$ rpki-client -vvf rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft File: XJzBFCqQdWDNmfBuXdAt5OIulEU.mft (raw, json) Hash identifier: dBqTOUhPbwMgRp6+LPAlRtDOdEQu6o0I75ba27HnC4k= Subject key identifier: 1D:88:32:B1:AD:E6:6E:31:2B:76:0D:A8:A5:46:03:1B:46:68:01:7B Authority key identifier: 5C:9C:C1:14:2A:90:75:60:CD:99:F0:6E:5D:D0:2D:E4:E2:2E:94:45 Certificate issuer: /CN=A911636A/serialNumber=5C9CC1142A907560CD99F06E5DD02DE4E22E9445 Certificate serial: 022F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJzBFCqQdWDNmfBuXdAt5OIulEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft Manifest number: 0223 Signing time: Wed 17 Sep 2025 02:38:30 +0000 Manifest this update: Wed 17 Sep 2025 02:38:29 +0000 Manifest next update: Wed 24 Sep 2025 02:38:29 +0000 Files and hashes: 1: XJzBFCqQdWDNmfBuXdAt5OIulEU.crl (hash: JkSVssdgX2USnP15CGA4oGCl4MhOaa/22UGBo2q9c9M=) 2: D98071A44F4411F0AF01D40FC4F9AE02.roa (hash: bPBsCe6a2VFWcNMWeHmOx+7VTXSQy1aeyYkZxcsxaxU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.crl rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJzBFCqQdWDNmfBuXdAt5OIulEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 02:38:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 559 (0x22f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911636A, serialNumber=5C9CC1142A907560CD99F06E5DD02DE4E22E9445 Validity Not Before: Sep 17 02:38:29 2025 GMT Not After : Sep 24 02:38:29 2025 GMT Subject: CN=68ca1f25-ae69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:3a:ad:e9:f0:ca:4a:df:c2:d5:b2:08:9c:89: 66:24:2b:7f:65:5b:b4:2d:d5:d1:53:dd:4e:48:16: af:20:17:74:6b:6e:7d:1c:02:9c:9c:33:19:3a:84: c0:64:40:6c:07:86:53:43:19:99:2f:e1:c2:3c:c4: 05:91:d2:26:e8:bb:28:06:43:1f:51:b6:f2:1e:fe: 54:d6:7f:04:0c:79:a7:e8:36:7c:74:58:bd:16:9e: 6f:e7:79:8b:18:2d:0e:c4:33:ce:2d:86:c3:6a:53: 4d:40:17:44:ff:7e:c8:5d:57:01:67:b5:8f:10:ae: 61:6e:9f:db:08:6d:c8:b6:3d:eb:11:01:1c:ed:57: c1:9c:15:3e:41:66:14:62:c5:b9:6b:28:c9:b2:0f: 3c:f8:67:13:18:06:97:9f:1a:d8:96:8d:c9:a3:a4: 55:a9:90:ab:91:aa:b5:1a:fd:f4:5d:a4:c8:7d:06: f9:f9:19:be:26:98:41:1d:37:df:b8:c0:21:4d:ca: 29:7a:30:03:c6:6f:b9:f9:fe:71:13:3a:70:45:aa: 8e:a7:b5:74:34:9c:9a:d7:b4:46:6c:82:26:24:c5: 3c:c0:37:a0:c1:f7:8d:10:b3:53:36:d2:7c:70:c2: 4a:81:60:2c:29:53:1f:90:b3:e4:00:32:e0:7f:0e: 01:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:88:32:B1:AD:E6:6E:31:2B:76:0D:A8:A5:46:03:1B:46:68:01:7B X509v3 Authority Key Identifier: keyid:5C:9C:C1:14:2A:90:75:60:CD:99:F0:6E:5D:D0:2D:E4:E2:2E:94:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJzBFCqQdWDNmfBuXdAt5OIulEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:06:8a:c3:76:2f:71:3e:4c:2f:9e:8e:ec:60:a5:da:d0:2f: 4a:26:5b:e4:06:31:e0:8b:ad:e5:c9:f6:3b:a1:44:82:d4:bd: 5e:5f:17:6f:7a:b9:5f:70:e5:61:ed:1f:b0:9a:86:52:7d:54: a9:16:53:19:29:e7:f3:3e:b0:9f:ce:f5:7d:d9:6a:0e:53:41: c0:b6:24:b5:3b:f4:5f:de:56:44:e6:27:05:9e:25:d2:7b:cf: a9:0a:d7:a3:56:1c:6c:23:fb:2f:f4:f1:f1:ea:2d:81:d0:54: 7d:54:41:53:c3:9c:64:1c:89:98:da:7e:c4:d2:3a:56:e0:3e: c4:2d:77:c0:ac:ff:7f:a5:83:1a:a5:10:00:e2:7e:7f:68:70: 18:ab:c3:b5:17:83:51:44:18:59:91:99:a0:5e:de:d8:fe:61: 27:6d:20:b7:c9:bc:fa:05:e9:84:db:18:dc:0a:a4:0d:e2:55: 8b:2f:6e:56:bd:36:70:1e:49:dd:b4:e8:4f:cc:3c:ca:51:94: 60:83:ef:cb:f6:5d:9d:5d:00:6d:b8:7b:5f:09:b8:f6:55:75: 5d:fd:a9:21:55:15:f3:c7:6b:d4:bb:bf:43:d6:5a:d3:d3:24: 5b:73:e2:a0:b8:5d:29:90:e5:11:5b:d7:78:7e:6a:d4:bd:d0: bc:6d:54:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAi8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTYzNkExMTAvBgNVBAUTKDVDOUNDMTE0MkE5MDc1NjBDRDk5RjA2RTVERDAyREU0 RTIyRTk0NDUwHhcNMjUwOTE3MDIzODI5WhcNMjUwOTI0MDIzODI5WjAYMRYwFAYD VQQDEw02OGNhMWYyNS1hZTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzTqt6fDKSt/C1bIInIlmJCt/ZVu0LdXRU91OSBavIBd0a259HAKcnDMZOoTA ZEBsB4ZTQxmZL+HCPMQFkdIm6LsoBkMfUbbyHv5U1n8EDHmn6DZ8dFi9Fp5v53mL GC0OxDPOLYbDalNNQBdE/37IXVcBZ7WPEK5hbp/bCG3Itj3rEQEc7VfBnBU+QWYU YsW5ayjJsg88+GcTGAaXnxrYlo3Jo6RVqZCrkaq1Gv30XaTIfQb5+Rm+JphBHTff uMAhTcopejADxm+5+f5xEzpwRaqOp7V0NJya17RGbIImJMU8wDegwfeNELNTNtJ8 cMJKgWAsKVMfkLPkADLgfw4B4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB2IMrGt 5m4xK3YNqKVGAxtGaAF7MB8GA1UdIwQYMBaAFFycwRQqkHVgzZnwbl3QLeTiLpRF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjM2QS9CMEYzM0QyQTY2 RUUxMUVEQjNCNDFBNURDNEY5QUUwMi9YSnpCRkNxUWRXRE5tZkJ1WGRBdDVPSXVs RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hKekJGQ3FRZFdETm1mQnVYZEF0NU9JdWxFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjM2QS9CMEYzM0QyQTY2RUUxMUVEQjNCNDFBNURDNEY5QUUwMi9YSnpCRkNxUWRX RE5tZkJ1WGRBdDVPSXVsRVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZBorDdi9xPkwvno7sYKXa0C9KJlvkBjHgi63lyfY7oUSC1L1eXxdv erlfcOVh7R+wmoZSfVSpFlMZKefzPrCfzvV92WoOU0HAtiS1O/Rf3lZE5icFniXS e8+pCtejVhxsI/sv9PHx6i2B0FR9VEFTw5xkHImY2n7E0jpW4D7ELXfArP9/pYMa pRAA4n5/aHAYq8O1F4NRRBhZkZmgXt7Y/mEnbSC3ybz6BemE2xjcCqQN4lWLL25W vTZwHkndtOhPzDzKUZRgg+/L9l2dXQBtuHtfCbj2VXVd/akhVRXzx2vUu79D1lrT 0yRbc+KguF0pkOURW9d4fmrUvdC8bVQb -----END CERTIFICATE-----Generated at Thu Sep 18 22:14:31 2025 by rpki-client