$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft File: xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft (raw, json) Hash identifier: 8I/Vq4jaoTx31o99ftbKvEAVcJpiKmBNcE9SWjzN9kc= Subject key identifier: 03:E0:E3:0C:EB:2F:44:66:22:27:46:C4:01:66:5A:CE:F4:AF:FE:4A Authority key identifier: C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED Certificate issuer: /CN=A91EBFAE/serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Certificate serial: 2522 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft Manifest number: 2522 Signing time: Sun 20 Jul 2025 14:32:49 +0000 Manifest this update: Sun 20 Jul 2025 14:32:48 +0000 Manifest next update: Sun 27 Jul 2025 14:32:48 +0000 Files and hashes: 1: xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl (hash: mjpSF9b/1YjISE68a2FE3BcUFg2eBqnCnVEgifwQlNA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:32:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9506 (0x2522) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFAE, serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Validity Not Before: Jul 20 14:32:48 2025 GMT Not After : Jul 27 14:32:48 2025 GMT Subject: CN=687cfe10-391c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ad:25:77:d8:c5:11:e7:62:d3:8d:bf:f5:7f: 5a:c5:45:9f:b9:bc:96:e5:85:9d:1a:bc:ed:22:f8: 62:ec:6a:98:44:e5:fc:22:7e:cf:e3:86:e6:75:9f: 99:b8:46:7c:5b:5f:1f:42:ab:0c:cc:8c:2c:2f:56: 13:2d:9d:02:f9:b6:46:81:2a:a1:e6:66:7f:32:41: 2e:ef:e0:e4:54:7f:06:0f:80:49:5a:b1:9c:7e:d7: f6:03:15:2a:2c:75:6e:67:6b:5c:23:fd:e2:8e:5c: e1:29:94:cb:ee:12:4b:2a:e3:bb:0b:dd:60:ff:9b: f0:c6:42:9c:3c:6f:2c:58:ae:db:b4:7d:08:a1:18: 03:29:00:c7:87:1f:ec:75:69:57:7a:2e:04:dd:f3: d3:11:a7:a3:9b:52:82:1b:8f:a6:ed:7b:aa:80:3c: 27:8d:00:79:7e:ff:2b:5b:22:98:82:9c:2a:a6:30: 3b:c2:ae:53:19:12:1c:b4:cd:c8:2e:c3:eb:2c:22: 47:e3:68:74:1f:ee:e2:3b:a9:43:2a:40:7b:91:df: 01:e4:ae:c8:19:a9:66:12:01:3d:0b:49:31:4c:e8: ef:cf:c0:7d:97:66:95:d7:cc:29:05:bf:88:7d:53: 98:ea:c5:95:aa:0e:e7:87:63:e8:34:d0:aa:2a:5f: b1:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:E0:E3:0C:EB:2F:44:66:22:27:46:C4:01:66:5A:CE:F4:AF:FE:4A X509v3 Authority Key Identifier: keyid:C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:d7:fd:5a:31:f6:3b:ec:93:93:f9:9e:58:ec:be:2a:89:d5: 7d:4f:03:b0:b2:16:ec:aa:30:7b:b6:98:3a:a9:b2:2e:c3:43: e8:e7:fa:0c:b6:4e:18:4a:23:5a:e5:1d:8c:da:61:d0:6e:eb: 7f:f8:39:6f:3a:aa:f3:fa:b4:5d:bd:e7:15:76:c4:22:56:6b: a4:00:e4:e1:8d:fb:df:65:0e:a7:26:19:b8:2d:ad:e6:0a:bb: 1d:07:5f:4e:c3:1c:90:a9:e7:a2:9e:4f:43:5f:fe:65:43:69: de:05:07:ad:8f:11:07:7b:76:10:52:c3:de:dd:e5:73:5e:61: 47:a8:c8:a2:a8:60:2f:d2:0d:90:23:6c:f8:7b:fa:4f:6f:5e: 23:f4:cd:1f:bb:12:37:fc:cf:4e:91:04:df:96:db:83:51:4a: f5:25:f5:cc:aa:e5:14:a2:dc:b2:5c:44:b3:0f:a8:55:75:94: 6b:c2:6e:08:7c:5f:43:d5:8f:83:28:e7:00:29:57:10:0f:56: ec:b3:10:84:3e:ba:f5:3b:d5:72:8c:ff:dc:20:cd:66:27:32: 40:76:ff:76:66:13:ff:a8:cf:77:6c:29:02:81:d4:fb:30:75: 92:57:a7:14:12:e1:43:90:25:f7:92:04:98:d5:5d:4e:4c:52: 1f:f4:d1:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJSIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQUUxMTAvBgNVBAUTKEM2NTNFRjc3QjE5RDEwOENGNUM1OUFFMTgwMUYwMjAw M0FCNTVFRUQwHhcNMjUwNzIwMTQzMjQ4WhcNMjUwNzI3MTQzMjQ4WjAYMRYwFAYD VQQDEw02ODdjZmUxMC0zOTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv60ld9jFEedi042/9X9axUWfubyW5YWdGrztIvhi7GqYROX8In7P44bmdZ+Z uEZ8W18fQqsMzIwsL1YTLZ0C+bZGgSqh5mZ/MkEu7+DkVH8GD4BJWrGcftf2AxUq LHVuZ2tcI/3ijlzhKZTL7hJLKuO7C91g/5vwxkKcPG8sWK7btH0IoRgDKQDHhx/s dWlXei4E3fPTEaejm1KCG4+m7XuqgDwnjQB5fv8rWyKYgpwqpjA7wq5TGRIctM3I LsPrLCJH42h0H+7iO6lDKkB7kd8B5K7IGalmEgE9C0kxTOjvz8B9l2aV18wpBb+I fVOY6sWVqg7nh2PoNNCqKl+xYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAPg4wzr L0RmIidGxAFmWs70r/5KMB8GA1UdIwQYMBaAFMZT73exnRCM9cWa4YAfAgA6tV7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZBRS9FRDMyNDQwQTI5 MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJejF4WnJoZ0I4Q0FEcTFY dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hsUHZkN0dkRUl6MXhacmhnQjhDQURxMVh1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZBRS9FRDMyNDQwQTI5MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJ ejF4WnJoZ0I4Q0FEcTFYdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCH1/1aMfY77JOT+Z5Y7L4qidV9TwOwshbsqjB7tpg6qbIuw0Po5/oM tk4YSiNa5R2M2mHQbut/+DlvOqrz+rRdvecVdsQiVmukAOThjfvfZQ6nJhm4La3m CrsdB19OwxyQqeeink9DX/5lQ2neBQetjxEHe3YQUsPe3eVzXmFHqMiiqGAv0g2Q I2z4e/pPb14j9M0fuxI3/M9OkQTfltuDUUr1JfXMquUUotyyXESzD6hVdZRrwm4I fF9D1Y+DKOcAKVcQD1bssxCEPrr1O9VyjP/cIM1mJzJAdv92ZhP/qM93bCkCgdT7 MHWSV6cUEuFDkCX3kgSY1V1OTFIf9NHJ -----END CERTIFICATE-----Generated at Sun Jul 20 20:31:58 2025 by rpki-client