$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9A6D/A21E71D2DB8E11E9A3526224C4F9AE02/xvo-z74pzTYwaQdi6zKIEDptCKA.mft File: xvo-z74pzTYwaQdi6zKIEDptCKA.mft (raw, json) Hash identifier: ViIi8m2ENv3GLVnPvHdkQJHkEZWVFIS47eNn6/dN3eg= Subject key identifier: 0B:08:26:25:4B:94:57:19:F3:3B:99:96:6F:23:B0:9D:F5:5C:89:9D Authority key identifier: C6:FA:3E:CF:BE:29:CD:36:30:69:07:62:EB:32:88:10:3A:6D:08:A0 Certificate issuer: /CN=A91D9A6D/serialNumber=C6FA3ECFBE29CD3630690762EB3288103A6D08A0 Certificate serial: 0D39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvo-z74pzTYwaQdi6zKIEDptCKA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9A6D/A21E71D2DB8E11E9A3526224C4F9AE02/xvo-z74pzTYwaQdi6zKIEDptCKA.mft Manifest number: 0D30 Signing time: Fri 18 Jul 2025 18:11:24 +0000 Manifest this update: Fri 18 Jul 2025 18:11:24 +0000 Manifest next update: Fri 25 Jul 2025 18:11:24 +0000 Files and hashes: 1: xvo-z74pzTYwaQdi6zKIEDptCKA.crl (hash: Q7kK06gmzSUQIA8vrWQ0ITY3DuKgCpIWzKfRiyBZ00Q=) 2: 959C0ABE93EA11EE91A46031C4F9AE02.roa (hash: zaaI7glaXmXh9SgsYn6TR4c53oO0mNcbR/BG6cqEOFs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9A6D/A21E71D2DB8E11E9A3526224C4F9AE02/xvo-z74pzTYwaQdi6zKIEDptCKA.crl rsync://rpki.apnic.net/member_repository/A91D9A6D/A21E71D2DB8E11E9A3526224C4F9AE02/xvo-z74pzTYwaQdi6zKIEDptCKA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvo-z74pzTYwaQdi6zKIEDptCKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 18:11:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3385 (0xd39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9A6D, serialNumber=C6FA3ECFBE29CD3630690762EB3288103A6D08A0 Validity Not Before: Jul 18 18:11:24 2025 GMT Not After : Jul 25 18:11:24 2025 GMT Subject: CN=687a8e4c-9ddb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:76:c4:fd:43:b0:51:dd:3d:42:37:0d:6f:79: 76:20:8d:0b:9a:ff:f7:19:e8:9a:d5:be:8b:99:cf: 15:8c:79:51:ad:82:7c:42:f3:2e:1c:6b:17:b7:35: e1:2b:c9:70:23:34:47:49:97:f1:44:b6:ca:89:4d: f5:40:03:85:72:40:53:13:dd:dc:31:55:83:3e:d8: f6:9e:89:89:eb:53:32:1e:49:1e:ed:49:a7:c7:b2: 4b:6b:f6:7e:bb:52:fe:63:2b:94:0e:77:ef:6f:3f: c3:86:67:92:ae:c3:83:c8:bc:a7:1c:a8:f8:ba:60: b9:99:19:00:46:b5:ad:ce:e5:f7:41:55:5f:b8:e7: 95:d9:3e:69:03:29:56:32:c4:b9:c7:62:6e:9e:56: 59:25:59:2b:d4:d7:1e:a8:7c:28:13:16:75:21:d1: 0a:5d:0b:91:d6:2c:6e:2c:fc:30:3b:50:65:62:46: 2a:a0:43:17:8e:af:23:50:a4:d1:56:1b:22:bb:4e: fc:ed:04:df:74:d9:ea:99:51:d0:12:ea:87:85:30: 3b:39:a9:43:bb:43:d9:56:f6:b1:8a:e6:c3:15:0c: 49:22:e9:ef:08:e8:5c:be:c9:de:2a:26:0d:74:c2: b3:17:8b:89:9a:f1:29:14:72:53:df:2b:46:11:db: f8:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:08:26:25:4B:94:57:19:F3:3B:99:96:6F:23:B0:9D:F5:5C:89:9D X509v3 Authority Key Identifier: keyid:C6:FA:3E:CF:BE:29:CD:36:30:69:07:62:EB:32:88:10:3A:6D:08:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9A6D/A21E71D2DB8E11E9A3526224C4F9AE02/xvo-z74pzTYwaQdi6zKIEDptCKA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvo-z74pzTYwaQdi6zKIEDptCKA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9A6D/A21E71D2DB8E11E9A3526224C4F9AE02/xvo-z74pzTYwaQdi6zKIEDptCKA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:97:0b:3e:9b:02:38:2a:ec:01:3d:f1:9b:ca:5c:d8:f2:93: 1f:b9:d3:d1:99:78:91:09:88:60:92:b4:d3:d0:e5:55:5c:b0: 89:d9:83:29:2e:8b:6c:ee:36:9c:95:c8:a4:17:ae:18:07:fc: 18:d5:53:42:70:06:d7:87:60:54:fa:4b:f8:13:e6:70:d6:98: c3:31:1e:38:d2:bc:ce:e9:13:47:33:5d:e2:61:02:18:55:02: e2:71:eb:a1:12:5d:e3:33:3b:26:0f:ed:b3:9d:bf:6d:b6:40: 5d:bc:73:56:2b:7f:cd:50:33:b9:34:eb:22:b7:37:d5:12:95: cb:1c:c9:96:f6:47:95:52:9d:19:a6:1f:f3:30:33:9c:bb:9c: 56:b2:49:ea:7c:7d:b3:e8:9c:ed:a6:67:78:1c:bf:a7:95:92: 3e:15:95:fe:ee:22:70:17:75:bc:11:4b:b5:15:85:c8:2a:8e: 8f:d8:f7:4d:ed:89:68:07:f7:19:41:5a:29:9d:be:ac:ad:2a: 57:ee:55:55:a8:20:e9:49:69:c8:3a:8d:4c:81:ae:78:ea:b9: e5:43:8a:b1:a8:2c:7e:8f:36:28:62:8d:bf:ea:40:eb:20:7a: 76:ea:6a:14:f1:f0:a0:de:3f:db:8d:2a:3b:b8:f6:76:cc:1a: fe:89:91:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDTkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlBNkQxMTAvBgNVBAUTKEM2RkEzRUNGQkUyOUNEMzYzMDY5MDc2MkVCMzI4ODEw M0E2RDA4QTAwHhcNMjUwNzE4MTgxMTI0WhcNMjUwNzI1MTgxMTI0WjAYMRYwFAYD VQQDEw02ODdhOGU0Yy05ZGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvnbE/UOwUd09QjcNb3l2II0Lmv/3Geia1b6Lmc8VjHlRrYJ8QvMuHGsXtzXh K8lwIzRHSZfxRLbKiU31QAOFckBTE93cMVWDPtj2nomJ61MyHkke7Umnx7JLa/Z+ u1L+YyuUDnfvbz/DhmeSrsODyLynHKj4umC5mRkARrWtzuX3QVVfuOeV2T5pAylW MsS5x2JunlZZJVkr1NceqHwoExZ1IdEKXQuR1ixuLPwwO1BlYkYqoEMXjq8jUKTR Vhsiu0787QTfdNnqmVHQEuqHhTA7OalDu0PZVvaxiubDFQxJIunvCOhcvsneKiYN dMKzF4uJmvEpFHJT3ytGEdv4WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAsIJiVL lFcZ8zuZlm8jsJ31XImdMB8GA1UdIwQYMBaAFMb6Ps++Kc02MGkHYusyiBA6bQig MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUE2RC9BMjFFNzFEMkRC OEUxMUU5QTM1MjYyMjRDNEY5QUUwMi94dm8tejc0cHpUWXdhUWRpNnpLSUVEcHRD S0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h2by16NzRwelRZd2FRZGk2ektJRURwdENLQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUE2RC9BMjFFNzFEMkRCOEUxMUU5QTM1MjYyMjRDNEY5QUUwMi94dm8tejc0cHpU WXdhUWRpNnpLSUVEcHRDS0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3lws+mwI4KuwBPfGbylzY8pMfudPRmXiRCYhgkrTT0OVVXLCJ2YMp Lots7jaclcikF64YB/wY1VNCcAbXh2BU+kv4E+Zw1pjDMR440rzO6RNHM13iYQIY VQLiceuhEl3jMzsmD+2znb9ttkBdvHNWK3/NUDO5NOsitzfVEpXLHMmW9keVUp0Z ph/zMDOcu5xWsknqfH2z6Jztpmd4HL+nlZI+FZX+7iJwF3W8EUu1FYXIKo6P2PdN 7YloB/cZQVopnb6srSpX7lVVqCDpSWnIOo1Mga546rnlQ4qxqCx+jzYoYo2/6kDr IHp26moU8fCg3j/bjSo7uPZ2zBr+iZEj -----END CERTIFICATE-----Generated at Sun Jul 20 06:56:08 2025 by rpki-client