$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft File: xdQJ-106qXOpUMnDHMMBVfNJP2I.mft (raw, json) Hash identifier: 7TyX7wlX5YApxB221P10d9YMQ7KYKA1UWPp9Cjp6MQk= Subject key identifier: A9:3D:B9:DB:4D:49:20:4E:2E:64:F5:B7:0D:28:EC:69:9C:A2:2A:BE Authority key identifier: C5:D4:09:FB:5D:3A:A9:73:A9:50:C9:C3:1C:C3:01:55:F3:49:3F:62 Certificate issuer: /CN=A91D6884/serialNumber=C5D409FB5D3AA973A950C9C31CC30155F3493F62 Certificate serial: 0152 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft Manifest number: 014F Signing time: Wed 23 Jul 2025 04:26:20 +0000 Manifest this update: Wed 23 Jul 2025 04:26:19 +0000 Manifest next update: Wed 30 Jul 2025 04:26:19 +0000 Files and hashes: 1: xdQJ-106qXOpUMnDHMMBVfNJP2I.crl (hash: MMk7yl1XrzPyt5ce5fVS68duHt45vjyZ5OxignQddic=) 2: 5CF4C0D4FADD11EE8083D572C4F9AE02.roa (hash: tBK54wCyQ2wcX6ZNsRYGZb85q/LNuJrcbm5n2EF4GsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.crl rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 04:26:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 338 (0x152) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6884, serialNumber=C5D409FB5D3AA973A950C9C31CC30155F3493F62 Validity Not Before: Jul 23 04:26:19 2025 GMT Not After : Jul 30 04:26:19 2025 GMT Subject: CN=6880646b-fefa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d9:68:cf:b9:fd:be:56:53:7f:37:22:4e:ed: 07:91:05:f8:fa:c3:55:c6:22:7d:d9:75:5f:62:73: 82:a0:ec:92:e6:26:d1:af:e9:08:14:c0:ce:5e:cc: 9a:8b:e1:aa:42:2a:80:13:5e:c4:43:89:61:9b:46: 11:4b:2e:33:b5:cf:cd:27:7b:a5:03:40:77:7e:3c: ef:e6:e8:75:4e:76:2f:0e:ca:55:28:8a:06:03:52: 86:f0:d3:e6:3b:68:48:f2:63:c0:a0:b7:47:be:d8: 58:46:52:bd:e2:51:e9:47:ba:cb:02:21:92:42:4d: dd:1f:da:be:57:06:3d:a9:3a:db:aa:46:6c:c9:cd: 12:67:22:be:63:0c:c5:70:d9:bf:86:d9:54:68:0b: 2c:2f:25:8c:c3:b7:43:f0:1c:74:b9:df:4d:3e:6c: 77:81:3a:26:88:dc:4c:f7:4b:4a:6e:9a:8c:d8:42: 6a:33:4b:d9:36:83:53:a9:4a:fa:c2:fb:77:05:2b: 80:6e:a3:06:8b:5a:7e:4c:b4:aa:e8:eb:fb:46:46: 90:20:4a:5b:7c:90:44:89:35:5b:c7:4e:24:a1:c6: d2:a7:e4:30:8b:aa:73:bc:7d:f2:e4:49:cc:fe:f7: 1a:b6:80:80:47:2e:6a:5c:e5:15:90:74:e0:33:ec: 6a:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:3D:B9:DB:4D:49:20:4E:2E:64:F5:B7:0D:28:EC:69:9C:A2:2A:BE X509v3 Authority Key Identifier: keyid:C5:D4:09:FB:5D:3A:A9:73:A9:50:C9:C3:1C:C3:01:55:F3:49:3F:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:8c:42:d1:89:76:e4:0d:6c:58:b2:43:71:2b:f9:b2:1d:91: 78:09:c3:e0:e9:81:bd:1d:e2:e1:48:56:8f:ff:5b:d5:6a:4f: 6b:e7:77:7e:2c:af:5a:78:50:50:94:63:30:07:81:63:41:7d: a6:b4:52:f9:ae:d4:2b:57:5d:ec:c2:65:a4:f8:10:0b:f3:b7: ef:da:15:f9:3d:41:38:38:a2:ce:2d:0c:39:df:d4:f4:12:ea: 22:fe:14:d3:b7:05:f8:16:38:01:b4:7a:96:df:e6:a7:7d:b1: 2e:83:b7:b0:97:6a:4c:0b:48:f5:7b:c4:d3:2f:96:f7:d2:99: 84:34:76:49:31:c6:a2:d3:f5:c4:5e:61:6d:3e:af:bf:58:e7: 95:84:1a:24:61:f9:9c:fb:13:5d:77:5d:98:ff:72:0f:ef:ec: 77:56:1c:b3:37:bf:7f:a2:e6:6c:71:0e:d2:55:d2:9d:33:19: af:57:2d:d8:b8:20:e6:d5:0c:57:b2:23:9c:26:81:4d:4d:f9: 22:15:e8:05:32:37:d6:ea:17:07:bc:16:5f:1a:21:af:84:11: f9:06:2a:57:c6:94:2c:44:f1:f9:b1:c9:28:0b:f0:1b:b1:33: 74:17:a0:8e:e1:6f:5c:74:89:5f:d1:a0:e8:54:4f:6e:0d:bc: 57:c1:03:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY4ODQxMTAvBgNVBAUTKEM1RDQwOUZCNUQzQUE5NzNBOTUwQzlDMzFDQzMwMTU1 RjM0OTNGNjIwHhcNMjUwNzIzMDQyNjE5WhcNMjUwNzMwMDQyNjE5WjAYMRYwFAYD VQQDEw02ODgwNjQ2Yi1mZWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAutloz7n9vlZTfzciTu0HkQX4+sNVxiJ92XVfYnOCoOyS5ibRr+kIFMDOXsya i+GqQiqAE17EQ4lhm0YRSy4ztc/NJ3ulA0B3fjzv5uh1TnYvDspVKIoGA1KG8NPm O2hI8mPAoLdHvthYRlK94lHpR7rLAiGSQk3dH9q+VwY9qTrbqkZsyc0SZyK+YwzF cNm/htlUaAssLyWMw7dD8Bx0ud9NPmx3gTomiNxM90tKbpqM2EJqM0vZNoNTqUr6 wvt3BSuAbqMGi1p+TLSq6Ov7RkaQIEpbfJBEiTVbx04kocbSp+Qwi6pzvH3y5EnM /vcatoCARy5qXOUVkHTgM+xqGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKk9udtN SSBOLmT1tw0o7Gmcoiq+MB8GA1UdIwQYMBaAFMXUCftdOqlzqVDJwxzDAVXzST9i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjg4NC8yQTk1MDI1NjY5 NzUxMUVFQjcwQTU1MEVDNEY5QUUwMi94ZFFKLTEwNnFYT3BVTW5ESE1NQlZmTkpQ MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hkUUotMTA2cVhPcFVNbkRITU1CVmZOSlAySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Njg4NC8yQTk1MDI1NjY5NzUxMUVFQjcwQTU1MEVDNEY5QUUwMi94ZFFKLTEwNnFY T3BVTW5ESE1NQlZmTkpQMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpjELRiXbkDWxYskNxK/myHZF4CcPg6YG9HeLhSFaP/1vVak9r53d+ LK9aeFBQlGMwB4FjQX2mtFL5rtQrV13swmWk+BAL87fv2hX5PUE4OKLOLQw539T0 Euoi/hTTtwX4FjgBtHqW3+anfbEug7ewl2pMC0j1e8TTL5b30pmENHZJMcai0/XE XmFtPq+/WOeVhBokYfmc+xNdd12Y/3IP7+x3VhyzN79/ouZscQ7SVdKdMxmvVy3Y uCDm1QxXsiOcJoFNTfkiFegFMjfW6hcHvBZfGiGvhBH5BipXxpQsRPH5sckoC/Ab sTN0F6CO4W9cdIlf0aDoVE9uDbxXwQMC -----END CERTIFICATE-----Generated at Wed Jul 23 12:20:16 2025 by rpki-client