$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft File: XwTABfKMKFbHu_R2uRxioC8vxRw.mft (raw, json) Hash identifier: pU83kNibbrRqZdOUQwgPCIAybgCbeK0NyJcovFkIlKQ= Subject key identifier: 34:F9:F5:C9:D2:D4:EF:2D:D7:68:0E:35:8A:97:EF:6E:8F:B3:05:B0 Authority key identifier: 5F:04:C0:05:F2:8C:28:56:C7:BB:F4:76:B9:1C:62:A0:2F:2F:C5:1C Certificate issuer: /CN=A915A0FB/serialNumber=5F04C005F28C2856C7BBF476B91C62A02F2FC51C Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft Manifest number: DD Signing time: Fri 05 Sep 2025 05:27:57 +0000 Manifest this update: Fri 05 Sep 2025 05:27:56 +0000 Manifest next update: Fri 12 Sep 2025 05:27:56 +0000 Files and hashes: 1: XwTABfKMKFbHu_R2uRxioC8vxRw.crl (hash: P/J0w78XveZ70uS/MQab7xmXdGhpUGksBNXxq9BEdbU=) 2: 900F4ADA440611EF85166C30C4F9AE02.roa (hash: jYgy4yMQyKQf5VxNbJ2NKQFUgnsZsFyOqLwxVUIrb0I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.crl rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:27:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0FB, serialNumber=5F04C005F28C2856C7BBF476B91C62A02F2FC51C Validity Not Before: Sep 5 05:27:56 2025 GMT Not After : Sep 12 05:27:56 2025 GMT Subject: CN=68ba74dc-8101 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ac:9a:d6:00:f3:3d:99:0b:d7:33:96:f8:8f: aa:e1:4c:c1:6c:dd:61:2d:06:e1:96:50:12:48:37: fb:3e:f3:2d:83:29:c1:f0:12:7a:c1:50:e6:6e:70: 22:69:8e:a7:97:00:27:73:b3:dc:d1:cb:48:af:f9: df:82:c2:5f:87:84:40:c3:93:4f:9f:f1:64:66:1c: 9c:39:ae:b8:9e:c1:a6:f5:b6:bb:3c:ec:f0:df:76: 64:42:a5:df:01:ca:ad:62:a4:64:7e:2c:1e:6c:8c: 49:5c:c8:b6:93:65:ef:25:67:b8:74:17:eb:98:b5: 3b:37:c2:92:2e:21:81:21:fb:c9:87:81:ad:86:66: 04:f7:57:23:fc:0c:6c:14:53:07:43:a1:5e:88:a0: 63:8e:a9:0f:c8:4d:6a:76:c1:8a:ab:ff:39:bb:30: fe:2d:a7:72:ba:19:da:30:00:f6:47:25:84:30:ac: a8:01:cb:1c:c7:a1:3c:22:ae:bc:5f:7d:db:ca:18: 58:71:7f:ac:f6:7c:f9:85:48:31:3e:9b:af:e0:6f: e3:7d:2a:1d:52:a3:27:b9:68:00:d0:10:e7:62:74: ae:b6:02:9c:7d:aa:e5:d6:eb:68:2f:3d:a7:e3:45: ea:8f:bd:c5:8e:23:f4:2a:e1:e9:f0:82:a3:8f:26: 2c:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:F9:F5:C9:D2:D4:EF:2D:D7:68:0E:35:8A:97:EF:6E:8F:B3:05:B0 X509v3 Authority Key Identifier: keyid:5F:04:C0:05:F2:8C:28:56:C7:BB:F4:76:B9:1C:62:A0:2F:2F:C5:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:01:d9:87:71:35:7c:3b:20:23:d0:3a:82:f2:57:bb:9b:6b: f6:66:eb:83:ed:0f:37:5f:28:4c:9d:21:ea:49:33:95:79:ca: 88:a5:61:e5:51:e0:7b:b7:a8:a0:3e:34:45:31:7b:b7:00:07: 62:2a:f3:bd:59:b7:04:a5:b3:46:fe:44:09:ca:2e:8b:31:8a: 62:26:02:b4:eb:0a:f4:ad:5a:8f:b8:42:b7:5d:fd:6e:1e:a5: 59:da:ba:5a:ec:1d:47:d4:ee:3b:e9:8f:49:ad:8b:d4:84:d7: 4c:aa:3a:e3:f7:75:e2:63:be:c2:9b:56:70:ed:e4:1d:b9:85: 38:1f:29:d9:da:73:bd:f8:c4:64:eb:7c:62:fd:37:b6:f4:df: 05:57:57:65:11:c1:65:6c:f6:56:2b:f6:c9:73:60:61:76:d9: b8:2d:cb:25:87:dc:70:6b:c4:35:13:85:21:66:08:cf:7d:b4: 04:16:06:ad:85:9b:ec:1c:ce:d8:02:bd:a7:93:f0:1e:c5:f5: 7b:cc:ce:c5:c6:36:44:af:c4:f7:cf:b5:f9:52:05:50:1f:3a: cf:0d:24:31:9f:02:4b:15:6c:ef:67:dc:c7:39:d4:b9:4b:80: 0d:4f:2e:ec:53:2f:4d:aa:c0:f8:58:c7:89:b0:c1:1d:a7:47: 22:99:f7:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwRkIxMTAvBgNVBAUTKDVGMDRDMDA1RjI4QzI4NTZDN0JCRjQ3NkI5MUM2MkEw MkYyRkM1MUMwHhcNMjUwOTA1MDUyNzU2WhcNMjUwOTEyMDUyNzU2WjAYMRYwFAYD VQQDEw02OGJhNzRkYy04MTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt6ya1gDzPZkL1zOW+I+q4UzBbN1hLQbhllASSDf7PvMtgynB8BJ6wVDmbnAi aY6nlwAnc7Pc0ctIr/nfgsJfh4RAw5NPn/FkZhycOa64nsGm9ba7POzw33ZkQqXf AcqtYqRkfiwebIxJXMi2k2XvJWe4dBfrmLU7N8KSLiGBIfvJh4GthmYE91cj/Axs FFMHQ6FeiKBjjqkPyE1qdsGKq/85uzD+LadyuhnaMAD2RyWEMKyoAcscx6E8Iq68 X33byhhYcX+s9nz5hUgxPpuv4G/jfSodUqMnuWgA0BDnYnSutgKcfarl1utoLz2n 40Xqj73FjiP0KuHp8IKjjyYszwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDT59cnS 1O8t12gONYqX726PswWwMB8GA1UdIwQYMBaAFF8EwAXyjChWx7v0drkcYqAvL8Uc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBGQi9FMTcxOTM2MjNE OEQxMUVGODcwNTNCMEZDNEY5QUUwMi9Yd1RBQmZLTUtGYkh1X1IydVJ4aW9DOHZ4 UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1h3VEFCZktNS0ZiSHVfUjJ1Unhpb0M4dnhSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTBGQi9FMTcxOTM2MjNEOEQxMUVGODcwNTNCMEZDNEY5QUUwMi9Yd1RBQmZLTUtG Ykh1X1IydVJ4aW9DOHZ4UncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKAdmHcTV8OyAj0DqC8le7m2v2ZuuD7Q83XyhMnSHqSTOVecqIpWHl UeB7t6igPjRFMXu3AAdiKvO9WbcEpbNG/kQJyi6LMYpiJgK06wr0rVqPuEK3Xf1u HqVZ2rpa7B1H1O476Y9JrYvUhNdMqjrj93XiY77Cm1Zw7eQduYU4HynZ2nO9+MRk 63xi/Te29N8FV1dlEcFlbPZWK/bJc2Bhdtm4Lcslh9xwa8Q1E4UhZgjPfbQEFgat hZvsHM7YAr2nk/AexfV7zM7FxjZEr8T3z7X5UgVQHzrPDSQxnwJLFWzvZ9zHOdS5 S4ANTy7sUy9NqsD4WMeJsMEdp0cimfe0 -----END CERTIFICATE-----Generated at Sat Sep 6 21:29:21 2025 by rpki-client