$ rpki-client -vvf rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft File: XfVm12I2fCjH8_ElYbRxa4yhuWY.mft (raw, json) Hash identifier: cNndZsyVJNaFgfz4WkcDYS24hileqlL+M316DOBV7kU= Subject key identifier: F3:15:AE:A5:F0:0E:D1:F0:1C:3C:F3:5C:D6:2A:96:DA:B2:30:C1:DE Authority key identifier: 5D:F5:66:D7:62:36:7C:28:C7:F3:F1:25:61:B4:71:6B:8C:A1:B9:66 Certificate issuer: /CN=A9133B47/serialNumber=5DF566D762367C28C7F3F12561B4716B8CA1B966 Certificate serial: 0103 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft Manifest number: 0100 Signing time: Wed 17 Sep 2025 05:44:08 +0000 Manifest this update: Wed 17 Sep 2025 05:44:08 +0000 Manifest next update: Wed 24 Sep 2025 05:44:08 +0000 Files and hashes: 1: XfVm12I2fCjH8_ElYbRxa4yhuWY.crl (hash: zIQ+KTwvjZVefR13brjfygeh8vzbE1ElEBkixRxFIis=) 2: 23B1A0120FA511EFB28F5235C4F9AE02.roa (hash: 1j2rFTty2/H954Iwvk/ZWmtqptjhE7lYs+ZEPtYw42E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.crl rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 05:44:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 259 (0x103) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133B47, serialNumber=5DF566D762367C28C7F3F12561B4716B8CA1B966 Validity Not Before: Sep 17 05:44:08 2025 GMT Not After : Sep 24 05:44:08 2025 GMT Subject: CN=68ca4aa8-7822 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:27:62:b4:d7:4a:b9:b9:ea:b9:bc:c7:24:71: 52:80:c6:c1:f1:5b:3a:1f:61:98:6e:ab:cc:7c:41: da:1d:1f:f1:ff:76:79:be:be:54:8d:99:cd:8c:c3: 0d:ce:db:b3:5c:e2:56:ce:2c:b7:8e:c9:27:e5:d6: c7:a4:e7:7c:51:69:87:cd:19:7d:ac:0e:1a:9c:4b: 31:d3:50:33:83:d8:58:56:93:39:73:f8:14:30:4f: 1a:47:1a:b1:82:7c:07:e0:39:21:89:18:19:e2:bc: 73:4a:ca:86:5f:f2:ac:82:d2:dc:21:30:f5:97:24: 8d:9a:b6:d4:ea:5b:d9:fb:db:33:28:f9:0a:18:29: 46:24:9e:b3:2d:c9:0a:bb:9e:7e:65:c2:83:49:29: ef:8a:78:56:2c:49:0f:45:a4:a7:02:a7:ec:09:99: e9:2a:c9:59:75:9c:5f:56:29:91:87:95:e6:89:d4: 85:5f:d9:1f:c4:c9:41:c8:cc:0a:b0:a2:15:6a:76: bb:5f:85:bb:b3:23:e5:f5:34:3b:57:2d:80:8e:7d: 20:07:32:c1:1a:28:e4:14:f9:73:ae:a0:c7:92:29: 6b:37:3d:cc:e2:db:c1:cb:51:60:68:19:37:ba:43: 7a:b4:75:20:3c:ea:9b:ec:ff:8b:ce:a4:52:6f:27: af:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:15:AE:A5:F0:0E:D1:F0:1C:3C:F3:5C:D6:2A:96:DA:B2:30:C1:DE X509v3 Authority Key Identifier: keyid:5D:F5:66:D7:62:36:7C:28:C7:F3:F1:25:61:B4:71:6B:8C:A1:B9:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:be:32:6d:c7:4a:85:15:35:4a:c5:cf:0b:30:24:24:9f:91: d3:a3:30:60:46:82:50:fb:dc:dc:2f:fe:c3:e5:e7:b2:71:5f: 2e:77:4f:2a:46:3c:78:bb:6e:ef:4f:fe:87:f6:44:95:d5:b5: 73:12:fa:a0:0f:bc:44:7f:ad:30:0b:8a:13:f5:9b:26:83:99: b9:94:57:d2:18:08:98:a7:7d:68:38:f8:90:34:cf:78:e7:e3: fa:1b:9c:69:2a:75:db:82:31:26:73:2d:fa:93:fd:45:3d:f4: 08:69:87:1d:ee:1e:d5:a6:18:41:78:01:92:48:7d:09:67:37: 9b:db:e3:d0:3f:ac:96:35:33:af:50:12:e5:77:0c:0e:d9:23: 77:4e:a8:fa:7e:49:eb:34:65:42:bc:54:00:7c:b1:ff:92:a5: f0:3a:fa:80:13:62:46:d5:6f:69:6e:16:d7:3b:68:3c:1d:8f: 93:36:44:9b:e7:5b:7f:f7:72:d7:80:06:76:ab:8b:0b:22:d2: 7b:95:3d:df:49:61:10:74:52:d1:08:a0:eb:36:af:76:ad:55: 74:e1:19:37:23:d7:a3:f1:eb:51:58:51:14:3b:00:c2:b7:af: c9:39:6b:a5:69:d1:2b:ab:fe:c5:85:ba:7f:31:f3:ba:cc:a6: e3:2f:84:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNCNDcxMTAvBgNVBAUTKDVERjU2NkQ3NjIzNjdDMjhDN0YzRjEyNTYxQjQ3MTZC OENBMUI5NjYwHhcNMjUwOTE3MDU0NDA4WhcNMjUwOTI0MDU0NDA4WjAYMRYwFAYD VQQDEw02OGNhNGFhOC03ODIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6yditNdKubnqubzHJHFSgMbB8Vs6H2GYbqvMfEHaHR/x/3Z5vr5UjZnNjMMN ztuzXOJWziy3jskn5dbHpOd8UWmHzRl9rA4anEsx01Azg9hYVpM5c/gUME8aRxqx gnwH4DkhiRgZ4rxzSsqGX/KsgtLcITD1lySNmrbU6lvZ+9szKPkKGClGJJ6zLckK u55+ZcKDSSnvinhWLEkPRaSnAqfsCZnpKslZdZxfVimRh5XmidSFX9kfxMlByMwK sKIVana7X4W7syPl9TQ7Vy2Ajn0gBzLBGijkFPlzrqDHkilrNz3M4tvBy1FgaBk3 ukN6tHUgPOqb7P+LzqRSbyev/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPMVrqXw DtHwHDzzXNYqltqyMMHeMB8GA1UdIwQYMBaAFF31ZtdiNnwox/PxJWG0cWuMoblm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0I0Ny84NzFCOTI5NDBG QTQxMUVGQTFBMTY5MzRDNEY5QUUwMi9YZlZtMTJJMmZDakg4X0VsWWJSeGE0eWh1 V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hmVm0xMkkyZkNqSDhfRWxZYlJ4YTR5aHVXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0I0Ny84NzFCOTI5NDBGQTQxMUVGQTFBMTY5MzRDNEY5QUUwMi9YZlZtMTJJMmZD akg4X0VsWWJSeGE0eWh1V1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAevjJtx0qFFTVKxc8LMCQkn5HTozBgRoJQ+9zcL/7D5eeycV8ud08q Rjx4u27vT/6H9kSV1bVzEvqgD7xEf60wC4oT9Zsmg5m5lFfSGAiYp31oOPiQNM94 5+P6G5xpKnXbgjEmcy36k/1FPfQIaYcd7h7VphhBeAGSSH0JZzeb2+PQP6yWNTOv UBLldwwO2SN3Tqj6fknrNGVCvFQAfLH/kqXwOvqAE2JG1W9pbhbXO2g8HY+TNkSb 51t/93LXgAZ2q4sLItJ7lT3fSWEQdFLRCKDrNq92rVV04Rk3I9ej8etRWFEUOwDC t6/JOWuladErq/7Fhbp/MfO6zKbjL4Ri -----END CERTIFICATE-----Generated at Fri Sep 19 04:23:23 2025 by rpki-client