$ rpki-client -vvf rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.mft File: xHWJli7Q04kmIr5be4vu_ozniKc.mft (raw, json) Hash identifier: X4bwNpERcHNcZJSpZQdhcN//7CDyVddI5jJn8iEINa0= Subject key identifier: 0C:7C:29:B8:D2:23:09:B2:41:AB:22:98:B6:DF:D6:12:F6:F0:4B:47 Authority key identifier: C4:75:89:96:2E:D0:D3:89:26:22:BE:5B:7B:8B:EE:FE:8C:E7:88:A7 Certificate issuer: /CN=A91A13A6/serialNumber=C47589962ED0D3892622BE5B7B8BEEFE8CE788A7 Certificate serial: 013D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xHWJli7Q04kmIr5be4vu_ozniKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.mft Manifest number: 0134 Signing time: Wed 03 Sep 2025 05:07:17 +0000 Manifest this update: Wed 03 Sep 2025 05:07:17 +0000 Manifest next update: Wed 10 Sep 2025 05:07:17 +0000 Files and hashes: 1: xHWJli7Q04kmIr5be4vu_ozniKc.crl (hash: fnTe5U/IdHOsiZDhOI+sWepgyzzl66z2Qyu6lYh+mg0=) 2: 4E2CAC386E8711EF8521ED6FC4F9AE02.roa (hash: rFJbuDYL88Z9KeNowFp3y8pDODtibJ7P1KjjzQ7u73o=) 3: 8C7D223C2DAB11EF88127264C4F9AE02.roa (hash: qHX8rwWLzYwQ68AYEwJa6sYGgUw03regWlERxMTMTs4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.crl rsync://rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xHWJli7Q04kmIr5be4vu_ozniKc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 05:07:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 317 (0x13d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A13A6, serialNumber=C47589962ED0D3892622BE5B7B8BEEFE8CE788A7 Validity Not Before: Sep 3 05:07:17 2025 GMT Not After : Sep 10 05:07:17 2025 GMT Subject: CN=68b7cd05-2c37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:50:74:2a:cb:b5:02:22:3d:ff:00:0e:5a:64: 05:c1:0e:17:f4:0a:c5:c0:e8:52:ab:ab:bc:25:84: a2:6c:6a:de:12:df:90:99:f7:54:e5:02:e9:53:a9: 85:d0:bf:c2:9b:68:60:ec:77:aa:95:b0:a5:42:c0: e9:4e:f4:2d:5c:44:f3:b8:3e:a2:52:a3:57:75:c6: 64:b1:23:06:66:67:68:d8:54:44:ff:94:1d:c8:4d: bd:50:bc:98:a6:ed:bd:1f:4c:77:01:bc:0d:46:66: 51:a6:91:b2:a5:51:75:c7:3a:2e:95:52:d0:2c:f7: 03:91:13:c6:1e:b4:ec:f8:9a:aa:e9:65:19:c6:d5: 49:83:0b:8a:a8:0a:d6:2d:09:07:31:b0:53:69:be: 08:5b:6a:08:90:1c:9f:cd:e1:6d:c6:71:60:36:30: 3c:f1:91:7b:6b:c8:e7:45:ed:e6:db:f3:ab:5f:13: 71:70:2b:cf:b3:2f:ff:a7:15:5e:d1:1e:9e:ef:a2: b3:60:ca:86:e5:c7:11:5c:c8:09:1c:15:ec:8d:11: af:52:64:35:19:13:e2:4d:a2:6a:db:03:5e:df:28: 90:36:ec:5c:8c:82:33:16:a9:0e:bb:4f:2e:47:8e: 4f:0a:e7:27:95:e3:80:95:88:73:c3:b6:51:68:04: a0:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:7C:29:B8:D2:23:09:B2:41:AB:22:98:B6:DF:D6:12:F6:F0:4B:47 X509v3 Authority Key Identifier: keyid:C4:75:89:96:2E:D0:D3:89:26:22:BE:5B:7B:8B:EE:FE:8C:E7:88:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xHWJli7Q04kmIr5be4vu_ozniKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:12:ed:4c:58:3c:7c:4d:2b:e3:c8:3a:d6:07:14:30:6b:6d: 7a:33:8a:b9:66:99:2d:46:c4:0d:03:cb:16:1b:b0:64:21:a6: e5:97:9f:fb:26:8a:13:19:97:a4:6e:90:93:64:01:81:6f:72: 5a:8a:ef:05:e3:69:a4:fc:ea:4f:67:6b:0f:59:d6:17:df:94: b5:5c:b4:b6:ce:de:12:1c:57:d4:4a:41:e4:e6:d1:ae:e4:a0: 1c:87:08:b7:f1:7d:7d:44:38:c9:5f:ea:db:94:47:a9:30:12: ce:6a:bd:be:d1:6e:0d:9a:a9:ca:56:ee:b3:0e:f6:c8:97:e5: 29:3d:d7:12:69:6f:bc:aa:1a:9b:d4:f4:bc:87:1d:73:67:59: 13:13:5d:e6:6b:12:95:8c:30:47:4b:98:01:e1:df:a3:5a:c4: 91:e0:df:b1:9d:b6:9e:cd:59:05:9d:e4:5c:10:52:f8:58:4b: 91:9c:3c:95:13:80:d6:24:aa:69:a3:f3:4f:3a:eb:c4:54:14: fe:fd:af:84:13:e1:6b:ed:d3:85:4c:dd:8b:c4:39:52:8a:ab: d6:a4:88:f7:83:95:7e:e9:12:1b:3d:72:56:6f:d0:35:7e:18: 3f:fe:2c:09:73:18:a3:b4:ac:87:37:4f:f8:79:3f:74:f3:f7: 0c:fc:e0:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTEzQTYxMTAvBgNVBAUTKEM0NzU4OTk2MkVEMEQzODkyNjIyQkU1QjdCOEJFRUZF OENFNzg4QTcwHhcNMjUwOTAzMDUwNzE3WhcNMjUwOTEwMDUwNzE3WjAYMRYwFAYD VQQDEw02OGI3Y2QwNS0yYzM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArlB0Ksu1AiI9/wAOWmQFwQ4X9ArFwOhSq6u8JYSibGreEt+QmfdU5QLpU6mF 0L/Cm2hg7HeqlbClQsDpTvQtXETzuD6iUqNXdcZksSMGZmdo2FRE/5QdyE29ULyY pu29H0x3AbwNRmZRppGypVF1xzoulVLQLPcDkRPGHrTs+Jqq6WUZxtVJgwuKqArW LQkHMbBTab4IW2oIkByfzeFtxnFgNjA88ZF7a8jnRe3m2/OrXxNxcCvPsy//pxVe 0R6e76KzYMqG5ccRXMgJHBXsjRGvUmQ1GRPiTaJq2wNe3yiQNuxcjIIzFqkOu08u R45PCucnleOAlYhzw7ZRaASgjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAx8KbjS IwmyQasimLbf1hL28EtHMB8GA1UdIwQYMBaAFMR1iZYu0NOJJiK+W3uL7v6M54in MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTNBNi84MDc5NEM5QUMw OEMxMUVFQkQ4MDVCMjRDNEY5QUUwMi94SFdKbGk3UTA0a21JcjViZTR2dV9vem5p S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hIV0psaTdRMDRrbUlyNWJlNHZ1X296bmlLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTNBNi84MDc5NEM5QUMwOEMxMUVFQkQ4MDVCMjRDNEY5QUUwMi94SFdKbGk3UTA0 a21JcjViZTR2dV9vem5pS2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOEu1MWDx8TSvjyDrWBxQwa216M4q5ZpktRsQNA8sWG7BkIabll5/7 JooTGZekbpCTZAGBb3Jaiu8F42mk/OpPZ2sPWdYX35S1XLS2zt4SHFfUSkHk5tGu 5KAchwi38X19RDjJX+rblEepMBLOar2+0W4NmqnKVu6zDvbIl+UpPdcSaW+8qhqb 1PS8hx1zZ1kTE13maxKVjDBHS5gB4d+jWsSR4N+xnbaezVkFneRcEFL4WEuRnDyV E4DWJKppo/NPOuvEVBT+/a+EE+Fr7dOFTN2LxDlSiqvWpIj3g5V+6RIbPXJWb9A1 fhg//iwJcxijtKyHN0/4eT908/cM/ODE -----END CERTIFICATE-----Generated at Thu Sep 4 13:59:04 2025 by rpki-client