$ rpki-client -vvf rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft File: Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft (raw, json) Hash identifier: YTJaMoOyWuAMgqY179wRf5Livzj8OOHd//8n7dsRHp0= Subject key identifier: E7:AB:00:ED:50:D5:96:5E:4A:06:B7:E3:0F:DD:26:B3:3E:EE:D5:D7 Authority key identifier: 5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC Certificate issuer: /CN=A9158E8E/serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Certificate serial: 03E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft Manifest number: 03BF Signing time: Tue 09 Sep 2025 00:50:32 +0000 Manifest this update: Tue 09 Sep 2025 00:50:31 +0000 Manifest next update: Tue 16 Sep 2025 00:50:31 +0000 Files and hashes: 1: Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl (hash: 2iJ9eYw0M0GpKRR1Q9w3vfmeSJkvVUsfFdqn7LOCXXg=) 2: 7B6F6276E03811EFAC3C5652C4F9AE02.roa (hash: melteXR1cRharD5muHTsf70+edihxivjKNNQzAZNpLE=) 3: 79C2D638E03811EFAC3C5652C4F9AE02.roa (hash: pIl/ybOSWeNJuXyu7vI+RsUvtpL0KXP/t0jEbgQtU7I=) 4: 7AA94F3CE03811EFAC3C5652C4F9AE02.roa (hash: ImUvDtTwcm68idWdwXB7tEHKc5rG51UP9vCEMxdSyRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 00:50:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 995 (0x3e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158E8E, serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Validity Not Before: Sep 9 00:50:31 2025 GMT Not After : Sep 16 00:50:31 2025 GMT Subject: CN=68bf79d7-da09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:54:98:db:6f:f9:f6:2c:a1:3d:7f:93:fc:a1: 95:df:fd:07:a8:e9:4f:15:55:13:6c:60:4e:5f:c8: 46:e7:81:de:f9:5f:79:e2:16:9c:09:f9:86:a3:03: a9:d8:f4:c5:82:52:fd:1b:ae:cf:23:2e:2e:39:76: fa:60:71:32:3c:c4:fb:7f:48:81:fc:ea:3c:0c:7c: 5a:94:e3:9e:f6:4c:80:5f:6a:14:60:11:55:38:a1: 6a:98:d9:af:15:6b:d8:95:10:b7:ec:57:46:03:ea: 5c:6b:bb:c3:28:cc:ce:80:8e:0f:e8:43:fa:c5:b9: b3:8e:10:53:f7:b0:ba:43:44:c4:05:ca:59:30:36: 9b:76:c7:09:48:eb:53:52:e7:90:a7:a2:97:18:d7: 0a:ca:fd:44:3c:30:e8:97:5f:4d:4c:79:ed:bf:0c: 13:36:8f:91:7f:a8:59:90:5a:af:38:ae:7e:00:63: 18:36:fd:43:96:43:3a:c3:01:21:cb:34:9e:fd:cf: 2c:07:cb:64:be:ca:38:4f:60:db:89:0d:57:af:7a: 54:f7:6f:47:65:dd:33:2a:a9:36:73:64:28:5f:45: 50:47:e9:09:28:35:ba:bc:53:91:ef:af:30:53:91: aa:65:e8:30:11:28:3f:e8:ec:0b:c3:1d:e1:d6:cc: 1a:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:AB:00:ED:50:D5:96:5E:4A:06:B7:E3:0F:DD:26:B3:3E:EE:D5:D7 X509v3 Authority Key Identifier: keyid:5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:f8:00:34:ed:19:f8:dd:27:9d:b5:46:17:f9:ff:d4:00:6b: ba:87:d2:8b:59:0b:b2:f0:d0:72:cb:cc:ab:8c:0b:85:8b:ee: 54:60:1b:7d:64:4d:15:c4:70:27:11:d6:de:ba:a1:4c:9b:5e: e5:ed:73:08:2e:96:22:14:7d:df:00:93:c3:4b:09:68:bc:56: f2:88:b0:86:0b:ca:b2:3b:bc:35:97:72:3f:86:67:d1:90:58: c5:d1:6e:5f:a3:a8:c5:ba:f6:8a:22:d1:e1:3c:3b:a1:f2:f3: f4:96:7f:99:8a:de:19:fe:00:66:e1:2e:f4:6d:67:e1:c3:64: 92:6e:8b:53:94:09:c2:b4:0c:8f:df:ec:1a:32:5b:cb:12:ad: a6:ca:5c:eb:a0:1c:5c:02:d2:55:b8:f2:bb:78:de:99:d4:db: b3:ea:7a:62:f5:bb:a1:0d:cf:cd:50:ca:fc:05:9e:9f:3e:6b: 71:c5:c4:dd:f4:35:6a:8e:78:f9:0f:a6:a6:e5:e0:7a:1a:d8: 31:0a:ca:35:41:44:45:7a:64:24:2c:5c:95:fc:41:0b:a9:79: a4:3d:53:cf:ad:4c:4f:0e:05:75:ca:c7:c6:e6:54:0d:fe:81: 85:63:bd:dd:1d:49:6c:07:1d:46:60:02:c4:d9:29:32:77:dd: 1c:52:54:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFOEUxMTAvBgNVBAUTKDVGMkU1RTYyOTMyQkI1MEE4NUZGMkY5QTVGMzFCMkJB REQ1RjM0QUMwHhcNMjUwOTA5MDA1MDMxWhcNMjUwOTE2MDA1MDMxWjAYMRYwFAYD VQQDEw02OGJmNzlkNy1kYTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwVSY22/59iyhPX+T/KGV3/0HqOlPFVUTbGBOX8hG54He+V954hacCfmGowOp 2PTFglL9G67PIy4uOXb6YHEyPMT7f0iB/Oo8DHxalOOe9kyAX2oUYBFVOKFqmNmv FWvYlRC37FdGA+pca7vDKMzOgI4P6EP6xbmzjhBT97C6Q0TEBcpZMDabdscJSOtT UueQp6KXGNcKyv1EPDDol19NTHntvwwTNo+Rf6hZkFqvOK5+AGMYNv1DlkM6wwEh yzSe/c8sB8tkvso4T2DbiQ1Xr3pU929HZd0zKqk2c2QoX0VQR+kJKDW6vFOR768w U5GqZegwESg/6OwLwx3h1swauQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOerAO1Q 1ZZeSga34w/dJrM+7tXXMB8GA1UdIwQYMBaAFF8uXmKTK7UKhf8vml8xsrrdXzSs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEU4RS8wNEZCQjhGMEFF MEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRRcUZfeS1hWHpHeXV0MWZO S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h5NWVZcE1ydFFxRl95LWFYekd5dXQxZk5Ldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEU4RS8wNEZCQjhGMEFFMEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRR cUZfeS1hWHpHeXV0MWZOS3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAH+AA07Rn43SedtUYX+f/UAGu6h9KLWQuy8NByy8yrjAuFi+5UYBt9 ZE0VxHAnEdbeuqFMm17l7XMILpYiFH3fAJPDSwlovFbyiLCGC8qyO7w1l3I/hmfR kFjF0W5fo6jFuvaKItHhPDuh8vP0ln+Zit4Z/gBm4S70bWfhw2SSbotTlAnCtAyP 3+waMlvLEq2mylzroBxcAtJVuPK7eN6Z1Nuz6npi9buhDc/NUMr8BZ6fPmtxxcTd 9DVqjnj5D6am5eB6GtgxCso1QURFemQkLFyV/EELqXmkPVPPrUxPDgV1ysfG5lQN /oGFY73dHUlsBx1GYALE2Skyd90cUlQj -----END CERTIFICATE-----Generated at Tue Sep 9 11:25:57 2025 by rpki-client