$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBD89/75B286C2AE9611ED8A965664C4F9AE02/XDJ7SiNb-JD9JpH7A-lKbxbL8jw.mft File: XDJ7SiNb-JD9JpH7A-lKbxbL8jw.mft (raw, json) Hash identifier: RQOw29fe0QRYoZPx6ba2fs1WpQ1Dvalxtyf0SnugjUE= Subject key identifier: CB:1A:E4:5C:0F:B0:E1:C3:32:CF:35:DE:E4:2B:41:54:49:FC:0F:C5 Authority key identifier: 5C:32:7B:4A:23:5B:F8:90:FD:26:91:FB:03:E9:4A:6F:16:CB:F2:3C Certificate issuer: /CN=A91FBD89/serialNumber=5C327B4A235BF890FD2691FB03E94A6F16CBF23C Certificate serial: 01C5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XDJ7SiNb-JD9JpH7A-lKbxbL8jw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBD89/75B286C2AE9611ED8A965664C4F9AE02/XDJ7SiNb-JD9JpH7A-lKbxbL8jw.mft Manifest number: 01C5 Signing time: Fri 18 Jul 2025 23:55:31 +0000 Manifest this update: Fri 18 Jul 2025 23:55:31 +0000 Manifest next update: Fri 25 Jul 2025 23:55:31 +0000 Files and hashes: 1: XDJ7SiNb-JD9JpH7A-lKbxbL8jw.crl (hash: X+Vh2ezKeqVgX9yuSc8+dN+Hxbe4igqyv2nk1yov/gI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBD89/75B286C2AE9611ED8A965664C4F9AE02/XDJ7SiNb-JD9JpH7A-lKbxbL8jw.crl rsync://rpki.apnic.net/member_repository/A91FBD89/75B286C2AE9611ED8A965664C4F9AE02/XDJ7SiNb-JD9JpH7A-lKbxbL8jw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XDJ7SiNb-JD9JpH7A-lKbxbL8jw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 23:55:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 453 (0x1c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBD89, serialNumber=5C327B4A235BF890FD2691FB03E94A6F16CBF23C Validity Not Before: Jul 18 23:55:31 2025 GMT Not After : Jul 25 23:55:31 2025 GMT Subject: CN=687adef3-ae4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:44:77:fc:49:71:40:d5:56:d9:df:6d:28:dd: 3b:d0:0d:fe:65:ac:2f:95:f5:d5:97:d6:25:fb:54: 92:22:06:8f:a6:11:84:41:29:30:5b:d6:c3:86:3e: c3:53:66:cb:e9:24:4f:c9:7b:74:05:a8:f9:3f:08: 21:ec:96:58:ad:24:f8:b9:9d:d8:ea:22:e8:b2:87: 6e:0a:16:bd:5e:e6:a0:e7:12:55:b3:ef:bf:5a:b9: 3a:5e:7e:50:f3:b6:d8:26:a6:72:48:be:76:91:14: bc:0b:65:bd:02:9c:dc:8a:fd:53:c4:f2:3b:29:90: 67:61:fe:c1:e7:38:a5:37:78:d2:d8:7f:7c:55:f7: 4d:29:75:6b:b2:79:2f:d6:b0:65:4e:05:05:5b:a7: df:cb:20:c8:33:a9:7a:bc:55:49:ba:6a:1d:52:a7: 4a:18:e4:86:f2:5c:77:d0:5e:d2:48:48:07:ff:86: 49:e4:74:e5:17:a6:02:27:53:1f:e2:e1:26:f5:5d: ab:c6:28:4c:37:46:57:38:18:cb:ed:b5:99:25:6b: ec:d2:c1:83:88:02:79:ed:85:77:17:5d:42:e0:de: d1:c3:48:ba:23:69:71:40:e5:9f:11:ac:21:f5:fa: 51:4d:1a:94:f5:62:37:46:8d:01:85:af:fb:bc:f8: bc:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:1A:E4:5C:0F:B0:E1:C3:32:CF:35:DE:E4:2B:41:54:49:FC:0F:C5 X509v3 Authority Key Identifier: keyid:5C:32:7B:4A:23:5B:F8:90:FD:26:91:FB:03:E9:4A:6F:16:CB:F2:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBD89/75B286C2AE9611ED8A965664C4F9AE02/XDJ7SiNb-JD9JpH7A-lKbxbL8jw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XDJ7SiNb-JD9JpH7A-lKbxbL8jw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBD89/75B286C2AE9611ED8A965664C4F9AE02/XDJ7SiNb-JD9JpH7A-lKbxbL8jw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:65:ee:5c:96:36:12:66:8a:83:4c:47:79:8e:c4:0c:2a:c9: e5:ae:5d:e4:99:75:83:d0:79:ed:bb:57:0d:5b:5d:52:a0:22: 07:ca:cc:eb:e2:a0:b4:9c:7b:a4:49:26:c4:54:5e:02:13:9a: 68:6e:dc:d1:d4:62:29:42:c0:68:f8:1e:51:b8:61:46:c9:d6: 66:66:e9:91:64:58:62:78:11:3b:d3:c1:83:bf:f3:9a:9d:44: 72:2c:8b:c6:68:7e:25:db:6b:d5:c7:f7:1e:04:f8:12:e2:f2: af:cc:3a:68:61:31:57:b2:53:e2:02:56:7f:b4:4a:c5:fa:2c: 50:6d:4e:3b:35:b1:49:05:38:43:cb:35:a8:fb:6d:07:31:d4: 33:74:71:14:dd:63:37:b2:19:c8:13:6c:48:51:d1:f6:fb:8a: bf:2a:8b:db:49:82:7f:32:e1:4e:38:44:6e:e5:48:04:e9:22: c4:54:23:83:30:b0:2a:db:c9:16:16:c1:4e:d7:84:4c:5c:40: 6e:64:92:e9:d3:e1:15:6c:bd:f2:c8:7d:ba:9b:13:d5:fa:cb: 62:d9:35:e3:a5:69:c7:28:f8:0b:15:d6:8a:3a:f2:6c:18:fd: 7f:b5:01:20:20:68:89:77:11:23:0c:12:14:81:3a:c4:d0:a3: c3:b1:4a:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJEODkxMTAvBgNVBAUTKDVDMzI3QjRBMjM1QkY4OTBGRDI2OTFGQjAzRTk0QTZG MTZDQkYyM0MwHhcNMjUwNzE4MjM1NTMxWhcNMjUwNzI1MjM1NTMxWjAYMRYwFAYD VQQDEw02ODdhZGVmMy1hZTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxUR3/ElxQNVW2d9tKN070A3+ZawvlfXVl9Yl+1SSIgaPphGEQSkwW9bDhj7D U2bL6SRPyXt0Baj5Pwgh7JZYrST4uZ3Y6iLosoduCha9Xuag5xJVs++/Wrk6Xn5Q 87bYJqZySL52kRS8C2W9Apzciv1TxPI7KZBnYf7B5zilN3jS2H98VfdNKXVrsnkv 1rBlTgUFW6ffyyDIM6l6vFVJumodUqdKGOSG8lx30F7SSEgH/4ZJ5HTlF6YCJ1Mf 4uEm9V2rxihMN0ZXOBjL7bWZJWvs0sGDiAJ57YV3F11C4N7Rw0i6I2lxQOWfEawh 9fpRTRqU9WI3Ro0Bha/7vPi8PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMsa5FwP sOHDMs813uQrQVRJ/A/FMB8GA1UdIwQYMBaAFFwye0ojW/iQ/SaR+wPpSm8Wy/I8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkQ4OS83NUIyODZDMkFF OTYxMUVEOEE5NjU2NjRDNEY5QUUwMi9YREo3U2lOYi1KRDlKcEg3QS1sS2J4Ykw4 ancuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1hESjdTaU5iLUpEOUpwSDdBLWxLYnhiTDhqdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkQ4OS83NUIyODZDMkFFOTYxMUVEOEE5NjU2NjRDNEY5QUUwMi9YREo3U2lOYi1K RDlKcEg3QS1sS2J4Ykw4ancubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3Ze5cljYSZoqDTEd5jsQMKsnlrl3kmXWD0Hntu1cNW11SoCIHyszr 4qC0nHukSSbEVF4CE5pobtzR1GIpQsBo+B5RuGFGydZmZumRZFhieBE708GDv/Oa nURyLIvGaH4l22vVx/ceBPgS4vKvzDpoYTFXslPiAlZ/tErF+ixQbU47NbFJBThD yzWo+20HMdQzdHEU3WM3shnIE2xIUdH2+4q/KovbSYJ/MuFOOERu5UgE6SLEVCOD MLAq28kWFsFO14RMXEBuZJLp0+EVbL3yyH26mxPV+sti2TXjpWnHKPgLFdaKOvJs GP1/tQEgIGiJdxEjDBIUgTrE0KPDsUob -----END CERTIFICATE-----Generated at Sun Jul 20 03:41:11 2025 by rpki-client