$ rpki-client -vvf rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft File: XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft (raw, json) Hash identifier: eU5znWsLg6b+a9vgGjrYKhJ371peeRs4Z1TXMpT5tN8= Subject key identifier: 62:D2:97:95:27:1A:A0:2D:7A:88:6C:CE:3E:4E:2A:14:35:82:A8:BC Authority key identifier: 5C:F5:5B:88:A6:69:DC:7E:82:11:5F:80:60:69:F3:C9:3C:E6:5C:B5 Certificate issuer: /CN=A91D318A/serialNumber=5CF55B88A669DC7E82115F806069F3C93CE65CB5 Certificate serial: 0134 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPVbiKZp3H6CEV-AYGnzyTzmXLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft Manifest number: 0134 Signing time: Sat 19 Jul 2025 04:39:44 +0000 Manifest this update: Sat 19 Jul 2025 04:39:44 +0000 Manifest next update: Sat 26 Jul 2025 04:39:44 +0000 Files and hashes: 1: XPVbiKZp3H6CEV-AYGnzyTzmXLU.crl (hash: 2NE5Ih6CzxAnuRAvECHaFk/Ul1shpXpnwAEtrodYcaE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.crl rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPVbiKZp3H6CEV-AYGnzyTzmXLU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 04:39:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 308 (0x134) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D318A, serialNumber=5CF55B88A669DC7E82115F806069F3C93CE65CB5 Validity Not Before: Jul 19 04:39:44 2025 GMT Not After : Jul 26 04:39:44 2025 GMT Subject: CN=687b2190-8eef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:05:0a:b9:ed:f0:d7:7d:91:a9:3f:2a:67:50: 4e:ba:e0:a7:2b:0d:1a:39:43:7a:76:77:89:df:34: d4:85:29:12:8a:f2:de:04:d1:8d:ea:a6:8f:9b:05: dd:ee:f7:c5:df:ba:4d:84:d9:82:17:e0:73:b3:b4: 8b:96:e2:5e:db:a5:d8:1e:39:e8:ae:f6:b8:82:c9: 4a:28:c4:56:32:19:36:12:a6:9c:6c:bd:5c:5d:7e: b9:95:1d:16:62:eb:6a:7c:d6:ee:ac:45:51:02:87: b8:fa:65:ac:15:e8:cc:61:24:97:ab:6e:5e:3b:20: b4:92:e4:23:dd:16:0c:62:85:22:08:32:3b:97:be: 14:79:23:ed:ca:fa:2d:fd:a0:0f:b1:1b:32:e1:e8: e3:b2:ac:55:45:c3:e2:ea:f7:e9:b9:cb:2c:41:fc: ba:39:05:72:bb:96:07:b3:98:bc:83:45:bc:92:ff: 63:6b:d9:73:40:1d:3e:2d:1e:89:1c:47:1d:70:fe: 4b:49:74:68:a3:c2:66:d1:c8:9e:f1:19:e3:95:7f: ea:7e:06:0b:69:3c:0e:4b:11:e5:f6:08:93:46:73: 81:47:9e:20:5c:e9:0b:68:68:9a:0a:2a:94:7a:8f: 25:ee:d2:d3:7d:c3:e3:b0:40:ec:ff:0b:c0:8d:95: 80:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:D2:97:95:27:1A:A0:2D:7A:88:6C:CE:3E:4E:2A:14:35:82:A8:BC X509v3 Authority Key Identifier: keyid:5C:F5:5B:88:A6:69:DC:7E:82:11:5F:80:60:69:F3:C9:3C:E6:5C:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPVbiKZp3H6CEV-AYGnzyTzmXLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:67:e8:9a:9c:a7:55:05:56:61:67:06:fe:e2:8c:65:7a:db: 3d:59:18:9a:d7:6a:79:62:ef:37:0a:20:38:49:c2:93:b7:65: 74:bf:9e:00:c0:44:18:64:e4:fa:6d:c2:7d:17:df:30:1c:9c: e7:50:4c:d0:b0:de:6d:d3:9f:0e:82:77:b1:95:d4:a3:1d:ce: 37:55:d0:d2:80:da:51:0c:a6:64:76:44:db:96:fe:28:14:31: 5a:23:cb:34:cb:31:55:48:ac:71:aa:28:73:78:81:39:04:c9: c4:86:c3:cd:e7:7f:39:be:f8:b8:99:31:f4:e6:d3:93:db:76: 2b:28:50:3b:4b:a0:dc:67:cf:13:84:20:02:31:38:28:24:f2: 48:bd:92:8f:d9:b6:5b:d7:a1:7a:dc:de:7f:4b:bc:7e:61:ad: 2d:ce:e0:9e:eb:c4:f4:f3:5a:bf:0c:a1:5f:99:f2:f1:a2:1a: 9b:50:5d:be:1f:89:78:0e:33:84:94:a3:05:20:82:18:bb:12: 71:83:2c:96:5f:9f:3b:82:ad:2d:76:da:53:b4:78:9c:b6:22: 3d:63:15:b2:75:fe:45:9a:e5:16:3a:7d:9a:0b:ac:16:e0:23: 74:bd:c2:6e:d9:b0:e3:37:3b:af:32:fa:40:b6:da:14:a5:c7: 38:c4:a2:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxOEExMTAvBgNVBAUTKDVDRjU1Qjg4QTY2OURDN0U4MjExNUY4MDYwNjlGM0M5 M0NFNjVDQjUwHhcNMjUwNzE5MDQzOTQ0WhcNMjUwNzI2MDQzOTQ0WjAYMRYwFAYD VQQDEw02ODdiMjE5MC04ZWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvwUKue3w132RqT8qZ1BOuuCnKw0aOUN6dneJ3zTUhSkSivLeBNGN6qaPmwXd 7vfF37pNhNmCF+Bzs7SLluJe26XYHjnorva4gslKKMRWMhk2EqacbL1cXX65lR0W YutqfNburEVRAoe4+mWsFejMYSSXq25eOyC0kuQj3RYMYoUiCDI7l74UeSPtyvot /aAPsRsy4ejjsqxVRcPi6vfpucssQfy6OQVyu5YHs5i8g0W8kv9ja9lzQB0+LR6J HEcdcP5LSXRoo8Jm0cie8RnjlX/qfgYLaTwOSxHl9giTRnOBR54gXOkLaGiaCiqU eo8l7tLTfcPjsEDs/wvAjZWAuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGLSl5Un GqAteohszj5OKhQ1gqi8MB8GA1UdIwQYMBaAFFz1W4imadx+ghFfgGBp88k85ly1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzE4QS9GNUI1Q0E4MDg3 RTYxMUVFOTdFNkM3NDZDNEY5QUUwMi9YUFZiaUtacDNINkNFVi1BWUduenlUem1Y TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hQVmJpS1pwM0g2Q0VWLUFZR256eVR6bVhMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzE4QS9GNUI1Q0E4MDg3RTYxMUVFOTdFNkM3NDZDNEY5QUUwMi9YUFZiaUtacDNI NkNFVi1BWUduenlUem1YTFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdZ+ianKdVBVZhZwb+4oxlets9WRia12p5Yu83CiA4ScKTt2V0v54A wEQYZOT6bcJ9F98wHJznUEzQsN5t058OgnexldSjHc43VdDSgNpRDKZkdkTblv4o FDFaI8s0yzFVSKxxqihzeIE5BMnEhsPN5385vvi4mTH05tOT23YrKFA7S6DcZ88T hCACMTgoJPJIvZKP2bZb16F63N5/S7x+Ya0tzuCe68T081q/DKFfmfLxohqbUF2+ H4l4DjOElKMFIIIYuxJxgyyWX587gq0tdtpTtHictiI9YxWydf5FmuUWOn2aC6wW 4CN0vcJu2bDjNzuvMvpAttoUpcc4xKKk -----END CERTIFICATE-----Generated at Sun Jul 20 06:35:08 2025 by rpki-client