$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.mft File: x3wTCfShUw6jlUFFKIFfnHZ8UVs.mft (raw, json) Hash identifier: QVyGWroHejwxCgIXN65T5qf2R5ayfqTi0doVdIuP76Y= Subject key identifier: 17:36:CC:FC:72:19:8C:84:E6:68:D1:C8:3B:67:D9:78:0F:76:64:1E Authority key identifier: C7:7C:13:09:F4:A1:53:0E:A3:95:41:45:28:81:5F:9C:76:7C:51:5B Certificate issuer: /CN=A91E3377/serialNumber=C77C1309F4A1530EA395414528815F9C767C515B Certificate serial: 056D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x3wTCfShUw6jlUFFKIFfnHZ8UVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.mft Manifest number: 0568 Signing time: Thu 24 Jul 2025 23:40:07 +0000 Manifest this update: Thu 24 Jul 2025 23:40:07 +0000 Manifest next update: Thu 31 Jul 2025 23:40:07 +0000 Files and hashes: 1: x3wTCfShUw6jlUFFKIFfnHZ8UVs.crl (hash: Bo+E15Fi+Aa1i3XoRkAWXXCyXrONgQ8Zfet7XD8TBic=) 2: 4756B350EF9011EBAAE0375AC4F9AE02.roa (hash: H5pjI/DUhiXyW6sQwhGG/wb5HeJLy8aTxQs1mqyRqSU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.crl rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x3wTCfShUw6jlUFFKIFfnHZ8UVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 23:40:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1389 (0x56d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3377, serialNumber=C77C1309F4A1530EA395414528815F9C767C515B Validity Not Before: Jul 24 23:40:07 2025 GMT Not After : Jul 31 23:40:07 2025 GMT Subject: CN=6882c457-8fb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:8f:85:06:d3:9e:82:93:7e:c1:69:f7:cd:93: b0:8c:cb:d1:4d:bb:36:db:b2:f1:dd:c0:bd:83:f6: 04:06:cf:eb:14:0c:0b:98:3e:06:69:7c:ec:be:7f: 2a:90:9b:f3:dc:8f:75:15:f6:9d:0e:e7:9a:21:64: 4c:27:43:78:db:6f:36:09:3e:4a:ae:d1:b7:1a:75: 33:31:a6:88:ae:fb:55:03:a0:12:73:3f:33:12:59: e4:c1:55:08:f5:21:5d:0e:de:48:5c:52:15:b0:e5: dd:24:23:4c:a0:11:19:b8:81:73:3c:e0:4f:2b:4a: 90:20:77:00:48:d5:92:d6:77:7e:82:40:41:a0:9e: 93:9c:3c:8a:de:00:8a:1a:00:4b:78:79:32:c3:84: 67:13:c1:3a:19:8c:a8:87:b3:33:80:96:79:48:c5: cb:50:53:87:e0:dd:7c:a3:92:00:38:7e:f4:f0:f0: 83:87:e1:b5:e8:db:5f:1c:ba:88:bc:21:e2:8d:52: e1:99:7f:5e:28:67:00:04:cd:2a:32:4c:9a:43:af: f3:51:41:55:8f:34:8c:05:55:f8:3c:db:9b:43:a7: cf:8f:9b:67:2e:9a:06:e4:44:7e:ed:c5:2b:bd:e0: dc:e7:23:9b:ac:05:49:6f:76:c1:1c:25:0b:51:4f: b4:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:36:CC:FC:72:19:8C:84:E6:68:D1:C8:3B:67:D9:78:0F:76:64:1E X509v3 Authority Key Identifier: keyid:C7:7C:13:09:F4:A1:53:0E:A3:95:41:45:28:81:5F:9C:76:7C:51:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x3wTCfShUw6jlUFFKIFfnHZ8UVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:3a:00:c6:5b:96:ca:98:56:2c:2a:f8:10:d5:2d:86:6f:f4: eb:17:5a:74:40:29:bd:23:6e:73:b0:b9:66:8d:59:93:d2:59: 56:de:d1:4b:c3:4f:4c:b6:1c:08:68:2c:76:1a:3e:9c:87:e4: e6:7c:dd:2b:91:1a:97:74:7c:f8:ce:f2:f6:02:07:c2:4a:d6: f3:2f:35:2d:68:9d:57:fd:9d:8e:13:34:21:60:5a:a3:ee:cd: 44:1d:b2:32:3c:79:93:04:ac:af:0e:c9:1f:e2:38:42:cf:65: 2b:da:32:df:59:92:ba:02:4c:e8:b1:38:19:59:79:6b:29:91: a0:c5:63:79:32:d2:c3:9e:86:a6:c9:0b:d2:cf:0b:a6:1b:67: 6c:41:35:ef:1f:e0:2e:fd:36:29:27:fe:fc:ca:35:68:b8:c4: 0a:cf:53:d6:7d:11:45:aa:97:27:2f:ef:35:31:92:33:d3:df: 4b:9f:f4:9b:3b:13:e8:29:05:05:a7:36:be:cc:d0:44:76:73: 1d:30:77:5e:fd:59:7a:29:c5:a4:a3:5c:86:7f:da:65:f6:be: 14:7f:9f:b0:0e:a6:98:c2:a2:14:78:0a:68:e5:fa:0c:72:82: 20:4c:6b:61:59:35:29:fa:db:08:89:d0:ca:ed:14:60:2c:5c: ae:dc:3f:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTMzNzcxMTAvBgNVBAUTKEM3N0MxMzA5RjRBMTUzMEVBMzk1NDE0NTI4ODE1RjlD NzY3QzUxNUIwHhcNMjUwNzI0MjM0MDA3WhcNMjUwNzMxMjM0MDA3WjAYMRYwFAYD VQQDEw02ODgyYzQ1Ny04ZmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0o+FBtOegpN+wWn3zZOwjMvRTbs227Lx3cC9g/YEBs/rFAwLmD4GaXzsvn8q kJvz3I91FfadDueaIWRMJ0N42282CT5KrtG3GnUzMaaIrvtVA6AScz8zElnkwVUI 9SFdDt5IXFIVsOXdJCNMoBEZuIFzPOBPK0qQIHcASNWS1nd+gkBBoJ6TnDyK3gCK GgBLeHkyw4RnE8E6GYyoh7MzgJZ5SMXLUFOH4N18o5IAOH708PCDh+G16NtfHLqI vCHijVLhmX9eKGcABM0qMkyaQ6/zUUFVjzSMBVX4PNubQ6fPj5tnLpoG5ER+7cUr veDc5yObrAVJb3bBHCULUU+0xQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBc2zPxy GYyE5mjRyDtn2XgPdmQeMB8GA1UdIwQYMBaAFMd8Ewn0oVMOo5VBRSiBX5x2fFFb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzM3Ny82MEI3N0RBRUVG OEUxMUVCQjBEQTRFNTlDNEY5QUUwMi94M3dUQ2ZTaFV3NmpsVUZGS0lGZm5IWjhV VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3gzd1RDZlNoVXc2amxVRkZLSUZmbkhaOFVWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzM3Ny82MEI3N0RBRUVGOEUxMUVCQjBEQTRFNTlDNEY5QUUwMi94M3dUQ2ZTaFV3 NmpsVUZGS0lGZm5IWjhVVnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSOgDGW5bKmFYsKvgQ1S2Gb/TrF1p0QCm9I25zsLlmjVmT0llW3tFL w09MthwIaCx2Gj6ch+TmfN0rkRqXdHz4zvL2AgfCStbzLzUtaJ1X/Z2OEzQhYFqj 7s1EHbIyPHmTBKyvDskf4jhCz2Ur2jLfWZK6AkzosTgZWXlrKZGgxWN5MtLDnoam yQvSzwumG2dsQTXvH+Au/TYpJ/78yjVouMQKz1PWfRFFqpcnL+81MZIz099Ln/Sb OxPoKQUFpza+zNBEdnMdMHde/Vl6KcWko1yGf9pl9r4Uf5+wDqaYwqIUeApo5foM coIgTGthWTUp+tsIidDK7RRgLFyu3D/i -----END CERTIFICATE-----Generated at Sat Jul 26 02:03:20 2025 by rpki-client