$ rpki-client -vvf rpki.apnic.net/member_repository/A9142812/C1E5DD1E807B11EBA83AC01DC4F9AE02/XEWtAAu9UKcPk6XLcLZmgKUo7cA.mft File: XEWtAAu9UKcPk6XLcLZmgKUo7cA.mft (raw, json) Hash identifier: 9k9a5D+OIBAjJT5keVDcbRm3SKYRcEihle/d45KuG4U= Subject key identifier: FD:3B:CE:C4:CF:ED:64:0C:4A:DE:BB:DC:8D:0A:82:A7:04:3B:53:E5 Authority key identifier: 5C:45:AD:00:0B:BD:50:A7:0F:93:A5:CB:70:B6:66:80:A5:28:ED:C0 Certificate issuer: /CN=A9142812/serialNumber=5C45AD000BBD50A70F93A5CB70B66680A528EDC0 Certificate serial: 06A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEWtAAu9UKcPk6XLcLZmgKUo7cA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142812/C1E5DD1E807B11EBA83AC01DC4F9AE02/XEWtAAu9UKcPk6XLcLZmgKUo7cA.mft Manifest number: 0698 Signing time: Thu 04 Sep 2025 22:32:44 +0000 Manifest this update: Thu 04 Sep 2025 22:32:43 +0000 Manifest next update: Thu 11 Sep 2025 22:32:43 +0000 Files and hashes: 1: XEWtAAu9UKcPk6XLcLZmgKUo7cA.crl (hash: Dl9ZZpxm8nnBIrECXPFOgVxg+9vMCzsD5k/Kusd1XWs=) 2: 9ADBEC30DA6411EF95F32A7FC4F9AE02.roa (hash: Ode9C1rjZZ48xy/QuIzg9S8zoYsoG2CKnN/yX25u2gs=) 3: 9BE20420DA6411EF95F32A7FC4F9AE02.roa (hash: p4MgzG+OXWtv9vZOtFXE4K9GjNanwMoHoivstYkkSaU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142812/C1E5DD1E807B11EBA83AC01DC4F9AE02/XEWtAAu9UKcPk6XLcLZmgKUo7cA.crl rsync://rpki.apnic.net/member_repository/A9142812/C1E5DD1E807B11EBA83AC01DC4F9AE02/XEWtAAu9UKcPk6XLcLZmgKUo7cA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEWtAAu9UKcPk6XLcLZmgKUo7cA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 22:32:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1700 (0x6a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142812, serialNumber=5C45AD000BBD50A70F93A5CB70B66680A528EDC0 Validity Not Before: Sep 4 22:32:43 2025 GMT Not After : Sep 11 22:32:43 2025 GMT Subject: CN=68ba138b-f35e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:cf:de:02:0f:9c:2f:14:19:5d:68:5e:03:a1: 7e:ae:41:a9:b0:52:9a:47:b7:72:80:b0:88:61:d2: f0:94:a2:d0:20:17:db:53:d0:57:bc:29:18:af:bb: ae:5e:c9:7e:8f:82:e7:69:83:e8:dc:33:97:b4:22: d3:37:20:40:c4:90:54:33:90:c4:df:93:77:d3:97: a2:52:34:43:5d:ea:15:be:e8:3c:88:66:c1:b1:20: 0a:98:b9:d8:e9:c8:5d:22:8e:36:a5:0e:38:7a:d2: 45:78:9c:3d:df:b9:43:1e:70:a7:9c:5f:a0:70:7d: b1:da:f7:e2:53:0f:07:85:d5:ea:63:37:67:19:96: 18:ff:36:4c:c5:f2:b9:1f:2d:db:09:48:a1:95:05: a1:96:b3:ec:bf:56:2e:81:60:13:8f:8d:18:c1:c5: 92:b9:f5:b2:0c:fa:6e:08:41:27:fa:e5:e6:a8:d8: 0c:90:21:57:01:23:00:7d:17:05:49:6e:b4:98:21: 88:9b:17:2a:86:b6:67:40:0c:ab:75:02:f6:ab:ba: 8d:6f:4a:cc:58:9f:d8:c3:47:0c:1c:58:cc:52:8e: 4b:6c:dc:7b:83:17:c4:19:44:69:90:f1:ff:0f:d4: 79:51:ad:48:d1:22:e2:81:90:a4:42:f2:fe:7d:97: 54:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:3B:CE:C4:CF:ED:64:0C:4A:DE:BB:DC:8D:0A:82:A7:04:3B:53:E5 X509v3 Authority Key Identifier: keyid:5C:45:AD:00:0B:BD:50:A7:0F:93:A5:CB:70:B6:66:80:A5:28:ED:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142812/C1E5DD1E807B11EBA83AC01DC4F9AE02/XEWtAAu9UKcPk6XLcLZmgKUo7cA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEWtAAu9UKcPk6XLcLZmgKUo7cA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142812/C1E5DD1E807B11EBA83AC01DC4F9AE02/XEWtAAu9UKcPk6XLcLZmgKUo7cA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:42:f7:8f:a7:3d:62:89:bf:00:04:89:25:5b:10:86:a7:63: 24:0b:8b:a4:4b:04:7e:41:e6:42:61:1f:55:c0:f4:ea:08:11: 8a:3c:81:44:52:6e:ee:f3:48:b7:ac:68:3b:b9:91:5f:f4:06: b4:ab:a4:ec:f9:47:2c:23:2b:f3:81:13:16:9b:91:e8:5b:8d: f8:4c:a1:d8:f2:80:81:d8:a7:cc:e9:8c:d8:99:02:54:1e:10: 33:40:68:c5:43:69:74:d5:f9:f0:b3:f9:43:b3:6b:24:6d:77: aa:ac:88:f3:8a:40:68:c5:94:f6:a5:48:e6:3c:a0:7b:39:10: 01:46:d7:90:2b:51:d1:e4:43:41:b9:c3:5f:15:c8:af:5c:43: 6a:c3:8f:7d:db:bd:86:14:f0:c5:44:f7:ce:ce:cf:6c:e5:e1: f5:e7:7b:6c:bb:10:4b:fa:8b:7d:63:7b:9e:0e:48:0c:db:ea: ba:b7:e0:09:bf:f0:c5:7b:25:d2:14:86:5f:bb:57:2b:ac:de: e8:e0:ed:65:88:51:95:57:ac:82:68:40:bc:cb:eb:18:f7:59: a8:e7:b8:47:0b:90:12:fa:e8:65:f5:1f:58:af:e6:bb:c7:52: e0:9d:3c:bb:93:61:97:17:71:30:4e:35:78:54:d3:e0:08:12: f1:9c:5a:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI4MTIxMTAvBgNVBAUTKDVDNDVBRDAwMEJCRDUwQTcwRjkzQTVDQjcwQjY2Njgw QTUyOEVEQzAwHhcNMjUwOTA0MjIzMjQzWhcNMjUwOTExMjIzMjQzWjAYMRYwFAYD VQQDEw02OGJhMTM4Yi1mMzVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArs/eAg+cLxQZXWheA6F+rkGpsFKaR7dygLCIYdLwlKLQIBfbU9BXvCkYr7uu Xsl+j4LnaYPo3DOXtCLTNyBAxJBUM5DE35N305eiUjRDXeoVvug8iGbBsSAKmLnY 6chdIo42pQ44etJFeJw937lDHnCnnF+gcH2x2vfiUw8HhdXqYzdnGZYY/zZMxfK5 Hy3bCUihlQWhlrPsv1YugWATj40YwcWSufWyDPpuCEEn+uXmqNgMkCFXASMAfRcF SW60mCGImxcqhrZnQAyrdQL2q7qNb0rMWJ/Yw0cMHFjMUo5LbNx7gxfEGURpkPH/ D9R5Ua1I0SLigZCkQvL+fZdU0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP07zsTP 7WQMSt673I0KgqcEO1PlMB8GA1UdIwQYMBaAFFxFrQALvVCnD5Oly3C2ZoClKO3A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjgxMi9DMUU1REQxRTgw N0IxMUVCQTgzQUMwMURDNEY5QUUwMi9YRVd0QUF1OVVLY1BrNlhMY0xabWdLVW83 Y0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hFV3RBQXU5VUtjUGs2WExjTFptZ0tVbzdjQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjgxMi9DMUU1REQxRTgwN0IxMUVCQTgzQUMwMURDNEY5QUUwMi9YRVd0QUF1OVVL Y1BrNlhMY0xabWdLVW83Y0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0QvePpz1iib8ABIklWxCGp2MkC4ukSwR+QeZCYR9VwPTqCBGKPIFE Um7u80i3rGg7uZFf9Aa0q6Ts+UcsIyvzgRMWm5HoW434TKHY8oCB2KfM6YzYmQJU HhAzQGjFQ2l01fnws/lDs2skbXeqrIjzikBoxZT2pUjmPKB7ORABRteQK1HR5ENB ucNfFcivXENqw499272GFPDFRPfOzs9s5eH153tsuxBL+ot9Y3ueDkgM2+q6t+AJ v/DFeyXSFIZfu1crrN7o4O1liFGVV6yCaEC8y+sY91mo57hHC5AS+uhl9R9Yr+a7 x1LgnTy7k2GXF3EwTjV4VNPgCBLxnFpW -----END CERTIFICATE-----Generated at Sat Sep 6 13:33:54 2025 by rpki-client