$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft File: XmtaBob1a6DA93-zvzGzhWMiCCQ.mft (raw, json) Hash identifier: iqrvZi+Jyw7nKOS/1qdElTtVcrFTWfKkILTsnxJpp+4= Subject key identifier: 84:3C:FE:D7:FA:4C:9A:36:28:7C:5B:33:DC:ED:A6:A3:8C:0C:4E:6E Authority key identifier: 5E:6B:5A:06:86:F5:6B:A0:C0:F7:7F:B3:BF:31:B3:85:63:22:08:24 Certificate issuer: /CN=A91FE107/serialNumber=5E6B5A0686F56BA0C0F77FB3BF31B38563220824 Certificate serial: 2302 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft Manifest number: 22E8 Signing time: Thu 24 Jul 2025 15:56:44 +0000 Manifest this update: Thu 24 Jul 2025 15:56:44 +0000 Manifest next update: Thu 31 Jul 2025 15:56:44 +0000 Files and hashes: 1: XmtaBob1a6DA93-zvzGzhWMiCCQ.crl (hash: Iybw5TD1IYQ3Mpb/+voIGStfDBC7oH3Qzgjl0QIdrIE=) 2: 44C007B0A0D611EDA2603C4EC4F9AE02.roa (hash: MAOIki/mm/t0sbRkALRqm8AR2/Jy8UBEI5Awsr4aYLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.crl rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 15:56:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8962 (0x2302) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE107, serialNumber=5E6B5A0686F56BA0C0F77FB3BF31B38563220824 Validity Not Before: Jul 24 15:56:44 2025 GMT Not After : Jul 31 15:56:44 2025 GMT Subject: CN=688257bc-18c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:17:d9:2d:e9:1f:5d:9f:73:11:9a:81:c2:5c: a6:ba:ec:45:a2:7f:2f:16:ec:51:7d:63:b2:b7:bb: b9:04:cb:85:89:97:7e:99:cb:80:d4:2f:24:65:c0: 23:d0:a4:1e:3f:23:76:6c:bd:0b:d1:c3:80:31:c6: 39:51:ee:12:18:19:33:3b:ba:3c:91:2e:74:26:80: 83:51:fe:d7:4d:e8:64:c9:25:7f:28:eb:5b:8e:e2: 17:68:f7:82:8f:70:28:76:42:35:13:6b:c3:32:d5: d6:06:a3:d4:fa:85:16:99:25:58:fd:a1:7d:98:45: 7a:f8:91:dd:8f:01:ef:d1:e7:3f:b0:42:39:e5:a6: cd:d8:cc:66:16:83:7c:b1:bf:6f:80:75:27:2a:75: aa:8e:3c:9a:37:18:c8:e5:2b:3c:e6:7f:55:f7:5e: 33:48:90:f5:28:b5:82:f0:4f:5f:a7:17:c5:ee:72: 10:c3:bd:47:0f:5b:b6:c2:c6:89:5a:b8:73:4e:8a: 06:ca:cc:d4:a1:90:f4:a6:d4:c3:7f:02:e5:4c:a6: e4:c5:27:eb:b6:ba:3b:09:2f:93:39:bb:ce:33:cf: b5:16:8c:92:03:d7:d6:f2:ba:c1:82:c2:2d:3c:a5: 15:aa:01:bb:a3:77:89:f8:7d:d2:8c:17:47:a9:56: d9:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:3C:FE:D7:FA:4C:9A:36:28:7C:5B:33:DC:ED:A6:A3:8C:0C:4E:6E X509v3 Authority Key Identifier: keyid:5E:6B:5A:06:86:F5:6B:A0:C0:F7:7F:B3:BF:31:B3:85:63:22:08:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:a8:80:ad:cf:e4:c8:37:53:f3:8c:29:24:ba:e2:9c:c3:45: 0f:ca:48:77:22:1e:ec:73:81:b2:42:94:71:08:be:e9:38:4a: 82:9e:b5:db:a7:aa:17:99:a2:d1:ee:55:83:08:17:7b:ce:2b: 94:eb:ef:82:02:5a:66:60:8d:3f:20:97:de:a0:b1:0b:56:0e: 2e:43:87:32:1b:7f:6d:f9:d2:56:57:9d:12:86:ff:a3:7e:ab: ae:77:d9:71:36:4e:d5:68:42:fa:47:57:51:6c:7d:76:77:41: 1c:1d:a3:d1:eb:17:d4:b7:13:32:bc:05:f0:6d:9c:40:12:a6: 9a:f7:ab:93:57:ef:e7:90:e1:35:ef:60:b8:4f:36:a9:c8:8c: ab:49:d4:ff:a3:9d:77:65:ca:b7:76:c8:e0:37:2f:f8:74:66: 86:b6:de:45:28:86:35:23:62:88:21:7d:7c:26:1c:1f:a7:0b: ce:fc:da:21:38:2a:e7:bd:68:9a:50:d6:96:94:63:34:6d:72: 4e:bf:22:81:b0:8f:7a:68:fe:13:31:ec:2a:4e:95:e3:03:f7: 66:3e:10:24:82:ee:59:47:a4:65:00:7c:a3:10:bc:e3:f8:c3: b6:ca:e7:8a:5a:f7:40:1a:56:fe:8c:cb:c2:cc:dc:3d:f9:14: 57:8f:03:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkUxMDcxMTAvBgNVBAUTKDVFNkI1QTA2ODZGNTZCQTBDMEY3N0ZCM0JGMzFCMzg1 NjMyMjA4MjQwHhcNMjUwNzI0MTU1NjQ0WhcNMjUwNzMxMTU1NjQ0WjAYMRYwFAYD VQQDEw02ODgyNTdiYy0xOGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxfZLekfXZ9zEZqBwlymuuxFon8vFuxRfWOyt7u5BMuFiZd+mcuA1C8kZcAj 0KQePyN2bL0L0cOAMcY5Ue4SGBkzO7o8kS50JoCDUf7XTehkySV/KOtbjuIXaPeC j3AodkI1E2vDMtXWBqPU+oUWmSVY/aF9mEV6+JHdjwHv0ec/sEI55abN2MxmFoN8 sb9vgHUnKnWqjjyaNxjI5Ss85n9V914zSJD1KLWC8E9fpxfF7nIQw71HD1u2wsaJ WrhzTooGyszUoZD0ptTDfwLlTKbkxSfrtro7CS+TObvOM8+1FoySA9fW8rrBgsIt PKUVqgG7o3eJ+H3SjBdHqVbZ1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIQ8/tf6 TJo2KHxbM9ztpqOMDE5uMB8GA1UdIwQYMBaAFF5rWgaG9WugwPd/s78xs4VjIggk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTEwNy9FRTM1QzQ0NjlF NjQxMUU1OUQ0OEZCNjBDNEY5QUUwMi9YbXRhQm9iMWE2REE5My16dnpHemhXTWlD Q1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1htdGFCb2IxYTZEQTkzLXp2ekd6aFdNaUNDUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTEwNy9FRTM1QzQ0NjlFNjQxMUU1OUQ0OEZCNjBDNEY5QUUwMi9YbXRhQm9iMWE2 REE5My16dnpHemhXTWlDQ1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiqICtz+TIN1PzjCkkuuKcw0UPykh3Ih7sc4GyQpRxCL7pOEqCnrXb p6oXmaLR7lWDCBd7ziuU6++CAlpmYI0/IJfeoLELVg4uQ4cyG39t+dJWV50Shv+j fquud9lxNk7VaEL6R1dRbH12d0EcHaPR6xfUtxMyvAXwbZxAEqaa96uTV+/nkOE1 72C4TzapyIyrSdT/o513Zcq3dsjgNy/4dGaGtt5FKIY1I2KIIX18JhwfpwvO/Noh OCrnvWiaUNaWlGM0bXJOvyKBsI96aP4TMewqTpXjA/dmPhAkgu5ZR6RlAHyjELzj +MO2yueKWvdAGlb+jMvCzNw9+RRXjwOS -----END CERTIFICATE-----Generated at Fri Jul 25 01:43:55 2025 by rpki-client