$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft File: XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft (raw, json) Hash identifier: Yb8291WWAaP4X6xnZDkPc16h64JuKKi9cBEr6CmMT+k= Subject key identifier: 9A:3C:6E:B2:2E:A4:09:5A:0B:92:2F:BC:BC:84:84:50:7E:BD:5E:3E Authority key identifier: 5D:CA:45:28:B9:E4:0C:88:E4:67:A4:3F:DC:12:B7:8F:2B:35:45:E3 Certificate issuer: /CN=A91E4BD2/serialNumber=5DCA4528B9E40C88E467A43FDC12B78F2B3545E3 Certificate serial: 0915 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft Manifest number: 090E Signing time: Fri 18 Jul 2025 20:32:31 +0000 Manifest this update: Fri 18 Jul 2025 20:32:31 +0000 Manifest next update: Fri 25 Jul 2025 20:32:31 +0000 Files and hashes: 1: XcpFKLnkDIjkZ6Q_3BK3jys1ReM.crl (hash: gaaQ1+bjod+dCaVDD8JxF7JiRhnQObAt1qGXb+Q/Jz4=) 2: A862F866AA3111EA9E08C324C4F9AE02.roa (hash: OW41bUAPIGMrqZxgUYQ1U1pF1P2hht2Fk6aRcB2b9ic=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.crl rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 20:32:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2325 (0x915) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4BD2, serialNumber=5DCA4528B9E40C88E467A43FDC12B78F2B3545E3 Validity Not Before: Jul 18 20:32:31 2025 GMT Not After : Jul 25 20:32:31 2025 GMT Subject: CN=687aaf5f-1dd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:68:39:a4:f0:b7:a3:ca:59:00:d3:7f:7e:e1: 58:fa:0c:85:5e:f1:72:bc:f4:bd:4c:71:57:b2:41: 6b:52:5e:67:8f:e5:c8:3d:c5:80:2d:a0:96:82:88: c7:2e:14:1c:31:05:c1:e7:3f:90:96:65:ca:61:6e: 0b:27:d5:90:c0:c0:b4:0a:7d:1b:69:b4:d0:a3:df: 67:8d:a5:41:f0:c6:f8:42:af:dc:95:fb:5d:d1:0e: e9:a7:4f:27:3b:6a:35:c6:a3:96:0e:2e:35:cb:89: 23:e9:b2:52:4b:ff:4e:a8:7c:71:90:aa:d1:d3:47: 0d:10:13:54:f5:60:5a:41:c6:1e:69:23:80:0a:55: 5f:29:42:0f:24:43:a5:eb:3e:5a:5a:dd:cf:09:2f: 13:3a:db:d3:37:1c:78:15:62:f2:8e:24:d7:fd:f5: 2c:58:16:1a:87:c5:9d:58:83:09:8f:0f:28:c3:1f: 00:71:90:fc:1e:e7:36:10:97:cc:25:ac:d6:99:5c: fe:88:bf:32:73:88:c2:ef:40:fe:0b:20:76:25:d9: 04:ed:d7:33:47:71:33:81:dd:88:f6:42:1f:16:2f: 5e:0e:6b:0c:ca:89:aa:fb:05:14:bc:b8:70:fc:77: fe:87:ce:f8:60:a1:28:c3:35:76:13:ea:ce:0d:b6: c2:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:3C:6E:B2:2E:A4:09:5A:0B:92:2F:BC:BC:84:84:50:7E:BD:5E:3E X509v3 Authority Key Identifier: keyid:5D:CA:45:28:B9:E4:0C:88:E4:67:A4:3F:DC:12:B7:8F:2B:35:45:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:25:b2:e3:88:02:24:43:f3:ec:43:03:e0:47:ad:a0:29:60: 1f:18:e3:df:de:93:a0:81:f8:1a:86:2d:53:56:fe:2f:23:9a: da:22:bc:db:98:19:35:57:ca:e6:94:62:01:a1:ab:0b:97:dc: 31:3f:87:2f:92:52:f9:b5:7c:f3:af:48:a8:e2:e9:e5:29:6c: c7:86:ab:7c:26:d9:00:c7:82:31:34:29:84:2b:ec:29:11:d3: 07:d3:af:58:5c:ff:f5:e9:42:94:8c:3a:ab:cc:83:1a:ee:e0: b4:23:be:b4:e0:b9:a6:0f:ac:1b:18:39:ea:48:8c:9d:19:90: 88:2f:e2:bb:60:c3:32:3e:d9:b3:cc:d5:61:cc:db:ae:f1:ac: 2e:6f:84:2c:9b:18:1c:de:56:45:4f:6f:95:18:1a:9b:26:56: dd:9e:d5:ae:30:1f:c2:89:cc:eb:a0:c6:9e:35:11:31:9a:a5: bf:50:d3:a6:4f:6d:77:c1:48:37:af:a0:d2:0f:f9:1a:c9:68: f7:9a:d4:a1:92:60:b8:e5:d5:e4:00:82:77:e4:0e:d0:c5:fc: f5:d0:ef:37:cb:0a:5e:ce:b5:94:89:dc:84:d1:5f:e0:76:fc: 30:4d:8e:11:4b:f0:22:f6:c1:2c:61:f3:88:38:75:c7:0b:f1: 04:34:df:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCRUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRCRDIxMTAvBgNVBAUTKDVEQ0E0NTI4QjlFNDBDODhFNDY3QTQzRkRDMTJCNzhG MkIzNTQ1RTMwHhcNMjUwNzE4MjAzMjMxWhcNMjUwNzI1MjAzMjMxWjAYMRYwFAYD VQQDEw02ODdhYWY1Zi0xZGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGg5pPC3o8pZANN/fuFY+gyFXvFyvPS9THFXskFrUl5nj+XIPcWALaCWgojH LhQcMQXB5z+QlmXKYW4LJ9WQwMC0Cn0babTQo99njaVB8Mb4Qq/clftd0Q7pp08n O2o1xqOWDi41y4kj6bJSS/9OqHxxkKrR00cNEBNU9WBaQcYeaSOAClVfKUIPJEOl 6z5aWt3PCS8TOtvTNxx4FWLyjiTX/fUsWBYah8WdWIMJjw8owx8AcZD8Huc2EJfM JazWmVz+iL8yc4jC70D+CyB2JdkE7dczR3Ezgd2I9kIfFi9eDmsMyomq+wUUvLhw /Hf+h874YKEowzV2E+rODbbC1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJo8brIu pAlaC5IvvLyEhFB+vV4+MB8GA1UdIwQYMBaAFF3KRSi55AyI5GekP9wSt48rNUXj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEJEMi9GNDBCMTE2QUFB MkYxMUVBOUMyOTU5MUVDNEY5QUUwMi9YY3BGS0xua0RJamtaNlFfM0JLM2p5czFS ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjcEZLTG5rRElqa1o2UV8zQkszanlzMVJlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEJEMi9GNDBCMTE2QUFBMkYxMUVBOUMyOTU5MUVDNEY5QUUwMi9YY3BGS0xua0RJ amtaNlFfM0JLM2p5czFSZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmJbLjiAIkQ/PsQwPgR62gKWAfGOPf3pOggfgahi1TVv4vI5raIrzb mBk1V8rmlGIBoasLl9wxP4cvklL5tXzzr0io4unlKWzHhqt8JtkAx4IxNCmEK+wp EdMH069YXP/16UKUjDqrzIMa7uC0I7604LmmD6wbGDnqSIydGZCIL+K7YMMyPtmz zNVhzNuu8awub4Qsmxgc3lZFT2+VGBqbJlbdntWuMB/CiczroMaeNRExmqW/UNOm T213wUg3r6DSD/kayWj3mtShkmC45dXkAIJ35A7Qxfz10O83ywpezrWUidyE0V/g dvwwTY4RS/Ai9sEsYfOIOHXHC/EENN9q -----END CERTIFICATE-----Generated at Sun Jul 20 03:21:32 2025 by rpki-client