$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft File: XK9B9ks3Umh5jipdqgwUAADNdHM.mft (raw, json) Hash identifier: 2+Vmyepo9y8DGoXPq7q7rnGNwsOd7qkuFPv9fcHAmTU= Subject key identifier: C1:15:16:E2:33:64:B5:07:88:5A:60:BF:AC:E8:1E:5F:55:B3:15:5A Authority key identifier: 5C:AF:41:F6:4B:37:52:68:79:8E:2A:5D:AA:0C:14:00:00:CD:74:73 Certificate issuer: /CN=A91ED73E/serialNumber=5CAF41F64B375268798E2A5DAA0C140000CD7473 Certificate serial: 140E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XK9B9ks3Umh5jipdqgwUAADNdHM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft Manifest number: 1402 Signing time: Fri 22 Aug 2025 17:03:06 +0000 Manifest this update: Fri 22 Aug 2025 17:03:05 +0000 Manifest next update: Fri 29 Aug 2025 17:03:05 +0000 Files and hashes: 1: XK9B9ks3Umh5jipdqgwUAADNdHM.crl (hash: csnR70Rg+HSyJk3EPTNiBnHlAHgmOLp3p/31aWRnqFU=) 2: 1983150A3BB911EEB0CA4809C4F9AE02.roa (hash: SmYPi2RSloxSaKTT7RKvc8hMxfYT7RAYE5IrJ7qdRzM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.crl rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XK9B9ks3Umh5jipdqgwUAADNdHM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:03:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5134 (0x140e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED73E, serialNumber=5CAF41F64B375268798E2A5DAA0C140000CD7473 Validity Not Before: Aug 22 17:03:05 2025 GMT Not After : Aug 29 17:03:05 2025 GMT Subject: CN=68a8a2ca-343e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:92:3e:ac:f6:c5:eb:f6:f6:9e:6d:03:b2:f8: eb:0d:14:4d:d5:0c:c6:4e:ea:e8:1b:0e:6e:7f:45: 54:63:58:5a:3c:27:a9:47:27:40:1b:22:5e:c9:88: b2:b7:2d:76:89:91:17:e4:bc:34:18:46:89:76:b9: 8e:9b:e9:9e:31:2e:6d:ec:c0:a7:50:86:05:eb:d0: bf:17:e1:63:5e:d5:c0:03:1a:6b:a0:e5:1b:fd:6d: 42:9a:59:77:08:2b:cd:53:e8:e0:81:04:6d:67:c4: 12:21:f7:d0:8c:54:00:f3:6d:5a:fb:ac:54:43:94: 5d:4b:52:36:cf:85:47:1b:90:41:ab:ee:1c:2d:62: 6b:41:2f:70:ce:53:34:6e:f2:44:ae:fc:20:05:c5: 9c:b0:11:7d:6d:51:fb:d9:27:8c:d1:af:4c:63:09: d8:81:69:66:8c:36:1f:78:22:1d:8e:2b:57:f5:98: 75:55:57:db:25:40:58:6e:ec:fc:30:18:4d:93:b2: 48:d8:e7:eb:d3:2a:f3:f5:16:0d:93:49:ed:fe:c5: df:0a:22:8f:01:e1:c6:04:3e:5e:bc:47:8f:84:c2: ed:58:16:13:3f:2b:c3:e9:62:7c:e4:03:41:40:97: 0d:43:4e:d7:a0:0c:85:a9:9c:c5:d2:93:66:0e:1c: bf:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:15:16:E2:33:64:B5:07:88:5A:60:BF:AC:E8:1E:5F:55:B3:15:5A X509v3 Authority Key Identifier: keyid:5C:AF:41:F6:4B:37:52:68:79:8E:2A:5D:AA:0C:14:00:00:CD:74:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XK9B9ks3Umh5jipdqgwUAADNdHM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:36:68:ba:1f:b1:08:87:98:c8:31:7f:f3:4b:fd:de:6c:05: 91:02:5f:92:7d:64:07:9a:4a:66:87:bb:4b:6c:9b:75:d7:29: 8a:04:72:2f:34:49:e6:06:46:2a:a3:3c:65:af:71:b4:26:b7: ba:a9:5d:23:55:f1:ab:c8:36:d8:9b:34:3f:40:3e:22:52:4a: f4:9f:97:60:f4:f8:5c:a2:76:f7:65:79:72:b6:c7:10:40:c7: e0:7a:e8:2c:a8:1d:fd:d3:a4:36:65:b0:d2:89:c8:b6:18:95: fa:85:35:d4:cf:6f:41:59:d4:39:10:08:a2:11:c9:4a:9f:a9: 27:83:31:d4:c4:51:77:f7:61:8b:7c:79:25:f4:1c:ff:4e:43: f3:b6:8e:05:ba:c3:e8:1a:94:00:3f:8e:3f:bc:13:d7:ea:de: 82:f4:45:d6:01:13:94:85:bf:bb:eb:29:c3:8c:5a:53:48:ae: 2a:c6:54:62:d8:02:71:16:7e:ed:ab:28:8d:54:f4:8e:09:aa: f0:af:f4:d0:62:ab:4e:cf:2d:33:35:a9:4f:05:b5:cf:c2:d0: 57:75:66:c7:db:6c:ea:01:5e:02:79:37:79:cd:9a:58:8d:da: 6d:d5:fb:d0:9c:e4:ae:68:30:e8:c6:17:87:6e:78:66:67:dc: ed:66:e2:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFA4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ3M0UxMTAvBgNVBAUTKDVDQUY0MUY2NEIzNzUyNjg3OThFMkE1REFBMEMxNDAw MDBDRDc0NzMwHhcNMjUwODIyMTcwMzA1WhcNMjUwODI5MTcwMzA1WjAYMRYwFAYD VQQDEw02OGE4YTJjYS0zNDNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy5I+rPbF6/b2nm0DsvjrDRRN1QzGTuroGw5uf0VUY1haPCepRydAGyJeyYiy ty12iZEX5Lw0GEaJdrmOm+meMS5t7MCnUIYF69C/F+FjXtXAAxproOUb/W1Cmll3 CCvNU+jggQRtZ8QSIffQjFQA821a+6xUQ5RdS1I2z4VHG5BBq+4cLWJrQS9wzlM0 bvJErvwgBcWcsBF9bVH72SeM0a9MYwnYgWlmjDYfeCIdjitX9Zh1VVfbJUBYbuz8 MBhNk7JI2Ofr0yrz9RYNk0nt/sXfCiKPAeHGBD5evEePhMLtWBYTPyvD6WJ85ANB QJcNQ07XoAyFqZzF0pNmDhy/YwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMEVFuIz ZLUHiFpgv6zoHl9VsxVaMB8GA1UdIwQYMBaAFFyvQfZLN1JoeY4qXaoMFAAAzXRz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDczRS8wMUI4MjEwQTg5 ODkxMUU4Qjk4QkVDM0FDNEY5QUUwMi9YSzlCOWtzM1VtaDVqaXBkcWd3VUFBRE5k SE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hLOUI5a3MzVW1oNWppcGRxZ3dVQUFETmRITS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDczRS8wMUI4MjEwQTg5ODkxMUU4Qjk4QkVDM0FDNEY5QUUwMi9YSzlCOWtzM1Vt aDVqaXBkcWd3VUFBRE5kSE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2Nmi6H7EIh5jIMX/zS/3ebAWRAl+SfWQHmkpmh7tLbJt11ymKBHIv NEnmBkYqozxlr3G0Jre6qV0jVfGryDbYmzQ/QD4iUkr0n5dg9Phconb3ZXlytscQ QMfgeugsqB3906Q2ZbDSici2GJX6hTXUz29BWdQ5EAiiEclKn6kngzHUxFF392GL fHkl9Bz/TkPzto4FusPoGpQAP44/vBPX6t6C9EXWAROUhb+76ynDjFpTSK4qxlRi 2AJxFn7tqyiNVPSOCarwr/TQYqtOzy0zNalPBbXPwtBXdWbH22zqAV4CeTd5zZpY jdpt1fvQnOSuaDDoxheHbnhmZ9ztZuJy -----END CERTIFICATE-----Generated at Sun Aug 24 09:15:07 2025 by rpki-client