$ rpki-client -vvf rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft File: XHIqJhQciPfNQPObN0raf7wfmx8.mft (raw, json) Hash identifier: 6tCvo0o9wG0cJLwozY//4jE8/IrqXBLD5twmfeE96ro= Subject key identifier: 09:0D:C2:38:1A:32:36:87:A4:C9:8D:73:E9:9B:44:AC:A5:0A:9F:1A Authority key identifier: 5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F Certificate issuer: /CN=A91D824A/serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Certificate serial: C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft Manifest number: C4 Signing time: Sat 23 Aug 2025 06:02:01 +0000 Manifest this update: Sat 23 Aug 2025 06:02:00 +0000 Manifest next update: Sat 30 Aug 2025 06:02:00 +0000 Files and hashes: 1: XHIqJhQciPfNQPObN0raf7wfmx8.crl (hash: itpYDeiCJaHiCJciSaaAfbNHWiejDDGVWOJV9qOmxw0=) 2: D69C342850E311F098697E1BC4F9AE02.roa (hash: BsgTCGS6ZY9wo4DRbXqJWgsBM56PxcgPxCxnw/1lRZA=) 3: EA438F3050E311F08CF2971BC4F9AE02.roa (hash: IjL6cu6bZiACksELIxEiXf/UtBVghk3xr9SoGwHtz+o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:02:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D824A, serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Validity Not Before: Aug 23 06:02:00 2025 GMT Not After : Aug 30 06:02:00 2025 GMT Subject: CN=68a95959-de48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a5:33:02:b6:38:9f:e5:32:b8:c1:a0:21:0d: d3:33:ee:84:b0:a8:be:1e:88:9d:d8:c9:a5:ff:e0: b6:eb:54:f1:cc:a1:cb:9c:a3:e4:12:ef:29:2b:c9: 3b:e4:0f:06:a0:93:fa:76:1f:2f:6e:ba:58:7b:bf: 0d:ba:7d:70:2e:66:d6:f4:c8:6e:6f:d3:86:03:c0: 0e:9b:61:19:d2:e3:c7:27:41:67:33:62:d5:3a:70: 5c:92:7e:08:34:a9:08:66:95:de:45:53:63:b3:ce: 72:77:3c:cb:b4:05:80:a7:60:7b:48:0e:87:e6:de: 41:72:d8:d5:74:6a:5a:36:b8:9e:f3:b1:88:a3:4f: af:4a:d1:8a:62:83:de:7e:0b:15:8c:af:8e:1c:7d: 24:7e:5d:f2:0a:73:ef:dd:af:fe:16:f6:76:df:85: 5c:db:35:87:1e:a2:ca:52:6b:30:f6:db:b7:4c:e8: 2e:e4:72:b6:24:72:5b:a3:7c:1a:e0:78:91:95:4a: 6c:6e:88:2d:6a:52:d9:35:82:ef:3d:92:63:59:0a: b7:42:2e:d8:87:20:1a:62:b3:f7:d8:92:50:c0:91: 58:be:06:11:5b:36:60:9a:fd:6b:cc:1d:c3:0d:e5: 94:5a:36:51:2c:75:49:b2:6e:04:fe:af:72:06:27: ac:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:0D:C2:38:1A:32:36:87:A4:C9:8D:73:E9:9B:44:AC:A5:0A:9F:1A X509v3 Authority Key Identifier: keyid:5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:90:5e:b4:55:19:58:38:1d:3f:17:7b:f7:47:62:75:5a:3a: 1e:40:91:d5:31:db:80:d9:c0:3d:35:ef:7a:db:a7:c7:3f:b7: 3c:30:75:69:52:70:8e:8e:4f:53:59:c7:01:9c:f2:9b:f7:4a: 74:ff:73:6c:28:15:2e:d4:46:6b:70:58:1e:31:6d:49:df:5b: 3b:0b:49:b5:77:63:cf:8c:85:b3:1e:f5:9e:ab:51:63:01:ec: e3:c6:04:60:82:a8:96:e9:77:73:6f:f9:93:e5:33:aa:82:79: ca:4a:f7:89:b0:95:35:ab:d4:44:00:29:df:d6:59:99:63:e5: 8d:d9:a9:b8:f4:c9:29:c0:ae:59:3a:6e:85:31:26:c0:f6:d6: b5:7b:83:28:de:38:61:8d:3e:34:80:cb:3f:67:b6:aa:85:53: b5:3f:46:eb:54:c9:8a:ef:2a:93:25:1b:6f:c3:37:11:30:1b: 02:73:b6:7b:a4:34:9b:ea:64:46:84:3c:95:2b:aa:06:db:34: e7:f3:e8:4c:ff:12:ff:c8:f4:09:8e:fd:a2:a2:7b:6c:25:9e: 84:23:f8:5d:15:2e:23:0f:17:b7:2a:74:42:3f:ad:ed:de:74: 82:13:d0:0a:c1:9f:ad:e0:e7:4a:7e:7e:69:30:1d:2f:bf:04: 5d:3d:a2:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgyNEExMTAvBgNVBAUTKDVDNzIyQTI2MTQxQzg4RjdDRDQwRjM5QjM3NEFEQTdG QkMxRjlCMUYwHhcNMjUwODIzMDYwMjAwWhcNMjUwODMwMDYwMjAwWjAYMRYwFAYD VQQDEw02OGE5NTk1OS1kZTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt6UzArY4n+UyuMGgIQ3TM+6EsKi+Hoid2Mml/+C261TxzKHLnKPkEu8pK8k7 5A8GoJP6dh8vbrpYe78Nun1wLmbW9Mhub9OGA8AOm2EZ0uPHJ0FnM2LVOnBckn4I NKkIZpXeRVNjs85ydzzLtAWAp2B7SA6H5t5BctjVdGpaNrie87GIo0+vStGKYoPe fgsVjK+OHH0kfl3yCnPv3a/+FvZ234Vc2zWHHqLKUmsw9tu3TOgu5HK2JHJbo3wa 4HiRlUpsbogtalLZNYLvPZJjWQq3Qi7YhyAaYrP32JJQwJFYvgYRWzZgmv1rzB3D DeWUWjZRLHVJsm4E/q9yBieskQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAkNwjga MjaHpMmNc+mbRKylCp8aMB8GA1UdIwQYMBaAFFxyKiYUHIj3zUDzmzdK2n+8H5sf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODI0QS80QURGMzNGQzVC OUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQZk5RUE9iTjByYWY3d2Zt eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hISXFKaFFjaVBmTlFQT2JOMHJhZjd3Zm14OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODI0QS80QURGMzNGQzVCOUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQ Zk5RUE9iTjByYWY3d2ZteDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADkF60VRlYOB0/F3v3R2J1WjoeQJHVMduA2cA9Ne9626fHP7c8MHVp UnCOjk9TWccBnPKb90p0/3NsKBUu1EZrcFgeMW1J31s7C0m1d2PPjIWzHvWeq1Fj AezjxgRggqiW6Xdzb/mT5TOqgnnKSveJsJU1q9REACnf1lmZY+WN2am49MkpwK5Z Om6FMSbA9ta1e4Mo3jhhjT40gMs/Z7aqhVO1P0brVMmK7yqTJRtvwzcRMBsCc7Z7 pDSb6mRGhDyVK6oG2zTn8+hM/xL/yPQJjv2iontsJZ6EI/hdFS4jDxe3KnRCP63t 3nSCE9AKwZ+t4OdKfn5pMB0vvwRdPaL4 -----END CERTIFICATE-----Generated at Sat Aug 23 17:16:02 2025 by rpki-client