$ rpki-client -vvf rpki.apnic.net/member_repository/A91569FB/8DE1DCDA762011EBBC553C60C4F9AE02/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.mft File: Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.mft (raw, json) Hash identifier: MHqpY6Jfia/tHgXb2crMMDZWp2sB5b/8LiaxJZv0P3s= Subject key identifier: 2D:48:7B:18:60:B9:10:33:DA:E8:12:BD:E1:2C:C2:EC:56:98:66:CC Authority key identifier: 5D:EE:16:EF:85:A2:BF:84:DA:D8:87:66:67:59:B1:EC:15:D1:B9:4C Certificate issuer: /CN=A91569FB/serialNumber=5DEE16EF85A2BF84DAD887666759B1EC15D1B94C Certificate serial: 06C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91569FB/8DE1DCDA762011EBBC553C60C4F9AE02/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.mft Manifest number: 06BC Signing time: Thu 18 Sep 2025 22:23:15 +0000 Manifest this update: Thu 18 Sep 2025 22:23:15 +0000 Manifest next update: Thu 25 Sep 2025 22:23:15 +0000 Files and hashes: 1: Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.crl (hash: 5L6Tn+2rJJhkXRx0j9WYVKVXNz9Lt7ea13+x5sZuxhg=) 2: 154E7E02762211EBA80A6D61C4F9AE02.roa (hash: 53zKcN6L7abJ9zpJ1rsGk1CMb4hTUDymJuK8BDIQ0eM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91569FB/8DE1DCDA762011EBBC553C60C4F9AE02/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.crl rsync://rpki.apnic.net/member_repository/A91569FB/8DE1DCDA762011EBBC553C60C4F9AE02/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 22:23:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1731 (0x6c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91569FB, serialNumber=5DEE16EF85A2BF84DAD887666759B1EC15D1B94C Validity Not Before: Sep 18 22:23:15 2025 GMT Not After : Sep 25 22:23:15 2025 GMT Subject: CN=68cc8653-cdc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:01:b0:f2:d7:ff:84:58:aa:05:f3:aa:51:7d: 20:07:2a:6b:ca:33:78:c6:c0:3b:3b:f5:14:a0:49: 13:35:72:2b:19:ba:5c:8d:46:f7:cc:62:04:b0:78: 6c:21:d1:aa:a4:37:26:b4:05:e1:25:99:40:49:0d: e9:6e:81:a4:f0:15:05:fd:af:6b:9e:b5:0b:7c:08: ef:9f:06:87:27:fb:47:a2:44:fe:da:1b:ba:52:01: 50:61:dc:e3:ff:70:42:cf:e4:60:05:0a:20:75:ed: ef:28:79:f2:f6:4d:e4:dd:a6:1c:77:39:c0:f2:b7: b4:7c:eb:58:91:dc:f3:86:1e:a5:c5:3d:de:46:ac: d3:84:74:dd:4e:27:cf:56:ed:d1:dc:98:1e:1c:86: 9d:da:83:65:73:0e:45:56:9c:3e:1a:28:86:e9:37: 53:38:1c:c4:af:f4:06:46:72:b0:20:d9:ee:1f:20: 32:8e:1f:a6:29:27:ba:15:c6:10:87:8c:b1:27:d2: 45:43:91:0b:ba:2b:fd:53:f0:cc:46:60:69:25:b6: 9f:15:6b:f6:82:f4:9b:81:6a:56:be:69:4c:5c:c6: 98:8e:e6:bf:de:f0:a6:e4:45:08:7c:2f:e0:3a:4f: b0:0c:fa:af:f0:1e:da:ac:1f:40:f0:1a:95:53:17: 91:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:48:7B:18:60:B9:10:33:DA:E8:12:BD:E1:2C:C2:EC:56:98:66:CC X509v3 Authority Key Identifier: keyid:5D:EE:16:EF:85:A2:BF:84:DA:D8:87:66:67:59:B1:EC:15:D1:B9:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91569FB/8DE1DCDA762011EBBC553C60C4F9AE02/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91569FB/8DE1DCDA762011EBBC553C60C4F9AE02/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:e5:60:ce:1f:e2:2f:2c:81:cc:65:69:76:06:6d:90:50:30: 0d:b9:d5:a2:2f:fe:b8:78:4a:8a:8a:0f:46:b6:b4:d3:ac:bc: 5f:40:69:a6:46:7a:36:20:f7:50:ed:a4:ae:ff:d5:0c:e7:41: 40:69:aa:8e:d4:bf:7c:e8:c1:2e:fc:df:31:a9:05:be:73:1a: 6f:3f:e7:6b:7c:2c:b8:f7:7c:53:b0:c4:c1:fb:36:b1:e7:f1: 5d:b5:1a:ce:b2:0e:e6:f3:f4:a7:57:c5:65:3a:e2:44:ca:57: aa:dc:e1:60:a5:aa:06:8d:a0:d3:c8:10:95:68:24:16:45:2e: e4:f4:ab:ab:74:af:35:01:98:61:69:d9:0e:7f:c5:65:05:c4: bc:b2:33:aa:a8:43:74:85:40:c5:d2:d0:d0:c9:33:20:57:fe: 32:c7:7c:65:c7:23:55:10:a6:6d:b0:76:c3:7c:80:84:bb:fb: ce:28:17:2f:78:6e:18:a4:a6:7b:23:03:3e:d0:a0:ab:86:62: fd:81:22:79:ad:46:41:77:a8:5f:00:44:6f:cb:86:f9:0e:4b: d9:19:f0:26:d8:f6:0f:5c:b9:5d:f9:c8:ed:d6:bc:a5:ab:54: a6:78:f4:4f:1c:82:a3:65:a6:54:68:ee:e1:fd:2f:76:c8:81: 09:63:4e:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY5RkIxMTAvBgNVBAUTKDVERUUxNkVGODVBMkJGODREQUQ4ODc2NjY3NTlCMUVD MTVEMUI5NEMwHhcNMjUwOTE4MjIyMzE1WhcNMjUwOTI1MjIyMzE1WjAYMRYwFAYD VQQDEw02OGNjODY1My1jZGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzAGw8tf/hFiqBfOqUX0gBypryjN4xsA7O/UUoEkTNXIrGbpcjUb3zGIEsHhs IdGqpDcmtAXhJZlASQ3pboGk8BUF/a9rnrULfAjvnwaHJ/tHokT+2hu6UgFQYdzj /3BCz+RgBQogde3vKHny9k3k3aYcdznA8re0fOtYkdzzhh6lxT3eRqzThHTdTifP Vu3R3JgeHIad2oNlcw5FVpw+GiiG6TdTOBzEr/QGRnKwINnuHyAyjh+mKSe6FcYQ h4yxJ9JFQ5ELuiv9U/DMRmBpJbafFWv2gvSbgWpWvmlMXMaYjua/3vCm5EUIfC/g Ok+wDPqv8B7arB9A8BqVUxeREQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC1Iexhg uRAz2ugSveEswuxWmGbMMB8GA1UdIwQYMBaAFF3uFu+For+E2tiHZmdZsewV0blM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjlGQi84REUxRENEQTc2 MjAxMUVCQkM1NTNDNjBDNEY5QUUwMi9YZTRXNzRXaXY0VGEySWRtWjFteDdCWFJ1 VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hlNFc3NFdpdjRUYTJJZG1aMW14N0JYUnVVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjlGQi84REUxRENEQTc2MjAxMUVCQkM1NTNDNjBDNEY5QUUwMi9YZTRXNzRXaXY0 VGEySWRtWjFteDdCWFJ1VXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCy5WDOH+IvLIHMZWl2Bm2QUDANudWiL/64eEqKig9GtrTTrLxfQGmm Rno2IPdQ7aSu/9UM50FAaaqO1L986MEu/N8xqQW+cxpvP+drfCy493xTsMTB+zax 5/FdtRrOsg7m8/SnV8VlOuJEyleq3OFgpaoGjaDTyBCVaCQWRS7k9KurdK81AZhh adkOf8VlBcS8sjOqqEN0hUDF0tDQyTMgV/4yx3xlxyNVEKZtsHbDfICEu/vOKBcv eG4YpKZ7IwM+0KCrhmL9gSJ5rUZBd6hfAERvy4b5DkvZGfAm2PYPXLld+cjt1ryl q1SmePRPHIKjZaZUaO7h/S92yIEJY04s -----END CERTIFICATE-----Generated at Fri Sep 19 00:39:14 2025 by rpki-client