$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft File: XlEJvjS4HAy74OQ1mneBpGJLn80.mft (raw, json) Hash identifier: CI7cD8uHMHo7iyfNLcmYizrBQjKZWh4ZLSni/3F/Xg0= Subject key identifier: 6A:8C:2B:34:CA:2E:4A:BE:E7:0F:85:F9:FB:7F:9C:E2:84:49:16:1B Authority key identifier: 5E:51:09:BE:34:B8:1C:0C:BB:E0:E4:35:9A:77:81:A4:62:4B:9F:CD Certificate issuer: /CN=A91E5D61/serialNumber=5E5109BE34B81C0CBBE0E4359A7781A4624B9FCD Certificate serial: 12D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft Manifest number: 47B6 Signing time: Sun 20 Jul 2025 14:21:17 +0000 Manifest this update: Sun 20 Jul 2025 14:21:16 +0000 Manifest next update: Sun 27 Jul 2025 14:21:16 +0000 Files and hashes: 1: XlEJvjS4HAy74OQ1mneBpGJLn80.crl (hash: z+uyFMZOWuoFiv0iMSTbVqoh+oGvgwwAjHVt57firNE=) 2: C5FA430E179711EDB9008D18C4F9AE02.roa (hash: GHnN7IPBztwTSkz/5T1Pzn2mpFjuZRSGTdYW2a+IpUM=) 3: 12300E80ECD911EEB21F7B7FC4F9AE02.roa (hash: idks1lefYLO6nPenvXoGS0zMdLXoYOwMfOiIKkDlkB8=) 4: 792023A8E0DD11EE86DB926AC4F9AE02.roa (hash: gZAAhBS7lDX/ARKaEp+quX+YnSdkN0XwL2ShlYH1ilM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.crl rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:21:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4823 (0x12d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D61, serialNumber=5E5109BE34B81C0CBBE0E4359A7781A4624B9FCD Validity Not Before: Jul 20 14:21:16 2025 GMT Not After : Jul 27 14:21:16 2025 GMT Subject: CN=687cfb5d-ed8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:bc:31:bc:98:9a:32:5d:63:df:4a:aa:60:b5: ec:7e:86:28:e7:92:eb:7b:91:12:dc:5f:63:c7:b3: fc:e6:87:36:ac:27:ed:c6:c9:61:97:d0:5a:8b:7e: cd:56:4c:14:a1:40:67:fe:70:e9:6d:45:d4:c1:3b: d3:ca:db:12:49:7c:97:64:cb:a0:bf:f0:c3:a5:f0: 68:87:ef:3e:c1:d4:52:f9:1b:9d:8f:26:a2:d4:13: e5:a0:6d:53:0a:19:d2:e1:1b:fb:4a:59:2f:99:0e: 85:37:52:b5:a9:6e:19:06:30:34:19:cb:1d:53:b3: b5:48:04:06:1e:eb:2f:7d:41:78:ba:4f:e8:12:a6: 9e:35:ed:0b:fe:d6:e3:2f:28:30:1b:2b:f2:6c:e5: 1c:d7:0d:ae:d1:3c:22:13:c1:05:e0:59:73:4d:e2: fe:88:b5:9f:39:ae:a3:87:79:f9:af:4a:d3:bf:45: 7c:30:95:dc:c8:2b:e8:c6:c5:24:66:4e:11:34:db: 5e:c4:0d:57:bf:0a:4c:4b:08:4c:83:09:e0:85:ba: 3b:a8:72:80:f4:0a:34:d5:24:6e:5a:f6:5e:7e:88: e5:54:69:21:10:3f:b1:20:0f:3e:01:37:89:2a:dc: 18:21:69:2a:71:66:c2:0a:59:bc:33:28:8c:e3:1b: 6a:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:8C:2B:34:CA:2E:4A:BE:E7:0F:85:F9:FB:7F:9C:E2:84:49:16:1B X509v3 Authority Key Identifier: keyid:5E:51:09:BE:34:B8:1C:0C:BB:E0:E4:35:9A:77:81:A4:62:4B:9F:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:15:84:17:11:61:87:7a:38:91:64:64:54:5d:35:67:4a:14: 36:8d:d4:2c:87:b7:99:0e:bb:2f:3c:46:32:2c:64:54:2b:7e: 12:2c:da:51:9c:ed:77:b8:4a:e5:f5:63:6c:37:02:df:1d:02: 03:e4:93:ef:10:93:b9:5d:e8:a8:b8:1f:12:70:4b:e9:a6:ef: df:82:50:54:80:38:8b:d3:21:fd:db:e6:fc:34:4a:d2:67:51: be:88:2f:7f:cd:83:3e:2f:1c:8d:82:b6:6b:28:3e:18:95:14: 8c:df:a8:62:ac:7d:88:68:63:4b:8a:57:94:6c:79:c3:a5:42: 95:b2:98:ec:77:89:94:2d:0d:00:f6:ba:7f:4d:b4:39:2a:dc: 5b:ea:bb:bc:e7:6d:e4:ba:32:93:d0:ad:6c:dc:68:eb:b1:51: 49:42:1b:83:4d:51:d3:5e:ba:98:27:fc:71:44:ee:d5:57:1c: ce:1a:61:25:b3:b9:f8:eb:69:78:a8:33:c0:b7:3c:ca:94:40: a7:89:a5:6c:9e:87:c2:cd:81:41:86:dd:4b:15:64:73:e6:18: ae:51:df:a5:74:36:9e:2b:3a:e2:11:13:0e:3e:0e:71:86:ea: c6:ca:72:0c:03:17:d7:d3:3b:f6:ed:0f:c3:22:04:83:62:34: 48:31:ad:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEtcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVENjExMTAvBgNVBAUTKDVFNTEwOUJFMzRCODFDMENCQkUwRTQzNTlBNzc4MUE0 NjI0QjlGQ0QwHhcNMjUwNzIwMTQyMTE2WhcNMjUwNzI3MTQyMTE2WjAYMRYwFAYD VQQDEw02ODdjZmI1ZC1lZDhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwbwxvJiaMl1j30qqYLXsfoYo55Lre5ES3F9jx7P85oc2rCftxslhl9Bai37N VkwUoUBn/nDpbUXUwTvTytsSSXyXZMugv/DDpfBoh+8+wdRS+Rudjyai1BPloG1T ChnS4Rv7SlkvmQ6FN1K1qW4ZBjA0GcsdU7O1SAQGHusvfUF4uk/oEqaeNe0L/tbj LygwGyvybOUc1w2u0TwiE8EF4FlzTeL+iLWfOa6jh3n5r0rTv0V8MJXcyCvoxsUk Zk4RNNtexA1XvwpMSwhMgwnghbo7qHKA9Ao01SRuWvZefojlVGkhED+xIA8+ATeJ KtwYIWkqcWbCClm8MyiM4xtq2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGqMKzTK Lkq+5w+F+ft/nOKESRYbMB8GA1UdIwQYMBaAFF5RCb40uBwMu+DkNZp3gaRiS5/N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUQ2MS8wQzZBMEM5RTFE NzkxMUUyODc5RTM4QzUwOEIwMkNEMi9YbEVKdmpTNEhBeTc0T1ExbW5lQnBHSkxu ODAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hsRUp2alM0SEF5NzRPUTFtbmVCcEdKTG44MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUQ2MS8wQzZBMEM5RTFENzkxMUUyODc5RTM4QzUwOEIwMkNEMi9YbEVKdmpTNEhB eTc0T1ExbW5lQnBHSkxuODAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZFYQXEWGHejiRZGRUXTVnShQ2jdQsh7eZDrsvPEYyLGRUK34SLNpR nO13uErl9WNsNwLfHQID5JPvEJO5XeiouB8ScEvppu/fglBUgDiL0yH92+b8NErS Z1G+iC9/zYM+LxyNgrZrKD4YlRSM36hirH2IaGNLileUbHnDpUKVspjsd4mULQ0A 9rp/TbQ5Ktxb6ru8523kujKT0K1s3GjrsVFJQhuDTVHTXrqYJ/xxRO7VVxzOGmEl s7n462l4qDPAtzzKlECniaVsnofCzYFBht1LFWRz5hiuUd+ldDaeKzriERMOPg5x hurGynIMAxfX0zv27Q/DIgSDYjRIMa2n -----END CERTIFICATE-----Generated at Mon Jul 21 07:19:32 2025 by rpki-client