$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft File: xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft (raw, json) Hash identifier: dgygsirnXgd2Zb/JadXESQiEqa4dNYyPLLYxuglYUUY= Subject key identifier: 8A:B1:69:CB:7C:5D:EC:3E:AB:21:62:D8:84:2C:76:3B:3F:72:55:2B Authority key identifier: C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED Certificate issuer: /CN=A91EBFAE/serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Certificate serial: 253B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft Manifest number: 253B Signing time: Sat 06 Sep 2025 14:32:52 +0000 Manifest this update: Sat 06 Sep 2025 14:32:52 +0000 Manifest next update: Sat 13 Sep 2025 14:32:52 +0000 Files and hashes: 1: xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl (hash: 0oxtK2SM08Hmqv9mwOIoAKnrzkUrJAB0ttxWKz3W4sw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:32:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9531 (0x253b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFAE, serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Validity Not Before: Sep 6 14:32:52 2025 GMT Not After : Sep 13 14:32:52 2025 GMT Subject: CN=68bc4614-15e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:2e:54:2e:2d:73:94:04:bd:7b:07:18:33:40: ac:a8:b4:58:ab:80:fa:43:f9:03:8d:ba:b1:fa:13: 06:14:fb:9c:5c:96:2a:d5:46:c3:10:38:db:45:08: 02:f2:06:6e:c1:19:d0:4c:20:2d:f1:49:0c:f9:44: 69:b0:2c:b2:30:77:7d:e0:a5:bf:6e:36:8f:57:09: c0:96:33:f9:2d:07:04:a1:54:b3:84:d2:d5:f9:db: 32:73:db:d0:08:b7:a4:2b:c0:61:c7:05:c8:8e:f3: 0b:05:f1:7e:1f:48:08:2e:fb:ff:6e:7d:70:4c:28: 47:fc:0b:eb:96:68:6a:1f:07:c1:10:60:69:e3:21: b2:57:5f:8b:01:47:f2:91:94:55:1f:ba:f3:28:6a: 65:01:0e:a1:cc:f8:25:3c:97:0a:f7:d5:0e:73:84: 8a:13:1b:fe:80:90:f9:68:22:74:12:2a:bd:88:9a: 65:4e:37:4f:f6:7b:e6:2a:9d:b1:a3:b9:31:24:9d: 47:0c:b8:90:20:a4:e0:06:b3:f4:bf:9c:95:87:fc: ea:ca:49:b5:41:77:78:4e:37:a0:fb:10:eb:a6:78: 36:19:39:1c:b9:bd:6f:bb:90:5a:c4:af:08:0c:7a: e8:95:37:cf:bf:37:43:4b:87:6b:0f:93:24:e4:5a: b9:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:B1:69:CB:7C:5D:EC:3E:AB:21:62:D8:84:2C:76:3B:3F:72:55:2B X509v3 Authority Key Identifier: keyid:C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:e7:9f:90:2a:3d:1d:39:a4:80:d4:c6:1f:f3:b6:de:00:9d: 07:84:17:67:a2:3a:5b:65:bb:6c:1a:25:15:a1:ac:eb:96:f4: 96:62:46:09:aa:33:94:e9:df:35:5a:71:26:2b:1c:68:19:59: 00:bc:bb:01:ea:11:7f:f3:28:75:48:c3:58:30:4c:ca:b6:8d: 25:55:12:c2:01:f4:72:bb:c6:b5:de:1f:58:35:58:e3:b2:12: 12:c8:57:48:53:75:3a:14:ec:cd:99:7b:f0:c9:fa:73:cf:ba: 75:84:86:47:4b:2f:cf:0d:b8:fd:0d:16:d7:d0:cd:29:3a:ad: 3c:cf:80:7d:c4:26:b6:f6:1c:28:64:1c:e8:8f:2a:19:3c:26: f8:ef:04:59:89:85:d8:50:22:34:36:e7:5e:bf:ce:26:2a:d6: fc:25:d5:27:16:73:e1:1f:c6:fc:f9:57:9b:ba:c6:50:58:f9: 6f:bc:fb:92:fa:68:b6:53:4c:49:d7:30:d2:67:92:d0:b1:00: 14:83:e2:c8:55:89:9e:1c:58:de:08:ee:28:e9:e0:c7:57:ab: 9d:d9:28:de:14:bf:d9:22:60:3a:4c:79:2d:ab:b6:84:07:26: c7:f4:23:cd:a9:ec:52:e3:10:50:37:23:9a:ce:85:0f:7c:90: e6:35:d5:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJTswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQUUxMTAvBgNVBAUTKEM2NTNFRjc3QjE5RDEwOENGNUM1OUFFMTgwMUYwMjAw M0FCNTVFRUQwHhcNMjUwOTA2MTQzMjUyWhcNMjUwOTEzMTQzMjUyWjAYMRYwFAYD VQQDEw02OGJjNDYxNC0xNWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4y5ULi1zlAS9ewcYM0CsqLRYq4D6Q/kDjbqx+hMGFPucXJYq1UbDEDjbRQgC 8gZuwRnQTCAt8UkM+URpsCyyMHd94KW/bjaPVwnAljP5LQcEoVSzhNLV+dsyc9vQ CLekK8BhxwXIjvMLBfF+H0gILvv/bn1wTChH/AvrlmhqHwfBEGBp4yGyV1+LAUfy kZRVH7rzKGplAQ6hzPglPJcK99UOc4SKExv+gJD5aCJ0Eiq9iJplTjdP9nvmKp2x o7kxJJ1HDLiQIKTgBrP0v5yVh/zqykm1QXd4Tjeg+xDrpng2GTkcub1vu5BaxK8I DHrolTfPvzdDS4drD5Mk5Fq51wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIqxact8 Xew+qyFi2IQsdjs/clUrMB8GA1UdIwQYMBaAFMZT73exnRCM9cWa4YAfAgA6tV7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZBRS9FRDMyNDQwQTI5 MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJejF4WnJoZ0I4Q0FEcTFY dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hsUHZkN0dkRUl6MXhacmhnQjhDQURxMVh1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZBRS9FRDMyNDQwQTI5MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJ ejF4WnJoZ0I4Q0FEcTFYdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA855+QKj0dOaSA1MYf87beAJ0HhBdnojpbZbtsGiUVoazrlvSWYkYJ qjOU6d81WnEmKxxoGVkAvLsB6hF/8yh1SMNYMEzKto0lVRLCAfRyu8a13h9YNVjj shISyFdIU3U6FOzNmXvwyfpzz7p1hIZHSy/PDbj9DRbX0M0pOq08z4B9xCa29hwo ZBzojyoZPCb47wRZiYXYUCI0Nudev84mKtb8JdUnFnPhH8b8+VebusZQWPlvvPuS +mi2U0xJ1zDSZ5LQsQAUg+LIVYmeHFjeCO4o6eDHV6ud2SjeFL/ZImA6THktq7aE BybH9CPNqexS4xBQNyOazoUPfJDmNdXy -----END CERTIFICATE-----Generated at Sat Sep 6 21:12:14 2025 by rpki-client