$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft File: xhVwDXyIi-a6dQrezZTYhkaC42E.mft (raw, json) Hash identifier: ZYpkevUje6ScovvdvMMKs1dAY3BzRxTjQDhfZ0+DzOs= Subject key identifier: 6E:19:F7:D1:F2:88:DB:BB:5C:81:C8:62:25:2F:D4:E0:6B:D2:0C:AF Authority key identifier: C6:15:70:0D:7C:88:8B:E6:BA:75:0A:DE:CD:94:D8:86:46:82:E3:61 Certificate issuer: /CN=A91D0C14/serialNumber=C615700D7C888BE6BA750ADECD94D8864682E361 Certificate serial: C1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xhVwDXyIi-a6dQrezZTYhkaC42E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft Manifest number: C0 Signing time: Fri 05 Sep 2025 02:20:41 +0000 Manifest this update: Fri 05 Sep 2025 02:20:40 +0000 Manifest next update: Fri 12 Sep 2025 02:20:40 +0000 Files and hashes: 1: xhVwDXyIi-a6dQrezZTYhkaC42E.crl (hash: dw8kq1yxYBExX9cU23PIxwnd5U10+Yjo6ksZw0pQetU=) 2: 6C3911AC316A11F090B23283C4F9AE02.roa (hash: DgEucoR97Y9+a6MdEE8/uaZNnvtkSjr5/qYttwnSpcA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.crl rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xhVwDXyIi-a6dQrezZTYhkaC42E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 02:20:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0C14, serialNumber=C615700D7C888BE6BA750ADECD94D8864682E361 Validity Not Before: Sep 5 02:20:40 2025 GMT Not After : Sep 12 02:20:40 2025 GMT Subject: CN=68ba48f9-4e95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5d:03:c5:6b:00:6c:aa:f6:a5:5e:53:fc:11: 1a:b6:fe:0a:6b:1e:f2:ad:fe:63:ed:1d:d0:61:c8: cf:40:7a:41:ad:74:da:22:db:c1:1d:04:64:c7:79: 0f:5f:c3:53:7b:f4:6f:7c:e6:a3:5e:d8:a9:d4:7b: 60:fb:e5:d4:c2:d6:ac:78:08:71:28:ee:9e:56:cb: 95:f5:21:d6:42:bf:04:6b:ff:b4:b1:44:f2:78:23: 97:46:8e:cf:c1:14:6e:4d:a6:f2:94:34:8d:fc:c6: 03:54:f4:53:15:52:99:9a:18:c0:f4:31:17:60:2b: 3b:77:d3:e3:0e:cb:92:01:7f:51:ae:70:ee:27:b3: 95:bf:8e:79:7d:4d:48:14:97:f9:43:3c:99:de:62: d3:e8:7c:ef:fe:06:08:47:bf:7a:d2:b3:41:b0:2f: 47:21:69:57:12:93:15:8c:2b:af:51:e0:c7:1f:ec: f9:60:5c:7f:22:4b:fc:c9:62:d4:d9:ae:c4:4e:9d: 7f:6a:39:1f:65:d3:2a:a1:55:74:18:d9:68:6a:80: d2:98:36:b0:be:40:16:70:32:83:5a:c7:9e:8c:e5: d4:0f:9f:4b:0e:31:74:ba:f6:5d:73:aa:5a:b6:78: bf:37:dd:ea:bf:ae:dc:ab:75:f6:b3:07:3e:ad:37: d3:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:19:F7:D1:F2:88:DB:BB:5C:81:C8:62:25:2F:D4:E0:6B:D2:0C:AF X509v3 Authority Key Identifier: keyid:C6:15:70:0D:7C:88:8B:E6:BA:75:0A:DE:CD:94:D8:86:46:82:E3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xhVwDXyIi-a6dQrezZTYhkaC42E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:f4:53:f6:a1:b8:19:f9:3b:77:0d:27:ab:30:7c:4d:54:9d: b1:8d:d7:33:cf:a2:7f:b6:e2:7c:7b:8c:40:68:94:cd:18:8c: 4f:ce:7e:90:39:14:ab:1b:9d:ee:00:bc:38:72:3e:fe:8c:f2: 9f:1b:6a:4c:1a:a1:38:ea:6e:1a:52:ba:83:08:de:08:d9:69: 12:f8:5c:c6:89:cc:d8:4c:30:17:a8:a4:07:7c:cd:a2:bb:75: d6:ac:df:74:da:6c:29:3f:da:c5:bb:4f:25:4b:55:15:05:7b: ae:0b:5c:46:0e:02:f4:ad:30:e7:e2:6a:37:1e:ae:8d:32:62: 13:9b:80:b6:7c:49:60:cf:d0:6f:8b:37:c4:01:fe:e9:d3:0e: c7:9b:54:25:5b:81:2b:d7:5c:30:2f:52:df:a3:63:0f:e7:ea: 2b:cb:2b:e5:56:23:c9:87:c6:d7:99:4e:68:84:34:44:cc:8b: 21:c0:e9:13:75:46:99:8a:1c:69:51:7f:67:a5:83:df:7f:68: f1:2b:a1:36:7e:95:4c:98:d1:88:34:52:c0:40:da:41:f9:fb: 4d:18:c4:5d:52:fc:4c:36:ad:cd:73:83:85:71:96:ed:f6:99: 46:79:94:b0:f7:66:d7:88:07:93:26:64:e1:44:12:9d:92:e5: ba:c3:76:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBDMTQxMTAvBgNVBAUTKEM2MTU3MDBEN0M4ODhCRTZCQTc1MEFERUNEOTREODg2 NDY4MkUzNjEwHhcNMjUwOTA1MDIyMDQwWhcNMjUwOTEyMDIyMDQwWjAYMRYwFAYD VQQDEw02OGJhNDhmOS00ZTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuV0DxWsAbKr2pV5T/BEatv4Kax7yrf5j7R3QYcjPQHpBrXTaItvBHQRkx3kP X8NTe/RvfOajXtip1Htg++XUwtaseAhxKO6eVsuV9SHWQr8Ea/+0sUTyeCOXRo7P wRRuTabylDSN/MYDVPRTFVKZmhjA9DEXYCs7d9PjDsuSAX9RrnDuJ7OVv455fU1I FJf5QzyZ3mLT6Hzv/gYIR7960rNBsC9HIWlXEpMVjCuvUeDHH+z5YFx/Ikv8yWLU 2a7ETp1/ajkfZdMqoVV0GNloaoDSmDawvkAWcDKDWseejOXUD59LDjF0uvZdc6pa tni/N93qv67cq3X2swc+rTfTBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG4Z99Hy iNu7XIHIYiUv1OBr0gyvMB8GA1UdIwQYMBaAFMYVcA18iIvmunUK3s2U2IZGguNh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEMxNC84RjMzOTk5NjZC RkIxMUVGODQ2MzI2MzVDNEY5QUUwMi94aFZ3RFh5SWktYTZkUXJlelpUWWhrYUM0 MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hoVndEWHlJaS1hNmRRcmV6WlRZaGthQzQyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEMxNC84RjMzOTk5NjZCRkIxMUVGODQ2MzI2MzVDNEY5QUUwMi94aFZ3RFh5SWkt YTZkUXJlelpUWWhrYUM0MkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCx9FP2obgZ+Tt3DSerMHxNVJ2xjdczz6J/tuJ8e4xAaJTNGIxPzn6Q ORSrG53uALw4cj7+jPKfG2pMGqE46m4aUrqDCN4I2WkS+FzGiczYTDAXqKQHfM2i u3XWrN902mwpP9rFu08lS1UVBXuuC1xGDgL0rTDn4mo3Hq6NMmITm4C2fElgz9Bv izfEAf7p0w7Hm1QlW4Er11wwL1Lfo2MP5+oryyvlViPJh8bXmU5ohDREzIshwOkT dUaZihxpUX9npYPff2jxK6E2fpVMmNGINFLAQNpB+ftNGMRdUvxMNq3Nc4OFcZbt 9plGeZSw92bXiAeTJmThRBKdkuW6w3Y8 -----END CERTIFICATE-----Generated at Sat Sep 6 21:11:01 2025 by rpki-client