$ rpki-client -vvf rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft File: XJzBFCqQdWDNmfBuXdAt5OIulEU.mft (raw, json) Hash identifier: 8hd5worj73+s4W9SROLGmsCkk7DCBuYCVrzyftwPYq8= Subject key identifier: 64:2A:D0:9E:9D:69:E1:D3:86:E2:ED:72:94:AF:E6:93:9E:09:2A:F9 Authority key identifier: 5C:9C:C1:14:2A:90:75:60:CD:99:F0:6E:5D:D0:2D:E4:E2:2E:94:45 Certificate issuer: /CN=A911636A/serialNumber=5C9CC1142A907560CD99F06E5DD02DE4E22E9445 Certificate serial: 0222 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJzBFCqQdWDNmfBuXdAt5OIulEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft Manifest number: 0216 Signing time: Sat 23 Aug 2025 02:24:02 +0000 Manifest this update: Sat 23 Aug 2025 02:24:01 +0000 Manifest next update: Sat 30 Aug 2025 02:24:01 +0000 Files and hashes: 1: XJzBFCqQdWDNmfBuXdAt5OIulEU.crl (hash: 1rULvqr5zv7PqCxccbLyGIYQHBy4A1IvcGTVQvUTwUs=) 2: D98071A44F4411F0AF01D40FC4F9AE02.roa (hash: bPBsCe6a2VFWcNMWeHmOx+7VTXSQy1aeyYkZxcsxaxU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.crl rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJzBFCqQdWDNmfBuXdAt5OIulEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:24:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 546 (0x222) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911636A, serialNumber=5C9CC1142A907560CD99F06E5DD02DE4E22E9445 Validity Not Before: Aug 23 02:24:01 2025 GMT Not After : Aug 30 02:24:01 2025 GMT Subject: CN=68a92642-e5d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:3b:d0:98:30:f4:00:5b:b2:28:59:ad:18:98: 11:23:80:2a:13:14:af:83:45:b8:2a:3a:7a:ff:a3: f3:ad:d4:5f:2f:12:53:09:a2:bb:5e:0a:f5:4a:64: b7:83:81:99:e0:35:3a:c2:93:d6:91:9f:91:40:26: 6e:52:2c:be:af:2c:50:f3:6d:1d:24:0f:f6:71:31: ba:f3:e9:32:5e:6f:09:d1:e4:27:e2:a6:24:23:42: 43:70:ce:a5:4d:b3:3e:d5:96:a7:57:19:2a:40:70: e6:0b:ec:87:82:b8:bc:b4:19:c3:e7:fc:bb:c2:33: c2:b7:9a:ba:9b:37:85:67:71:b0:5c:95:2c:1a:7e: 81:06:ff:2a:b8:ca:49:3b:3c:14:18:66:4d:d5:37: a6:60:ab:2f:cb:79:d9:95:70:ad:fb:1d:2b:20:26: 02:d4:71:d0:6f:b5:50:ed:bc:e6:be:ac:cb:00:ff: 2a:25:d7:c0:ef:72:0e:f4:1f:6e:f1:f9:bc:11:d4: ae:ac:c0:f0:39:df:3a:f9:7e:6b:c5:01:0c:39:d5: 8b:33:4d:09:89:05:b0:7c:da:c5:02:eb:75:5f:3e: de:af:4c:d5:ee:df:e7:4e:4a:6a:dc:6d:c5:42:a1: 5c:3f:fd:88:2d:35:57:70:d1:35:0f:e0:82:d2:8f: e3:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:2A:D0:9E:9D:69:E1:D3:86:E2:ED:72:94:AF:E6:93:9E:09:2A:F9 X509v3 Authority Key Identifier: keyid:5C:9C:C1:14:2A:90:75:60:CD:99:F0:6E:5D:D0:2D:E4:E2:2E:94:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJzBFCqQdWDNmfBuXdAt5OIulEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:31:d5:5e:2f:1e:c3:e6:5b:d3:54:0e:eb:43:60:42:25:24: c5:a7:e4:8d:58:bc:2e:c1:bf:ab:73:3d:a3:ca:72:49:d7:8e: a0:cf:b7:0a:e2:55:7c:f2:54:f8:97:32:67:d3:bf:8f:01:2c: 14:58:c9:91:be:3b:92:32:53:b6:e2:ff:21:7c:0c:e0:5a:e4: 90:ae:eb:f3:34:4c:e3:4a:3c:36:e8:85:5a:5e:be:f0:ea:4a: 00:ec:4a:3e:27:52:15:3a:2d:f3:13:f8:a4:94:20:2f:ef:fa: 93:bf:6d:ca:2d:b8:f7:9e:36:70:3e:d1:c1:d7:2b:20:b0:cf: 1d:e6:1f:cc:17:1a:c8:6c:a9:0f:c6:ef:8c:28:5e:12:88:57: b6:01:67:be:c8:15:a0:e7:ad:91:67:09:46:32:63:09:dc:d4: 2a:16:80:66:96:46:36:10:b6:65:95:fb:9b:51:25:a9:4c:75: d9:8d:b8:2c:63:d7:a0:4b:bc:0a:1e:42:b5:f1:81:dd:9f:d3: 9a:76:08:a2:f0:33:e8:0c:ce:f5:23:df:36:9e:22:30:78:8e: 95:9b:af:74:38:c3:98:d7:b2:30:fb:bc:79:4d:ef:6b:71:73: 80:e1:b3:f3:8b:17:70:49:f7:fd:1d:d7:62:65:5c:86:fb:c8: 35:e2:3a:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTYzNkExMTAvBgNVBAUTKDVDOUNDMTE0MkE5MDc1NjBDRDk5RjA2RTVERDAyREU0 RTIyRTk0NDUwHhcNMjUwODIzMDIyNDAxWhcNMjUwODMwMDIyNDAxWjAYMRYwFAYD VQQDEw02OGE5MjY0Mi1lNWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyjvQmDD0AFuyKFmtGJgRI4AqExSvg0W4Kjp6/6PzrdRfLxJTCaK7Xgr1SmS3 g4GZ4DU6wpPWkZ+RQCZuUiy+ryxQ820dJA/2cTG68+kyXm8J0eQn4qYkI0JDcM6l TbM+1ZanVxkqQHDmC+yHgri8tBnD5/y7wjPCt5q6mzeFZ3GwXJUsGn6BBv8quMpJ OzwUGGZN1TemYKsvy3nZlXCt+x0rICYC1HHQb7VQ7bzmvqzLAP8qJdfA73IO9B9u 8fm8EdSurMDwOd86+X5rxQEMOdWLM00JiQWwfNrFAut1Xz7er0zV7t/nTkpq3G3F QqFcP/2ILTVXcNE1D+CC0o/jeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGQq0J6d aeHThuLtcpSv5pOeCSr5MB8GA1UdIwQYMBaAFFycwRQqkHVgzZnwbl3QLeTiLpRF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjM2QS9CMEYzM0QyQTY2 RUUxMUVEQjNCNDFBNURDNEY5QUUwMi9YSnpCRkNxUWRXRE5tZkJ1WGRBdDVPSXVs RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hKekJGQ3FRZFdETm1mQnVYZEF0NU9JdWxFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjM2QS9CMEYzM0QyQTY2RUUxMUVEQjNCNDFBNURDNEY5QUUwMi9YSnpCRkNxUWRX RE5tZkJ1WGRBdDVPSXVsRVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACMdVeLx7D5lvTVA7rQ2BCJSTFp+SNWLwuwb+rcz2jynJJ146gz7cK 4lV88lT4lzJn07+PASwUWMmRvjuSMlO24v8hfAzgWuSQruvzNEzjSjw26IVaXr7w 6koA7Eo+J1IVOi3zE/iklCAv7/qTv23KLbj3njZwPtHB1ysgsM8d5h/MFxrIbKkP xu+MKF4SiFe2AWe+yBWg562RZwlGMmMJ3NQqFoBmlkY2ELZllfubUSWpTHXZjbgs Y9egS7wKHkK18YHdn9Oadgii8DPoDM71I982niIweI6Vm690OMOY17Iw+7x5Te9r cXOA4bPzixdwSff9HddiZVyG+8g14joz -----END CERTIFICATE-----Generated at Sat Aug 23 19:15:02 2025 by rpki-client