDqwvGj73v1MB8GA1UdIwQYMBaAFF8ATVfrNvQmcuZvMAX2RptiiRcb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTAyNS85NTZGNjYyQzlE ODQxMUVGODE3RTE0MjBDNEY5QUUwMi9Yd0JOVi1zMjlDWnk1bTh3QmZaR20yS0pG eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h3Qk5WLXMyOUNaeTVtOHdCZlpHbTJLSkZ4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTAyNS85NTZGNjYyQzlEODQxMUVGODE3RTE0MjBDNEY5QUUwMi9Yd0JOVi1zMjlD Wnk1bTh3QmZaR20yS0pGeHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBq3EWMuvdIkk5dOoX9wS3b6A6SaeW6fJeG/szyrIh0TFlR9In7wa6H LNW7XcElEknNNJorU4EUjS8F9eNbydBMYu5nDXbs9IVxgbJputx5i8MxLFfReRL/ MtJStLaNU6zs9R1ROgg0VTRNaGcOMXyGyBuMrZGePstj84kVhx6howSR8VpfubyJ jnik4yG8kj05LhfaLDbckYW9cLFg78yop4tzOuIm/hHd/l2QrNajuU2MId+lXZdg IfACYXgsgpPGf+TUoE+E3Igoeg0yI2NAme1nCqjKUTa1FPCP9eWDIaxaoSXMkogm v3gUvk4lte/7npbBJjdLwe5gwarah68c -----END CERTIFICATE-----Generated at Mon Jul 21 21:46:32 2025 by rpki-client