$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft File: xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft (raw, json) Hash identifier: i1b+kfalauOtLfX85GQqtdgO5LCCOTu4Zw0ns1RtfCw= Subject key identifier: C5:A9:A2:65:F0:32:34:1B:D7:F2:1D:58:88:8B:16:7E:A4:B9:AD:BC Authority key identifier: C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 Certificate issuer: /CN=A91E3BF2/serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Certificate serial: 02E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft Manifest number: 02DA Signing time: Thu 21 Aug 2025 01:29:55 +0000 Manifest this update: Thu 21 Aug 2025 01:29:54 +0000 Manifest next update: Thu 28 Aug 2025 01:29:54 +0000 Files and hashes: 1: xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl (hash: O0dtw3vlEVml3J2de2N0SP+OLRdR/Z7HC+U2rqLDpVo=) 2: 6B7C33C8F6C811ECBDF7DD40C4F9AE02.roa (hash: iVRqxqRDbn6K8sleGw8ykyX5wSW8dSg7Li1MPpVmJsY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 01:29:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 736 (0x2e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3BF2, serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Validity Not Before: Aug 21 01:29:54 2025 GMT Not After : Aug 28 01:29:54 2025 GMT Subject: CN=68a67692-2775 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:11:a3:70:34:f7:31:6a:b4:35:56:b3:88:b5: 17:e9:a4:ba:9a:74:da:1a:90:b7:11:19:43:51:8c: c9:7b:90:f4:8c:82:fb:74:07:1d:8d:c1:e7:d4:15: 04:61:6a:60:7a:d4:3d:81:f8:71:a2:40:f5:a1:ee: 89:24:40:82:0e:73:e6:ef:67:4c:49:60:1a:69:9a: d9:b0:e5:a8:cc:f2:08:80:2c:d4:1f:1f:ce:52:dc: b7:45:23:36:3e:44:4d:df:b7:3d:71:04:fa:d0:d7: 48:e2:e8:0b:c6:30:b6:fb:6c:6c:df:43:c4:b0:a6: 7d:22:d9:ef:ea:d3:2d:c6:df:d4:45:ee:85:7b:d6: 55:9f:0e:a5:64:f0:20:87:5e:d2:fd:d9:78:12:44: 58:27:e4:bd:50:5a:f6:8c:4a:3f:5f:fa:8c:a4:80: e7:ea:80:c2:43:7b:f4:40:87:99:5d:58:24:b4:d8: 2e:00:6c:17:1c:38:40:a8:13:37:40:d8:9f:4d:31: 14:37:16:bb:b2:fa:bb:ac:53:27:59:dc:2c:6d:81: ce:cb:55:fb:b6:bc:14:9c:ba:64:7f:5b:ae:2e:d9: 12:0b:92:11:57:58:37:0c:cf:cc:08:a8:87:29:6f: 07:e8:8e:7d:bc:a4:51:e2:2e:bf:9e:b2:52:ca:f5: 3c:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:A9:A2:65:F0:32:34:1B:D7:F2:1D:58:88:8B:16:7E:A4:B9:AD:BC X509v3 Authority Key Identifier: keyid:C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:29:05:64:3f:7b:22:6e:76:70:97:c5:7e:98:a0:7e:8c:ee: d7:96:c0:4f:b2:15:ac:13:1d:de:67:26:ec:61:84:c4:f7:b6: 41:d3:ee:da:48:16:6d:d3:ef:3d:5f:5f:23:53:17:e9:9c:43: 51:c0:7c:42:d7:06:22:e3:95:67:9a:39:db:c3:ac:49:a8:55: 05:5e:9b:60:50:36:99:1a:5b:15:79:93:08:ee:16:bf:fd:7a: be:ef:29:d7:8f:9a:83:bc:07:64:da:f7:ee:41:99:63:bc:6d: 62:2d:85:b0:ef:51:d0:c1:1f:ac:14:37:86:68:34:88:d6:54: 2a:70:b4:93:2b:5b:b3:51:9c:50:3c:bf:cd:b7:68:1c:9b:39: 5a:2c:8d:ac:2c:8a:92:75:e4:42:8e:2a:86:25:6f:fa:55:f9: 9e:f3:55:fa:3b:a8:3e:e3:94:7d:d1:86:a0:55:b0:54:62:cd: e7:74:9f:27:32:11:83:34:08:58:a9:c5:13:62:57:f0:9b:89: 84:3a:b9:fd:8f:73:34:d2:c3:f1:77:8a:a9:7b:41:72:3d:09: 20:5b:dc:3e:32:ad:6e:8f:70:ca:d1:da:f4:f3:f4:f8:48:03: fd:30:9a:3c:0e:8e:06:af:18:cd:72:87:29:57:85:5d:51:0e: 3b:19:e8:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCRjIxMTAvBgNVBAUTKEM0NzFBNTZFRTk0RjA1QjQzN0MwOUVFRTBGNDQyMDNG QTQ1OTI3MzYwHhcNMjUwODIxMDEyOTU0WhcNMjUwODI4MDEyOTU0WjAYMRYwFAYD VQQDEw02OGE2NzY5Mi0yNzc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxhGjcDT3MWq0NVaziLUX6aS6mnTaGpC3ERlDUYzJe5D0jIL7dAcdjcHn1BUE YWpgetQ9gfhxokD1oe6JJECCDnPm72dMSWAaaZrZsOWozPIIgCzUHx/OUty3RSM2 PkRN37c9cQT60NdI4ugLxjC2+2xs30PEsKZ9Itnv6tMtxt/URe6Fe9ZVnw6lZPAg h17S/dl4EkRYJ+S9UFr2jEo/X/qMpIDn6oDCQ3v0QIeZXVgktNguAGwXHDhAqBM3 QNifTTEUNxa7svq7rFMnWdwsbYHOy1X7trwUnLpkf1uuLtkSC5IRV1g3DM/MCKiH KW8H6I59vKRR4i6/nrJSyvU8rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMWpomXw MjQb1/IdWIiLFn6kua28MB8GA1UdIwQYMBaAFMRxpW7pTwW0N8Ce7g9EID+kWSc2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0JGMi81MDkwOTZBOEY2 QzMxMUVDODMzQUVGMzlDNEY5QUUwMi94SEdsYnVsUEJiUTN3Sjd1RDBRZ1A2UlpK elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hIR2xidWxQQmJRM3dKN3VEMFFnUDZSWkp6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0JGMi81MDkwOTZBOEY2QzMxMUVDODMzQUVGMzlDNEY5QUUwMi94SEdsYnVsUEJi UTN3Sjd1RDBRZ1A2UlpKelkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsKQVkP3sibnZwl8V+mKB+jO7XlsBPshWsEx3eZybsYYTE97ZB0+7a SBZt0+89X18jUxfpnENRwHxC1wYi45Vnmjnbw6xJqFUFXptgUDaZGlsVeZMI7ha/ /Xq+7ynXj5qDvAdk2vfuQZljvG1iLYWw71HQwR+sFDeGaDSI1lQqcLSTK1uzUZxQ PL/Nt2gcmzlaLI2sLIqSdeRCjiqGJW/6Vfme81X6O6g+45R90YagVbBUYs3ndJ8n MhGDNAhYqcUTYlfwm4mEOrn9j3M00sPxd4qpe0FyPQkgW9w+Mq1uj3DK0dr08/T4 SAP9MJo8Do4GrxjNcocpV4VdUQ47Geih -----END CERTIFICATE-----Generated at Fri Aug 22 16:31:40 2025 by rpki-client