$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft File: XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft (raw, json) Hash identifier: z+0bLc/PEYrkzZYNOhML6GGMF/7RnQcvJgyaMqC7tLc= Subject key identifier: B7:10:E1:20:5A:55:B0:87:A2:5D:AD:10:D7:21:11:BE:97:2C:DB:5A Authority key identifier: 5D:F1:02:E2:A5:E7:36:77:21:C1:18:DB:EC:DA:60:2A:80:29:EE:94 Certificate issuer: /CN=A91D0B34/serialNumber=5DF102E2A5E7367721C118DBECDA602A8029EE94 Certificate serial: 0A08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft Manifest number: 09FB Signing time: Sun 24 Aug 2025 19:53:23 +0000 Manifest this update: Sun 24 Aug 2025 19:53:22 +0000 Manifest next update: Sun 31 Aug 2025 19:53:22 +0000 Files and hashes: 1: XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl (hash: uicBC3pLFVi94NN6VQD1h1Y8XCiGXcLzV9dBcHbWR9g=) 2: 97E61FE46F2111EB85D19531C4F9AE02.roa (hash: QT/K5tGfOd7GalxXyOBi4xKWLa0cvDIyEyK/W9LM+Pk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 19:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2568 (0xa08) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B34, serialNumber=5DF102E2A5E7367721C118DBECDA602A8029EE94 Validity Not Before: Aug 24 19:53:22 2025 GMT Not After : Aug 31 19:53:22 2025 GMT Subject: CN=68ab6db3-0667 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ab:43:f4:3d:cc:24:be:3e:0e:ab:86:8f:7f: d5:eb:ad:65:e3:19:20:06:53:6a:c0:61:c0:16:f4: b0:03:23:1a:a9:c9:8d:e8:90:55:35:9f:ea:04:b4: 36:dc:af:ca:2c:85:39:4e:37:57:58:62:e8:ec:25: c2:d3:13:55:d7:fd:fd:90:ca:ac:be:b1:83:91:6e: 69:b6:93:9b:98:13:ee:b5:5f:b7:d3:ff:3b:b4:1b: 81:05:cd:d2:73:45:30:e6:ca:30:70:70:00:9a:ca: c6:3d:56:8d:18:11:d0:2a:e8:fa:4d:f0:f0:7b:79: 79:d3:9a:f5:06:88:76:c7:4a:bb:07:5a:df:ed:0b: d4:0f:2e:c5:60:8e:a9:39:09:7f:18:83:58:85:9c: 54:69:ed:7c:ea:7f:58:a0:fe:c1:65:97:5f:61:f2: cb:3a:85:90:4f:7f:db:b9:f2:3d:20:0a:45:7f:5c: 02:a1:73:a1:86:3a:fe:a5:3d:ed:25:31:b3:0d:e3: a4:c5:80:6a:d4:d2:91:97:01:a1:c0:1d:cc:a4:88: e3:55:e0:d4:d5:9c:89:76:12:89:8a:6d:10:1f:41: a0:52:b2:02:bd:55:13:35:5d:4c:79:a7:66:e1:71: db:39:77:40:68:92:bd:6f:de:cb:2d:c7:8e:d8:04: f4:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:10:E1:20:5A:55:B0:87:A2:5D:AD:10:D7:21:11:BE:97:2C:DB:5A X509v3 Authority Key Identifier: keyid:5D:F1:02:E2:A5:E7:36:77:21:C1:18:DB:EC:DA:60:2A:80:29:EE:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:92:86:a2:9d:f2:29:85:cb:a2:5a:cb:1a:64:f3:b6:ef:99: 75:9a:6e:6b:7d:9a:bc:6a:ec:56:4a:9c:0f:24:1e:5f:58:4f: db:41:8f:ba:f3:7e:69:82:db:7a:58:ec:9e:a7:b7:f3:9a:f1: 77:4c:c3:9a:5c:15:02:55:2f:4b:7d:99:94:18:54:d0:4e:60: 1e:47:0e:74:82:b1:9a:3d:a7:2c:5f:29:6e:9f:10:0b:53:0d: 37:a9:5a:ad:dc:86:9b:45:cd:45:03:c7:4d:f6:9a:c3:22:2e: ea:5a:16:87:ed:68:92:57:6e:5b:ce:03:54:21:11:73:89:62: b2:45:03:5a:7d:66:5b:8d:ba:b3:ad:ab:ab:b5:45:fd:cc:18: 07:ea:89:73:70:40:cd:c7:4b:fa:e9:d9:45:af:6e:d2:c7:0b: a0:07:38:8b:ca:1a:66:5d:31:36:69:8e:3c:d5:e7:ae:3e:ff: b0:76:50:32:3f:78:3e:14:8f:59:09:38:d2:3b:00:64:c2:83: 77:7c:ee:dd:d6:b5:83:60:93:a0:b8:83:a1:27:2d:91:d6:11: 7d:3b:9c:dc:f5:bc:4f:0b:ac:2e:4d:a3:6c:5c:24:f4:86:eb: 0b:0b:01:05:da:ba:66:fc:76:39:76:24:74:3f:d9:18:39:5f: 39:f3:df:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCggwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBCMzQxMTAvBgNVBAUTKDVERjEwMkUyQTVFNzM2NzcyMUMxMThEQkVDREE2MDJB ODAyOUVFOTQwHhcNMjUwODI0MTk1MzIyWhcNMjUwODMxMTk1MzIyWjAYMRYwFAYD VQQDEw02OGFiNmRiMy0wNjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnqtD9D3MJL4+DquGj3/V661l4xkgBlNqwGHAFvSwAyMaqcmN6JBVNZ/qBLQ2 3K/KLIU5TjdXWGLo7CXC0xNV1/39kMqsvrGDkW5ptpObmBPutV+30/87tBuBBc3S c0Uw5sowcHAAmsrGPVaNGBHQKuj6TfDwe3l505r1Boh2x0q7B1rf7QvUDy7FYI6p OQl/GINYhZxUae186n9YoP7BZZdfYfLLOoWQT3/bufI9IApFf1wCoXOhhjr+pT3t JTGzDeOkxYBq1NKRlwGhwB3MpIjjVeDU1ZyJdhKJim0QH0GgUrICvVUTNV1Meadm 4XHbOXdAaJK9b97LLceO2AT0wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLcQ4SBa VbCHol2tENchEb6XLNtaMB8GA1UdIwQYMBaAFF3xAuKl5zZ3IcEY2+zaYCqAKe6U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEIzNC82MDM3RDVEQzgy QTExMUVBOTM0MTNCNEFDNEY5QUUwMi9YZkVDNHFYbk5uY2h3UmpiN05wZ0tvQXA3 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hmRUM0cVhuTm5jaHdSamI3TnBnS29BcDdwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEIzNC82MDM3RDVEQzgyQTExMUVBOTM0MTNCNEFDNEY5QUUwMi9YZkVDNHFYbk5u Y2h3UmpiN05wZ0tvQXA3cFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3koainfIphcuiWssaZPO275l1mm5rfZq8auxWSpwPJB5fWE/bQY+6 835pgtt6WOyep7fzmvF3TMOaXBUCVS9LfZmUGFTQTmAeRw50grGaPacsXylunxAL Uw03qVqt3IabRc1FA8dN9prDIi7qWhaH7WiSV25bzgNUIRFziWKyRQNafWZbjbqz raurtUX9zBgH6olzcEDNx0v66dlFr27SxwugBziLyhpmXTE2aY481eeuPv+wdlAy P3g+FI9ZCTjSOwBkwoN3fO7d1rWDYJOguIOhJy2R1hF9O5zc9bxPC6wuTaNsXCT0 husLCwEF2rpm/HY5diR0P9kYOV8589+F -----END CERTIFICATE-----Generated at Sun Aug 24 21:52:14 2025 by rpki-client