$ rpki-client -vvf rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft File: XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft (raw, json) Hash identifier: HXq525r/NG7IyDIz6TtwlH+tBnaxk3bInTyOCryY15c= Subject key identifier: FB:C5:DB:15:6F:7E:D5:BE:35:15:80:BC:30:2B:A7:9E:4D:9D:BD:89 Authority key identifier: 5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A Certificate issuer: /CN=A91524AF/serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Certificate serial: 04BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft Manifest number: 04A6 Signing time: Sun 07 Sep 2025 00:23:51 +0000 Manifest this update: Sun 07 Sep 2025 00:23:51 +0000 Manifest next update: Sun 14 Sep 2025 00:23:51 +0000 Files and hashes: 1: XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl (hash: omPXcFbrxlGzJ6a2TNMR1UJBJ3huvB1dKrPRGtOd/Pk=) 2: BEB34436FE3211EFAA1D9A4EC4F9AE02.roa (hash: yFDpBLHsX38bp2JcWh75H9eK/2yaSCGu63FKHuPPshA=) 3: 87840F3AFBD111EFB4804F27C4F9AE02.roa (hash: 4ehbMo37a6ch/Exe1ear/YvsEg7kjNmAG4ZYn9dhULQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 00:23:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1213 (0x4bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91524AF, serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Validity Not Before: Sep 7 00:23:51 2025 GMT Not After : Sep 14 00:23:51 2025 GMT Subject: CN=68bcd097-5703 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:76:45:dd:f1:1a:a9:0c:49:0c:a2:49:5e:87: 78:fb:c9:b5:3d:77:d2:7e:51:1d:95:44:52:e9:1b: 86:d4:6d:21:46:9d:c7:aa:fe:dc:f3:4f:6e:b9:e8: d8:f6:7c:39:84:94:a6:f9:d1:d1:19:a3:b2:41:05: 70:b8:fa:a0:f9:3d:f5:2b:67:01:3f:da:e7:fb:62: 40:a8:d5:04:7f:79:7f:ff:9b:2f:e2:76:fb:00:f2: a7:02:28:7b:a7:ca:93:d8:b7:41:16:23:cc:9f:12: f6:91:75:2f:8b:59:81:8b:17:4c:4f:52:f0:2d:68: 30:1f:10:0d:5e:36:b9:62:c8:f7:9b:56:be:68:f9: 86:36:f7:09:37:d8:91:23:43:84:1f:2d:e9:3f:70: 66:7f:9a:e2:0c:30:0e:0c:f2:b6:b3:67:1e:7c:5b: 26:5b:9c:9e:76:7e:9e:9d:6d:e4:09:b6:d9:74:8f: 35:09:02:18:ab:67:79:d1:11:7a:1e:f9:8e:36:3e: 43:57:94:46:81:76:e6:bc:e6:b5:17:c9:03:f0:f0: 9e:14:77:f0:44:1f:8b:64:f8:7f:b0:41:4f:8c:9b: e7:91:74:4f:6d:df:f3:96:d0:45:02:13:98:27:eb: 27:4a:92:e5:0e:27:f1:49:a7:32:6f:41:12:32:9d: 03:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:C5:DB:15:6F:7E:D5:BE:35:15:80:BC:30:2B:A7:9E:4D:9D:BD:89 X509v3 Authority Key Identifier: keyid:5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:3f:9f:4a:93:63:90:0e:69:dc:87:0e:ae:ce:26:17:90:61: 6f:ac:e3:89:d9:61:a8:82:d5:c5:73:34:ad:f3:ba:4d:01:84: a6:77:6d:10:4f:f2:a5:0a:02:2f:d7:9e:4d:85:99:10:7b:a2: 63:e9:fc:44:5f:b5:20:c9:fa:44:e8:f6:14:96:76:fa:28:67: ec:ce:24:45:5a:56:8c:f6:06:cf:7f:45:84:9a:79:ed:3d:01: 4c:bd:d0:2b:08:78:92:90:2d:66:95:d8:79:6b:b3:b7:f2:c1: 19:1f:7b:6d:a8:75:46:3d:cf:29:84:31:44:61:2d:86:a7:16: 0f:19:b6:f4:6c:6d:19:04:d4:a5:4b:b5:66:c6:c2:89:34:45: c9:43:dd:f2:c6:81:e6:fa:f6:59:01:50:eb:ac:96:0c:0c:36: 6c:4f:d5:41:91:44:1b:c7:a1:2e:4b:b5:16:cb:3b:c8:23:5b: 5b:bb:0a:0f:f8:03:78:0d:47:b5:64:2e:70:40:ac:6b:a8:28: fd:1b:4e:74:21:7f:6e:aa:40:df:b0:a9:b5:90:b9:98:cd:b6: 01:03:36:73:ab:09:9d:d3:dd:ed:57:ee:f6:15:3f:0d:57:c3: 71:1d:0d:11:30:c6:7c:30:ae:c4:e6:33:b3:7e:d8:9f:a5:a6: e8:0a:3f:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI0QUYxMTAvBgNVBAUTKDVDMzE1REFGQzUzQTgyRkRENjJDNzIwMDVDNzY0NDMz M0JDMDI5N0EwHhcNMjUwOTA3MDAyMzUxWhcNMjUwOTE0MDAyMzUxWjAYMRYwFAYD VQQDEw02OGJjZDA5Ny01NzAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3ZF3fEaqQxJDKJJXod4+8m1PXfSflEdlURS6RuG1G0hRp3Hqv7c809uuejY 9nw5hJSm+dHRGaOyQQVwuPqg+T31K2cBP9rn+2JAqNUEf3l//5sv4nb7APKnAih7 p8qT2LdBFiPMnxL2kXUvi1mBixdMT1LwLWgwHxANXja5Ysj3m1a+aPmGNvcJN9iR I0OEHy3pP3Bmf5riDDAODPK2s2cefFsmW5yedn6enW3kCbbZdI81CQIYq2d50RF6 HvmONj5DV5RGgXbmvOa1F8kD8PCeFHfwRB+LZPh/sEFPjJvnkXRPbd/zltBFAhOY J+snSpLlDifxSacyb0ESMp0DnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPvF2xVv ftW+NRWAvDArp55Nnb2JMB8GA1UdIwQYMBaAFFwxXa/FOoL91ixyAFx2RDM7wCl6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjRBRi83NkM3RjBGNDUx RjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2M1dMSElBWEhaRU16dkFL WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hERmRyOFU2Z3YzV0xISUFYSFpFTXp2QUtYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjRBRi83NkM3RjBGNDUxRjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2 M1dMSElBWEhaRU16dkFLWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRP59Kk2OQDmnchw6uziYXkGFvrOOJ2WGogtXFczSt87pNAYSmd20Q T/KlCgIv155NhZkQe6Jj6fxEX7UgyfpE6PYUlnb6KGfsziRFWlaM9gbPf0WEmnnt PQFMvdArCHiSkC1mldh5a7O38sEZH3ttqHVGPc8phDFEYS2GpxYPGbb0bG0ZBNSl S7VmxsKJNEXJQ93yxoHm+vZZAVDrrJYMDDZsT9VBkUQbx6EuS7UWyzvII1tbuwoP +AN4DUe1ZC5wQKxrqCj9G050IX9uqkDfsKm1kLmYzbYBAzZzqwmd093tV+72FT8N V8NxHQ0RMMZ8MK7E5jOzftifpaboCj++ -----END CERTIFICATE-----Generated at Mon Sep 8 15:50:54 2025 by rpki-client