$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.mft File: Xs7vXyjy82UFPfuM780W4cPehK4.mft (raw, json) Hash identifier: 5BY7/bc417ZE9ijrShosC2v2gBxnXAZCg8ULXXsPWso= Subject key identifier: F9:A0:41:CA:FB:1C:E6:46:4D:DC:2C:C1:14:56:D0:B9:EC:B7:9A:B5 Authority key identifier: 5E:CE:EF:5F:28:F2:F3:65:05:3D:FB:8C:EF:CD:16:E1:C3:DE:84:AE Certificate issuer: /CN=A91DB8D9/serialNumber=5ECEEF5F28F2F365053DFB8CEFCD16E1C3DE84AE Certificate serial: 03DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xs7vXyjy82UFPfuM780W4cPehK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.mft Manifest number: 03D5 Signing time: Fri 05 Sep 2025 00:55:09 +0000 Manifest this update: Fri 05 Sep 2025 00:55:09 +0000 Manifest next update: Fri 12 Sep 2025 00:55:09 +0000 Files and hashes: 1: Xs7vXyjy82UFPfuM780W4cPehK4.crl (hash: Qv2rmIrnDQUBYIjbNT0deGE/oMm/VR8/JFZwDpyNk3s=) 2: 728139D62FA311F0A9129814C4F9AE02.roa (hash: guIJtqQN+EFa/f6cWPw4iUlLONR7odnIq46PWDEQXBE=) 3: F31E86967B2311EF93801A72C4F9AE02.roa (hash: Um+5nEX9UGWaeunNGOXHeeYETiEJM95laBvW70lUPDE=) 4: 7E044E58A06B11ECBF29B644C4F9AE02.roa (hash: EglzY5P8gEG+IosP670+janTnu12u5QYgDoCSiDyeR8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.crl rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xs7vXyjy82UFPfuM780W4cPehK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 00:55:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 990 (0x3de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB8D9, serialNumber=5ECEEF5F28F2F365053DFB8CEFCD16E1C3DE84AE Validity Not Before: Sep 5 00:55:09 2025 GMT Not After : Sep 12 00:55:09 2025 GMT Subject: CN=68ba34ed-cd0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d2:d0:e2:5a:64:61:9b:96:c5:85:0e:84:e4: 83:cb:e6:c3:b9:5f:eb:5a:d4:80:af:e1:e9:46:c3: 52:ce:83:6a:7b:a3:86:eb:d8:14:d7:be:58:8e:e0: 82:31:08:a7:8e:82:3a:d0:90:ab:d0:1b:32:0c:4c: 69:4a:78:a5:32:8f:1b:61:91:15:78:a1:42:4b:08: d9:84:11:d5:f0:ad:46:c1:56:45:fd:06:9d:bf:2c: d6:b2:a7:11:7a:b1:c1:8d:b3:44:88:40:f5:6b:09: 30:a5:0e:9a:31:bb:ff:51:a6:e8:3e:be:e2:de:0e: aa:d0:8b:ed:06:54:b0:d4:a0:14:4e:5d:2f:be:59: ef:fd:e5:76:52:0b:4e:38:5b:4c:03:2f:01:b3:0d: e2:07:88:4b:94:a3:20:74:44:25:1f:e8:c2:ef:3d: 1c:0e:d2:7a:90:19:c8:a8:8b:39:d4:14:2a:b9:ae: eb:d7:ef:fe:81:0c:61:fe:35:74:e0:a8:49:a9:e9: 7a:4c:10:cf:50:23:e9:3f:93:92:12:3e:38:b1:92: cd:91:e0:3c:f2:d0:ed:0d:ad:4c:1b:75:09:1e:60: 69:52:2e:ff:7a:18:dd:e5:b4:b3:54:4c:3a:9f:e5: b1:d9:d5:f9:9d:75:a7:06:d6:3f:ad:dd:16:79:b4: 06:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:A0:41:CA:FB:1C:E6:46:4D:DC:2C:C1:14:56:D0:B9:EC:B7:9A:B5 X509v3 Authority Key Identifier: keyid:5E:CE:EF:5F:28:F2:F3:65:05:3D:FB:8C:EF:CD:16:E1:C3:DE:84:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xs7vXyjy82UFPfuM780W4cPehK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:07:53:d5:18:35:8b:72:1e:41:c6:87:d8:29:da:39:a2:ee: b0:bf:2d:39:8b:dd:74:62:25:58:5c:64:81:78:15:b3:07:92: e1:e4:6b:07:f0:cf:69:46:98:c2:9c:95:db:d1:3e:39:e6:68: 6a:19:54:e7:16:32:73:6d:00:ac:02:aa:27:17:45:1d:e7:3f: a7:b4:9a:d9:20:d5:ca:8e:66:99:d4:9b:ce:57:61:bf:0a:58: 33:c6:37:18:45:4b:a9:b1:69:9b:82:73:a5:4a:23:37:28:95: 83:5f:24:99:56:52:17:c1:b8:54:4b:1b:21:43:4d:66:16:0f: 11:24:ea:80:aa:1c:81:a7:04:eb:29:99:90:27:31:79:1c:5a: 17:14:ad:c9:bd:ba:71:73:c8:8a:cf:56:28:f1:e6:d0:ed:f8: f2:3b:d3:c9:10:02:f7:5b:1b:39:bc:35:38:13:36:22:f7:e4: 9a:12:fd:9b:94:8d:52:51:8e:2e:2b:60:5d:7d:68:1f:d8:5f: 0b:c2:1c:49:d1:60:d9:1d:2d:ef:13:0a:90:30:3b:14:76:dc: dd:39:10:ae:77:07:14:e6:97:2e:b7:54:34:c7:fc:49:56:d3: a0:5f:fc:b0:6d:20:01:a5:2a:40:4f:b8:f4:86:11:f6:35:f1: 9c:fe:2e:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA94wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI4RDkxMTAvBgNVBAUTKDVFQ0VFRjVGMjhGMkYzNjUwNTNERkI4Q0VGQ0QxNkUx QzNERTg0QUUwHhcNMjUwOTA1MDA1NTA5WhcNMjUwOTEyMDA1NTA5WjAYMRYwFAYD VQQDEw02OGJhMzRlZC1jZDBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwtLQ4lpkYZuWxYUOhOSDy+bDuV/rWtSAr+HpRsNSzoNqe6OG69gU175YjuCC MQinjoI60JCr0BsyDExpSnilMo8bYZEVeKFCSwjZhBHV8K1GwVZF/QadvyzWsqcR erHBjbNEiED1awkwpQ6aMbv/UaboPr7i3g6q0IvtBlSw1KAUTl0vvlnv/eV2UgtO OFtMAy8Bsw3iB4hLlKMgdEQlH+jC7z0cDtJ6kBnIqIs51BQqua7r1+/+gQxh/jV0 4KhJqel6TBDPUCPpP5OSEj44sZLNkeA88tDtDa1MG3UJHmBpUi7/ehjd5bSzVEw6 n+Wx2dX5nXWnBtY/rd0WebQGfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPmgQcr7 HOZGTdwswRRW0Lnst5q1MB8GA1UdIwQYMBaAFF7O718o8vNlBT37jO/NFuHD3oSu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjhEOS84QjAwMjM3NjlB MDIxMUVDOEI4MTc3ODVDNEY5QUUwMi9Yczd2WHlqeTgyVUZQZnVNNzgwVzRjUGVo SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hzN3ZYeWp5ODJVRlBmdU03ODBXNGNQZWhLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjhEOS84QjAwMjM3NjlBMDIxMUVDOEI4MTc3ODVDNEY5QUUwMi9Yczd2WHlqeTgy VUZQZnVNNzgwVzRjUGVoSzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbB1PVGDWLch5BxofYKdo5ou6wvy05i910YiVYXGSBeBWzB5Lh5GsH 8M9pRpjCnJXb0T455mhqGVTnFjJzbQCsAqonF0Ud5z+ntJrZINXKjmaZ1JvOV2G/ ClgzxjcYRUupsWmbgnOlSiM3KJWDXySZVlIXwbhUSxshQ01mFg8RJOqAqhyBpwTr KZmQJzF5HFoXFK3Jvbpxc8iKz1Yo8ebQ7fjyO9PJEAL3Wxs5vDU4EzYi9+SaEv2b lI1SUY4uK2BdfWgf2F8LwhxJ0WDZHS3vEwqQMDsUdtzdORCudwcU5pcut1Q0x/xJ VtOgX/ywbSABpSpAT7j0hhH2NfGc/i7O -----END CERTIFICATE-----Generated at Sat Sep 6 12:08:07 2025 by rpki-client