$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft File: X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft (raw, json) Hash identifier: Et+Wz2eep7rB6MBxMQk1FrxxFFqHwwMlFbe9VkRScxY= Subject key identifier: C4:84:00:49:F3:AF:7F:56:EB:2C:DE:BA:BE:C0:CE:27:CF:57:27:94 Authority key identifier: 5F:8A:F3:59:73:FD:4F:A5:63:F3:3B:73:76:53:46:82:10:7B:C8:F9 Certificate issuer: /CN=A91CE285/serialNumber=5F8AF35973FD4FA563F33B7376534682107BC8F9 Certificate serial: 09E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft Manifest number: 09DF Signing time: Fri 22 Aug 2025 20:04:25 +0000 Manifest this update: Fri 22 Aug 2025 20:04:24 +0000 Manifest next update: Fri 29 Aug 2025 20:04:24 +0000 Files and hashes: 1: X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl (hash: klLY7odQT8iPF2gFbCXr5LM8FE9TruKIrmL/+WPl3wk=) 2: E5C4974689CF11EAA39AF441C4F9AE02.roa (hash: S/+GQ9LaNR6oJzl2BIn9qWcVDZWjqUHkpie5l4NiGuc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:04:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2534 (0x9e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE285, serialNumber=5F8AF35973FD4FA563F33B7376534682107BC8F9 Validity Not Before: Aug 22 20:04:24 2025 GMT Not After : Aug 29 20:04:24 2025 GMT Subject: CN=68a8cd48-3a5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:1d:2d:eb:ac:24:31:5a:57:b9:d5:1c:c6:c2: 99:90:9e:f6:e1:85:fb:23:ed:41:60:02:36:16:03: d3:27:57:49:92:a5:22:76:ae:11:5b:5e:a3:42:69: 44:d5:b7:17:38:39:5b:00:e9:3d:fd:75:6c:04:b9: 10:48:9c:a3:ea:16:50:52:77:06:9f:8d:5e:ee:91: 8a:8e:19:23:54:7c:b5:ef:df:b3:09:bc:14:41:16: 38:11:af:75:1f:b8:82:cc:70:74:75:8f:30:63:d0: 1c:bb:a4:1d:3b:26:34:9a:4b:1e:93:16:27:eb:50: c2:9b:fa:00:6e:8d:e2:ee:7b:14:3a:9f:36:da:9b: ff:6c:e7:a3:b4:b0:f6:c9:41:4f:3f:4d:52:93:c6: 14:28:38:9f:ab:15:b3:f3:97:30:c8:48:9d:62:76: ad:2b:be:08:40:8d:8e:3e:d4:62:e2:4e:c8:32:56: 77:97:1d:ae:f1:ba:51:50:6f:c4:95:f8:ee:f7:91: fb:a5:4d:8d:ac:a3:c8:7c:1b:ef:1d:38:00:9b:72: 5b:7c:ea:4b:39:4a:e1:1f:57:c5:cb:dc:79:1b:e5: a4:cb:6c:8c:20:93:94:8c:b0:74:71:12:2b:4d:cc: 1b:c3:9b:09:a1:89:ec:1f:5e:60:e4:b9:5d:97:83: 9c:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:84:00:49:F3:AF:7F:56:EB:2C:DE:BA:BE:C0:CE:27:CF:57:27:94 X509v3 Authority Key Identifier: keyid:5F:8A:F3:59:73:FD:4F:A5:63:F3:3B:73:76:53:46:82:10:7B:C8:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:a0:67:57:bb:cf:7c:01:8f:ee:3d:e1:c3:6f:93:cf:81:fc: 65:11:a4:7c:07:86:5f:a7:9c:e2:bb:b0:d3:5f:3c:3c:68:6c: db:ef:07:85:97:be:c4:82:96:1d:4c:1b:58:aa:84:72:d1:a9: 9c:f5:ac:69:61:ce:83:27:20:6c:ac:67:7a:a6:61:0d:e4:a8: 19:e7:3f:46:2b:d7:fb:0b:10:b3:1a:5c:db:8c:53:a6:40:1d: fa:fe:f8:03:8e:cc:fd:aa:99:8f:de:2e:81:60:85:0b:c0:4a: 5a:b6:b2:8d:b9:a5:7b:4b:e3:cd:d9:07:2e:ad:e1:dc:0f:6f: c1:07:b3:68:b8:72:6e:87:95:7e:2d:74:0a:d9:52:ca:68:02: 64:87:f1:33:9d:c7:96:61:13:f9:97:ac:88:61:4a:61:c0:d7: f9:a8:56:76:7c:11:fc:dc:01:d0:d3:22:da:d0:62:9d:24:3a: 04:95:5c:6f:4a:41:b4:5a:5e:0b:79:de:63:d3:8f:1c:c9:31: 66:ba:88:94:93:c3:64:4c:0f:19:e0:03:5d:35:b7:f0:12:e0: 7f:1e:21:4e:8f:3a:ba:33:10:1c:10:6e:51:95:49:2e:5e:ec: e6:33:61:7e:ff:6b:0f:12:d9:20:80:e0:56:47:d8:1e:75:e0: 51:20:3d:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyODUxMTAvBgNVBAUTKDVGOEFGMzU5NzNGRDRGQTU2M0YzM0I3Mzc2NTM0Njgy MTA3QkM4RjkwHhcNMjUwODIyMjAwNDI0WhcNMjUwODI5MjAwNDI0WjAYMRYwFAYD VQQDEw02OGE4Y2Q0OC0zYTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvB0t66wkMVpXudUcxsKZkJ724YX7I+1BYAI2FgPTJ1dJkqUidq4RW16jQmlE 1bcXODlbAOk9/XVsBLkQSJyj6hZQUncGn41e7pGKjhkjVHy179+zCbwUQRY4Ea91 H7iCzHB0dY8wY9Acu6QdOyY0mksekxYn61DCm/oAbo3i7nsUOp822pv/bOejtLD2 yUFPP01Sk8YUKDifqxWz85cwyEidYnatK74IQI2OPtRi4k7IMlZ3lx2u8bpRUG/E lfju95H7pU2NrKPIfBvvHTgAm3JbfOpLOUrhH1fFy9x5G+Wky2yMIJOUjLB0cRIr Tcwbw5sJoYnsH15g5Lldl4OcdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMSEAEnz r39W6yzeur7AzifPVyeUMB8GA1UdIwQYMBaAFF+K81lz/U+lY/M7c3ZTRoIQe8j5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTI4NS81RTE2NDhCNjg0 QkMxMUVBQTUyNjIyNjNDNEY5QUUwMi9YNHJ6V1hQOVQ2Vmo4enR6ZGxOR2doQjd5 UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0cnpXWFA5VDZWajh6dHpkbE5HZ2hCN3lQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTI4NS81RTE2NDhCNjg0QkMxMUVBQTUyNjIyNjNDNEY5QUUwMi9YNHJ6V1hQOVQ2 Vmo4enR6ZGxOR2doQjd5UGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0oGdXu898AY/uPeHDb5PPgfxlEaR8B4Zfp5ziu7DTXzw8aGzb7weF l77EgpYdTBtYqoRy0amc9axpYc6DJyBsrGd6pmEN5KgZ5z9GK9f7CxCzGlzbjFOm QB36/vgDjsz9qpmP3i6BYIULwEpatrKNuaV7S+PN2QcureHcD2/BB7NouHJuh5V+ LXQK2VLKaAJkh/EznceWYRP5l6yIYUphwNf5qFZ2fBH83AHQ0yLa0GKdJDoElVxv SkG0Wl4Led5j048cyTFmuoiUk8NkTA8Z4ANdNbfwEuB/HiFOjzq6MxAcEG5RlUku XuzmM2F+/2sPEtkggOBWR9gedeBRID18 -----END CERTIFICATE-----Generated at Sat Aug 23 19:07:53 2025 by rpki-client