$ rpki-client -vvf rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft File: X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft (raw, json) Hash identifier: Uz9EkiR5+UU8dijD8qizULLEd2zhUntj4/OqPgKDNKw= Subject key identifier: E2:7D:CA:7A:F7:AE:02:A3:A2:22:E5:D6:7D:E1:6D:8D:5A:13:42:19 Authority key identifier: 5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 Certificate issuer: /CN=A9156255/serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Certificate serial: 0228 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft Manifest number: 0222 Signing time: Fri 19 Sep 2025 02:26:07 +0000 Manifest this update: Fri 19 Sep 2025 02:26:07 +0000 Manifest next update: Fri 26 Sep 2025 02:26:07 +0000 Files and hashes: 1: X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl (hash: +SD1ZUWeIA2hbRNdjIFDXODeF4YQ0ItTh6ZQuWVTo7g=) 2: 5637146C507611EDB59D9E2EC4F9AE02.roa (hash: EH2CgKpJsudgq4d5ghs/SJTUKeHCisdiJwkRQRkot80=) 3: D1FCB742514711ED92E3885EC4F9AE02.roa (hash: Js88dwnU0hyC4RLKD1NQ44jyQxJzu0X07dqPCT3Ukh0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 02:26:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 552 (0x228) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156255, serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Validity Not Before: Sep 19 02:26:07 2025 GMT Not After : Sep 26 02:26:07 2025 GMT Subject: CN=68ccbf3f-1fee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:9c:53:df:71:bb:f1:2f:40:0c:c0:d2:8f:6e: d2:b0:78:c4:9e:6f:f1:5f:d3:fe:1a:9a:6b:20:9a: 41:74:5d:5c:58:b0:85:5b:a7:b1:72:b7:6b:4f:7f: 39:9b:0c:7a:91:74:86:20:32:4a:1a:30:5d:1d:08: ef:8c:c9:4d:55:86:da:7e:ff:fa:50:5a:a9:cf:52: 0b:2e:c8:57:ba:a0:75:69:31:15:2f:51:76:76:d1: cb:a6:fc:de:f4:74:d1:0d:b0:c3:c9:78:c4:2b:a7: d9:9c:39:e9:5b:ff:f2:dc:74:19:ae:9f:88:22:31: 7c:9d:ed:01:b1:b4:ef:68:d6:02:06:b8:ef:54:5a: 74:b4:64:91:c9:52:51:6b:74:4e:47:68:58:ed:3a: e2:b7:57:2c:ea:9b:a9:f1:c6:b1:08:98:ca:b6:74: 42:94:b0:b8:fc:fa:dd:94:81:b5:ea:b1:97:97:10: 5c:fb:06:b5:87:e3:73:06:aa:89:4c:ec:f4:c3:85: a4:0b:8b:86:4b:2f:32:61:10:e5:a0:85:12:53:b7: 06:37:4d:f2:27:9c:f6:5a:85:99:18:38:c1:1a:6f: 4c:d7:17:08:fd:c7:e6:74:a7:33:21:60:aa:ef:bc: e8:19:f3:f0:2c:9e:b8:e7:28:a5:3a:1e:67:88:4d: c4:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:7D:CA:7A:F7:AE:02:A3:A2:22:E5:D6:7D:E1:6D:8D:5A:13:42:19 X509v3 Authority Key Identifier: keyid:5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:2c:1d:82:a4:b2:06:a8:47:94:a7:40:eb:dd:5b:57:b6:62: 14:82:7d:b8:38:6b:e8:39:4f:55:65:cb:7d:4c:16:66:17:62: 93:b7:a9:b8:e7:86:2b:f5:31:87:45:62:03:0a:67:bf:59:bd: b3:92:1e:6d:4d:ff:0b:2a:d4:d7:57:8c:c6:33:7f:fb:e6:43: 12:e3:f9:1f:a2:ad:2b:41:dc:0a:55:dd:b9:cb:b5:29:de:fb: d7:05:33:e2:db:18:c7:c4:5c:32:4d:ab:1f:a9:9b:a6:b1:3e: 26:c0:4f:1c:fa:39:d8:46:41:d5:c2:48:55:d5:45:66:be:7f: 05:2c:5d:4f:30:0f:b7:07:5a:a3:5a:3b:60:4c:97:f8:74:01: f5:af:b0:5c:26:3f:a9:da:23:c1:e9:e5:29:c9:a3:c7:ca:6e: 60:fa:27:97:5e:e6:21:23:3b:1b:5c:a6:ef:22:7e:33:65:d7: a0:04:b0:ca:7f:07:85:23:0f:80:ac:e7:25:8e:ed:d7:19:06: 79:27:da:17:8b:8c:46:c9:48:40:5c:65:75:19:be:c4:da:80: 36:ed:27:96:49:10:4a:5f:45:bf:a0:af:e9:80:14:4e:aa:de: 0a:18:2f:0d:ed:66:e4:13:e2:4e:db:74:0a:64:77:3e:6b:f1: 29:d9:93:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYyNTUxMTAvBgNVBAUTKDVGNkM4RkEzQTY1ODc0MDIzMUIyQzRCMTM0ODFCRTEx NTAwQURDNzYwHhcNMjUwOTE5MDIyNjA3WhcNMjUwOTI2MDIyNjA3WjAYMRYwFAYD VQQDEw02OGNjYmYzZi0xZmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3JxT33G78S9ADMDSj27SsHjEnm/xX9P+GpprIJpBdF1cWLCFW6excrdrT385 mwx6kXSGIDJKGjBdHQjvjMlNVYbafv/6UFqpz1ILLshXuqB1aTEVL1F2dtHLpvze 9HTRDbDDyXjEK6fZnDnpW//y3HQZrp+IIjF8ne0BsbTvaNYCBrjvVFp0tGSRyVJR a3ROR2hY7Trit1cs6pup8caxCJjKtnRClLC4/PrdlIG16rGXlxBc+wa1h+NzBqqJ TOz0w4WkC4uGSy8yYRDloIUSU7cGN03yJ5z2WoWZGDjBGm9M1xcI/cfmdKczIWCq 77zoGfPwLJ645yilOh5niE3EiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOJ9ynr3 rgKjoiLl1n3hbY1aE0IZMB8GA1UdIwQYMBaAFF9sj6OmWHQCMbLEsTSBvhFQCtx2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjI1NS85MTYyMDg0QzUw NzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRBSXhzc1N4TklHLUVWQUsz SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gyeVBvNlpZZEFJeHNzU3hOSUctRVZBSzNIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjI1NS85MTYyMDg0QzUwNzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRB SXhzc1N4TklHLUVWQUszSFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhLB2CpLIGqEeUp0Dr3VtXtmIUgn24OGvoOU9VZct9TBZmF2KTt6m4 54Yr9TGHRWIDCme/Wb2zkh5tTf8LKtTXV4zGM3/75kMS4/kfoq0rQdwKVd25y7Up 3vvXBTPi2xjHxFwyTasfqZumsT4mwE8c+jnYRkHVwkhV1UVmvn8FLF1PMA+3B1qj WjtgTJf4dAH1r7BcJj+p2iPB6eUpyaPHym5g+ieXXuYhIzsbXKbvIn4zZdegBLDK fweFIw+ArOclju3XGQZ5J9oXi4xGyUhAXGV1Gb7E2oA27SeWSRBKX0W/oK/pgBRO qt4KGC8N7WbkE+JO23QKZHc+a/Ep2ZOG -----END CERTIFICATE-----Generated at Fri Sep 19 05:31:32 2025 by rpki-client