$ rpki-client -vvf rpki.apnic.net/member_repository/A913638A/5BDD2CAE954711EF96808F2CC4F9AE02/xGxDuid9LBDufR7_PfDi78iFGh0.mft File: xGxDuid9LBDufR7_PfDi78iFGh0.mft (raw, json) Hash identifier: X6hlspWJ5morSsTTiSezK9iDVAB/Yaj8pTXQyeWKorY= Subject key identifier: CD:8E:CA:D3:65:3E:75:42:11:CC:F0:CC:65:2D:34:50:24:6F:CA:6D Authority key identifier: C4:6C:43:BA:27:7D:2C:10:EE:7D:1E:FF:3D:F0:E2:EF:C8:85:1A:1D Certificate issuer: /CN=A913638A/serialNumber=C46C43BA277D2C10EE7D1EFF3DF0E2EFC8851A1D Certificate serial: AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGxDuid9LBDufR7_PfDi78iFGh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913638A/5BDD2CAE954711EF96808F2CC4F9AE02/xGxDuid9LBDufR7_PfDi78iFGh0.mft Manifest number: AA Signing time: Wed 17 Sep 2025 06:53:13 +0000 Manifest this update: Wed 17 Sep 2025 06:53:12 +0000 Manifest next update: Wed 24 Sep 2025 06:53:12 +0000 Files and hashes: 1: xGxDuid9LBDufR7_PfDi78iFGh0.crl (hash: DAgfpCXvew0+saJ/jEaAMV0ExQO7Mb6H33NXIZ2vlEU=) 2: 9D7ED59A954711EF9830412DC4F9AE02.roa (hash: ijUv0+puTZ+N4j9fhEKBY9wHAWPDCsnAi/IUGHnumK4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913638A/5BDD2CAE954711EF96808F2CC4F9AE02/xGxDuid9LBDufR7_PfDi78iFGh0.crl rsync://rpki.apnic.net/member_repository/A913638A/5BDD2CAE954711EF96808F2CC4F9AE02/xGxDuid9LBDufR7_PfDi78iFGh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGxDuid9LBDufR7_PfDi78iFGh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 06:53:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913638A, serialNumber=C46C43BA277D2C10EE7D1EFF3DF0E2EFC8851A1D Validity Not Before: Sep 17 06:53:12 2025 GMT Not After : Sep 24 06:53:12 2025 GMT Subject: CN=68ca5ad8-cf78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b5:19:56:d0:24:19:09:a4:b2:b1:7a:36:77: ca:eb:77:72:90:84:9c:91:c9:5c:bf:3e:70:f2:90: 4a:85:a4:1d:ef:39:87:58:32:5b:78:7b:c4:d5:cf: 3c:ba:f5:d7:16:e9:be:f7:ea:5e:c9:67:1d:9d:18: 0d:43:1b:5b:6f:40:d5:41:12:49:72:43:38:7d:44: 8e:ff:f4:62:d4:9f:a5:80:e2:24:10:64:e8:f8:a3: e3:85:15:70:a3:9a:a7:22:67:c9:96:7b:55:16:8c: 8f:b0:73:45:01:c1:49:95:34:52:ce:0a:75:64:51: 57:9e:65:cb:e9:b0:d5:66:4b:33:86:1f:88:05:7d: 30:f6:92:a2:ac:a5:fc:19:32:6a:54:ec:cf:9b:93: 53:55:4e:94:f5:a8:17:9c:07:1a:0d:55:aa:fe:d7: fe:3a:8a:cf:77:ba:bb:db:41:04:6b:b5:64:97:1f: 30:db:b7:d0:02:7b:d1:f9:23:1d:56:d5:12:b7:15: 8d:04:ae:a0:dd:ae:fb:32:18:de:d6:25:e4:55:f9: 08:b7:39:15:9b:64:d5:8e:b9:d2:e9:06:fe:da:84: e3:5e:e4:9b:fa:64:a7:92:ec:39:ea:9e:f9:c9:c0: 57:d2:8d:b6:44:35:f2:4e:2a:3f:34:58:2e:ea:26: db:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:8E:CA:D3:65:3E:75:42:11:CC:F0:CC:65:2D:34:50:24:6F:CA:6D X509v3 Authority Key Identifier: keyid:C4:6C:43:BA:27:7D:2C:10:EE:7D:1E:FF:3D:F0:E2:EF:C8:85:1A:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913638A/5BDD2CAE954711EF96808F2CC4F9AE02/xGxDuid9LBDufR7_PfDi78iFGh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGxDuid9LBDufR7_PfDi78iFGh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913638A/5BDD2CAE954711EF96808F2CC4F9AE02/xGxDuid9LBDufR7_PfDi78iFGh0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:97:6d:54:c6:15:17:f1:4c:cb:c0:9c:97:9f:d7:de:5f:1d: 24:7c:6d:47:c2:54:9e:95:c2:51:bf:93:c1:d4:b1:32:dc:21: 0c:5d:82:3d:33:96:df:cf:51:e7:63:9b:e5:33:ab:c8:5d:84: 19:3c:a1:ab:0c:be:a5:13:b8:f5:3d:c3:03:e3:67:06:a5:0e: e1:74:de:ec:47:de:fa:66:bd:e8:82:ba:da:01:91:91:b0:2f: 48:3d:33:d9:2a:34:fd:49:73:e2:8b:9c:0c:95:d5:ef:90:2a: f5:3c:8d:b4:08:50:a6:9a:68:8d:b1:45:5b:07:74:3c:80:9b: f1:16:8a:87:ac:47:0f:d7:83:0f:38:99:33:28:15:1a:e6:90: d1:02:4c:6f:e9:8c:c4:37:f4:b4:d2:35:6f:da:fb:93:99:c1: ec:3a:30:3f:7a:f1:02:0b:cd:83:a5:5e:b2:61:0d:db:ab:36: 68:ea:e1:4c:7f:c9:f2:9e:38:74:15:96:c2:d2:a3:e7:a7:7a: 62:66:c5:28:ee:e7:11:9e:47:08:5f:6a:26:3a:2d:e6:18:9e: 47:c9:30:fc:e0:1a:51:75:cb:6b:14:7d:04:28:4e:8c:66:d6: 51:2e:5f:87:c9:c0:6b:6c:4a:a5:65:bf:d1:f7:e8:0f:32:b8: 37:b2:b2:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzYzOEExMTAvBgNVBAUTKEM0NkM0M0JBMjc3RDJDMTBFRTdEMUVGRjNERjBFMkVG Qzg4NTFBMUQwHhcNMjUwOTE3MDY1MzEyWhcNMjUwOTI0MDY1MzEyWjAYMRYwFAYD VQQDEw02OGNhNWFkOC1jZjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA07UZVtAkGQmksrF6NnfK63dykISckclcvz5w8pBKhaQd7zmHWDJbeHvE1c88 uvXXFum+9+peyWcdnRgNQxtbb0DVQRJJckM4fUSO//Ri1J+lgOIkEGTo+KPjhRVw o5qnImfJlntVFoyPsHNFAcFJlTRSzgp1ZFFXnmXL6bDVZkszhh+IBX0w9pKirKX8 GTJqVOzPm5NTVU6U9agXnAcaDVWq/tf+OorPd7q720EEa7Vklx8w27fQAnvR+SMd VtUStxWNBK6g3a77Mhje1iXkVfkItzkVm2TVjrnS6Qb+2oTjXuSb+mSnkuw56p75 ycBX0o22RDXyTio/NFgu6ibb6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM2OytNl PnVCEczwzGUtNFAkb8ptMB8GA1UdIwQYMBaAFMRsQ7onfSwQ7n0e/z3w4u/IhRod MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjM4QS81QkREMkNBRTk1 NDcxMUVGOTY4MDhGMkNDNEY5QUUwMi94R3hEdWlkOUxCRHVmUjdfUGZEaTc4aUZH aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hHeER1aWQ5TEJEdWZSN19QZkRpNzhpRkdoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjM4QS81QkREMkNBRTk1NDcxMUVGOTY4MDhGMkNDNEY5QUUwMi94R3hEdWlkOUxC RHVmUjdfUGZEaTc4aUZHaDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3l21UxhUX8UzLwJyXn9feXx0kfG1HwlSelcJRv5PB1LEy3CEMXYI9 M5bfz1HnY5vlM6vIXYQZPKGrDL6lE7j1PcMD42cGpQ7hdN7sR976Zr3ogrraAZGR sC9IPTPZKjT9SXPii5wMldXvkCr1PI20CFCmmmiNsUVbB3Q8gJvxFoqHrEcP14MP OJkzKBUa5pDRAkxv6YzEN/S00jVv2vuTmcHsOjA/evECC82DpV6yYQ3bqzZo6uFM f8nynjh0FZbC0qPnp3piZsUo7ucRnkcIX2omOi3mGJ5HyTD84BpRdctrFH0EKE6M ZtZRLl+HycBrbEqlZb/R9+gPMrg3srKa -----END CERTIFICATE-----Generated at Fri Sep 19 02:31:38 2025 by rpki-client