$ rpki-client -vvf rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft File: XDZbFzHKfOfbgd1XEwvU1kMBm14.mft (raw, json) Hash identifier: RKP0dzAmimTpLyCubyvtwpGKtQDkLz+wQI9SmjXuux8= Subject key identifier: 57:27:63:ED:6F:14:C6:BD:9B:B7:50:81:D9:97:3A:C2:C5:08:D7:21 Authority key identifier: 5C:36:5B:17:31:CA:7C:E7:DB:81:DD:57:13:0B:D4:D6:43:01:9B:5E Certificate issuer: /CN=A91D28EB/serialNumber=5C365B1731CA7CE7DB81DD57130BD4D643019B5E Certificate serial: 057B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft Manifest number: 0574 Signing time: Sun 20 Jul 2025 23:30:07 +0000 Manifest this update: Sun 20 Jul 2025 23:30:06 +0000 Manifest next update: Sun 27 Jul 2025 23:30:06 +0000 Files and hashes: 1: XDZbFzHKfOfbgd1XEwvU1kMBm14.crl (hash: 5KkpglQiK3hs4alo982P7AlQLHa741byOQHzVljwzSI=) 2: 8E90AA02EB0B11EBA0B6DD84C4F9AE02.roa (hash: QJH4AI00yRGEUDIXxzK7vr00Zj8U+JgNqRc/dr5Ast0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.crl rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 23:30:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1403 (0x57b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D28EB, serialNumber=5C365B1731CA7CE7DB81DD57130BD4D643019B5E Validity Not Before: Jul 20 23:30:06 2025 GMT Not After : Jul 27 23:30:06 2025 GMT Subject: CN=687d7bfe-aba3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:fa:d0:26:c6:a8:02:75:6b:6a:c5:67:ba:5e: 99:37:16:44:33:f5:d7:f1:e3:d0:f0:e1:e6:8b:99: ac:7b:2c:be:eb:1d:7c:d7:6e:62:90:2a:79:51:57: e3:12:84:12:a3:41:04:4e:4f:1f:5b:e1:39:e3:b6: 52:b7:0b:8a:52:ab:34:61:ce:33:35:89:e2:6b:34: 60:b6:f0:85:f4:f1:e3:c9:7c:3d:f2:06:f8:c8:cf: 22:bc:0c:91:63:2a:d6:d9:68:a6:50:9d:f2:22:ff: 13:62:c3:39:d0:f8:a0:87:66:f6:d8:5d:53:7a:3c: 74:9a:ff:7b:08:6c:66:5b:c4:41:ff:16:ed:d7:f5: 29:97:04:4d:49:fc:4b:37:ef:1e:1a:83:3e:fe:42: cd:7e:57:d6:80:76:5a:20:5d:5c:3d:ec:ac:9c:f6: 87:a9:2c:8b:34:b0:10:90:0e:c5:17:52:63:fb:87: fc:4a:29:a4:2e:34:0f:69:a1:b2:a7:2a:d0:42:ce: 77:5b:06:e9:3e:99:07:62:61:cd:c7:29:76:24:04: 91:08:f6:b2:7b:01:4e:99:c4:9b:ed:54:2a:2a:71: 23:12:ff:87:78:c7:77:74:90:1a:44:69:6e:fd:7f: 0d:c9:4e:33:ac:67:ac:51:f5:13:eb:88:e0:87:8b: c4:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:27:63:ED:6F:14:C6:BD:9B:B7:50:81:D9:97:3A:C2:C5:08:D7:21 X509v3 Authority Key Identifier: keyid:5C:36:5B:17:31:CA:7C:E7:DB:81:DD:57:13:0B:D4:D6:43:01:9B:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:a6:bf:ab:85:28:fe:9c:d0:c1:50:88:17:6c:d4:fd:bd:3b: 30:7b:af:1a:4b:50:06:14:bc:2b:df:f0:e6:7a:10:2b:a6:b4: 60:97:f3:99:cf:6c:9c:a6:a0:48:f5:8c:86:9b:db:67:e9:b7: 64:00:22:b2:b8:29:be:d7:69:5c:4c:bc:5e:18:ce:b8:6f:19: 53:d2:86:d3:e5:8a:00:c0:52:ed:0f:81:99:7e:8c:e9:e2:dc: 78:3b:43:4e:f7:8e:ad:5e:43:64:c9:b1:68:43:1e:d9:74:a2: de:63:75:b3:5c:23:d8:e4:01:30:ef:0c:ba:83:28:5e:bd:90: 02:f5:3f:81:cf:0a:80:82:08:14:b7:0e:7f:6c:a1:4d:e3:1c: b8:84:e1:ff:48:65:03:4b:f4:30:38:79:4e:ea:29:94:b0:40: 4a:ca:e9:ac:cf:99:3f:c4:1f:0b:9b:bd:20:6b:85:3c:bc:93: 5f:8d:13:e6:a9:9e:bd:d9:3b:9d:ec:df:21:53:c3:9b:a9:3b: 39:0e:1a:d3:e3:25:96:7f:dc:21:5f:a7:23:ff:14:f8:cc:9c: ae:6f:68:78:29:b9:df:d0:13:4a:96:2a:44:c6:a9:ff:3b:c4: db:59:de:9d:a2:01:c0:84:c0:4f:08:27:e4:36:a8:57:0b:8d: c9:98:1f:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI4RUIxMTAvBgNVBAUTKDVDMzY1QjE3MzFDQTdDRTdEQjgxREQ1NzEzMEJENEQ2 NDMwMTlCNUUwHhcNMjUwNzIwMjMzMDA2WhcNMjUwNzI3MjMzMDA2WjAYMRYwFAYD VQQDEw02ODdkN2JmZS1hYmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1vrQJsaoAnVrasVnul6ZNxZEM/XX8ePQ8OHmi5mseyy+6x18125ikCp5UVfj EoQSo0EETk8fW+E547ZStwuKUqs0Yc4zNYniazRgtvCF9PHjyXw98gb4yM8ivAyR YyrW2WimUJ3yIv8TYsM50Pigh2b22F1Tejx0mv97CGxmW8RB/xbt1/UplwRNSfxL N+8eGoM+/kLNflfWgHZaIF1cPeysnPaHqSyLNLAQkA7FF1Jj+4f8SimkLjQPaaGy pyrQQs53WwbpPpkHYmHNxyl2JASRCPayewFOmcSb7VQqKnEjEv+HeMd3dJAaRGlu /X8NyU4zrGesUfUT64jgh4vEOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFcnY+1v FMa9m7dQgdmXOsLFCNchMB8GA1UdIwQYMBaAFFw2Wxcxynzn24HdVxML1NZDAZte MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjhFQi83NzE0OEFDNkVC MDkxMUVCOUM3NTkxODBDNEY5QUUwMi9YRFpiRnpIS2ZPZmJnZDFYRXd2VTFrTUJt MTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEWmJGekhLZk9mYmdkMVhFd3ZVMWtNQm0xNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjhFQi83NzE0OEFDNkVCMDkxMUVCOUM3NTkxODBDNEY5QUUwMi9YRFpiRnpIS2ZP ZmJnZDFYRXd2VTFrTUJtMTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAppr+rhSj+nNDBUIgXbNT9vTswe68aS1AGFLwr3/DmehArprRgl/OZ z2ycpqBI9YyGm9tn6bdkACKyuCm+12lcTLxeGM64bxlT0obT5YoAwFLtD4GZfozp 4tx4O0NO946tXkNkybFoQx7ZdKLeY3WzXCPY5AEw7wy6gyhevZAC9T+BzwqAgggU tw5/bKFN4xy4hOH/SGUDS/QwOHlO6imUsEBKyumsz5k/xB8Lm70ga4U8vJNfjRPm qZ692Tud7N8hU8ObqTs5DhrT4yWWf9whX6cj/xT4zJyub2h4Kbnf0BNKlipExqn/ O8TbWd6dogHAhMBPCCfkNqhXC43JmB+Z -----END CERTIFICATE-----Generated at Mon Jul 21 07:23:44 2025 by rpki-client