$ rpki-client -vvf rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/XOvYaFsXSV2z4edFmXn-hPBDg_I.mft File: XOvYaFsXSV2z4edFmXn-hPBDg_I.mft (raw, json) Hash identifier: DyqbXpfZwuoAvEBFvSP9I5fpSBwa1RqgwHzX7fApIwE= Subject key identifier: AE:6A:6A:A7:07:1F:90:E8:97:DE:EE:83:7A:9D:38:47:59:36:0B:88 Authority key identifier: 5C:EB:D8:68:5B:17:49:5D:B3:E1:E7:45:99:79:FE:84:F0:43:83:F2 Certificate issuer: /CN=A917C716/serialNumber=5CEBD8685B17495DB3E1E7459979FE84F04383F2 Certificate serial: 0101 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOvYaFsXSV2z4edFmXn-hPBDg_I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/XOvYaFsXSV2z4edFmXn-hPBDg_I.mft Manifest number: 03D7 Signing time: Fri 19 Sep 2025 02:01:19 +0000 Manifest this update: Fri 19 Sep 2025 02:01:19 +0000 Manifest next update: Fri 26 Sep 2025 02:01:19 +0000 Files and hashes: 1: XOvYaFsXSV2z4edFmXn-hPBDg_I.crl (hash: PddkfTF71drd+cAXou/pA1Hcb/Tkry3Zxn3ujxrWO/o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/XOvYaFsXSV2z4edFmXn-hPBDg_I.crl rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/XOvYaFsXSV2z4edFmXn-hPBDg_I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOvYaFsXSV2z4edFmXn-hPBDg_I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 02:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 257 (0x101) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C716, serialNumber=5CEBD8685B17495DB3E1E7459979FE84F04383F2 Validity Not Before: Sep 19 02:01:19 2025 GMT Not After : Sep 26 02:01:19 2025 GMT Subject: CN=68ccb96f-f029 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:58:9c:33:a8:f6:5b:9f:62:f1:85:63:62:30: 95:59:5a:91:8d:82:15:bf:01:15:d6:55:f1:8d:46: c3:9e:bb:dd:32:35:b4:a6:47:e7:b3:f3:c7:05:64: db:43:7e:2d:bb:3a:49:70:e4:35:dc:47:8e:6d:74: d0:66:1b:4c:7c:71:70:9b:eb:ec:18:6f:be:7c:3d: dd:c0:bb:a5:95:75:dc:af:85:79:82:6d:19:a2:36: 9a:97:3d:56:0b:30:40:47:dd:1d:35:b4:d4:4f:9d: ba:2b:02:ad:4a:04:d1:6a:06:cf:a3:c2:98:f6:d2: a7:0b:2b:99:82:9b:58:3e:52:d4:3c:18:90:df:a5: 34:a7:99:37:0f:8b:20:17:8a:4a:3d:15:a0:a5:f2: 67:0a:55:88:3f:06:52:63:5d:8a:23:82:90:6c:9b: 85:12:17:91:b8:81:b5:38:d4:80:6d:8b:25:ce:e5: fc:38:9a:07:21:6c:ec:be:cd:06:2d:c2:78:41:d8: 15:9f:5c:0f:d7:0a:76:97:98:24:3d:ba:e9:2f:0a: ae:5e:20:3e:38:0d:39:01:77:75:08:ff:2f:31:80: f2:fe:6e:1d:4a:3c:ce:96:c1:56:15:96:1f:5e:99: c6:39:a1:b8:12:bc:06:51:32:dd:57:99:84:31:b4: 8f:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:6A:6A:A7:07:1F:90:E8:97:DE:EE:83:7A:9D:38:47:59:36:0B:88 X509v3 Authority Key Identifier: keyid:5C:EB:D8:68:5B:17:49:5D:B3:E1:E7:45:99:79:FE:84:F0:43:83:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/XOvYaFsXSV2z4edFmXn-hPBDg_I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOvYaFsXSV2z4edFmXn-hPBDg_I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/XOvYaFsXSV2z4edFmXn-hPBDg_I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:ef:a6:ee:c5:19:b8:f9:ea:31:7f:97:2e:50:bf:8a:08:f9: bf:26:58:8c:8d:7e:8d:64:f8:cf:aa:14:79:97:36:df:23:9d: 49:f0:e4:22:72:c7:39:d2:10:8a:6c:53:d9:94:b9:30:5f:de: 42:6e:e4:01:41:10:3c:1f:76:93:52:13:a3:3c:e8:9d:44:ea: ab:82:aa:6a:4f:ad:08:a7:44:3d:e8:68:bc:d8:b4:46:56:3f: ec:b7:be:ed:30:e8:82:7c:30:06:5e:24:1f:24:e5:97:a1:ad: 6a:3f:ce:04:07:e9:73:ee:5a:72:94:88:84:5a:1c:9d:fb:d1: fa:c4:36:7a:1d:06:4b:b0:d0:b3:96:c4:ac:a1:f7:82:32:15: fc:99:00:ae:db:6b:d7:6c:8e:b9:a9:e6:d4:0d:b8:ca:00:c7: 36:55:6e:18:87:d6:fe:37:70:1b:92:0a:46:12:e2:01:66:af: 61:60:8a:02:76:47:e4:f3:30:bd:7b:1e:36:37:ca:04:cd:63: 72:e6:d1:f4:16:71:af:38:b5:da:e2:e4:69:cd:6f:9a:d4:c6: 7a:2c:d9:54:c4:eb:6a:37:16:35:2e:82:85:9e:62:81:0b:b8: b9:d7:24:82:2c:7c:a4:b6:22:0b:68:d9:79:ee:93:b3:1e:9c: d3:32:86:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M3MTYxMTAvBgNVBAUTKDVDRUJEODY4NUIxNzQ5NURCM0UxRTc0NTk5NzlGRTg0 RjA0MzgzRjIwHhcNMjUwOTE5MDIwMTE5WhcNMjUwOTI2MDIwMTE5WjAYMRYwFAYD VQQDEw02OGNjYjk2Zi1mMDI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArFicM6j2W59i8YVjYjCVWVqRjYIVvwEV1lXxjUbDnrvdMjW0pkfns/PHBWTb Q34tuzpJcOQ13EeObXTQZhtMfHFwm+vsGG++fD3dwLullXXcr4V5gm0Zojaalz1W CzBAR90dNbTUT526KwKtSgTRagbPo8KY9tKnCyuZgptYPlLUPBiQ36U0p5k3D4sg F4pKPRWgpfJnClWIPwZSY12KI4KQbJuFEheRuIG1ONSAbYslzuX8OJoHIWzsvs0G LcJ4QdgVn1wP1wp2l5gkPbrpLwquXiA+OA05AXd1CP8vMYDy/m4dSjzOlsFWFZYf XpnGOaG4ErwGUTLdV5mEMbSPBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK5qaqcH H5Dol97ug3qdOEdZNguIMB8GA1UdIwQYMBaAFFzr2GhbF0lds+HnRZl5/oTwQ4Py MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzcxNi80REI5Q0FDNDE0 MDIxMUVEQjk2NjM0MTVDNEY5QUUwMi9YT3ZZYUZzWFNWMno0ZWRGbVhuLWhQQkRn X0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hPdllhRnNYU1YyejRlZEZtWG4taFBCRGdfSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzcxNi80REI5Q0FDNDE0MDIxMUVEQjk2NjM0MTVDNEY5QUUwMi9YT3ZZYUZzWFNW Mno0ZWRGbVhuLWhQQkRnX0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA376buxRm4+eoxf5cuUL+KCPm/JliMjX6NZPjPqhR5lzbfI51J8OQi csc50hCKbFPZlLkwX95CbuQBQRA8H3aTUhOjPOidROqrgqpqT60Ip0Q96Gi82LRG Vj/st77tMOiCfDAGXiQfJOWXoa1qP84EB+lz7lpylIiEWhyd+9H6xDZ6HQZLsNCz lsSsofeCMhX8mQCu22vXbI65qebUDbjKAMc2VW4Yh9b+N3AbkgpGEuIBZq9hYIoC dkfk8zC9ex42N8oEzWNy5tH0FnGvOLXa4uRpzW+a1MZ6LNlUxOtqNxY1LoKFnmKB C7i51ySCLHyktiILaNl57pOzHpzTMobr -----END CERTIFICATE-----Generated at Sat Sep 20 05:01:34 2025 by rpki-client