$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft File: XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft (raw, json) Hash identifier: emnO6g11C7U/Om5gZKrwBBg5UQ3pspQaM0l5qNkdkKY= Subject key identifier: 14:5F:03:2A:36:F3:2F:5D:2B:DF:5D:E4:C4:64:CD:E7:BE:05:E2:2C Authority key identifier: 5E:E7:CF:43:9A:42:23:23:29:82:A2:CB:4D:E5:4F:37:C7:20:5A:A9 Certificate issuer: /CN=A913AE78/serialNumber=5EE7CF439A4223232982A2CB4DE54F37C7205AA9 Certificate serial: 0785 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XufPQ5pCIyMpgqLLTeVPN8cgWqk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft Manifest number: 077F Signing time: Thu 18 Sep 2025 21:46:24 +0000 Manifest this update: Thu 18 Sep 2025 21:46:24 +0000 Manifest next update: Thu 25 Sep 2025 21:46:24 +0000 Files and hashes: 1: XufPQ5pCIyMpgqLLTeVPN8cgWqk.crl (hash: aV8N70IpT1wqrPUvwRaiy4emgj2znNl30Dw3+MBNcc8=) 2: D6138A3C292A11EB9CEDCC26C4F9AE02.roa (hash: eaeoz8RqOSGEC4peCpxGpY2PbARdRPwT9kf9QvE/Y6E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.crl rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XufPQ5pCIyMpgqLLTeVPN8cgWqk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 21:46:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1925 (0x785) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE78, serialNumber=5EE7CF439A4223232982A2CB4DE54F37C7205AA9 Validity Not Before: Sep 18 21:46:24 2025 GMT Not After : Sep 25 21:46:24 2025 GMT Subject: CN=68cc7db0-0470 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:e1:73:a6:04:02:ae:c6:da:cf:26:ab:cf:46: 61:53:9b:b6:6c:3f:73:b4:54:37:2c:8d:9e:b0:65: 94:28:40:f5:5d:c6:7e:4e:3e:2f:dd:fc:91:f2:b8: 49:de:22:3a:a9:9c:e5:d3:f5:32:1d:62:e8:6d:70: c4:3e:72:a9:64:29:89:4e:61:1c:bb:34:03:f6:7e: 89:ad:03:12:5c:44:9f:42:35:65:e7:37:b9:3b:7d: aa:da:83:8b:2f:71:7c:14:47:b2:93:93:dc:fd:68: e9:da:9b:3e:05:10:23:3f:d8:9a:32:4e:ef:c4:e4: 52:c0:b9:7b:e5:27:92:da:10:f7:e3:71:2b:eb:f0: e2:25:a1:cd:cd:84:c4:35:b1:b3:ee:79:f5:98:f9: 29:42:38:ae:90:db:b7:4d:dd:3c:c0:7e:ed:f7:16: 84:51:c6:d3:5b:49:d0:47:a1:fc:6b:21:0b:0c:70: 7e:a5:cd:0d:93:a7:46:ca:be:d6:64:01:36:6d:f7: dc:8a:6a:46:0b:92:35:69:78:87:56:c5:84:92:c7: ec:45:28:4c:cc:13:20:ab:b4:ed:34:b9:a6:55:26: ca:47:d6:42:82:20:19:b9:d0:a0:05:dd:96:57:37: 5e:04:66:29:d6:d0:cf:87:d5:f9:54:08:08:b3:f1: e6:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:5F:03:2A:36:F3:2F:5D:2B:DF:5D:E4:C4:64:CD:E7:BE:05:E2:2C X509v3 Authority Key Identifier: keyid:5E:E7:CF:43:9A:42:23:23:29:82:A2:CB:4D:E5:4F:37:C7:20:5A:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XufPQ5pCIyMpgqLLTeVPN8cgWqk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:24:fe:dd:46:13:e0:52:54:84:b8:dc:70:da:60:8d:49:c1: d4:1e:ea:8d:60:a6:52:a2:f3:82:d2:9f:65:51:9e:71:20:42: 8d:3f:1a:fc:42:69:32:52:b0:61:cc:68:8d:c6:c4:08:5a:ae: f2:68:c8:f0:bc:58:d6:45:db:98:b2:60:cb:fb:f7:a6:5b:e4: fa:37:84:c4:76:4f:be:7d:d7:4d:c2:0f:9c:eb:6e:14:7f:49: 99:c9:02:fc:c5:67:dd:95:aa:10:b7:50:34:b0:24:c7:ef:95: 25:d1:76:7c:9e:f6:fa:99:51:58:ab:26:58:ea:de:a8:43:d2: 5d:8e:ec:76:5b:a0:4a:f1:d7:05:31:8f:3f:e7:58:8f:f6:2d: bf:e4:7b:5c:fc:c5:c2:24:99:cd:10:0b:03:c5:85:56:64:aa: 3a:88:e0:d9:29:ea:e7:cb:1b:45:ce:98:64:35:08:c3:bd:55: a8:28:79:25:57:6c:96:50:a2:d3:09:a6:f2:4a:fc:36:f1:14: 2e:1f:d4:d6:17:89:ac:de:a9:7b:dc:99:72:d9:a3:00:a5:2e: d6:d6:d2:1b:e6:df:f7:5c:a7:d6:68:f0:48:6d:e8:5b:c3:a7: 19:86:12:99:22:45:5c:0f:cc:3d:77:db:52:54:82:d0:e0:47: 5f:f2:7f:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFNzgxMTAvBgNVBAUTKDVFRTdDRjQzOUE0MjIzMjMyOTgyQTJDQjRERTU0RjM3 QzcyMDVBQTkwHhcNMjUwOTE4MjE0NjI0WhcNMjUwOTI1MjE0NjI0WjAYMRYwFAYD VQQDEw02OGNjN2RiMC0wNDcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6uFzpgQCrsbazyarz0ZhU5u2bD9ztFQ3LI2esGWUKED1XcZ+Tj4v3fyR8rhJ 3iI6qZzl0/UyHWLobXDEPnKpZCmJTmEcuzQD9n6JrQMSXESfQjVl5ze5O32q2oOL L3F8FEeyk5Pc/Wjp2ps+BRAjP9iaMk7vxORSwLl75SeS2hD343Er6/DiJaHNzYTE NbGz7nn1mPkpQjiukNu3Td08wH7t9xaEUcbTW0nQR6H8ayELDHB+pc0Nk6dGyr7W ZAE2bffcimpGC5I1aXiHVsWEksfsRShMzBMgq7TtNLmmVSbKR9ZCgiAZudCgBd2W VzdeBGYp1tDPh9X5VAgIs/HmtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBRfAyo2 8y9dK99d5MRkzee+BeIsMB8GA1UdIwQYMBaAFF7nz0OaQiMjKYKiy03lTzfHIFqp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUU3OC9GMUY0RDNDRTI5 MjkxMUVCOTRFMzhEMjZDNEY5QUUwMi9YdWZQUTVwQ0l5TXBncUxMVGVWUE44Y2dX cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h1ZlBRNXBDSXlNcGdxTExUZVZQTjhjZ1dxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUU3OC9GMUY0RDNDRTI5MjkxMUVCOTRFMzhEMjZDNEY5QUUwMi9YdWZQUTVwQ0l5 TXBncUxMVGVWUE44Y2dXcWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqJP7dRhPgUlSEuNxw2mCNScHUHuqNYKZSovOC0p9lUZ5xIEKNPxr8 QmkyUrBhzGiNxsQIWq7yaMjwvFjWRduYsmDL+/emW+T6N4TEdk++fddNwg+c624U f0mZyQL8xWfdlaoQt1A0sCTH75Ul0XZ8nvb6mVFYqyZY6t6oQ9Jdjux2W6BK8dcF MY8/51iP9i2/5Htc/MXCJJnNEAsDxYVWZKo6iODZKernyxtFzphkNQjDvVWoKHkl V2yWUKLTCabySvw28RQuH9TWF4ms3ql73Jly2aMApS7W1tIb5t/3XKfWaPBIbehb w6cZhhKZIkVcD8w9d9tSVILQ4Edf8n/y -----END CERTIFICATE-----Generated at Fri Sep 19 11:55:18 2025 by rpki-client