$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft File: X1zijATRbpUODrzVlVVCSD05VtA.mft (raw, json) Hash identifier: 3OqctNQAlXYH7Yms/dm32V7xNiFpi9UiCdLxy+6yrtk= Subject key identifier: F3:DE:38:FB:4F:19:B5:01:68:64:51:AB:4F:DF:3A:38:62:4F:19:D5 Authority key identifier: 5F:5C:E2:8C:04:D1:6E:95:0E:0E:BC:D5:95:55:42:48:3D:39:56:D0 Certificate issuer: /CN=A91F0D86/serialNumber=5F5CE28C04D16E950E0EBCD5955542483D3956D0 Certificate serial: 014D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft Manifest number: 014A Signing time: Mon 21 Jul 2025 04:19:15 +0000 Manifest this update: Mon 21 Jul 2025 04:19:14 +0000 Manifest next update: Mon 28 Jul 2025 04:19:14 +0000 Files and hashes: 1: X1zijATRbpUODrzVlVVCSD05VtA.crl (hash: Irx8mQC7LydXPa4rZbAOO+qCoShFVxqwtTzmrHLS/fs=) 2: B7E86E0C6D8711EEB912BD62C4F9AE02.roa (hash: 1i4x5btwBoyVs/bOkBs3utfiU+YxigrlqpfcPAr0jaw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.crl rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 04:19:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 333 (0x14d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0D86, serialNumber=5F5CE28C04D16E950E0EBCD5955542483D3956D0 Validity Not Before: Jul 21 04:19:14 2025 GMT Not After : Jul 28 04:19:14 2025 GMT Subject: CN=687dbfc3-0715 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e2:35:73:84:1c:a4:6a:26:b1:be:57:ff:33: d8:b0:e9:95:b6:2f:2c:3e:fc:fa:6b:dd:96:0b:5e: a4:a6:72:8d:09:15:99:f0:40:e1:67:46:46:0e:52: 55:bd:d4:18:d1:41:76:ac:c5:a7:ac:db:c9:58:76: 8c:f0:e8:3b:9c:e7:47:65:d2:55:53:66:a3:81:52: 81:aa:3c:9d:63:a6:7d:28:37:de:a9:bc:ca:86:5f: a0:26:96:5d:1f:9c:7e:a7:32:d1:5f:77:d4:c2:4a: af:44:4c:e8:37:93:d1:d4:87:99:10:8a:35:c1:85: 20:4b:85:83:16:32:55:22:68:06:a8:9e:37:73:8a: 6a:61:0a:98:27:c9:b1:94:94:95:a9:7b:d4:10:25: 3a:e3:24:66:cc:bc:f7:0c:ad:14:30:6a:1f:27:1b: 8d:c2:6f:c2:e5:15:45:e0:21:ba:47:dd:d3:69:92: 6e:43:2c:92:a8:be:16:71:04:91:2a:e8:26:80:8e: c9:66:89:76:05:4f:ec:cb:16:7d:c6:4d:f5:d9:af: 9a:90:85:41:ff:8f:77:ff:b2:14:84:2d:24:da:86: 90:a4:78:18:18:12:45:7d:dd:6a:53:eb:94:ad:c2: a7:a1:56:87:b3:b2:de:4d:29:ce:96:1a:34:ee:e5: 21:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:DE:38:FB:4F:19:B5:01:68:64:51:AB:4F:DF:3A:38:62:4F:19:D5 X509v3 Authority Key Identifier: keyid:5F:5C:E2:8C:04:D1:6E:95:0E:0E:BC:D5:95:55:42:48:3D:39:56:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:37:37:40:08:9b:8b:01:4e:80:20:f2:fa:18:cf:a4:81:ce: 8c:42:45:1b:78:1d:c4:73:db:bb:49:c8:14:b3:ae:7e:e5:ae: a1:64:90:c3:80:88:a2:37:62:42:f0:ac:5c:88:71:5e:0b:dd: 25:e1:57:4d:bf:e7:3b:2e:31:20:36:c3:28:75:a8:a9:bb:b3: 65:49:87:3f:67:7f:94:85:e6:2e:42:90:a9:b2:d1:90:ae:b6: 86:20:26:8a:f6:aa:d2:cd:1a:36:d3:73:2a:d6:1a:8f:f6:85: a8:ee:6c:dc:80:fe:f5:9a:42:0c:04:3a:34:bf:7e:1d:7a:5c: a3:15:f5:95:4d:ab:94:70:e9:05:35:d5:29:4b:92:ac:d1:16: d5:c0:39:20:b9:04:bf:e8:b3:fa:60:4d:62:dc:88:5d:a1:d8: 37:1b:98:74:f4:a4:cd:c6:2c:69:d5:6e:0a:34:4f:cb:3b:da: 6e:10:00:41:99:8d:0b:e8:71:b8:9a:6f:59:f4:79:38:b5:55: 8c:28:da:38:a5:17:4a:45:80:15:55:2b:e2:66:bb:c3:67:dd: a5:d8:c0:f6:e2:9a:1e:33:9a:0e:0f:f7:a9:55:18:58:61:fd: 20:31:d5:ef:bd:4b:50:62:dd:7d:c8:7d:7a:b1:3f:74:52:e5: a6:aa:48:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBEODYxMTAvBgNVBAUTKDVGNUNFMjhDMDREMTZFOTUwRTBFQkNENTk1NTU0MjQ4 M0QzOTU2RDAwHhcNMjUwNzIxMDQxOTE0WhcNMjUwNzI4MDQxOTE0WjAYMRYwFAYD VQQDEw02ODdkYmZjMy0wNzE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr+I1c4QcpGomsb5X/zPYsOmVti8sPvz6a92WC16kpnKNCRWZ8EDhZ0ZGDlJV vdQY0UF2rMWnrNvJWHaM8Og7nOdHZdJVU2ajgVKBqjydY6Z9KDfeqbzKhl+gJpZd H5x+pzLRX3fUwkqvREzoN5PR1IeZEIo1wYUgS4WDFjJVImgGqJ43c4pqYQqYJ8mx lJSVqXvUECU64yRmzLz3DK0UMGofJxuNwm/C5RVF4CG6R93TaZJuQyySqL4WcQSR KugmgI7JZol2BU/syxZ9xk312a+akIVB/493/7IUhC0k2oaQpHgYGBJFfd1qU+uU rcKnoVaHs7LeTSnOlho07uUhQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPPeOPtP GbUBaGRRq0/fOjhiTxnVMB8GA1UdIwQYMBaAFF9c4owE0W6VDg681ZVVQkg9OVbQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEQ4Ni82OEU3OTc4QTZD QkQxMUVFQjg0NkYzNzlDNEY5QUUwMi9YMXppakFUUmJwVU9EcnpWbFZWQ1NEMDVW dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gxemlqQVRSYnBVT0RyelZsVlZDU0QwNVZ0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEQ4Ni82OEU3OTc4QTZDQkQxMUVFQjg0NkYzNzlDNEY5QUUwMi9YMXppakFUUmJw VU9EcnpWbFZWQ1NEMDVWdEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiNzdACJuLAU6AIPL6GM+kgc6MQkUbeB3Ec9u7ScgUs65+5a6hZJDD gIiiN2JC8KxciHFeC90l4VdNv+c7LjEgNsModaipu7NlSYc/Z3+UheYuQpCpstGQ rraGICaK9qrSzRo203Mq1hqP9oWo7mzcgP71mkIMBDo0v34delyjFfWVTauUcOkF NdUpS5Ks0RbVwDkguQS/6LP6YE1i3Ihdodg3G5h09KTNxixp1W4KNE/LO9puEABB mY0L6HG4mm9Z9Hk4tVWMKNo4pRdKRYAVVSviZrvDZ92l2MD24poeM5oOD/epVRhY Yf0gMdXvvUtQYt19yH16sT90UuWmqkjk -----END CERTIFICATE-----Generated at Tue Jul 22 05:13:06 2025 by rpki-client