$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft File: XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft (raw, json) Hash identifier: ritdj5F4gwv/QPYSEnOHXeQEBKSBCBuaPqbTGbfz52U= Subject key identifier: 92:AA:67:B7:20:82:15:01:46:37:52:D4:26:36:9F:D9:B9:65:52:1E Authority key identifier: 5E:3C:F0:25:1D:8A:60:06:B8:28:5B:D0:94:9F:CD:9B:A3:F9:EB:B8 Certificate issuer: /CN=A91C9561/serialNumber=5E3CF0251D8A6006B8285BD0949FCD9BA3F9EBB8 Certificate serial: 0320 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft Manifest number: 031F Signing time: Thu 21 Aug 2025 01:18:03 +0000 Manifest this update: Thu 21 Aug 2025 01:18:02 +0000 Manifest next update: Thu 28 Aug 2025 01:18:02 +0000 Files and hashes: 1: XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl (hash: 3CINn+WXcP/LvAygvORbb5Eer0UIJUAaWz9n134WKHM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 01:18:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 800 (0x320) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9561, serialNumber=5E3CF0251D8A6006B8285BD0949FCD9BA3F9EBB8 Validity Not Before: Aug 21 01:18:02 2025 GMT Not After : Aug 28 01:18:02 2025 GMT Subject: CN=68a673ca-4dd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:8b:cb:cc:0a:9c:5e:d0:52:40:f2:7b:9e:be: 19:a1:e1:46:b7:da:7b:02:05:11:da:54:a6:d4:5c: 3b:3c:35:6e:91:ae:37:5c:c7:86:5a:e3:d6:11:db: a8:cd:78:92:90:db:07:9c:44:ba:49:b0:c3:09:46: 39:7c:31:7b:e7:e7:90:41:80:15:5f:5f:dd:95:2c: 20:39:b6:e3:f3:a5:93:bb:88:f7:92:dc:f5:a0:7d: 9c:dc:f1:2f:3b:57:8e:c5:50:62:67:61:a0:3c:05: c4:07:13:9a:b5:da:31:71:c2:ba:8d:04:e0:79:f5: cf:ff:c8:3f:b5:7d:eb:ed:7b:fc:e8:c5:bd:e2:a5: 31:4f:1a:b7:12:70:5a:0f:9d:2e:42:8e:be:d3:35: ef:19:08:ae:45:65:4e:95:de:40:45:fc:cc:82:f8: 24:55:72:70:2f:07:6c:43:b8:bd:f7:1f:d9:87:72: b9:1f:0c:0e:bc:52:df:98:cd:20:20:54:33:ff:49: 0e:8f:b4:2d:75:bb:35:d3:ff:09:1a:1e:2c:94:d5: 76:cd:6c:09:0c:d2:4d:63:f4:50:0c:98:fe:54:e2: f6:f2:5a:ac:0a:d0:00:09:03:74:fd:f8:de:b3:81: 3d:33:86:ce:26:41:90:eb:51:00:c0:9b:90:57:f1: 82:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:AA:67:B7:20:82:15:01:46:37:52:D4:26:36:9F:D9:B9:65:52:1E X509v3 Authority Key Identifier: keyid:5E:3C:F0:25:1D:8A:60:06:B8:28:5B:D0:94:9F:CD:9B:A3:F9:EB:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:05:ff:ee:1a:9f:a8:7c:c2:f7:82:d5:d7:71:04:e7:26:8c: e3:b6:ae:b1:b0:c1:c8:16:27:a6:8a:01:44:91:08:41:84:67: 30:d7:b2:a8:ae:54:73:16:a8:cb:b6:47:4e:0b:12:52:6b:4a: bf:de:74:86:36:40:77:bd:e0:e2:f9:65:da:fc:f4:52:87:43: f3:04:b3:5b:80:78:97:bd:85:b7:06:6b:4d:18:ba:98:99:c0: 78:34:c1:b6:87:31:eb:9d:01:00:cb:50:64:df:6d:07:50:69: 69:13:28:d1:24:30:84:53:50:16:48:ff:ad:41:b6:87:ee:86: 82:fb:f7:03:71:bd:6a:eb:1a:98:50:3c:93:28:0c:94:a8:5d: 4d:e8:ea:96:db:65:2a:0b:a4:d5:63:2e:0a:20:c7:8a:61:cc: 4b:a0:50:7e:b7:38:8b:6f:ef:97:6e:4e:92:c1:b0:35:2d:6d: 3b:ae:3b:9a:c2:2d:db:ba:10:29:a4:db:17:5d:e4:1a:3e:7d: a6:77:8e:1d:89:75:fc:95:88:6f:03:4b:7a:39:92:a6:3a:13: 47:66:86:aa:b2:1e:24:3c:98:17:61:65:c3:4c:94:5d:c1:c7: 5e:37:b3:8b:56:11:f8:9e:75:49:90:dd:05:95:b9:fa:fd:1c: e6:f2:fa:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAyAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk1NjExMTAvBgNVBAUTKDVFM0NGMDI1MUQ4QTYwMDZCODI4NUJEMDk0OUZDRDlC QTNGOUVCQjgwHhcNMjUwODIxMDExODAyWhcNMjUwODI4MDExODAyWjAYMRYwFAYD VQQDEw02OGE2NzNjYS00ZGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv4vLzAqcXtBSQPJ7nr4ZoeFGt9p7AgUR2lSm1Fw7PDVuka43XMeGWuPWEduo zXiSkNsHnES6SbDDCUY5fDF75+eQQYAVX1/dlSwgObbj86WTu4j3ktz1oH2c3PEv O1eOxVBiZ2GgPAXEBxOatdoxccK6jQTgefXP/8g/tX3r7Xv86MW94qUxTxq3EnBa D50uQo6+0zXvGQiuRWVOld5ARfzMgvgkVXJwLwdsQ7i99x/Zh3K5HwwOvFLfmM0g IFQz/0kOj7Qtdbs10/8JGh4slNV2zWwJDNJNY/RQDJj+VOL28lqsCtAACQN0/fje s4E9M4bOJkGQ61EAwJuQV/GC+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJKqZ7cg ghUBRjdS1CY2n9m5ZVIeMB8GA1UdIwQYMBaAFF488CUdimAGuChb0JSfzZuj+eu4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTU2MS9DOUE4REZEQURB NjkxMUVDOUM4MTUzNThDNEY5QUUwMi9Yanp3SlIyS1lBYTRLRnZRbEpfTm02UDU2 N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hqendKUjJLWUFhNEtGdlFsSl9ObTZQNTY3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTU2MS9DOUE4REZEQURBNjkxMUVDOUM4MTUzNThDNEY5QUUwMi9Yanp3SlIyS1lB YTRLRnZRbEpfTm02UDU2N2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzBf/uGp+ofML3gtXXcQTnJozjtq6xsMHIFiemigFEkQhBhGcw17Ko rlRzFqjLtkdOCxJSa0q/3nSGNkB3veDi+WXa/PRSh0PzBLNbgHiXvYW3BmtNGLqY mcB4NMG2hzHrnQEAy1Bk320HUGlpEyjRJDCEU1AWSP+tQbaH7oaC+/cDcb1q6xqY UDyTKAyUqF1N6OqW22UqC6TVYy4KIMeKYcxLoFB+tziLb++Xbk6SwbA1LW07rjua wi3buhAppNsXXeQaPn2md44diXX8lYhvA0t6OZKmOhNHZoaqsh4kPJgXYWXDTJRd wcdeN7OLVhH4nnVJkN0Flbn6/Rzm8vpL -----END CERTIFICATE-----Generated at Fri Aug 22 16:15:05 2025 by rpki-client