$ rpki-client -vvf rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft File: XDlbosoKv2WIhyaHTHgktpt4mZU.mft (raw, json) Hash identifier: FAtFxdUr3kcUwtiVSx8WRJI6hRWJV1LM0FW4pKwAFUk= Subject key identifier: 96:18:4D:76:F9:A7:24:DF:03:DC:57:B0:1C:C5:B5:6A:26:2B:62:30 Authority key identifier: 5C:39:5B:A2:CA:0A:BF:65:88:87:26:87:4C:78:24:B6:9B:78:99:95 Certificate issuer: /CN=A91E66E5/serialNumber=5C395BA2CA0ABF65888726874C7824B69B789995 Certificate serial: 0E60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft Manifest number: 0E53 Signing time: Fri 18 Jul 2025 17:55:12 +0000 Manifest this update: Fri 18 Jul 2025 17:55:11 +0000 Manifest next update: Fri 25 Jul 2025 17:55:11 +0000 Files and hashes: 1: XDlbosoKv2WIhyaHTHgktpt4mZU.crl (hash: Yz8fkLG9jYWQQ7AEA3W6r8pkR7gvcJNz1LIfJQImu8g=) 2: AECDA1B0448F11EDACC30815C4F9AE02.roa (hash: xirIMjuaHIPZj6jpdJVKaFKfHlsVW3gI4qvEhU2Je88=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.crl rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 17:55:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3680 (0xe60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E66E5, serialNumber=5C395BA2CA0ABF65888726874C7824B69B789995 Validity Not Before: Jul 18 17:55:11 2025 GMT Not After : Jul 25 17:55:11 2025 GMT Subject: CN=687a8a7f-be43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:8e:f5:f3:78:f8:76:8f:e0:18:0a:e8:f6:21: 23:36:eb:e9:d8:17:f8:55:f5:46:62:8c:f1:85:90: 6e:19:9f:04:a3:9c:86:38:ca:47:2a:80:a9:06:78: e7:00:dc:88:77:08:7d:12:be:f9:f6:fb:e7:e2:31: 19:88:c1:39:fd:eb:cd:ef:92:12:0b:0b:c1:ed:b0: ec:51:29:e1:37:43:be:20:31:60:16:f4:94:35:18: 0a:45:7f:f7:1e:9b:db:0a:b0:04:ce:ba:53:12:ff: e5:ec:e7:5d:ac:2b:83:30:43:09:8d:5f:98:9e:86: 48:72:53:94:24:d5:b6:76:11:12:52:d3:f5:5f:f5: 50:70:bf:8d:98:aa:f8:ad:12:9e:1b:95:78:dd:4e: 7d:af:43:b6:f4:83:f2:04:a1:6a:3c:8c:fe:c6:0a: 98:ba:f5:ad:7a:0c:7e:ec:6b:71:fa:96:c1:82:ea: 65:da:ed:3a:59:e1:ed:2b:57:de:55:e4:78:80:52: 0e:6a:de:a6:94:d0:c3:53:8e:51:8e:eb:6f:f8:ba: 77:71:4e:8f:ac:b7:96:3e:4c:d9:c4:86:7a:49:0c: 93:f7:90:c1:eb:57:74:96:99:9e:36:f2:9b:1c:65: 6f:7d:aa:ef:c2:b4:86:09:a2:d7:67:84:44:90:57: 86:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:18:4D:76:F9:A7:24:DF:03:DC:57:B0:1C:C5:B5:6A:26:2B:62:30 X509v3 Authority Key Identifier: keyid:5C:39:5B:A2:CA:0A:BF:65:88:87:26:87:4C:78:24:B6:9B:78:99:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:6c:83:cd:42:1e:33:21:04:41:09:92:13:c6:6b:75:db:09: 94:c9:9b:97:5d:3a:e9:7c:b8:29:a5:2e:2d:3d:c5:09:5b:d7: 2e:51:73:6d:73:b1:40:6d:58:f4:44:02:3b:2f:0a:8b:11:f5: f8:0e:ad:b3:29:b1:f4:47:a6:51:c5:a5:62:6f:71:70:09:da: 3b:35:15:1a:52:d6:81:2c:3e:a9:69:e7:d3:61:be:6a:a6:53: cd:12:10:64:6a:02:9f:27:17:6c:6f:99:a3:62:68:dc:fb:5a: 70:10:77:15:3f:75:3a:8d:93:3f:35:9b:6f:dc:da:a2:d0:ab: 70:28:b6:55:79:d5:79:7f:e0:35:90:bb:40:e4:2f:18:b8:b0: 75:85:24:ef:6b:79:ee:88:9d:80:05:ee:27:73:dc:c5:af:05: 7c:96:cc:5f:97:d9:36:f2:89:ee:64:bd:18:66:4a:e4:3d:b3: 66:98:be:df:10:ed:75:cc:57:e8:1f:8a:2c:5a:02:81:0d:b9: cf:b3:8b:40:8d:92:cd:3a:44:c7:f1:24:ae:93:7c:19:a5:90: 81:89:21:10:ec:10:48:64:1c:6f:a8:9e:29:db:d7:3b:a0:45: f3:28:5c:bc:3a:65:ca:f5:da:18:9d:15:a7:59:4d:38:df:7d: 9a:ae:97:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDmAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY2RTUxMTAvBgNVBAUTKDVDMzk1QkEyQ0EwQUJGNjU4ODg3MjY4NzRDNzgyNEI2 OUI3ODk5OTUwHhcNMjUwNzE4MTc1NTExWhcNMjUwNzI1MTc1NTExWjAYMRYwFAYD VQQDEw02ODdhOGE3Zi1iZTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwo7183j4do/gGAro9iEjNuvp2Bf4VfVGYozxhZBuGZ8Eo5yGOMpHKoCpBnjn ANyIdwh9Er759vvn4jEZiME5/evN75ISCwvB7bDsUSnhN0O+IDFgFvSUNRgKRX/3 HpvbCrAEzrpTEv/l7OddrCuDMEMJjV+YnoZIclOUJNW2dhESUtP1X/VQcL+NmKr4 rRKeG5V43U59r0O29IPyBKFqPIz+xgqYuvWtegx+7Gtx+pbBgupl2u06WeHtK1fe VeR4gFIOat6mlNDDU45Rjutv+Lp3cU6PrLeWPkzZxIZ6SQyT95DB61d0lpmeNvKb HGVvfarvwrSGCaLXZ4REkFeGMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJYYTXb5 pyTfA9xXsBzFtWomK2IwMB8GA1UdIwQYMBaAFFw5W6LKCr9liIcmh0x4JLabeJmV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjZFNS81NjQzMDU4NkEy NzUxMUU5QTc0RDRFODJDNEY5QUUwMi9YRGxib3NvS3YyV0loeWFIVEhna3RwdDRt WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEbGJvc29LdjJXSWh5YUhUSGdrdHB0NG1aVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjZFNS81NjQzMDU4NkEyNzUxMUU5QTc0RDRFODJDNEY5QUUwMi9YRGxib3NvS3Yy V0loeWFIVEhna3RwdDRtWlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7bIPNQh4zIQRBCZITxmt12wmUyZuXXTrpfLgppS4tPcUJW9cuUXNt c7FAbVj0RAI7LwqLEfX4Dq2zKbH0R6ZRxaVib3FwCdo7NRUaUtaBLD6paefTYb5q plPNEhBkagKfJxdsb5mjYmjc+1pwEHcVP3U6jZM/NZtv3Nqi0KtwKLZVedV5f+A1 kLtA5C8YuLB1hSTva3nuiJ2ABe4nc9zFrwV8lsxfl9k28onuZL0YZkrkPbNmmL7f EO11zFfoH4osWgKBDbnPs4tAjZLNOkTH8SSuk3wZpZCBiSEQ7BBIZBxvqJ4p29c7 oEXzKFy8OmXK9doYnRWnWU04332arpc8 -----END CERTIFICATE-----Generated at Sun Jul 20 02:37:13 2025 by rpki-client