$ rpki-client -vvf rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft File: XZRtT0edN7zhcAywut1RosPfYg8.mft (raw, json) Hash identifier: 8qF/zPNi9lWw6DkWywBeE1XZ4Ut9P8oRbN2IoR2c1RY= Subject key identifier: DA:87:B8:F0:84:2B:CC:E7:DA:F0:56:01:17:4B:05:E8:3D:94:0D:A1 Authority key identifier: 5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F Certificate issuer: /CN=A9152787/serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Certificate serial: A1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft Manifest number: 9F Signing time: Sat 23 Aug 2025 06:32:00 +0000 Manifest this update: Sat 23 Aug 2025 06:31:59 +0000 Manifest next update: Sat 30 Aug 2025 06:31:59 +0000 Files and hashes: 1: XZRtT0edN7zhcAywut1RosPfYg8.crl (hash: qZoCz6iMT2qdRizRkd3Yu/7LE5pCugwyE8gUHE9bkzo=) 2: CB24F37C033711F0B76A8520C4F9AE02.roa (hash: 086QtTZ7qGEzYPBYkqpmBPb1qovlHlBpqUB0MoAAlkQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 161 (0xa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152787, serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Validity Not Before: Aug 23 06:31:59 2025 GMT Not After : Aug 30 06:31:59 2025 GMT Subject: CN=68a96060-a00a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:bd:10:39:4a:5b:c9:92:12:9d:12:c6:b9:be: 53:eb:3f:48:1b:e3:aa:e2:0a:72:78:b1:5c:8a:4c: c8:dc:b7:e6:1e:36:03:3c:99:bd:64:0e:4c:d5:16: b5:df:f9:58:7f:fb:8f:21:76:22:a8:05:cd:37:8b: 81:50:3c:36:f7:1d:82:31:8f:58:58:8b:97:be:91: f5:42:40:5d:18:55:ad:de:61:05:92:f8:2c:08:5c: ac:80:ac:12:d5:fc:c4:2f:ec:c9:3b:64:55:71:0f: b6:e0:a3:f3:f1:5e:36:1c:1a:93:c7:83:10:21:ce: 2a:e0:0f:04:12:1c:a5:ab:ce:f1:86:27:20:0d:b8: 83:ee:37:7b:8b:37:91:eb:38:2d:ff:4d:db:80:f6: 3d:9e:b2:be:f1:9c:10:42:2b:3b:d8:00:d5:bf:61: d0:60:e6:d5:af:f6:31:c6:61:e4:e9:0d:be:3f:45: 33:93:e8:79:e4:d3:c5:cb:8a:7b:29:ea:67:e8:a3: a6:7f:11:98:44:6f:80:d2:88:27:d7:29:d9:84:4d: c2:90:3b:4f:b7:93:44:1d:3a:dd:55:b8:0d:31:79: 1f:ea:7f:f7:96:da:9e:42:31:d4:37:29:d2:64:a1: ac:37:b7:c4:eb:9d:e7:15:31:6f:7f:22:da:ae:49: 8d:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:87:B8:F0:84:2B:CC:E7:DA:F0:56:01:17:4B:05:E8:3D:94:0D:A1 X509v3 Authority Key Identifier: keyid:5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:fd:08:9b:5b:ef:6b:21:d6:c0:cd:43:1d:71:99:6e:94:b2: 52:31:fc:8f:6b:6d:13:ab:0f:fe:af:84:13:51:48:52:b3:56: 31:5e:ad:92:9b:a3:ad:e1:90:a8:5f:a0:3d:8d:08:7c:84:50: 7d:68:5b:96:fc:66:f6:fd:8a:d9:1b:b0:0f:5f:f0:95:89:39: 35:9a:c4:19:4a:ec:55:73:6c:d0:f6:d2:cc:da:1c:fe:f2:6c: 66:ca:02:d3:72:23:d9:d9:d9:61:26:f5:32:b3:eb:85:f6:98: f8:ff:26:82:4d:29:51:cf:a1:51:94:f0:c7:39:75:86:33:79: d1:92:f1:16:b9:c9:4c:41:66:af:77:e7:95:f8:34:6e:ef:b2: cb:60:ee:2c:f5:27:0f:a9:f6:e1:92:62:ea:22:b7:81:d1:ba: 21:30:b6:5a:e0:d5:8a:03:a9:8b:9b:4c:37:99:c4:7c:bd:33: 0f:d2:01:d7:2b:50:54:a3:5b:e3:62:45:bb:29:eb:51:c1:69: 29:05:a6:b8:8f:07:40:ad:8a:f3:b6:fb:44:ab:a8:fc:b0:a1: d9:61:8f:60:ae:c8:29:b7:d1:a2:eb:2a:8f:59:9f:42:09:89: 02:bd:17:a3:9e:c6:4e:6a:f2:b8:ba:38:db:98:89:18:9f:86: aa:67:d6:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI3ODcxMTAvBgNVBAUTKDVEOTQ2RDRGNDc5RDM3QkNFMTcwMENCMEJBREQ1MUEy QzNERjYyMEYwHhcNMjUwODIzMDYzMTU5WhcNMjUwODMwMDYzMTU5WjAYMRYwFAYD VQQDEw02OGE5NjA2MC1hMDBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7L0QOUpbyZISnRLGub5T6z9IG+Oq4gpyeLFcikzI3LfmHjYDPJm9ZA5M1Ra1 3/lYf/uPIXYiqAXNN4uBUDw29x2CMY9YWIuXvpH1QkBdGFWt3mEFkvgsCFysgKwS 1fzEL+zJO2RVcQ+24KPz8V42HBqTx4MQIc4q4A8EEhylq87xhicgDbiD7jd7izeR 6zgt/03bgPY9nrK+8ZwQQis72ADVv2HQYObVr/YxxmHk6Q2+P0Uzk+h55NPFy4p7 Kepn6KOmfxGYRG+A0ogn1ynZhE3CkDtPt5NEHTrdVbgNMXkf6n/3ltqeQjHUNynS ZKGsN7fE653nFTFvfyLarkmNLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNqHuPCE K8zn2vBWARdLBeg9lA2hMB8GA1UdIwQYMBaAFF2UbU9HnTe84XAMsLrdUaLD32IP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Mjc4Ny8yMjg2NTYyQThG NzkxMUVGOTJBQzc4MUVDNEY5QUUwMi9YWlJ0VDBlZE43emhjQXl3dXQxUm9zUGZZ ZzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1haUnRUMGVkTjd6aGNBeXd1dDFSb3NQZllnOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Mjc4Ny8yMjg2NTYyQThGNzkxMUVGOTJBQzc4MUVDNEY5QUUwMi9YWlJ0VDBlZE43 emhjQXl3dXQxUm9zUGZZZzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBi/QibW+9rIdbAzUMdcZlulLJSMfyPa20Tqw/+r4QTUUhSs1YxXq2S m6Ot4ZCoX6A9jQh8hFB9aFuW/Gb2/YrZG7APX/CViTk1msQZSuxVc2zQ9tLM2hz+ 8mxmygLTciPZ2dlhJvUys+uF9pj4/yaCTSlRz6FRlPDHOXWGM3nRkvEWuclMQWav d+eV+DRu77LLYO4s9ScPqfbhkmLqIreB0bohMLZa4NWKA6mLm0w3mcR8vTMP0gHX K1BUo1vjYkW7KetRwWkpBaa4jwdArYrztvtEq6j8sKHZYY9grsgpt9Gi6yqPWZ9C CYkCvRejnsZOavK4ujjbmIkYn4aqZ9bx -----END CERTIFICATE-----Generated at Sun Aug 24 00:15:55 2025 by rpki-client