$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft File: XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft (raw, json) Hash identifier: J67CvmDS2+T8vxTIGtLbk2INOcY4K8D1+nMOonkWqfs= Subject key identifier: 54:98:AB:01:56:23:C4:79:38:96:56:AA:01:C1:2E:30:48:27:89:24 Authority key identifier: 5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F Certificate issuer: /CN=A91F0C73/serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F Certificate serial: 02F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft Manifest number: 02EF Signing time: Thu 21 Aug 2025 01:27:43 +0000 Manifest this update: Thu 21 Aug 2025 01:27:42 +0000 Manifest next update: Thu 28 Aug 2025 01:27:42 +0000 Files and hashes: 1: XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl (hash: XlvBazA5GJEp76Yrv3ixifb6mSTDV68l0PkjGuNonI8=) 2: FA3FF1D4F13D11EC9B673A2AC4F9AE02.roa (hash: nZ6WbCIcnJ/FBBpCbBgjvy3HpKuHRhBq1WSGZ+ZBH8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 01:27:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 757 (0x2f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0C73, serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F Validity Not Before: Aug 21 01:27:42 2025 GMT Not After : Aug 28 01:27:42 2025 GMT Subject: CN=68a6760e-bbb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:2c:b7:1b:ec:a9:9a:a4:1a:e0:25:5d:ba:eb: 7c:1a:40:8d:f8:3a:4c:d2:48:22:13:ea:60:a9:bb: 9f:86:ca:d1:50:ae:4a:bc:7d:ae:a0:55:31:e3:54: 60:f4:41:07:61:75:74:0c:24:c5:2b:b0:3b:78:79: 23:a0:45:33:31:36:9c:93:8a:cd:85:6e:93:d9:66: fa:d4:73:11:81:2c:0e:b9:a9:8a:ee:3c:f8:c7:91: c1:6e:5d:b3:e0:34:99:a0:c5:ed:11:88:18:c7:89: 07:75:32:59:16:7d:c4:86:86:51:86:d5:b3:e0:40: 7b:a8:6c:31:f8:dd:0d:c9:c9:c4:fb:1e:2a:22:ab: 26:06:45:43:f6:a8:a7:72:a1:e8:83:aa:f4:5a:aa: 2f:04:94:05:3a:39:bc:d8:6d:39:7c:93:05:ff:6a: 50:f3:ae:7e:0f:52:19:29:4d:ce:2a:83:45:dc:c8: 08:f2:79:3d:ed:72:c3:ab:43:b6:b4:ac:31:f7:3b: 40:08:21:f6:af:52:ea:f3:a9:36:0f:0e:26:a0:dc: de:93:d8:b4:42:28:25:e7:cd:2d:22:36:25:39:47: e2:2b:b5:8c:84:0a:cb:7c:15:53:84:eb:b2:8f:bf: 6a:2e:95:5e:bf:2a:dc:24:bb:68:06:27:da:d2:2f: 22:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:98:AB:01:56:23:C4:79:38:96:56:AA:01:C1:2E:30:48:27:89:24 X509v3 Authority Key Identifier: keyid:5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:08:99:8d:70:83:00:5d:c9:7c:37:50:d5:32:1d:03:4c:3a: 6f:4a:69:b8:73:f4:4d:ed:e5:05:ac:19:2d:f7:98:4b:8a:58: 4d:f9:6b:be:b3:a6:d3:78:ba:ab:39:e5:0e:47:57:c8:46:04: 54:aa:42:4e:d2:9f:2c:c7:b9:90:dd:71:ea:f8:20:ef:c1:b7: 14:00:77:00:c5:1a:02:b8:0d:2d:4e:33:89:c9:9b:a7:ae:82: 1c:7e:5b:12:3c:d3:c9:47:26:1d:98:eb:e7:99:c7:75:18:7f: 6f:4e:54:a0:c9:40:a7:bd:80:98:d1:21:a2:d9:78:bb:82:f4: 04:6c:90:46:55:b3:1e:62:6d:4a:e0:80:63:85:38:ab:48:5c: 2f:1e:6d:b3:78:2b:04:df:13:8f:84:b6:4e:04:65:d2:b6:ff: d1:d8:13:52:47:6b:31:5c:b8:29:ed:35:df:a7:25:b0:26:e3: fa:90:c3:b4:9e:b2:50:f1:f0:01:08:94:fc:f6:9d:3e:fc:6f: 28:09:f1:26:30:d1:8b:ff:98:78:bf:95:68:93:bf:7f:02:98: e8:94:ab:9b:82:16:12:55:8f:5e:48:b3:fd:b5:cd:4f:9c:99: 0a:81:a4:5d:41:4d:30:bb:a5:ab:2a:9c:3f:0e:9d:5f:6e:e7: 60:13:8f:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBDNzMxMTAvBgNVBAUTKDVFNzA5OTQ5QkFBNDBBN0Q0N0Q0NEQyMTE2OTBCMzc3 RTA1MUM0NUYwHhcNMjUwODIxMDEyNzQyWhcNMjUwODI4MDEyNzQyWjAYMRYwFAYD VQQDEw02OGE2NzYwZS1iYmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmCy3G+ypmqQa4CVduut8GkCN+DpM0kgiE+pgqbufhsrRUK5KvH2uoFUx41Rg 9EEHYXV0DCTFK7A7eHkjoEUzMTack4rNhW6T2Wb61HMRgSwOuamK7jz4x5HBbl2z 4DSZoMXtEYgYx4kHdTJZFn3EhoZRhtWz4EB7qGwx+N0NycnE+x4qIqsmBkVD9qin cqHog6r0WqovBJQFOjm82G05fJMF/2pQ865+D1IZKU3OKoNF3MgI8nk97XLDq0O2 tKwx9ztACCH2r1Lq86k2Dw4moNzek9i0Qigl580tIjYlOUfiK7WMhArLfBVThOuy j79qLpVevyrcJLtoBifa0i8iNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFSYqwFW I8R5OJZWqgHBLjBIJ4kkMB8GA1UdIwQYMBaAFF5wmUm6pAp9R9RNIRaQs3fgUcRf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEM3My84MjE0NTdEMkYx MzcxMUVDOTdGNzRGMENDNEY5QUUwMi9YbkNaU2Jxa0NuMUgxRTBoRnBDemQtQlJ4 RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huQ1pTYnFrQ24xSDFFMGhGcEN6ZC1CUnhGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEM3My84MjE0NTdEMkYxMzcxMUVDOTdGNzRGMENDNEY5QUUwMi9YbkNaU2Jxa0Nu MUgxRTBoRnBDemQtQlJ4RjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHCJmNcIMAXcl8N1DVMh0DTDpvSmm4c/RN7eUFrBkt95hLilhN+Wu+ s6bTeLqrOeUOR1fIRgRUqkJO0p8sx7mQ3XHq+CDvwbcUAHcAxRoCuA0tTjOJyZun roIcflsSPNPJRyYdmOvnmcd1GH9vTlSgyUCnvYCY0SGi2Xi7gvQEbJBGVbMeYm1K 4IBjhTirSFwvHm2zeCsE3xOPhLZOBGXStv/R2BNSR2sxXLgp7TXfpyWwJuP6kMO0 nrJQ8fABCJT89p0+/G8oCfEmMNGL/5h4v5Vok79/ApjolKubghYSVY9eSLP9tc1P nJkKgaRdQU0wu6WrKpw/Dp1fbudgE48H -----END CERTIFICATE-----Generated at Thu Aug 21 16:19:02 2025 by rpki-client