$ rpki-client -vvf rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft File: XZRtT0edN7zhcAywut1RosPfYg8.mft (raw, json) Hash identifier: wUqFSBoewTAPB0BId9mkbfCRkLW1bqtgV8ab0MhyxDY= Subject key identifier: 87:9A:77:D6:81:22:80:F1:42:4A:FE:37:2A:C0:E9:7B:6B:AF:D6:16 Authority key identifier: 5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F Certificate issuer: /CN=A9152787/serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Certificate serial: AB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft Manifest number: A8 Signing time: Fri 05 Sep 2025 06:39:41 +0000 Manifest this update: Fri 05 Sep 2025 06:39:41 +0000 Manifest next update: Fri 12 Sep 2025 06:39:41 +0000 Files and hashes: 1: XZRtT0edN7zhcAywut1RosPfYg8.crl (hash: YP61Wpa506KOejt8uWJ2C9nLjp7oMckn+mWlm8jFvwg=) 2: CB24F37C033711F0B76A8520C4F9AE02.roa (hash: 98s3ds+kGQSvl0ncwBjphBprg+/d5JhkpC63UpEc2Nk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:39:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 171 (0xab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152787, serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Validity Not Before: Sep 5 06:39:41 2025 GMT Not After : Sep 12 06:39:41 2025 GMT Subject: CN=68ba85ad-4f95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:07:8d:14:86:b8:5a:66:9d:e2:40:6e:b4:33: 2d:96:b1:77:37:2c:16:05:51:12:e0:0f:42:9f:49: fa:69:26:2f:47:88:a4:ed:b2:ef:09:df:89:64:a9: 59:8f:66:12:14:bb:bd:43:c9:0d:81:43:ff:15:dd: 2d:e0:76:f6:6b:67:81:6d:f4:6a:f6:21:b4:60:5a: 91:f8:f9:64:be:d6:96:18:7c:8f:47:60:3e:c5:b6: cf:41:65:41:d3:19:7e:a5:54:59:60:1e:3d:ec:74: 63:b9:c0:c8:91:05:95:31:00:2f:80:8c:3f:a9:5d: 6c:d4:8f:67:b9:96:30:5d:f2:35:3a:f2:f4:5b:6b: f9:66:9b:3f:98:15:4a:41:d0:19:60:54:ea:6d:e5: 6d:33:8c:f8:36:fd:29:c2:a8:c5:16:ee:c6:34:46: 1e:48:e4:f1:01:55:7e:a6:cd:e2:1f:dc:f2:20:0a: 41:74:b0:91:aa:bd:b0:56:7e:10:38:e7:0b:c1:18: 67:e6:65:e8:4e:b9:dd:d7:39:6b:2a:c9:a3:7d:54: 1b:7f:ca:e5:36:fb:aa:32:56:57:67:89:52:48:5e: 6b:90:4f:16:3e:f4:d4:c6:72:a3:7d:1a:ef:60:9b: 95:f5:72:2b:0a:9d:b5:2f:f5:99:b4:c7:cb:31:57: 77:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:9A:77:D6:81:22:80:F1:42:4A:FE:37:2A:C0:E9:7B:6B:AF:D6:16 X509v3 Authority Key Identifier: keyid:5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:42:1b:50:f0:85:f2:7d:16:6c:e7:8b:81:98:10:c6:39:aa: a0:1b:84:89:66:c0:f9:d4:6d:59:60:48:79:9f:eb:33:a8:cb: d9:2d:ff:f7:57:9d:fc:5f:6a:5b:9b:27:59:7e:1a:32:56:97: 9f:bc:d5:d3:c1:00:78:f3:65:c9:b7:27:65:d5:69:0f:26:3d: 97:8a:c3:65:49:95:36:a2:f6:07:e8:4f:f3:62:f1:0e:19:3e: 4a:de:de:ad:57:cd:68:30:7f:6b:2a:79:13:d4:1d:aa:e1:1d: f8:62:41:db:e4:22:84:df:d6:fc:d8:4a:7b:90:65:83:5d:b2: 3e:5e:86:fb:e6:bc:5c:7c:15:80:e1:62:ed:da:ab:f6:6e:05: e0:3f:e6:06:6f:f0:cc:f7:37:e7:24:33:c9:5c:9c:03:ab:a1: 4a:49:b9:37:de:cd:66:78:fd:57:4e:de:f0:ad:92:ed:cb:cd: 61:a1:3f:bb:32:63:ec:42:c9:b3:f9:a6:aa:5a:36:48:1f:aa: d4:7e:03:a9:ca:4e:e8:5d:e5:9c:77:98:b5:90:53:55:5f:0f: 03:ff:b4:9f:8d:bc:a9:b1:c0:46:02:f6:43:b1:25:8b:b2:20: 38:d6:ee:5d:e6:9e:ef:c2:76:be:f5:09:0a:fc:53:4f:5e:46: f2:a4:63:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI3ODcxMTAvBgNVBAUTKDVEOTQ2RDRGNDc5RDM3QkNFMTcwMENCMEJBREQ1MUEy QzNERjYyMEYwHhcNMjUwOTA1MDYzOTQxWhcNMjUwOTEyMDYzOTQxWjAYMRYwFAYD VQQDEw02OGJhODVhZC00Zjk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwAeNFIa4Wmad4kButDMtlrF3NywWBVES4A9Cn0n6aSYvR4ik7bLvCd+JZKlZ j2YSFLu9Q8kNgUP/Fd0t4Hb2a2eBbfRq9iG0YFqR+PlkvtaWGHyPR2A+xbbPQWVB 0xl+pVRZYB497HRjucDIkQWVMQAvgIw/qV1s1I9nuZYwXfI1OvL0W2v5Zps/mBVK QdAZYFTqbeVtM4z4Nv0pwqjFFu7GNEYeSOTxAVV+ps3iH9zyIApBdLCRqr2wVn4Q OOcLwRhn5mXoTrnd1zlrKsmjfVQbf8rlNvuqMlZXZ4lSSF5rkE8WPvTUxnKjfRrv YJuV9XIrCp21L/WZtMfLMVd33QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIead9aB IoDxQkr+NyrA6Xtrr9YWMB8GA1UdIwQYMBaAFF2UbU9HnTe84XAMsLrdUaLD32IP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Mjc4Ny8yMjg2NTYyQThG NzkxMUVGOTJBQzc4MUVDNEY5QUUwMi9YWlJ0VDBlZE43emhjQXl3dXQxUm9zUGZZ ZzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1haUnRUMGVkTjd6aGNBeXd1dDFSb3NQZllnOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Mjc4Ny8yMjg2NTYyQThGNzkxMUVGOTJBQzc4MUVDNEY5QUUwMi9YWlJ0VDBlZE43 emhjQXl3dXQxUm9zUGZZZzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2QhtQ8IXyfRZs54uBmBDGOaqgG4SJZsD51G1ZYEh5n+szqMvZLf/3 V538X2pbmydZfhoyVpefvNXTwQB482XJtydl1WkPJj2XisNlSZU2ovYH6E/zYvEO GT5K3t6tV81oMH9rKnkT1B2q4R34YkHb5CKE39b82Ep7kGWDXbI+Xob75rxcfBWA 4WLt2qv2bgXgP+YGb/DM9zfnJDPJXJwDq6FKSbk33s1meP1XTt7wrZLty81hoT+7 MmPsQsmz+aaqWjZIH6rUfgOpyk7oXeWcd5i1kFNVXw8D/7SfjbypscBGAvZDsSWL siA41u5d5p7vwna+9QkK/FNPXkbypGOj -----END CERTIFICATE-----Generated at Sat Sep 6 21:06:13 2025 by rpki-client