$ rpki-client -vvf rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft File: XDlbosoKv2WIhyaHTHgktpt4mZU.mft (raw, json) Hash identifier: 52qXCUss1liwb6nd271jtSP9G3QjhnO8FA4buAGyOns= Subject key identifier: 22:0F:50:BD:CF:E5:D7:35:87:A8:D5:3B:2C:3F:67:C2:D2:5A:17:10 Authority key identifier: 5C:39:5B:A2:CA:0A:BF:65:88:87:26:87:4C:78:24:B6:9B:78:99:95 Certificate issuer: /CN=A91E66E5/serialNumber=5C395BA2CA0ABF65888726874C7824B69B789995 Certificate serial: 0E79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft Manifest number: 0E6C Signing time: Thu 04 Sep 2025 17:53:50 +0000 Manifest this update: Thu 04 Sep 2025 17:53:49 +0000 Manifest next update: Thu 11 Sep 2025 17:53:49 +0000 Files and hashes: 1: XDlbosoKv2WIhyaHTHgktpt4mZU.crl (hash: hNxCYGLSrHQco9xYuwZQ4/R14JJuiemRhjSQ/hfEMgQ=) 2: AECDA1B0448F11EDACC30815C4F9AE02.roa (hash: xirIMjuaHIPZj6jpdJVKaFKfHlsVW3gI4qvEhU2Je88=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.crl rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 17:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3705 (0xe79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E66E5, serialNumber=5C395BA2CA0ABF65888726874C7824B69B789995 Validity Not Before: Sep 4 17:53:49 2025 GMT Not After : Sep 11 17:53:49 2025 GMT Subject: CN=68b9d22d-de6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:47:a8:ac:d3:64:cb:c6:6d:d7:ad:d6:24:2b: f6:3c:82:c5:50:ea:fe:b8:b8:69:93:3a:bf:b0:b1: 64:0b:df:c8:d6:c4:92:44:e2:1f:3e:4f:79:4c:e9: e1:db:83:e3:f2:33:8a:97:e1:95:53:87:29:cf:9e: 74:fe:02:d9:85:be:ff:bb:8e:43:63:75:02:47:36: bf:e3:54:2a:b6:ce:fd:85:87:9b:5d:ff:11:ca:8a: c6:92:ab:91:d4:8c:90:6a:8c:65:b7:04:95:22:61: df:c2:83:fc:7c:77:a3:a2:10:df:e4:a1:c9:b5:b5: 24:20:c6:f4:1d:3f:04:05:b6:d5:1e:75:03:d0:4f: f6:fc:54:35:09:29:76:e6:5f:19:26:2b:6e:5c:89: 6e:8f:2b:27:47:c0:bd:b2:37:41:8d:d7:b6:94:38: 69:0c:a5:85:60:0c:f8:80:38:e7:88:e2:30:ec:d6: 1f:fa:ac:c5:56:9e:3c:04:b7:8d:ce:3a:eb:8d:7c: 9f:6e:1c:6a:3c:41:90:f9:fe:c2:24:70:0e:ad:3a: 44:23:3c:aa:a5:bc:0e:d9:08:93:c8:08:22:c9:50: 01:b9:8e:38:7f:df:b2:14:ed:af:86:71:aa:eb:57: 21:1a:50:d6:cf:d4:12:af:6b:a4:c8:d1:36:b3:96: 4d:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:0F:50:BD:CF:E5:D7:35:87:A8:D5:3B:2C:3F:67:C2:D2:5A:17:10 X509v3 Authority Key Identifier: keyid:5C:39:5B:A2:CA:0A:BF:65:88:87:26:87:4C:78:24:B6:9B:78:99:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:cc:03:69:ea:58:60:92:f5:eb:3c:2b:f9:08:01:e6:87:94: f8:de:ff:3c:7b:3f:4e:c3:3d:44:97:dd:c5:da:d6:70:83:65: 93:0a:aa:85:55:8e:c0:5a:9c:57:18:fc:a5:c0:3b:d2:d5:b3: 46:df:90:9f:c0:53:16:98:03:5f:b8:fd:69:fe:f0:ce:bb:5a: 33:8d:01:cb:ed:b2:47:a1:cc:80:f5:f3:7a:19:d6:aa:9f:e0: 7e:5c:0e:41:23:de:cc:82:85:f9:07:70:13:25:45:5e:6e:25: de:39:87:a9:2b:52:21:70:0f:67:e1:24:94:50:08:61:6f:b9: 0f:37:59:15:bf:86:43:c1:f9:e0:3e:d3:f4:7b:e9:ce:66:0b: 80:92:44:c6:03:31:b6:98:85:ec:23:fe:0f:fd:0d:88:c7:22: 4d:c3:52:b8:f3:af:04:9f:6d:00:d7:a8:98:95:4c:5e:09:ab: 4d:5e:44:4d:fd:e7:f4:fd:1c:1d:7a:af:8a:25:a2:09:64:fe: 94:66:24:1d:a2:f9:a9:f0:18:bf:e7:19:ca:7b:12:a8:3b:7e: 9a:c5:a3:30:a3:59:b3:d3:f2:e9:99:19:c8:31:fa:0b:24:ed: 23:c3:c5:a3:a7:d1:b8:9b:58:7d:42:a3:ad:c0:37:f0:ca:55: 89:a3:5a:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDnkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY2RTUxMTAvBgNVBAUTKDVDMzk1QkEyQ0EwQUJGNjU4ODg3MjY4NzRDNzgyNEI2 OUI3ODk5OTUwHhcNMjUwOTA0MTc1MzQ5WhcNMjUwOTExMTc1MzQ5WjAYMRYwFAYD VQQDEw02OGI5ZDIyZC1kZTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2UeorNNky8Zt163WJCv2PILFUOr+uLhpkzq/sLFkC9/I1sSSROIfPk95TOnh 24Pj8jOKl+GVU4cpz550/gLZhb7/u45DY3UCRza/41Qqts79hYebXf8RyorGkquR 1IyQaoxltwSVImHfwoP8fHejohDf5KHJtbUkIMb0HT8EBbbVHnUD0E/2/FQ1CSl2 5l8ZJituXIlujysnR8C9sjdBjde2lDhpDKWFYAz4gDjniOIw7NYf+qzFVp48BLeN zjrrjXyfbhxqPEGQ+f7CJHAOrTpEIzyqpbwO2QiTyAgiyVABuY44f9+yFO2vhnGq 61chGlDWz9QSr2ukyNE2s5ZNZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCIPUL3P 5dc1h6jVOyw/Z8LSWhcQMB8GA1UdIwQYMBaAFFw5W6LKCr9liIcmh0x4JLabeJmV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjZFNS81NjQzMDU4NkEy NzUxMUU5QTc0RDRFODJDNEY5QUUwMi9YRGxib3NvS3YyV0loeWFIVEhna3RwdDRt WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEbGJvc29LdjJXSWh5YUhUSGdrdHB0NG1aVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjZFNS81NjQzMDU4NkEyNzUxMUU5QTc0RDRFODJDNEY5QUUwMi9YRGxib3NvS3Yy V0loeWFIVEhna3RwdDRtWlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAczANp6lhgkvXrPCv5CAHmh5T43v88ez9Owz1El93F2tZwg2WTCqqF VY7AWpxXGPylwDvS1bNG35CfwFMWmANfuP1p/vDOu1ozjQHL7bJHocyA9fN6Gdaq n+B+XA5BI97MgoX5B3ATJUVebiXeOYepK1IhcA9n4SSUUAhhb7kPN1kVv4ZDwfng PtP0e+nOZguAkkTGAzG2mIXsI/4P/Q2IxyJNw1K4868En20A16iYlUxeCatNXkRN /ef0/Rwdeq+KJaIJZP6UZiQdovmp8Bi/5xnKexKoO36axaMwo1mz0/LpmRnIMfoL JO0jw8Wjp9G4m1h9QqOtwDfwylWJo1rm -----END CERTIFICATE-----Generated at Fri Sep 5 18:43:38 2025 by rpki-client