$ rpki-client -vvf rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft File: XLKYvBpwUBeAXFYfCQoNR5UOar0.mft (raw, json) Hash identifier: M3nuvri65ijtTuNNn2z/b6OUFcvsT1TbwhidpJD9Dks= Subject key identifier: 6A:53:B5:EE:13:06:8E:80:9B:95:DB:FC:DE:CF:76:BF:D0:75:4B:F2 Authority key identifier: 5C:B2:98:BC:1A:70:50:17:80:5C:56:1F:09:0A:0D:47:95:0E:6A:BD Certificate issuer: /CN=A912BFC5/serialNumber=5CB298BC1A705017805C561F090A0D47950E6ABD Certificate serial: 2533 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft Manifest number: 2533 Signing time: Tue 02 Sep 2025 14:16:33 +0000 Manifest this update: Tue 02 Sep 2025 14:16:33 +0000 Manifest next update: Tue 09 Sep 2025 14:16:33 +0000 Files and hashes: 1: XLKYvBpwUBeAXFYfCQoNR5UOar0.crl (hash: 8M3IschZDXEUci0B+3elebE7Rs3vQjWnmUXigGX2Uvc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.crl rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 14:16:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9523 (0x2533) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BFC5, serialNumber=5CB298BC1A705017805C561F090A0D47950E6ABD Validity Not Before: Sep 2 14:16:33 2025 GMT Not After : Sep 9 14:16:33 2025 GMT Subject: CN=68b6fc41-6523 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:cf:79:e9:e5:98:e1:b3:3b:59:58:e7:ad:3c: 9d:44:e7:5e:72:2d:71:f7:8f:69:7a:5d:1d:1f:1a: 56:c1:89:03:4d:b7:86:9f:8c:f9:0f:c3:02:cc:20: 86:68:9a:0c:33:81:3f:01:ff:40:53:97:f4:c7:e5: 5c:50:0a:3c:6d:b5:20:7b:4a:f5:bb:da:23:f2:72: 54:ed:94:f8:b4:4d:c0:54:55:0a:8b:09:2f:cf:c6: 68:2b:82:71:0f:c5:80:6c:ff:4b:a4:43:bf:8d:ae: e0:a0:ad:56:98:22:f1:75:4d:61:1f:8a:58:fd:05: fa:ee:b8:7b:f8:a9:6a:73:13:1f:7d:e4:c0:7e:1c: 18:b3:3d:aa:76:ed:ae:a2:8e:ed:18:b0:e7:f9:65: e9:a9:e6:83:d3:03:41:a7:11:9c:ec:dc:61:d1:78: 1e:15:33:70:0d:b3:b7:3f:0c:f7:2d:99:d5:d9:e4: 86:f3:61:c4:ad:e7:10:bf:88:46:80:d6:a6:6f:cd: a8:83:d9:f5:d2:dd:c9:60:5f:25:33:5d:a9:9d:c9: 7b:38:0a:fa:96:a4:bd:9b:ea:1b:c1:f3:2a:0c:d4: 2b:6c:e9:5a:d9:9c:05:d3:ff:a4:a8:83:76:9d:ed: c3:f7:aa:2e:77:56:1a:26:66:57:18:2d:b6:ee:31: 0f:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:53:B5:EE:13:06:8E:80:9B:95:DB:FC:DE:CF:76:BF:D0:75:4B:F2 X509v3 Authority Key Identifier: keyid:5C:B2:98:BC:1A:70:50:17:80:5C:56:1F:09:0A:0D:47:95:0E:6A:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XLKYvBpwUBeAXFYfCQoNR5UOar0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BFC5/3F34203E290511E593BFC626C4F9AE02/XLKYvBpwUBeAXFYfCQoNR5UOar0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:0a:7d:06:93:ed:5e:c8:d2:33:19:af:70:ef:ff:16:c1:cc: 04:59:87:e3:ba:b6:23:8f:b0:a9:5c:fb:b6:d7:45:e0:fd:cb: a9:42:cc:df:75:a1:1d:f5:0a:7c:1b:0b:1e:96:52:fa:b5:e3: 89:17:3b:7a:4f:f2:5d:80:73:f4:f2:b9:02:16:14:62:c2:81: f8:4b:b3:35:ca:9c:c6:f0:e6:ee:27:97:3e:2c:a8:2d:00:ab: d9:a4:a3:c1:20:4b:c9:cb:26:bd:d8:b0:c6:db:ab:9e:73:83: 52:57:56:48:42:80:71:90:d1:35:b5:d3:a5:42:5e:8a:19:4f: 99:b9:41:ee:45:86:99:91:3a:47:85:0b:e4:80:6b:12:d4:f2: f4:ca:e2:bd:5a:05:b7:55:f3:5b:40:75:28:5e:0a:ea:d2:6d: 71:27:2c:ae:58:46:e3:18:43:ae:c3:1c:ea:e8:1e:f1:27:b9: 5b:55:eb:0f:40:93:78:b4:6d:e3:51:27:53:14:f4:f4:98:a6: ae:57:32:ff:e0:9b:90:15:0c:c4:8c:6f:5b:39:61:3e:8d:2b: 04:7f:fc:b3:eb:eb:ea:e8:c2:57:6a:3e:ff:20:f2:7d:08:bf: 6e:cb:95:d5:18:10:85:3c:12:92:fa:70:48:01:93:ae:ee:e9: 38:d8:51:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJTMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJGQzUxMTAvBgNVBAUTKDVDQjI5OEJDMUE3MDUwMTc4MDVDNTYxRjA5MEEwRDQ3 OTUwRTZBQkQwHhcNMjUwOTAyMTQxNjMzWhcNMjUwOTA5MTQxNjMzWjAYMRYwFAYD VQQDEw02OGI2ZmM0MS02NTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvc956eWY4bM7WVjnrTydROdeci1x949pel0dHxpWwYkDTbeGn4z5D8MCzCCG aJoMM4E/Af9AU5f0x+VcUAo8bbUge0r1u9oj8nJU7ZT4tE3AVFUKiwkvz8ZoK4Jx D8WAbP9LpEO/ja7goK1WmCLxdU1hH4pY/QX67rh7+KlqcxMffeTAfhwYsz2qdu2u oo7tGLDn+WXpqeaD0wNBpxGc7Nxh0XgeFTNwDbO3Pwz3LZnV2eSG82HErecQv4hG gNamb82og9n10t3JYF8lM12pncl7OAr6lqS9m+obwfMqDNQrbOla2ZwF0/+kqIN2 ne3D96oud1YaJmZXGC227jEPdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGpTte4T Bo6Am5Xb/N7Pdr/QdUvyMB8GA1UdIwQYMBaAFFyymLwacFAXgFxWHwkKDUeVDmq9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkZDNS8zRjM0MjAzRTI5 MDUxMUU1OTNCRkM2MjZDNEY5QUUwMi9YTEtZdkJwd1VCZUFYRllmQ1FvTlI1VU9h cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1hMS1l2QnB3VUJlQVhGWWZDUW9OUjVVT2FyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkZDNS8zRjM0MjAzRTI5MDUxMUU1OTNCRkM2MjZDNEY5QUUwMi9YTEtZdkJwd1VC ZUFYRllmQ1FvTlI1VU9hcjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCECn0Gk+1eyNIzGa9w7/8WwcwEWYfjurYjj7CpXPu210Xg/cupQszf daEd9Qp8GwsellL6teOJFzt6T/JdgHP08rkCFhRiwoH4S7M1ypzG8ObuJ5c+LKgt AKvZpKPBIEvJyya92LDG26uec4NSV1ZIQoBxkNE1tdOlQl6KGU+ZuUHuRYaZkTpH hQvkgGsS1PL0yuK9WgW3VfNbQHUoXgrq0m1xJyyuWEbjGEOuwxzq6B7xJ7lbVesP QJN4tG3jUSdTFPT0mKauVzL/4JuQFQzEjG9bOWE+jSsEf/yz6+vq6MJXaj7/IPJ9 CL9uy5XVGBCFPBKS+nBIAZOu7uk42FG0 -----END CERTIFICATE-----Generated at Thu Sep 4 14:03:37 2025 by rpki-client