$ rpki-client -vvf rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.mft File: XCJQF8zJYrDnOQswzwpWIvfN-u0.mft (raw, json) Hash identifier: yJvy/kpEoOA3dV5mA0URMokqv1gCx60fWmgIqDRMOjA= Subject key identifier: B5:CE:D0:41:5D:43:A4:85:67:1B:97:62:55:67:F3:A8:53:2E:36:97 Authority key identifier: 5C:22:50:17:CC:C9:62:B0:E7:39:0B:30:CF:0A:56:22:F7:CD:FA:ED Certificate issuer: /CN=A9154330/serialNumber=5C225017CCC962B0E7390B30CF0A5622F7CDFAED Certificate serial: 12EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCJQF8zJYrDnOQswzwpWIvfN-u0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.mft Manifest number: 12EA Signing time: Thu 18 Sep 2025 17:11:31 +0000 Manifest this update: Thu 18 Sep 2025 17:11:29 +0000 Manifest next update: Thu 25 Sep 2025 17:11:29 +0000 Files and hashes: 1: XCJQF8zJYrDnOQswzwpWIvfN-u0.crl (hash: e98TIb9VOtr2ioJfH1qE631nHiGyBzlmUEvwSGJfNqQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.crl rsync://rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCJQF8zJYrDnOQswzwpWIvfN-u0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 17:11:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4844 (0x12ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154330, serialNumber=5C225017CCC962B0E7390B30CF0A5622F7CDFAED Validity Not Before: Sep 18 17:11:29 2025 GMT Not After : Sep 25 17:11:29 2025 GMT Subject: CN=68cc3d42-4e9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:41:d6:34:43:1b:8c:67:b9:4c:3a:d4:44:30: 78:7d:9c:05:24:84:6d:65:a1:dd:90:5a:55:91:bd: e6:6c:8e:b2:be:d1:4c:30:9d:04:41:20:5a:e2:b3: e8:08:2d:83:88:52:f4:19:94:c4:80:d6:5c:f3:af: 95:8e:00:ce:e8:c8:5e:9b:f1:cf:bc:b1:ed:00:73: 8d:fa:89:d7:1f:1f:15:18:16:40:48:5a:b7:9e:38: 4b:a1:84:df:96:69:22:bf:e3:19:59:6b:cb:a3:f8: 0b:37:8b:e1:96:f6:45:41:e1:2c:61:a3:a4:64:9b: 26:f9:5a:97:20:04:4b:08:d9:f5:85:f1:4b:ff:9c: 0f:67:2d:73:ca:24:1b:ab:5e:74:d7:bf:30:61:70: e5:75:ba:08:04:c3:ac:2e:54:c7:e9:b7:15:df:c0: 97:d2:2e:a6:7a:ed:8d:84:21:ba:4d:8d:f7:0c:bf: c6:33:68:d3:12:d1:1b:6c:3c:3c:32:d2:c7:a4:d8: 10:40:c0:47:ba:0e:4c:ee:a7:d3:37:2d:dd:cb:63: 3c:a8:7c:41:50:52:81:dc:f0:bf:4d:f9:68:04:33: 62:74:65:6f:ad:f9:fd:5a:a1:70:93:f4:e4:97:1d: d9:1a:0d:3b:f5:49:d7:53:bb:56:9c:7b:84:45:2f: a9:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:CE:D0:41:5D:43:A4:85:67:1B:97:62:55:67:F3:A8:53:2E:36:97 X509v3 Authority Key Identifier: keyid:5C:22:50:17:CC:C9:62:B0:E7:39:0B:30:CF:0A:56:22:F7:CD:FA:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCJQF8zJYrDnOQswzwpWIvfN-u0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:e9:cd:5b:81:62:c5:dc:d3:1e:de:ec:2e:ea:c1:ab:04:9d: a1:b8:a3:62:65:8a:02:16:92:e7:e7:2a:9f:b8:47:0a:b1:92: b2:5e:76:12:c0:5f:bf:bf:f2:86:df:22:62:ba:63:09:8e:87: 2a:f6:07:d4:1a:e2:f9:3e:6b:74:d6:99:b2:19:70:b6:18:79: 1d:d8:3c:64:cd:12:ca:34:9b:e5:89:3b:5f:84:38:30:32:01: 5e:6a:22:f3:95:cd:09:66:37:a1:c2:93:9e:c1:7b:98:6c:b9: 65:1b:ab:fe:34:7a:e2:bf:83:e8:fa:32:65:1b:69:3a:19:08: 32:cf:7d:92:e3:28:62:80:3a:07:ba:e2:f8:e4:6f:28:bc:62: 80:17:aa:6f:fd:70:1e:54:4c:23:65:91:9f:ec:ff:e8:a2:2c: f8:13:28:dc:66:99:79:fa:bf:df:8d:ed:23:a0:b1:9a:8d:3a: 1e:19:49:a0:4c:07:c6:c2:bb:80:c5:b1:46:72:69:84:a2:be: c7:78:e3:1e:f2:a0:5c:b0:68:6c:51:c2:70:94:44:82:87:18: d3:80:54:d7:d0:bd:1c:e4:6f:07:9c:31:ee:a8:75:89:da:fa: 5e:2a:f8:1f:ca:50:16:32:6c:77:fd:da:39:29:13:32:2c:5f: 89:cb:26:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEuwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQzMzAxMTAvBgNVBAUTKDVDMjI1MDE3Q0NDOTYyQjBFNzM5MEIzMENGMEE1NjIy RjdDREZBRUQwHhcNMjUwOTE4MTcxMTI5WhcNMjUwOTI1MTcxMTI5WjAYMRYwFAYD VQQDEw02OGNjM2Q0Mi00ZTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvEHWNEMbjGe5TDrURDB4fZwFJIRtZaHdkFpVkb3mbI6yvtFMMJ0EQSBa4rPo CC2DiFL0GZTEgNZc86+VjgDO6Mhem/HPvLHtAHON+onXHx8VGBZASFq3njhLoYTf lmkiv+MZWWvLo/gLN4vhlvZFQeEsYaOkZJsm+VqXIARLCNn1hfFL/5wPZy1zyiQb q150178wYXDldboIBMOsLlTH6bcV38CX0i6meu2NhCG6TY33DL/GM2jTEtEbbDw8 MtLHpNgQQMBHug5M7qfTNy3dy2M8qHxBUFKB3PC/TfloBDNidGVvrfn9WqFwk/Tk lx3ZGg079UnXU7tWnHuERS+prwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLXO0EFd Q6SFZxuXYlVn86hTLjaXMB8GA1UdIwQYMBaAFFwiUBfMyWKw5zkLMM8KViL3zfrt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDMzMC9FQUQ4NzYzQ0Mw OTMxMUU4ODBFNTJEMjNDNEY5QUUwMi9YQ0pRRjh6SllyRG5PUXN3endwV0l2Zk4t dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hDSlFGOHpKWXJEbk9Rc3d6d3BXSXZmTi11MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDMzMC9FQUQ4NzYzQ0MwOTMxMUU4ODBFNTJEMjNDNEY5QUUwMi9YQ0pRRjh6Slly RG5PUXN3endwV0l2Zk4tdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBr6c1bgWLF3NMe3uwu6sGrBJ2huKNiZYoCFpLn5yqfuEcKsZKyXnYS wF+/v/KG3yJiumMJjocq9gfUGuL5Pmt01pmyGXC2GHkd2DxkzRLKNJvliTtfhDgw MgFeaiLzlc0JZjehwpOewXuYbLllG6v+NHriv4Po+jJlG2k6GQgyz32S4yhigDoH uuL45G8ovGKAF6pv/XAeVEwjZZGf7P/ooiz4EyjcZpl5+r/fje0joLGajToeGUmg TAfGwruAxbFGcmmEor7HeOMe8qBcsGhsUcJwlESChxjTgFTX0L0c5G8HnDHuqHWJ 2vpeKvgfylAWMmx3/do5KRMyLF+Jyya0 -----END CERTIFICATE-----Generated at Fri Sep 19 09:08:25 2025 by rpki-client