$ rpki-client -vvf rpki.apnic.net/member_repository/A91423FF/D85A0B7C4DF811EE88687B65C4F9AE02/xqV28IzUpz6p3ZdQO8nSiwWRG5w.mft File: xqV28IzUpz6p3ZdQO8nSiwWRG5w.mft (raw, json) Hash identifier: T5GLyayqrsOq2cjIP65Ngkt4FIRo5UOnT5eNxvaiA/I= Subject key identifier: 53:CF:0E:44:AE:5B:43:CC:43:3C:55:B7:E8:B1:3C:C4:99:A2:6D:21 Authority key identifier: C6:A5:76:F0:8C:D4:A7:3E:A9:DD:97:50:3B:C9:D2:8B:05:91:1B:9C Certificate issuer: /CN=A91423FF/serialNumber=C6A576F08CD4A73EA9DD97503BC9D28B05911B9C Certificate serial: 0174 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xqV28IzUpz6p3ZdQO8nSiwWRG5w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91423FF/D85A0B7C4DF811EE88687B65C4F9AE02/xqV28IzUpz6p3ZdQO8nSiwWRG5w.mft Manifest number: 0170 Signing time: Thu 21 Aug 2025 03:56:49 +0000 Manifest this update: Thu 21 Aug 2025 03:56:49 +0000 Manifest next update: Thu 28 Aug 2025 03:56:49 +0000 Files and hashes: 1: xqV28IzUpz6p3ZdQO8nSiwWRG5w.crl (hash: fkjSvuP25ohp9esSMx/e7z2SOG9cTu9+oC8ZJ/xpqZo=) 2: 278C467E4DF911EE8927F265C4F9AE02.roa (hash: yfGsvyhYqLz0xE6IXfI7E9U3FSonAVaSuKA3zKUE4Zo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91423FF/D85A0B7C4DF811EE88687B65C4F9AE02/xqV28IzUpz6p3ZdQO8nSiwWRG5w.crl rsync://rpki.apnic.net/member_repository/A91423FF/D85A0B7C4DF811EE88687B65C4F9AE02/xqV28IzUpz6p3ZdQO8nSiwWRG5w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xqV28IzUpz6p3ZdQO8nSiwWRG5w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 03:56:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 372 (0x174) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91423FF, serialNumber=C6A576F08CD4A73EA9DD97503BC9D28B05911B9C Validity Not Before: Aug 21 03:56:49 2025 GMT Not After : Aug 28 03:56:49 2025 GMT Subject: CN=68a69901-c013 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:2f:8d:a6:9c:7b:be:16:3c:9d:9b:b9:a2:e0: 66:2c:9c:08:a9:0a:c0:fd:88:86:22:28:f3:10:58: e0:ce:bd:66:65:a6:45:a5:10:53:b9:02:24:ae:0d: a6:f2:aa:44:1f:b1:65:bf:b3:84:c5:eb:7c:4b:e8: fd:0c:07:ab:1d:c4:dd:88:0e:fd:0a:b2:af:c8:39: a3:5b:91:2f:c1:ab:33:54:0e:20:26:91:4a:be:ea: ed:59:9b:0e:54:dd:c2:dc:a3:63:45:ba:78:8d:82: c3:de:8b:cb:14:85:0d:37:5e:1f:82:59:4b:9f:04: 07:80:69:60:27:05:43:c5:1c:22:e8:07:76:21:a4: b4:ed:ee:e0:21:ec:a2:c5:a1:db:25:b4:b2:3f:b4: d6:24:42:dc:b5:88:46:6a:e2:c9:14:43:7c:d3:17: 03:9f:25:2c:ae:98:1c:e9:d7:99:3e:ef:a1:d1:d1: 63:f1:13:43:b1:ac:76:51:84:80:93:bb:6a:bb:ac: 67:c7:d0:88:84:76:0c:7d:b7:b5:26:f3:2d:a7:0b: f9:c3:86:22:24:12:60:25:25:81:6a:c6:e1:65:44: 10:31:92:d5:8d:0b:87:c7:43:23:a3:72:17:12:2e: 8c:41:29:30:10:b9:a7:6f:2a:d6:9f:fb:ed:2f:64: 7b:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:CF:0E:44:AE:5B:43:CC:43:3C:55:B7:E8:B1:3C:C4:99:A2:6D:21 X509v3 Authority Key Identifier: keyid:C6:A5:76:F0:8C:D4:A7:3E:A9:DD:97:50:3B:C9:D2:8B:05:91:1B:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91423FF/D85A0B7C4DF811EE88687B65C4F9AE02/xqV28IzUpz6p3ZdQO8nSiwWRG5w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xqV28IzUpz6p3ZdQO8nSiwWRG5w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91423FF/D85A0B7C4DF811EE88687B65C4F9AE02/xqV28IzUpz6p3ZdQO8nSiwWRG5w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:92:43:0f:a6:f8:f1:d8:62:8e:cf:e3:63:b5:b9:90:8b:4b: b2:8f:99:e1:eb:da:6d:33:46:15:d0:17:f3:d1:68:95:ee:67: 82:62:ed:68:c2:b2:75:91:e3:78:1a:ca:b0:92:43:f0:f5:27: 17:9b:dc:d9:c1:7d:e3:e9:a9:fe:b9:2d:2a:41:35:e0:47:7f: 80:48:a0:a5:3c:21:f8:4b:97:1f:5a:1c:e6:20:63:52:cd:53: 38:be:80:21:8a:56:26:d1:d4:ab:7c:08:bd:fb:67:65:90:b7: c9:1c:28:78:9e:ed:df:fa:37:a3:ba:9e:24:ba:61:c6:7a:82: c5:20:8c:78:09:1a:9a:28:66:ff:57:c0:19:a8:0b:22:2e:6b: d5:e9:d3:0c:a3:85:4e:58:01:b6:41:51:00:5d:8e:ba:5d:51: 1f:f5:71:95:5c:e1:3e:94:6a:19:79:fc:76:39:ce:43:cd:4f: 1d:8e:eb:58:a5:f0:28:6f:08:5c:a1:eb:56:67:43:29:11:ed: c0:83:ed:b5:d1:5b:ab:89:7c:88:5f:75:2d:fc:7f:dc:c0:d7: c6:08:80:c6:a6:84:a9:90:a3:59:d3:e0:77:bf:0c:c4:79:ac: 54:51:72:12:69:83:d1:95:fb:92:70:09:33:d8:59:7e:5f:87: 44:36:76:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIzRkYxMTAvBgNVBAUTKEM2QTU3NkYwOENENEE3M0VBOUREOTc1MDNCQzlEMjhC MDU5MTFCOUMwHhcNMjUwODIxMDM1NjQ5WhcNMjUwODI4MDM1NjQ5WjAYMRYwFAYD VQQDEw02OGE2OTkwMS1jMDEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqC+Nppx7vhY8nZu5ouBmLJwIqQrA/YiGIijzEFjgzr1mZaZFpRBTuQIkrg2m 8qpEH7Flv7OExet8S+j9DAerHcTdiA79CrKvyDmjW5EvwaszVA4gJpFKvurtWZsO VN3C3KNjRbp4jYLD3ovLFIUNN14fgllLnwQHgGlgJwVDxRwi6Ad2IaS07e7gIeyi xaHbJbSyP7TWJELctYhGauLJFEN80xcDnyUsrpgc6deZPu+h0dFj8RNDsax2UYSA k7tqu6xnx9CIhHYMfbe1JvMtpwv5w4YiJBJgJSWBasbhZUQQMZLVjQuHx0Mjo3IX Ei6MQSkwELmnbyrWn/vtL2R73QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFPPDkSu W0PMQzxVt+ixPMSZom0hMB8GA1UdIwQYMBaAFMaldvCM1Kc+qd2XUDvJ0osFkRuc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjNGRi9EODVBMEI3QzRE RjgxMUVFODg2ODdCNjVDNEY5QUUwMi94cVYyOEl6VXB6NnAzWmRRTzhuU2l3V1JH NXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hxVjI4SXpVcHo2cDNaZFFPOG5TaXdXUkc1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjNGRi9EODVBMEI3QzRERjgxMUVFODg2ODdCNjVDNEY5QUUwMi94cVYyOEl6VXB6 NnAzWmRRTzhuU2l3V1JHNXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHkkMPpvjx2GKOz+NjtbmQi0uyj5nh69ptM0YV0Bfz0WiV7meCYu1o wrJ1keN4GsqwkkPw9ScXm9zZwX3j6an+uS0qQTXgR3+ASKClPCH4S5cfWhzmIGNS zVM4voAhilYm0dSrfAi9+2dlkLfJHCh4nu3f+jejup4kumHGeoLFIIx4CRqaKGb/ V8AZqAsiLmvV6dMMo4VOWAG2QVEAXY66XVEf9XGVXOE+lGoZefx2Oc5DzU8djutY pfAobwhcoetWZ0MpEe3Ag+210VuriXyIX3Ut/H/cwNfGCIDGpoSpkKNZ0+B3vwzE eaxUUXISaYPRlfuScAkz2Fl+X4dENnaT -----END CERTIFICATE-----Generated at Fri Aug 22 16:38:27 2025 by rpki-client