$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA742/DBA8A5E2C05611EE97157810C4F9AE02/XKcmhHc2ig8SXvQrkg12wnEpzCs.mft File: XKcmhHc2ig8SXvQrkg12wnEpzCs.mft (raw, json) Hash identifier: GiQ2RlILPqLxSoTPVa+PvP3IuxgfUQUEQqaMNMQiYeQ= Subject key identifier: 3D:03:AF:53:F9:9A:1A:29:A8:EE:87:A2:91:E4:99:0C:8B:36:82:4E Authority key identifier: 5C:A7:26:84:77:36:8A:0F:12:5E:F4:2B:92:0D:76:C2:71:29:CC:2B Certificate issuer: /CN=A91EA742/serialNumber=5CA7268477368A0F125EF42B920D76C27129CC2B Certificate serial: 0110 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKcmhHc2ig8SXvQrkg12wnEpzCs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA742/DBA8A5E2C05611EE97157810C4F9AE02/XKcmhHc2ig8SXvQrkg12wnEpzCs.mft Manifest number: 0110 Signing time: Sat 19 Jul 2025 05:07:20 +0000 Manifest this update: Sat 19 Jul 2025 05:07:19 +0000 Manifest next update: Sat 26 Jul 2025 05:07:19 +0000 Files and hashes: 1: XKcmhHc2ig8SXvQrkg12wnEpzCs.crl (hash: WEdj0jfiMa4kMX8IgqpHvm4Uaciju0/o2im8+c1rcNs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA742/DBA8A5E2C05611EE97157810C4F9AE02/XKcmhHc2ig8SXvQrkg12wnEpzCs.crl rsync://rpki.apnic.net/member_repository/A91EA742/DBA8A5E2C05611EE97157810C4F9AE02/XKcmhHc2ig8SXvQrkg12wnEpzCs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKcmhHc2ig8SXvQrkg12wnEpzCs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:07:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 272 (0x110) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA742, serialNumber=5CA7268477368A0F125EF42B920D76C27129CC2B Validity Not Before: Jul 19 05:07:19 2025 GMT Not After : Jul 26 05:07:19 2025 GMT Subject: CN=687b2807-6090 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:b0:fd:fb:71:56:71:19:ff:07:89:08:61:bc: 92:d8:75:e0:fd:fc:25:0b:0b:0b:a6:9d:dc:86:2e: 0f:a1:71:1e:dc:ca:e3:b2:e1:1f:bb:46:94:58:89: f6:42:6d:91:4c:a8:8b:f2:55:1f:c1:e5:ee:cb:fb: f3:f7:4e:3d:03:b5:f5:95:af:58:48:9b:94:93:56: 3d:94:1b:3a:a1:6f:bf:b1:d6:85:71:61:7c:26:da: bd:48:02:4c:1e:87:c1:a7:a2:e5:74:52:f9:63:24: 40:6b:80:a8:a0:1f:55:05:cc:ec:7c:01:b7:00:73: be:ba:9e:ee:9a:b8:54:6a:ec:90:e0:4e:d8:45:c4: fe:fe:28:79:fe:5b:66:74:47:dc:84:ce:3c:87:87: 46:11:eb:87:06:89:14:8a:76:14:08:a0:17:e8:cd: 6d:91:d7:ce:97:a2:40:75:6c:c5:a0:0d:71:35:cf: 1c:f4:06:ca:06:6e:8c:c0:db:b9:97:37:eb:3d:43: 08:dd:a3:cc:fe:ef:ad:64:ca:a0:cd:a4:ce:b9:72: 5a:8c:fa:a5:bb:c7:6b:e4:96:e5:eb:a9:17:fe:00: 80:36:18:e1:21:7f:52:db:30:52:75:90:d0:82:50: 7d:79:8b:20:ac:cc:19:ad:a4:7b:74:49:91:ad:2b: 9c:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:03:AF:53:F9:9A:1A:29:A8:EE:87:A2:91:E4:99:0C:8B:36:82:4E X509v3 Authority Key Identifier: keyid:5C:A7:26:84:77:36:8A:0F:12:5E:F4:2B:92:0D:76:C2:71:29:CC:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA742/DBA8A5E2C05611EE97157810C4F9AE02/XKcmhHc2ig8SXvQrkg12wnEpzCs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XKcmhHc2ig8SXvQrkg12wnEpzCs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA742/DBA8A5E2C05611EE97157810C4F9AE02/XKcmhHc2ig8SXvQrkg12wnEpzCs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:38:d7:2a:83:93:92:5a:4f:8d:0e:01:ab:c0:5e:dc:bf:3f: c6:ce:6f:53:d8:fe:5c:0e:e4:3c:fe:de:73:26:cf:1d:ff:b7: f5:47:d6:0f:e1:92:a1:76:81:c6:60:e2:c9:a2:8e:70:15:3e: 89:6d:e7:0e:37:64:c0:db:65:06:6d:46:a4:9c:4c:35:3c:f1: 1b:b3:57:e2:1a:61:68:e1:fb:97:03:84:8a:55:e0:b9:73:c6: c2:fd:97:b7:b1:27:b3:3c:58:4f:f0:4c:44:19:47:67:46:94: 8e:e2:97:46:fd:e3:bc:1f:4b:c2:b6:b6:79:99:16:7c:02:d4: cc:99:69:0b:d5:6b:78:b2:02:3f:f2:5b:8d:c2:7d:bf:c4:d5: 6b:64:39:5b:11:e2:25:ee:49:92:ac:a3:95:74:ef:0c:5f:70: d2:af:e0:25:49:ef:40:fb:e6:04:33:d8:a5:9b:be:5f:87:89: b0:5d:af:b0:f2:74:79:99:d1:22:a7:76:9c:37:a7:ab:3c:74: 85:bd:08:9a:8c:fe:6e:42:e5:b7:5b:01:2e:54:c2:b3:cf:f5: c4:d1:ea:d2:4a:c6:d0:1c:71:dc:e2:36:67:40:be:3d:dc:e5: ff:e4:0a:ff:d1:f3:d0:2e:b9:4e:a3:d3:71:a5:eb:d2:05:a5: 4d:bd:13:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE3NDIxMTAvBgNVBAUTKDVDQTcyNjg0NzczNjhBMEYxMjVFRjQyQjkyMEQ3NkMy NzEyOUNDMkIwHhcNMjUwNzE5MDUwNzE5WhcNMjUwNzI2MDUwNzE5WjAYMRYwFAYD VQQDEw02ODdiMjgwNy02MDkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/rD9+3FWcRn/B4kIYbyS2HXg/fwlCwsLpp3chi4PoXEe3MrjsuEfu0aUWIn2 Qm2RTKiL8lUfweXuy/vz9049A7X1la9YSJuUk1Y9lBs6oW+/sdaFcWF8Jtq9SAJM HofBp6LldFL5YyRAa4CooB9VBczsfAG3AHO+up7umrhUauyQ4E7YRcT+/ih5/ltm dEfchM48h4dGEeuHBokUinYUCKAX6M1tkdfOl6JAdWzFoA1xNc8c9AbKBm6MwNu5 lzfrPUMI3aPM/u+tZMqgzaTOuXJajPqlu8dr5Jbl66kX/gCANhjhIX9S2zBSdZDQ glB9eYsgrMwZraR7dEmRrSucZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD0Dr1P5 mhopqO6HopHkmQyLNoJOMB8GA1UdIwQYMBaAFFynJoR3NooPEl70K5INdsJxKcwr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTc0Mi9EQkE4QTVFMkMw NTYxMUVFOTcxNTc4MTBDNEY5QUUwMi9YS2NtaEhjMmlnOFNYdlFya2cxMnduRXB6 Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hLY21oSGMyaWc4U1h2UXJrZzEyd25FcHpDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTc0Mi9EQkE4QTVFMkMwNTYxMUVFOTcxNTc4MTBDNEY5QUUwMi9YS2NtaEhjMmln OFNYdlFya2cxMnduRXB6Q3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcONcqg5OSWk+NDgGrwF7cvz/Gzm9T2P5cDuQ8/t5zJs8d/7f1R9YP 4ZKhdoHGYOLJoo5wFT6JbecON2TA22UGbUaknEw1PPEbs1fiGmFo4fuXA4SKVeC5 c8bC/Ze3sSezPFhP8ExEGUdnRpSO4pdG/eO8H0vCtrZ5mRZ8AtTMmWkL1Wt4sgI/ 8luNwn2/xNVrZDlbEeIl7kmSrKOVdO8MX3DSr+AlSe9A++YEM9ilm75fh4mwXa+w 8nR5mdEip3acN6erPHSFvQiajP5uQuW3WwEuVMKzz/XE0erSSsbQHHHc4jZnQL49 3OX/5Ar/0fPQLrlOo9NxpevSBaVNvRPd -----END CERTIFICATE-----Generated at Sun Jul 20 10:17:44 2025 by rpki-client