$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft File: XYnzqvmxOgelsmTy3rpk1cUAZRw.mft (raw, json) Hash identifier: QyEcF986jNpB1vTZWAFcqx6rkvlummoEkioZn5A78fA= Subject key identifier: AE:D6:59:19:3F:31:4B:ED:17:F0:91:3F:0B:9A:C0:BC:B0:07:BB:00 Authority key identifier: 5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C Certificate issuer: /CN=A91D5240/serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Certificate serial: 01E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft Manifest number: 01D9 Signing time: Fri 25 Jul 2025 02:57:42 +0000 Manifest this update: Fri 25 Jul 2025 02:57:42 +0000 Manifest next update: Fri 01 Aug 2025 02:57:42 +0000 Files and hashes: 1: XYnzqvmxOgelsmTy3rpk1cUAZRw.crl (hash: lxXbXHOesHuMfnnoejr/IaZIfeMBCmDt36NTO1yUj30=) 2: 9EA7B7D8A63911ED874E6630C4F9AE02.roa (hash: 6o0EUZvJBerht1y6bzh1g89SRPPeQ5cLEU5AQhJzOAU=) 3: 5DCE1A1AA63C11ED9306165AC4F9AE02.roa (hash: QPGj0eJqXgnGukiRaT/QHSiAaiIAXjZCnZKqvteNQAI=) 4: 9FBA5FCCA63911ED874E6630C4F9AE02.roa (hash: lCV4Wc/C2vG49K6yvqo7KO+pzcjtBqjnxvlmY9cM+oI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 01 Aug 2025 02:57:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 484 (0x1e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5240, serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Validity Not Before: Jul 25 02:57:42 2025 GMT Not After : Aug 1 02:57:42 2025 GMT Subject: CN=6882f2a6-d25b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f8:0d:18:8a:47:16:1f:6d:e0:c8:99:1a:8a: c9:3d:5f:46:0d:95:d6:8b:ff:a8:43:93:f8:d0:2c: 62:d4:61:9b:e4:b5:0d:92:09:f2:b1:bf:93:1f:f1: 08:78:81:e8:50:f7:b5:0f:aa:ff:19:94:be:27:a3: 35:b0:7e:22:c4:fd:60:5b:f6:51:40:25:d1:35:d8: 34:d3:47:7c:44:7a:b1:4b:81:70:63:14:a4:f4:32: 9b:03:f5:26:c7:0e:43:0b:88:e8:f3:c8:a6:77:1b: f6:92:f7:ef:62:57:ab:59:31:d4:f2:32:f1:25:dc: 91:12:66:70:b3:a9:45:53:d9:2e:70:e7:ac:c5:9a: f6:3d:66:14:43:84:0e:96:33:78:7a:08:59:c2:c4: f6:56:f9:de:83:41:2f:47:1d:cd:41:41:fa:6f:20: 40:e0:64:9c:46:f9:3f:0d:6f:9b:2c:65:78:e5:67: b4:f6:15:ff:bc:b4:17:07:cd:75:cb:6a:0b:d3:13: 27:f4:3a:33:09:87:9f:49:e6:77:a8:bf:81:a3:4c: 4a:e2:76:74:2f:e2:32:53:10:bd:ea:b7:61:75:bd: d0:20:b4:06:64:22:bf:74:7e:c5:77:10:6c:15:c6: 82:97:79:f8:a5:f1:f6:26:1d:aa:55:51:cf:58:41: c5:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:D6:59:19:3F:31:4B:ED:17:F0:91:3F:0B:9A:C0:BC:B0:07:BB:00 X509v3 Authority Key Identifier: keyid:5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:8e:58:e1:41:09:57:ae:ab:1b:9d:d4:4b:32:c8:7a:11:83: fb:f0:2c:da:22:4f:38:59:c1:2e:36:07:0b:94:69:85:c6:fa: 6f:04:24:da:fb:9d:49:d1:4b:69:2d:8a:b5:71:57:31:5f:99: 78:c2:af:a2:87:4b:07:a9:e7:ea:0b:49:f5:41:63:0c:c5:23: 67:e2:31:28:4b:f2:3c:7f:6e:3e:d3:fe:1d:23:40:fb:51:43: d1:b2:61:17:54:9c:b7:ad:4f:6f:9e:75:bc:3e:50:64:9c:b3: bd:84:44:fa:d6:9c:71:c2:00:a6:56:48:9f:43:d5:c4:fe:19: d1:34:00:14:fb:a6:f0:67:bc:b2:68:d0:73:94:e2:bc:30:05: db:81:74:de:92:48:8c:e0:9d:c5:06:8a:36:02:df:a7:3a:2d: 8b:b1:c1:67:d8:cd:28:80:f0:25:46:e3:8a:8a:be:54:f6:e0: 68:88:71:27:5d:f4:85:5f:01:48:19:84:1c:f9:f4:da:52:8f: 9b:6f:27:70:7c:10:96:0c:9c:70:47:e9:b3:24:34:18:30:4c: bd:17:e5:cd:37:c8:dd:bd:8e:eb:08:4d:0e:c5:1a:d2:ca:07: ce:1c:6c:8f:9f:ef:76:3e:21:c2:cb:bd:ab:58:e0:0c:ec:6c: 8d:a6:32:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUyNDAxMTAvBgNVBAUTKDVEODlGM0FBRjlCMTNBMDdBNUIyNjRGMkRFQkE2NEQ1 QzUwMDY1MUMwHhcNMjUwNzI1MDI1NzQyWhcNMjUwODAxMDI1NzQyWjAYMRYwFAYD VQQDEw02ODgyZjJhNi1kMjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzPgNGIpHFh9t4MiZGorJPV9GDZXWi/+oQ5P40Cxi1GGb5LUNkgnysb+TH/EI eIHoUPe1D6r/GZS+J6M1sH4ixP1gW/ZRQCXRNdg000d8RHqxS4FwYxSk9DKbA/Um xw5DC4jo88imdxv2kvfvYlerWTHU8jLxJdyREmZws6lFU9kucOesxZr2PWYUQ4QO ljN4eghZwsT2Vvneg0EvRx3NQUH6byBA4GScRvk/DW+bLGV45We09hX/vLQXB811 y2oL0xMn9DozCYefSeZ3qL+Bo0xK4nZ0L+IyUxC96rdhdb3QILQGZCK/dH7FdxBs FcaCl3n4pfH2Jh2qVVHPWEHFzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK7WWRk/ MUvtF/CRPwuawLywB7sAMB8GA1UdIwQYMBaAFF2J86r5sToHpbJk8t66ZNXFAGUc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTI0MC8yN0RERTdEODlC N0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9nZWxzbVR5M3JwazFjVUFa UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hZbnpxdm14T2dlbHNtVHkzcnBrMWNVQVpSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTI0MC8yN0RERTdEODlCN0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9n ZWxzbVR5M3JwazFjVUFaUncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCjljhQQlXrqsbndRLMsh6EYP78CzaIk84WcEuNgcLlGmFxvpvBCTa +51J0UtpLYq1cVcxX5l4wq+ih0sHqefqC0n1QWMMxSNn4jEoS/I8f24+0/4dI0D7 UUPRsmEXVJy3rU9vnnW8PlBknLO9hET61pxxwgCmVkifQ9XE/hnRNAAU+6bwZ7yy aNBzlOK8MAXbgXTekkiM4J3FBoo2At+nOi2LscFn2M0ogPAlRuOKir5U9uBoiHEn XfSFXwFIGYQc+fTaUo+bbydwfBCWDJxwR+mzJDQYMEy9F+XNN8jdvY7rCE0OxRrS ygfOHGyPn+92PiHCy72rWOAM7GyNpjIS -----END CERTIFICATE-----Generated at Sat Jul 26 12:16:20 2025 by rpki-client