$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.mft File: xvdY7N3EybD3LwZcNa1UaXQycRs.mft (raw, json) Hash identifier: +7gvRh8SrRMiztVLk+UMwC8eMD/HQFjjB3XvPG97Ncs= Subject key identifier: C4:43:F6:5D:A4:F8:8B:F0:92:BA:E8:6B:E6:3D:BC:23:33:18:90:8F Authority key identifier: C6:F7:58:EC:DD:C4:C9:B0:F7:2F:06:5C:35:AD:54:69:74:32:71:1B Certificate issuer: /CN=A91E8DF5/serialNumber=C6F758ECDDC4C9B0F72F065C35AD54697432711B Certificate serial: 56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvdY7N3EybD3LwZcNa1UaXQycRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.mft Manifest number: 4D Signing time: Wed 23 Jul 2025 07:42:48 +0000 Manifest this update: Wed 23 Jul 2025 07:42:48 +0000 Manifest next update: Wed 30 Jul 2025 07:42:48 +0000 Files and hashes: 1: xvdY7N3EybD3LwZcNa1UaXQycRs.crl (hash: Y0Yrhdhn2YVZyyc0jE0/TuOf0VDW5Jo5s4S+nCcZm9c=) 2: 8F9B067EF96011EF89D9E37DC4F9AE02.roa (hash: C4f1DGgr88zvtZI01sEk4X9+P0XVPyTaQ0X1w0t3gJE=) 3: 8F350932F96011EF89D9E37DC4F9AE02.roa (hash: EiButkFaJmxH2f9GmfvH+3lmi0BQDdaX71kUaJ4cIPE=) 4: 8EB1E9BCF96011EF89D9E37DC4F9AE02.roa (hash: ckgf3xD+pqJNwNoVSxIFNqkicDtbDleG9nDMcEDte9Q=) 5: 917D3A184BED11F0A2F7CC21C4F9AE02.roa (hash: IYpTiwoDdKk+DKwv65zZ7BTxOeFfDIMdePJWFd5JpGE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.crl rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvdY7N3EybD3LwZcNa1UaXQycRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 07:42:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86 (0x56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8DF5, serialNumber=C6F758ECDDC4C9B0F72F065C35AD54697432711B Validity Not Before: Jul 23 07:42:48 2025 GMT Not After : Jul 30 07:42:48 2025 GMT Subject: CN=68809278-67c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:5a:f8:8a:00:9d:52:69:6e:fe:fd:f8:f4:f7: 24:a8:84:3c:32:a9:66:98:74:ac:4f:9e:7e:c3:15: a8:20:3f:07:f9:53:ea:9d:64:8d:91:2e:23:1a:e2: dc:f5:b6:bf:21:8a:9f:29:6a:78:e8:05:f2:6d:b0: 71:8a:40:31:01:e1:b3:9a:6e:94:fc:73:5e:73:2d: bf:26:5f:03:b7:17:c9:f5:73:8d:8d:3c:07:9c:0c: c6:d1:86:17:67:4d:13:cf:18:8e:24:f4:4b:39:e0: 1d:62:12:4b:db:a5:75:d0:3b:63:85:00:cf:bc:b3: 21:89:8a:6d:f6:cb:8c:ee:35:2c:25:8e:95:7f:22: 0c:b7:b6:e6:84:50:9e:ed:a6:2e:c4:08:f1:1a:fb: 8a:2a:84:4c:f5:ec:e5:83:6e:d7:5f:32:43:b4:26: 8d:8b:b3:f4:2e:0d:98:93:be:76:9d:0c:78:65:a4: c5:84:5c:c0:c3:5c:0d:25:d6:9c:81:a4:2f:c8:56: ba:2b:f8:03:4c:c3:25:20:ee:77:5f:e6:36:58:7c: dd:f3:0c:7e:85:0a:ac:88:3c:6d:cb:be:fd:1d:e0: 80:76:2d:60:fd:24:9c:05:89:f2:3d:d7:af:30:7b: b6:db:3e:14:0c:96:fb:ac:cf:7f:cc:54:0b:7e:74: f6:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:43:F6:5D:A4:F8:8B:F0:92:BA:E8:6B:E6:3D:BC:23:33:18:90:8F X509v3 Authority Key Identifier: keyid:C6:F7:58:EC:DD:C4:C9:B0:F7:2F:06:5C:35:AD:54:69:74:32:71:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xvdY7N3EybD3LwZcNa1UaXQycRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8DF5/31E0F16AF96011EF9D679C7AC4F9AE02/xvdY7N3EybD3LwZcNa1UaXQycRs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:3e:30:fc:b7:fc:a6:b8:5b:ff:2d:16:86:23:bc:da:98:c5: 51:03:06:5f:26:8b:9b:51:e5:2d:e3:33:57:e4:a4:95:37:eb: 90:ad:e5:8b:a5:3d:73:f0:bf:14:9e:33:d4:08:cb:7d:91:8e: a2:c0:78:ea:8b:bd:58:d1:af:4f:7a:56:82:65:f0:41:01:a1: 85:50:e7:58:05:cd:36:f4:80:d0:27:23:9c:ef:8a:bc:43:ea: 8a:2a:9b:41:da:44:26:6e:c7:31:35:f1:a5:8a:b2:bd:f1:9b: 95:59:98:a0:54:54:5b:b9:68:54:5f:20:ab:33:90:6a:9a:75: ec:9c:fb:25:fc:73:fe:89:e2:16:b1:00:04:da:fe:ca:50:8a: 21:9e:da:b9:7d:13:24:00:85:f5:7c:d3:0e:80:28:79:1a:4b: 0f:cf:de:c6:d0:c1:4c:03:6b:c1:19:74:99:b9:e1:52:d8:ac: 16:72:a2:9a:3c:48:47:c2:6a:49:0a:8a:ac:17:20:17:4b:8e: ad:95:f4:d4:93:af:34:9d:d8:1c:0c:2f:49:10:a6:c9:43:0d: 5d:7d:95:09:94:a1:7d:cc:36:e1:75:99:a3:59:53:eb:5c:8f: c3:ef:6d:e2:7a:dc:b2:ef:73:57:f0:8b:3e:6d:26:cd:57:e1: f3:e7:05:5b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF OERGNTExMC8GA1UEBRMoQzZGNzU4RUNEREM0QzlCMEY3MkYwNjVDMzVBRDU0Njk3 NDMyNzExQjAeFw0yNTA3MjMwNzQyNDhaFw0yNTA3MzAwNzQyNDhaMBgxFjAUBgNV BAMTDTY4ODA5Mjc4LTY3YzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCnWviKAJ1SaW7+/fj09ySohDwyqWaYdKxPnn7DFaggPwf5U+qdZI2RLiMa4tz1 tr8hip8panjoBfJtsHGKQDEB4bOabpT8c15zLb8mXwO3F8n1c42NPAecDMbRhhdn TRPPGI4k9Es54B1iEkvbpXXQO2OFAM+8syGJim32y4zuNSwljpV/Igy3tuaEUJ7t pi7ECPEa+4oqhEz17OWDbtdfMkO0Jo2Ls/QuDZiTvnadDHhlpMWEXMDDXA0l1pyB pC/IVror+ANMwyUg7ndf5jZYfN3zDH6FCqyIPG3Lvv0d4IB2LWD9JJwFifI9168w e7bbPhQMlvusz3/MVAt+dPY/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUxEP2XaT4 i/CSuuhr5j28IzMYkI8wHwYDVR0jBBgwFoAUxvdY7N3EybD3LwZcNa1UaXQycRsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4REY1LzMxRTBGMTZBRjk2 MDExRUY5RDY3OUM3QUM0RjlBRTAyL3h2ZFk3TjNFeWJEM0x3WmNOYTFVYVhReWNS cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveHZkWTdOM0V5YkQzTHdaY05hMVVhWFF5Y1JzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4 REY1LzMxRTBGMTZBRjk2MDExRUY5RDY3OUM3QUM0RjlBRTAyL3h2ZFk3TjNFeWJE M0x3WmNOYTFVYVhReWNScy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIE+MPy3/Ka4W/8tFoYjvNqYxVEDBl8mi5tR5S3jM1fkpJU365Ct5Yul PXPwvxSeM9QIy32RjqLAeOqLvVjRr096VoJl8EEBoYVQ51gFzTb0gNAnI5zvirxD 6ooqm0HaRCZuxzE18aWKsr3xm5VZmKBUVFu5aFRfIKszkGqadeyc+yX8c/6J4hax AATa/spQiiGe2rl9EyQAhfV80w6AKHkaSw/P3sbQwUwDa8EZdJm54VLYrBZyopo8 SEfCakkKiqwXIBdLjq2V9NSTrzSd2BwML0kQpslDDV19lQmUoX3MNuF1maNZU+tc j8PvbeJ63LLvc1fwiz5tJs1X4fPnBVs= -----END CERTIFICATE-----Generated at Thu Jul 24 05:02:14 2025 by rpki-client