$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.mft File: XozcAfwJtFN0mgHuUjmzXt4kvmw.mft (raw, json) Hash identifier: fnMAze9swV+4qYsLHu38Bh+slvSC+TiQcLb22PkxE+U= Subject key identifier: E2:6A:DC:8C:8A:EF:EA:C9:58:F4:82:63:22:5A:CA:9C:26:E4:E9:66 Authority key identifier: 5E:8C:DC:01:FC:09:B4:53:74:9A:01:EE:52:39:B3:5E:DE:24:BE:6C Certificate issuer: /CN=A91F4CFA/serialNumber=5E8CDC01FC09B453749A01EE5239B35EDE24BE6C Certificate serial: 0763 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XozcAfwJtFN0mgHuUjmzXt4kvmw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.mft Manifest number: 075D Signing time: Wed 20 Aug 2025 21:43:11 +0000 Manifest this update: Wed 20 Aug 2025 21:43:11 +0000 Manifest next update: Wed 27 Aug 2025 21:43:11 +0000 Files and hashes: 1: XozcAfwJtFN0mgHuUjmzXt4kvmw.crl (hash: lc1ORwrkpYfNUQMP9FGVGKxui9atHCmy3M6987ORxps=) 2: A5D573E4305A11EB921D6332C4F9AE02.roa (hash: YBEc7X7y2zLa5OdEGOrRlwoEuxYs7fU2wrxzm81YklQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.crl rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XozcAfwJtFN0mgHuUjmzXt4kvmw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 21:43:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1891 (0x763) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4CFA, serialNumber=5E8CDC01FC09B453749A01EE5239B35EDE24BE6C Validity Not Before: Aug 20 21:43:11 2025 GMT Not After : Aug 27 21:43:11 2025 GMT Subject: CN=68a6416f-437d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:6a:ee:db:82:c1:7d:99:1c:7d:68:81:76:4e: 25:cc:4f:04:4f:e1:fe:cb:ab:4d:2b:ce:25:71:66: 25:36:35:d4:b3:b5:61:d1:da:21:0f:a3:ae:e4:63: bc:6e:42:18:0d:05:31:6b:91:85:9e:7b:c4:7d:07: be:a2:ea:54:31:40:06:80:e2:16:eb:d4:dd:1e:95: 36:06:95:3f:44:8d:4e:4a:87:06:47:ff:d0:79:db: c6:c9:22:69:61:63:b7:84:f3:98:f5:4a:0e:55:dd: 7e:8c:44:96:5d:df:c9:13:92:f1:59:ae:00:25:c3: dd:e7:ca:a8:1d:7b:7f:15:f2:ba:35:ac:32:8a:f2: 05:c8:12:ee:5b:76:d5:c3:98:7c:6c:61:94:cf:aa: e3:13:43:d3:09:42:b4:1b:b4:82:71:3f:57:f2:57: 72:83:2c:5e:73:22:d1:c1:fa:87:23:2e:c5:8c:e8: c9:1d:75:3b:80:db:84:fd:95:7e:b6:4f:92:e8:aa: 79:2d:b8:0b:d6:40:62:0b:54:40:72:06:b0:b5:e9: 99:4d:21:2b:8a:57:24:d6:95:56:45:f7:3a:9e:45: 54:e3:fd:9b:ba:a2:d4:1b:e5:29:b8:1c:64:d9:d3: 65:c8:50:b8:1a:f5:ad:85:be:9b:4d:c1:41:2d:b3: a9:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:6A:DC:8C:8A:EF:EA:C9:58:F4:82:63:22:5A:CA:9C:26:E4:E9:66 X509v3 Authority Key Identifier: keyid:5E:8C:DC:01:FC:09:B4:53:74:9A:01:EE:52:39:B3:5E:DE:24:BE:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XozcAfwJtFN0mgHuUjmzXt4kvmw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:ed:1c:8c:58:c9:09:68:13:aa:9f:3f:c0:95:c2:ca:8c:69: 16:ec:68:ba:ab:a3:8a:e6:59:cc:0b:00:59:cf:79:c4:e3:91: 26:5c:ea:41:5c:bd:89:24:32:49:47:d9:59:98:98:2a:c2:c3: 57:6d:39:a4:be:bb:20:9e:01:e2:cd:55:be:99:66:8e:21:9d: f2:10:08:98:ad:af:e3:22:07:79:cb:9c:f0:5e:a9:2e:69:8b: 16:7e:af:df:97:9a:34:bb:98:58:9e:35:b1:bc:52:50:fc:64: 68:06:22:3e:a6:c0:8b:7a:a1:d1:57:10:d6:07:27:33:60:f2: 82:65:8d:38:86:52:4c:56:9a:0b:9f:30:cb:2f:a7:ca:a1:ce: f2:71:05:c1:ca:71:a4:49:fa:ae:5c:c8:06:c7:73:69:46:2c: c1:09:be:9e:57:51:1a:07:74:dd:2f:c3:41:6d:21:3f:f8:47: 40:2a:e8:73:8e:db:be:e0:cf:ad:0b:9b:2f:a9:95:2f:27:a0: d0:83:2d:14:a2:c7:04:cf:fe:e0:ed:7a:b0:ff:d8:1b:fe:e7: 23:4e:52:7b:c4:de:71:f9:ca:b9:6b:b6:26:50:47:62:30:e2: d9:24:32:74:66:4d:25:f6:8c:44:6c:12:87:1b:d4:0b:b7:7c: 0a:e7:6e:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRDRkExMTAvBgNVBAUTKDVFOENEQzAxRkMwOUI0NTM3NDlBMDFFRTUyMzlCMzVF REUyNEJFNkMwHhcNMjUwODIwMjE0MzExWhcNMjUwODI3MjE0MzExWjAYMRYwFAYD VQQDEw02OGE2NDE2Zi00MzdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApWru24LBfZkcfWiBdk4lzE8ET+H+y6tNK84lcWYlNjXUs7Vh0dohD6Ou5GO8 bkIYDQUxa5GFnnvEfQe+oupUMUAGgOIW69TdHpU2BpU/RI1OSocGR//QedvGySJp YWO3hPOY9UoOVd1+jESWXd/JE5LxWa4AJcPd58qoHXt/FfK6NawyivIFyBLuW3bV w5h8bGGUz6rjE0PTCUK0G7SCcT9X8ldygyxecyLRwfqHIy7FjOjJHXU7gNuE/ZV+ tk+S6Kp5LbgL1kBiC1RAcgawtemZTSErilck1pVWRfc6nkVU4/2buqLUG+UpuBxk 2dNlyFC4GvWthb6bTcFBLbOp/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOJq3IyK 7+rJWPSCYyJaypwm5OlmMB8GA1UdIwQYMBaAFF6M3AH8CbRTdJoB7lI5s17eJL5s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNENGQS8xQzJGQUIyRTMw NTkxMUVCQjgzNUMxMzBDNEY5QUUwMi9Yb3pjQWZ3SnRGTjBtZ0h1VWptelh0NGt2 bXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hvemNBZndKdEZOMG1nSHVVam16WHQ0a3Ztdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NENGQS8xQzJGQUIyRTMwNTkxMUVCQjgzNUMxMzBDNEY5QUUwMi9Yb3pjQWZ3SnRG TjBtZ0h1VWptelh0NGt2bXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA17RyMWMkJaBOqnz/AlcLKjGkW7Gi6q6OK5lnMCwBZz3nE45EmXOpB XL2JJDJJR9lZmJgqwsNXbTmkvrsgngHizVW+mWaOIZ3yEAiYra/jIgd5y5zwXqku aYsWfq/fl5o0u5hYnjWxvFJQ/GRoBiI+psCLeqHRVxDWByczYPKCZY04hlJMVpoL nzDLL6fKoc7ycQXBynGkSfquXMgGx3NpRizBCb6eV1EaB3TdL8NBbSE/+EdAKuhz jtu+4M+tC5svqZUvJ6DQgy0UoscEz/7g7Xqw/9gb/ucjTlJ7xN5x+cq5a7YmUEdi MOLZJDJ0Zk0l9oxEbBKHG9QLt3wK527U -----END CERTIFICATE-----Generated at Fri Aug 22 16:38:24 2025 by rpki-client