$ rpki-client -vvf rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft File: XQ11AElW7cyrm4QnGnNA5jhV_4o.mft (raw, json) Hash identifier: Wn1SdHDvQ/yNOEgJsnRI4Q8tLNz9Om2nQ6MD1IsNGnU= Subject key identifier: 23:6E:1E:77:90:13:5F:6B:A7:9B:E4:E4:78:01:5E:22:93:95:5E:15 Authority key identifier: 5D:0D:75:00:49:56:ED:CC:AB:9B:84:27:1A:73:40:E6:38:55:FF:8A Certificate issuer: /CN=A912BC39/serialNumber=5D0D75004956EDCCAB9B84271A7340E63855FF8A Certificate serial: 0753 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft Manifest number: 0745 Signing time: Mon 08 Sep 2025 21:46:58 +0000 Manifest this update: Mon 08 Sep 2025 21:46:58 +0000 Manifest next update: Mon 15 Sep 2025 21:46:58 +0000 Files and hashes: 1: XQ11AElW7cyrm4QnGnNA5jhV_4o.crl (hash: wekU01VR1T1pp8xUC+Zp0yvj8BAcVkr8V9CoYIfpNyw=) 2: 8EBA772E3F2B11EB87759716C4F9AE02.roa (hash: JhJ29hsZ9Nl8Kc5Vc5GMGK+cSOOJDZ3+fb8ZbDKNP/w=) 3: 688EAE1E8A1911EC94921D85C4F9AE02.roa (hash: +jUuW9+jw1JUgmOZj9N0BtBUU0s0p/K1kZNOedeoZQI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.crl rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 21:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1875 (0x753) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BC39, serialNumber=5D0D75004956EDCCAB9B84271A7340E63855FF8A Validity Not Before: Sep 8 21:46:58 2025 GMT Not After : Sep 15 21:46:58 2025 GMT Subject: CN=68bf4ed2-e58a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:e4:02:47:a0:38:2d:43:91:66:9e:91:2c:b2: 83:da:2a:1b:a1:52:7d:00:f8:43:cc:7c:e9:fa:53: 32:b5:b8:d4:52:46:f4:0e:58:3e:7f:d8:14:45:e2: 28:d5:c2:dc:35:23:45:1f:3b:b6:aa:a9:d3:d9:24: 47:b0:9a:55:ac:34:55:c4:47:e2:2e:5e:ad:9a:b5: 4e:5a:fd:14:78:f2:a7:30:53:ed:0a:6b:d0:0f:e8: 5b:8b:e7:fd:c7:51:77:87:99:f6:e9:e6:af:62:3e: d5:1a:8e:2e:23:b6:ff:3f:88:60:8d:a8:23:ff:a8: 03:00:92:2b:f7:64:ba:ea:01:83:38:47:24:b6:aa: 4e:9a:3e:94:53:98:1a:e3:49:8b:18:db:0c:8e:e5: 4f:59:5d:35:14:ad:f0:a8:96:b9:fd:6b:0b:7c:16: 7b:eb:e3:fd:4d:26:bb:24:86:32:ea:cf:ad:6a:6f: 13:df:86:3f:67:20:e1:48:14:bf:a4:6d:d0:72:cc: 78:04:60:17:2a:18:af:89:a4:44:88:0e:4c:4c:78: 0b:d4:b8:52:e0:2d:2f:82:b2:be:af:b8:c5:fa:cb: f3:dc:6c:da:04:39:87:69:8f:34:cf:51:e4:66:2e: 20:c6:00:ad:e3:aa:25:99:0c:c1:aa:0c:f9:5f:80: 4a:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:6E:1E:77:90:13:5F:6B:A7:9B:E4:E4:78:01:5E:22:93:95:5E:15 X509v3 Authority Key Identifier: keyid:5D:0D:75:00:49:56:ED:CC:AB:9B:84:27:1A:73:40:E6:38:55:FF:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:5d:ee:b9:f6:24:69:d4:3b:6a:c2:7d:3b:d3:51:8d:d5:8d: 50:f9:3c:7b:27:9d:06:b8:cc:30:15:bc:e3:ee:c9:66:e6:be: bc:b0:17:66:5b:45:75:c0:d1:c2:da:92:58:22:a0:c7:3e:b9: 61:30:f9:1c:8f:04:22:cf:b9:67:93:43:46:a0:bb:6c:35:6b: 7c:7e:35:a0:1f:5a:b7:2c:c4:e9:ca:60:6a:ca:0e:7a:3e:b2: 52:47:1b:a4:14:1e:fc:e3:07:ef:f4:70:04:40:00:47:42:6b: c4:e2:5d:fc:7b:47:6b:7a:73:e4:7f:31:d0:c2:b2:5d:61:75: 47:26:7e:8d:8b:0e:82:3f:fb:3a:e9:d3:2a:a6:38:7b:a6:e2: 17:e5:5e:75:e5:e4:40:2a:a8:df:91:4e:bb:7d:8c:ec:84:74: ea:7f:e1:5a:05:0e:46:ee:8b:66:d3:da:58:34:0d:87:37:a6: 97:7b:7e:d1:4e:a6:02:c4:7e:a0:c4:bc:3e:c4:cb:8f:13:d2: e0:a8:6f:41:a6:a4:a6:fc:45:af:5f:3f:87:55:3c:b7:80:85: af:4a:0a:8a:ad:22:81:52:9a:a0:f6:ce:55:ce:08:71:fa:80: c3:a9:fc:c9:fd:93:01:21:c8:28:5a:e3:65:5a:c2:32:37:5d: 27:11:ec:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJDMzkxMTAvBgNVBAUTKDVEMEQ3NTAwNDk1NkVEQ0NBQjlCODQyNzFBNzM0MEU2 Mzg1NUZGOEEwHhcNMjUwOTA4MjE0NjU4WhcNMjUwOTE1MjE0NjU4WjAYMRYwFAYD VQQDEw02OGJmNGVkMi1lNThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2+QCR6A4LUORZp6RLLKD2ioboVJ9APhDzHzp+lMytbjUUkb0Dlg+f9gUReIo 1cLcNSNFHzu2qqnT2SRHsJpVrDRVxEfiLl6tmrVOWv0UePKnMFPtCmvQD+hbi+f9 x1F3h5n26eavYj7VGo4uI7b/P4hgjagj/6gDAJIr92S66gGDOEcktqpOmj6UU5ga 40mLGNsMjuVPWV01FK3wqJa5/WsLfBZ76+P9TSa7JIYy6s+tam8T34Y/ZyDhSBS/ pG3Qcsx4BGAXKhiviaREiA5MTHgL1LhS4C0vgrK+r7jF+svz3GzaBDmHaY80z1Hk Zi4gxgCt46olmQzBqgz5X4BKTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCNuHneQ E19rp5vk5HgBXiKTlV4VMB8GA1UdIwQYMBaAFF0NdQBJVu3Mq5uEJxpzQOY4Vf+K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkMzOS9CMzdCMTU4RTNG MjkxMUVCOUI5QTIzMTRDNEY5QUUwMi9YUTExQUVsVzdjeXJtNFFuR25OQTVqaFZf NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hRMTFBRWxXN2N5cm00UW5Hbk5BNWpoVl80by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkMzOS9CMzdCMTU4RTNGMjkxMUVCOUI5QTIzMTRDNEY5QUUwMi9YUTExQUVsVzdj eXJtNFFuR25OQTVqaFZfNG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRXe659iRp1Dtqwn0701GN1Y1Q+Tx7J50GuMwwFbzj7slm5r68sBdm W0V1wNHC2pJYIqDHPrlhMPkcjwQiz7lnk0NGoLtsNWt8fjWgH1q3LMTpymBqyg56 PrJSRxukFB784wfv9HAEQABHQmvE4l38e0drenPkfzHQwrJdYXVHJn6Niw6CP/s6 6dMqpjh7puIX5V515eRAKqjfkU67fYzshHTqf+FaBQ5G7otm09pYNA2HN6aXe37R TqYCxH6gxLw+xMuPE9LgqG9BpqSm/EWvXz+HVTy3gIWvSgqKrSKBUpqg9s5Vzghx +oDDqfzJ/ZMBIcgoWuNlWsIyN10nEewU -----END CERTIFICATE-----Generated at Tue Sep 9 13:24:31 2025 by rpki-client