$ rpki-client -vvf rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.mft File: XTwWiWSSv8hwyKALZou_6VlF-No.mft (raw, json) Hash identifier: AXwH7iuSn9OtobDGfnr5C7iKKukThaSUhLRM521zX7U= Subject key identifier: 7F:C7:7B:9F:59:1E:DB:E6:BE:2C:FC:8E:8B:A5:E9:93:C2:29:18:F8 Authority key identifier: 5D:3C:16:89:64:92:BF:C8:70:C8:A0:0B:66:8B:BF:E9:59:45:F8:DA Certificate issuer: /CN=A9136C7C/serialNumber=5D3C16896492BFC870C8A00B668BBFE95945F8DA Certificate serial: 0176 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTwWiWSSv8hwyKALZou_6VlF-No.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.mft Manifest number: 0168 Signing time: Wed 03 Sep 2025 04:25:48 +0000 Manifest this update: Wed 03 Sep 2025 04:25:47 +0000 Manifest next update: Wed 10 Sep 2025 04:25:47 +0000 Files and hashes: 1: XTwWiWSSv8hwyKALZou_6VlF-No.crl (hash: V+wsBYoYj+ybAiamHVQ5RRFzVOXklL4K030g//5SiiE=) 2: DFE29CB669E511EE92E9E35AC4F9AE02.roa (hash: 1ZszVXnu+oof2agkcsw2N+1e9S9zcssyc5TigB7H1/w=) 3: 6821BAB4450C11F0A7A54A80C4F9AE02.roa (hash: cK+N9izYWqB7nJ2gb9CD89n2r86dl3xekNBy66q5a0Q=) 4: DF0BED1069E511EE92E9E35AC4F9AE02.roa (hash: e26WrvOpcLVtFLCEGQEyLqc/kWvK3maBfU7Yb9x41Mg=) 5: 6911C6C6450C11F0A7A54A80C4F9AE02.roa (hash: XM9Bx/2dvSebxGit5XsfhdOhtq9u4/gFe4PEE8p0hU0=) 6: 688DF576450C11F0A7A54A80C4F9AE02.roa (hash: 4F6WXMQnkc6O0hYawZzx3De82Qtz5srkx6WGHHAwdQk=) 7: 065143FAB71C11EF9C368D66C4F9AE02.roa (hash: ejDPctxuPr+08V8pahIdV3zpYnFneVGtkqcwrd8I5VM=) 8: DF7C0A6E69E511EE92E9E35AC4F9AE02.roa (hash: NbEb3oWP2ceJtb7zrqoj41m3/pXeHDptDVhijrcSdOE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.crl rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTwWiWSSv8hwyKALZou_6VlF-No.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 04:25:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 374 (0x176) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136C7C, serialNumber=5D3C16896492BFC870C8A00B668BBFE95945F8DA Validity Not Before: Sep 3 04:25:47 2025 GMT Not After : Sep 10 04:25:47 2025 GMT Subject: CN=68b7c34b-ca6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:54:64:8f:a2:c8:09:1e:1a:ab:d9:05:c6:0e: 76:47:cc:49:2f:71:45:81:fb:18:00:64:db:c1:f4: 94:36:3d:1e:5f:cb:59:9b:0a:95:1f:39:f1:14:96: da:b8:3c:69:58:58:af:6f:19:94:6a:e2:6d:24:89: d6:fa:f8:e5:57:1f:ef:5d:a4:e5:2e:42:78:a1:ec: ce:82:fa:68:40:66:ef:8d:25:1e:4b:d0:39:1c:04: b6:dc:1a:2f:5e:ae:ac:25:25:7c:c2:97:7c:4b:7b: a4:fa:36:ff:90:b4:76:2f:4a:89:79:e6:a4:5c:cc: 65:ef:57:e2:bc:5d:52:51:d8:88:1b:fe:8f:a9:fc: a2:94:7f:f9:f9:0d:b0:a0:43:c3:a6:0a:74:0d:bf: 8f:de:b7:21:9c:89:1e:0a:8a:7c:d5:4f:b5:4d:b9: 15:02:e7:43:06:c4:b0:80:15:c9:5d:da:b8:78:11: 1e:df:76:bc:20:c4:b7:0d:ca:0d:28:32:8d:6c:9b: aa:61:b6:06:9c:30:78:86:5d:3d:23:3c:c0:67:5b: da:98:7d:08:58:43:75:73:e5:32:29:b1:6f:c6:6f: ed:99:b5:23:94:b0:0c:91:f1:28:fb:ae:00:97:82: ae:5f:85:c1:ff:28:cd:16:ac:94:c9:de:3a:05:87: 8b:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:C7:7B:9F:59:1E:DB:E6:BE:2C:FC:8E:8B:A5:E9:93:C2:29:18:F8 X509v3 Authority Key Identifier: keyid:5D:3C:16:89:64:92:BF:C8:70:C8:A0:0B:66:8B:BF:E9:59:45:F8:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTwWiWSSv8hwyKALZou_6VlF-No.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:b7:df:a1:c7:fe:ee:6c:61:54:f0:a0:62:e3:50:4d:e4:e6: 31:d5:ed:85:44:95:7f:18:19:03:b2:33:09:25:ba:4a:c6:0c: 41:e1:82:28:ff:1e:bf:03:79:9d:f2:66:c1:1a:da:69:a4:00: 15:e7:b1:a1:c7:fc:03:06:a9:eb:cb:97:9b:ac:39:1c:49:5c: 78:62:b3:65:36:8b:b8:b9:aa:24:dc:fb:b0:7c:7e:8e:ca:e2: 50:fe:9c:a9:ab:2b:a2:94:dd:3e:28:10:31:ef:55:ed:d5:dc: b0:fb:12:71:00:f3:d8:60:d1:40:38:bd:30:c5:2f:03:12:d2: fd:cf:fe:16:d7:80:fc:4a:65:86:d4:5e:a1:36:c6:b2:68:25: 7c:45:19:b6:3b:c1:56:ea:66:a5:86:f1:32:ec:c6:66:2a:47: 2f:3d:19:15:06:07:e7:8e:9f:95:7d:cb:32:36:a3:11:2b:8e: 18:c6:ce:e9:62:3b:7c:6d:4e:ea:fc:c2:32:8a:5c:f5:5c:a4: 51:72:fa:5a:8c:61:f8:6b:99:a4:87:03:0e:eb:d0:5f:da:48: df:19:94:c0:69:ca:47:0b:88:3d:67:32:db:7f:4a:e6:41:86: 75:85:86:79:56:54:c3:dc:67:ed:bd:04:10:f3:3f:e9:1c:f0: dd:30:6e:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZDN0MxMTAvBgNVBAUTKDVEM0MxNjg5NjQ5MkJGQzg3MEM4QTAwQjY2OEJCRkU5 NTk0NUY4REEwHhcNMjUwOTAzMDQyNTQ3WhcNMjUwOTEwMDQyNTQ3WjAYMRYwFAYD VQQDEw02OGI3YzM0Yi1jYTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlFRkj6LICR4aq9kFxg52R8xJL3FFgfsYAGTbwfSUNj0eX8tZmwqVHznxFJba uDxpWFivbxmUauJtJInW+vjlVx/vXaTlLkJ4oezOgvpoQGbvjSUeS9A5HAS23Bov Xq6sJSV8wpd8S3uk+jb/kLR2L0qJeeakXMxl71fivF1SUdiIG/6PqfyilH/5+Q2w oEPDpgp0Db+P3rchnIkeCop81U+1TbkVAudDBsSwgBXJXdq4eBEe33a8IMS3DcoN KDKNbJuqYbYGnDB4hl09IzzAZ1vamH0IWEN1c+UyKbFvxm/tmbUjlLAMkfEo+64A l4KuX4XB/yjNFqyUyd46BYeLzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH/He59Z Htvmviz8joul6ZPCKRj4MB8GA1UdIwQYMBaAFF08Folkkr/IcMigC2aLv+lZRfja MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkM3Qy8yQjVDQUFFODY5 RTUxMUVFQkI2NjgyNDZDNEY5QUUwMi9YVHdXaVdTU3Y4aHd5S0FMWm91XzZWbEYt Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hUd1dpV1NTdjhod3lLQUxab3VfNlZsRi1Oby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkM3Qy8yQjVDQUFFODY5RTUxMUVFQkI2NjgyNDZDNEY5QUUwMi9YVHdXaVdTU3Y4 aHd5S0FMWm91XzZWbEYtTm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1t9+hx/7ubGFU8KBi41BN5OYx1e2FRJV/GBkDsjMJJbpKxgxB4YIo /x6/A3md8mbBGtpppAAV57Ghx/wDBqnry5ebrDkcSVx4YrNlNou4uaok3PuwfH6O yuJQ/pypqyuilN0+KBAx71Xt1dyw+xJxAPPYYNFAOL0wxS8DEtL9z/4W14D8SmWG 1F6hNsayaCV8RRm2O8FW6malhvEy7MZmKkcvPRkVBgfnjp+VfcsyNqMRK44Yxs7p Yjt8bU7q/MIyilz1XKRRcvpajGH4a5mkhwMO69Bf2kjfGZTAacpHC4g9ZzLbf0rm QYZ1hYZ5VlTD3GftvQQQ8z/pHPDdMG5d -----END CERTIFICATE-----Generated at Thu Sep 4 03:02:17 2025 by rpki-client