$ rpki-client -vvf rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft File: X3A2SNc_YGlFARjbom-WaC1a5so.mft (raw, json) Hash identifier: qsfY+6LlQcpLCQqyctZWDuZ+BixZADOBmTZuwo3gcW4= Subject key identifier: CE:9C:02:B2:25:63:48:6B:E9:52:49:B8:52:B5:13:8F:B2:ED:2D:6D Authority key identifier: 5F:70:36:48:D7:3F:60:69:45:01:18:DB:A2:6F:96:68:2D:5A:E6:CA Certificate issuer: /CN=A91508BB/serialNumber=5F703648D73F6069450118DBA26F96682D5AE6CA Certificate serial: 34BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft Manifest number: 34BD Signing time: Thu 18 Sep 2025 14:40:07 +0000 Manifest this update: Thu 18 Sep 2025 14:40:06 +0000 Manifest next update: Thu 25 Sep 2025 14:40:06 +0000 Files and hashes: 1: X3A2SNc_YGlFARjbom-WaC1a5so.crl (hash: IfUupOTGEsq/WeAWXQ65bd21+2sHNCHh1Dzjie9uPA0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.crl rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 14:40:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13501 (0x34bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91508BB, serialNumber=5F703648D73F6069450118DBA26F96682D5AE6CA Validity Not Before: Sep 18 14:40:06 2025 GMT Not After : Sep 25 14:40:06 2025 GMT Subject: CN=68cc19c7-2d4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:68:48:72:05:d4:75:bc:f1:f9:49:be:77:a6: 05:ca:ae:7a:69:b8:71:41:39:2d:d0:e0:63:f2:8a: 15:01:57:aa:50:85:d0:3b:a5:b5:25:60:b6:4e:8a: 4f:cd:22:0e:90:ac:45:2e:29:2c:73:b8:a0:b0:be: 9c:5f:28:ab:30:d7:86:aa:9e:ac:f8:0a:6c:3b:16: 79:27:8a:f5:ed:bf:20:2b:96:62:1d:9f:75:52:91: fc:a1:5d:f3:1f:ac:0e:85:a6:57:6e:18:0e:40:10: 3c:05:d4:d2:a4:6f:dd:42:26:ff:ba:23:5c:28:6f: a3:97:3e:23:03:3b:2b:98:8b:d6:67:20:d0:e5:06: 95:84:30:00:f0:0a:64:eb:6f:be:9f:97:6e:cb:93: 1b:4f:2d:a7:84:bd:7a:1b:a6:65:10:3b:a3:21:cf: d0:7f:d3:a9:c7:9f:77:3f:8f:8b:92:57:ac:79:46: cd:44:67:9f:32:ef:c4:e4:c1:58:26:55:bf:4b:ad: 5e:84:c5:ee:20:a7:04:2c:f8:76:2d:b0:87:ae:8f: 8b:af:54:2b:33:eb:bc:b3:10:bf:08:ba:19:2b:31: 34:a9:2f:08:2d:f6:f1:ec:17:d6:ab:a5:26:1f:ad: 64:42:05:b4:09:56:3b:65:ad:21:59:a0:03:c7:de: 51:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:9C:02:B2:25:63:48:6B:E9:52:49:B8:52:B5:13:8F:B2:ED:2D:6D X509v3 Authority Key Identifier: keyid:5F:70:36:48:D7:3F:60:69:45:01:18:DB:A2:6F:96:68:2D:5A:E6:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:4a:6b:74:2b:bb:89:78:7a:7c:22:8d:2c:28:4f:bd:59:1e: e0:0a:8e:a7:8c:33:1e:37:4f:5f:99:cc:35:0b:59:a4:de:a6: 14:2d:02:19:0d:e7:03:9f:7a:23:04:cc:2b:07:b6:72:61:a7: 5c:0d:59:cf:38:e1:3f:4d:de:8c:e1:28:df:cd:a5:e3:cf:b5: 31:2a:d8:9b:63:ad:72:bc:3a:0c:ba:35:3e:b9:bd:74:62:19: 3e:d3:38:55:4c:06:20:0e:33:d4:81:11:31:1c:2f:ff:6b:09: 52:de:3f:1d:e4:6d:95:e4:8c:86:ea:b5:f3:b9:a2:17:62:04: 03:04:30:ab:07:57:48:2c:11:55:90:7f:90:f5:39:7e:33:a8: 59:c2:55:9d:98:48:1f:4a:97:41:d6:ce:52:6b:f8:41:b2:d2: 81:f1:2b:7f:77:34:49:9f:0e:6e:db:0a:39:14:22:56:bf:b8: 72:b8:d6:fa:3a:6a:39:6e:21:50:52:de:c2:aa:07:99:04:41: 6e:ae:62:13:e6:87:cc:e6:7a:e4:48:14:1c:12:19:26:aa:c0: d3:71:2d:03:b0:c7:c4:d3:95:9f:e9:26:03:88:d5:fe:43:e5: 21:4f:ff:58:65:aa:ef:f8:b0:40:bc:b3:f8:e6:60:fa:8b:63: ba:c6:69:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA4QkIxMTAvBgNVBAUTKDVGNzAzNjQ4RDczRjYwNjk0NTAxMThEQkEyNkY5NjY4 MkQ1QUU2Q0EwHhcNMjUwOTE4MTQ0MDA2WhcNMjUwOTI1MTQ0MDA2WjAYMRYwFAYD VQQDEw02OGNjMTljNy0yZDRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxGhIcgXUdbzx+Um+d6YFyq56abhxQTkt0OBj8ooVAVeqUIXQO6W1JWC2TopP zSIOkKxFLiksc7igsL6cXyirMNeGqp6s+ApsOxZ5J4r17b8gK5ZiHZ91UpH8oV3z H6wOhaZXbhgOQBA8BdTSpG/dQib/uiNcKG+jlz4jAzsrmIvWZyDQ5QaVhDAA8Apk 62++n5duy5MbTy2nhL16G6ZlEDujIc/Qf9Opx593P4+LkleseUbNRGefMu/E5MFY JlW/S61ehMXuIKcELPh2LbCHro+Lr1QrM+u8sxC/CLoZKzE0qS8ILfbx7BfWq6Um H61kQgW0CVY7Za0hWaADx95RHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM6cArIl Y0hr6VJJuFK1E4+y7S1tMB8GA1UdIwQYMBaAFF9wNkjXP2BpRQEY26JvlmgtWubK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDhCQi81QTBEOTU4ODFE OEQxMUUyQTlENjA3RUIwOEIwMkNEMi9YM0EyU05jX1lHbEZBUmpib20tV2FDMWE1 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gzQTJTTmNfWUdsRkFSamJvbS1XYUMxYTVzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDhCQi81QTBEOTU4ODFEOEQxMUUyQTlENjA3RUIwOEIwMkNEMi9YM0EyU05jX1lH bEZBUmpib20tV2FDMWE1c28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOSmt0K7uJeHp8Io0sKE+9WR7gCo6njDMeN09fmcw1C1mk3qYULQIZ DecDn3ojBMwrB7ZyYadcDVnPOOE/Td6M4SjfzaXjz7UxKtibY61yvDoMujU+ub10 Yhk+0zhVTAYgDjPUgRExHC//awlS3j8d5G2V5IyG6rXzuaIXYgQDBDCrB1dILBFV kH+Q9Tl+M6hZwlWdmEgfSpdB1s5Sa/hBstKB8St/dzRJnw5u2wo5FCJWv7hyuNb6 Omo5biFQUt7CqgeZBEFurmIT5ofM5nrkSBQcEhkmqsDTcS0DsMfE05Wf6SYDiNX+ Q+UhT/9YZarv+LBAvLP45mD6i2O6xmkq -----END CERTIFICATE-----Generated at Fri Sep 19 04:20:20 2025 by rpki-client