$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.mft File: Xs7vXyjy82UFPfuM780W4cPehK4.mft (raw, json) Hash identifier: ZaeD3Ra9E1abwDw67vhv+kwVZUsktem8HdENxZVxa8U= Subject key identifier: 1E:A0:07:0F:32:D1:8B:20:25:DD:91:CF:BE:B9:99:59:2A:FB:49:84 Authority key identifier: 5E:CE:EF:5F:28:F2:F3:65:05:3D:FB:8C:EF:CD:16:E1:C3:DE:84:AE Certificate issuer: /CN=A91DB8D9/serialNumber=5ECEEF5F28F2F365053DFB8CEFCD16E1C3DE84AE Certificate serial: 03C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xs7vXyjy82UFPfuM780W4cPehK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.mft Manifest number: 03BC Signing time: Sat 19 Jul 2025 01:05:46 +0000 Manifest this update: Sat 19 Jul 2025 01:05:46 +0000 Manifest next update: Sat 26 Jul 2025 01:05:46 +0000 Files and hashes: 1: Xs7vXyjy82UFPfuM780W4cPehK4.crl (hash: dA0vmc9H9Oi3/WA1bcM+xavGYF79CE9F0FKCxRAHQPQ=) 2: 728139D62FA311F0A9129814C4F9AE02.roa (hash: guIJtqQN+EFa/f6cWPw4iUlLONR7odnIq46PWDEQXBE=) 3: F31E86967B2311EF93801A72C4F9AE02.roa (hash: Um+5nEX9UGWaeunNGOXHeeYETiEJM95laBvW70lUPDE=) 4: 7E044E58A06B11ECBF29B644C4F9AE02.roa (hash: EglzY5P8gEG+IosP670+janTnu12u5QYgDoCSiDyeR8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.crl rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xs7vXyjy82UFPfuM780W4cPehK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 01:05:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 965 (0x3c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB8D9, serialNumber=5ECEEF5F28F2F365053DFB8CEFCD16E1C3DE84AE Validity Not Before: Jul 19 01:05:46 2025 GMT Not After : Jul 26 01:05:46 2025 GMT Subject: CN=687aef6a-a44e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:0d:ff:39:7c:c2:f5:0f:f4:af:2b:39:cf:f9: d1:b4:24:a6:64:62:59:4e:0d:86:e6:21:d4:bf:bc: 8e:39:f2:54:e6:19:b4:49:c9:54:0b:1c:71:ae:f5: 40:93:9d:c8:61:4a:bf:69:f3:ed:3d:c3:d2:95:7b: 7f:64:f5:78:ff:b2:88:59:34:2c:a8:e6:f6:1d:e3: f5:4c:33:bb:5a:ed:d9:82:61:29:2f:ee:1e:ab:54: 2b:b1:4b:3f:e5:74:43:22:2c:79:e3:4f:0b:2f:3c: 37:02:df:e2:60:c2:e3:17:f2:db:24:64:e0:a5:13: aa:4c:4b:ea:40:a0:da:82:ce:83:5b:ac:29:65:c9: af:fa:c1:b6:ec:c4:13:cb:09:29:34:d6:2d:a1:eb: 1d:13:aa:7f:6d:55:bc:9b:05:f9:a8:65:15:f4:6b: 18:a7:89:9a:4a:d4:f2:d3:3b:c0:00:05:22:98:24: 2c:a2:32:40:3c:61:47:12:74:b9:ee:50:69:c4:74: 7a:cb:ac:79:9a:8d:01:05:69:f9:ee:a6:9e:21:8b: d1:4f:e2:6b:35:d1:e5:b7:40:5f:3f:09:37:37:6e: 59:a0:c9:e1:80:87:47:cf:fb:99:75:0d:e5:89:f4: 5d:f0:27:35:23:a3:fe:59:db:fe:a5:51:17:4b:74: 7f:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:A0:07:0F:32:D1:8B:20:25:DD:91:CF:BE:B9:99:59:2A:FB:49:84 X509v3 Authority Key Identifier: keyid:5E:CE:EF:5F:28:F2:F3:65:05:3D:FB:8C:EF:CD:16:E1:C3:DE:84:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xs7vXyjy82UFPfuM780W4cPehK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:76:02:ea:5b:54:20:09:af:36:80:41:dc:3d:f6:03:79:02: 67:05:b6:a1:c6:9a:97:a9:d3:bb:db:ec:04:cb:5b:4e:4a:50: 47:ee:d6:f9:09:c6:6b:bd:e4:f9:4a:f4:b4:2c:f9:55:c1:54: 50:49:65:8d:c1:ed:34:7a:9f:39:1f:97:b5:62:b9:09:63:15: 4c:10:f0:74:4a:67:0e:ed:f7:4b:c9:86:eb:c4:72:77:de:e8: 49:41:2c:9e:6f:89:9a:c2:4c:8b:d2:05:cf:5d:95:ef:35:a2: ab:8f:c7:6f:39:7b:62:89:4d:b0:be:e1:54:0f:dc:0f:e7:d8: 3f:c8:75:2b:44:67:c9:51:78:40:8d:a0:cf:1e:1d:ff:68:20: 61:6a:12:02:52:2a:6c:f1:83:8d:c0:1b:01:6d:9e:18:d4:de: f9:04:9f:b0:73:90:e1:8a:7f:21:ae:f9:6e:56:14:a3:b5:f7: 7c:86:eb:5f:d4:1e:74:99:5a:a4:d6:66:7e:27:c3:67:4b:b7: d1:23:23:e3:3b:92:b9:78:6f:80:ad:61:21:ee:0e:03:d6:3b: a9:76:c7:40:16:64:4b:3d:c0:0a:a6:6a:98:dc:b4:b1:bf:8d: 9c:00:8c:28:27:95:85:08:a4:71:66:d7:8c:ad:43:90:61:6c: b8:5f:70:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI4RDkxMTAvBgNVBAUTKDVFQ0VFRjVGMjhGMkYzNjUwNTNERkI4Q0VGQ0QxNkUx QzNERTg0QUUwHhcNMjUwNzE5MDEwNTQ2WhcNMjUwNzI2MDEwNTQ2WjAYMRYwFAYD VQQDEw02ODdhZWY2YS1hNDRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxQ3/OXzC9Q/0rys5z/nRtCSmZGJZTg2G5iHUv7yOOfJU5hm0SclUCxxxrvVA k53IYUq/afPtPcPSlXt/ZPV4/7KIWTQsqOb2HeP1TDO7Wu3ZgmEpL+4eq1QrsUs/ 5XRDIix5408LLzw3At/iYMLjF/LbJGTgpROqTEvqQKDags6DW6wpZcmv+sG27MQT ywkpNNYtoesdE6p/bVW8mwX5qGUV9GsYp4maStTy0zvAAAUimCQsojJAPGFHEnS5 7lBpxHR6y6x5mo0BBWn57qaeIYvRT+JrNdHlt0BfPwk3N25ZoMnhgIdHz/uZdQ3l ifRd8Cc1I6P+Wdv+pVEXS3R/WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB6gBw8y 0YsgJd2Rz765mVkq+0mEMB8GA1UdIwQYMBaAFF7O718o8vNlBT37jO/NFuHD3oSu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjhEOS84QjAwMjM3NjlB MDIxMUVDOEI4MTc3ODVDNEY5QUUwMi9Yczd2WHlqeTgyVUZQZnVNNzgwVzRjUGVo SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hzN3ZYeWp5ODJVRlBmdU03ODBXNGNQZWhLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjhEOS84QjAwMjM3NjlBMDIxMUVDOEI4MTc3ODVDNEY5QUUwMi9Yczd2WHlqeTgy VUZQZnVNNzgwVzRjUGVoSzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBldgLqW1QgCa82gEHcPfYDeQJnBbahxpqXqdO72+wEy1tOSlBH7tb5 CcZrveT5SvS0LPlVwVRQSWWNwe00ep85H5e1YrkJYxVMEPB0SmcO7fdLyYbrxHJ3 3uhJQSyeb4mawkyL0gXPXZXvNaKrj8dvOXtiiU2wvuFUD9wP59g/yHUrRGfJUXhA jaDPHh3/aCBhahICUips8YONwBsBbZ4Y1N75BJ+wc5Dhin8hrvluVhSjtfd8hutf 1B50mVqk1mZ+J8NnS7fRIyPjO5K5eG+ArWEh7g4D1jupdsdAFmRLPcAKpmqY3LSx v42cAIwoJ5WFCKRxZteMrUOQYWy4X3CA -----END CERTIFICATE-----Generated at Sun Jul 20 19:07:50 2025 by rpki-client