$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft File: XSeFtU0WPtAepUGLz6NPG3RWtxM.mft (raw, json) Hash identifier: Cp2FlNFuRbOEySixt9nsrGAtbiBr0Th3w1k3BmNWU0M= Subject key identifier: 3F:D1:ED:3A:99:DB:09:BA:71:1D:A9:79:60:9C:70:40:46:0A:20:F0 Authority key identifier: 5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 Certificate issuer: /CN=A9167CC5/serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Certificate serial: 04C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft Manifest number: 04AF Signing time: Sun 07 Sep 2025 00:18:34 +0000 Manifest this update: Sun 07 Sep 2025 00:18:34 +0000 Manifest next update: Sun 14 Sep 2025 00:18:34 +0000 Files and hashes: 1: XSeFtU0WPtAepUGLz6NPG3RWtxM.crl (hash: bgyhgC8IbmhPovmSZ4EePk+EyYCXstXzcgsBdtmimxw=) 2: 6337963E4C3D11ECB5FF844FC4F9AE02.roa (hash: 3KTOI3tChJ1EuHHkZIxY0+a6WeVb+6nR6Jk3wwfwMHU=) 3: ACE844F047AA11ECA0F05026C4F9AE02.roa (hash: xweR0My4YSEWr28C8V1U/OMEuVwH/Ly7NJUba0hYsCg=) 4: 1F77EFA44C4011EC952D5A23C4F9AE02.roa (hash: c5WQ+yUKORBq8d/u8k3An8QJMDIFK4yVXiwWYWbL5qc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 00:18:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1223 (0x4c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CC5, serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Validity Not Before: Sep 7 00:18:34 2025 GMT Not After : Sep 14 00:18:34 2025 GMT Subject: CN=68bccf5a-a581 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:15:77:a3:a4:37:f2:a4:df:a1:d3:55:eb:4c: b0:f7:87:f4:33:f2:21:8a:64:6b:6d:95:e0:e9:ab: a2:90:47:5a:01:92:8b:79:e2:9d:cc:fb:89:6b:ca: 62:a0:51:0c:f4:69:3e:1a:70:ea:64:97:24:f8:30: 98:5c:be:c0:0f:b6:13:34:98:9e:f9:48:ff:26:f8: 37:b9:87:e5:d0:a8:99:a9:8a:86:39:81:ca:29:ce: 91:4b:ce:30:37:7a:6e:4f:f4:83:45:c2:fd:9f:52: 39:3e:70:ea:24:18:73:e3:ca:53:f3:97:05:82:bc: 6b:77:b3:40:12:bb:a5:02:89:ba:71:bf:8f:41:ab: 04:90:44:f0:1c:39:43:c2:f1:5f:50:78:8b:19:02: 5d:50:e8:e5:dd:28:a0:56:a3:fd:7b:53:13:24:f1: 0f:32:f6:6b:83:5a:d0:0e:43:76:c2:ee:1e:b3:39: 0c:ca:70:b8:eb:64:7e:00:a0:4c:2b:23:7a:3e:79: 4d:d1:ca:60:46:2f:39:40:97:6e:f1:8b:36:f7:87: 0d:1b:55:45:8e:b9:d9:b8:a1:2b:d2:37:33:80:f3: 4a:7e:7f:39:19:ff:a5:b4:14:14:10:d3:b5:fc:f3: c8:18:f0:db:4f:d0:18:d5:5c:42:9b:75:b6:5d:8e: 74:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:D1:ED:3A:99:DB:09:BA:71:1D:A9:79:60:9C:70:40:46:0A:20:F0 X509v3 Authority Key Identifier: keyid:5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:32:8a:c5:ae:e0:4f:0f:a0:30:9b:36:1f:53:99:1d:3b:e8: 34:87:af:8d:17:94:07:71:ea:04:e4:c4:86:79:57:3a:71:8f: b6:a9:95:2d:3d:7d:2a:39:7e:b9:95:c4:09:8f:b4:f3:c9:1e: 85:18:b1:e4:23:65:ce:a8:07:fb:36:4c:9b:63:94:af:da:3b: ea:33:cf:c4:e9:c2:a1:85:d3:f1:df:89:a7:62:ee:3f:8d:f7: a4:e8:9f:95:59:e5:96:59:ce:12:d4:31:cb:96:e1:d6:7b:f4: ab:18:2e:b1:57:e7:c6:06:25:4a:41:5f:66:44:59:36:8e:a3: 92:a6:81:69:ce:22:33:af:63:64:4f:47:e0:6f:be:64:62:48: 25:77:9e:77:15:f5:f0:a4:a6:3c:24:c2:94:db:83:28:ff:9b: 92:1a:ad:3e:5a:c9:79:00:47:23:65:be:ff:79:f1:10:e3:6c: 4f:9c:04:66:e4:61:90:06:66:25:6a:59:a6:a0:92:57:72:7d: 72:62:6a:30:85:e4:f0:cb:98:cc:02:4d:17:a6:28:9c:b3:44: 7a:66:d0:21:12:f4:98:db:67:8c:28:8b:03:53:3e:6e:45:fe: 94:f1:53:ad:97:a8:cc:b9:5c:bc:e4:36:8a:f7:3f:86:f8:72: 54:77:43:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQzUxMTAvBgNVBAUTKDVEMjc4NUI1NEQxNjNFRDAxRUE1NDE4QkNGQTM0RjFC NzQ1NkI3MTMwHhcNMjUwOTA3MDAxODM0WhcNMjUwOTE0MDAxODM0WjAYMRYwFAYD VQQDEw02OGJjY2Y1YS1hNTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuxV3o6Q38qTfodNV60yw94f0M/IhimRrbZXg6auikEdaAZKLeeKdzPuJa8pi oFEM9Gk+GnDqZJck+DCYXL7AD7YTNJie+Uj/Jvg3uYfl0KiZqYqGOYHKKc6RS84w N3puT/SDRcL9n1I5PnDqJBhz48pT85cFgrxrd7NAErulAom6cb+PQasEkETwHDlD wvFfUHiLGQJdUOjl3SigVqP9e1MTJPEPMvZrg1rQDkN2wu4eszkMynC462R+AKBM KyN6PnlN0cpgRi85QJdu8Ys294cNG1VFjrnZuKEr0jczgPNKfn85Gf+ltBQUENO1 /PPIGPDbT9AY1VxCm3W2XY507QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD/R7TqZ 2wm6cR2peWCccEBGCiDwMB8GA1UdIwQYMBaAFF0nhbVNFj7QHqVBi8+jTxt0VrcT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NDNS8yQUM0RDMzRTQ2 QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0QWVwVUdMejZOUEczUld0 eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTZUZ0VTBXUHRBZXBVR0x6Nk5QRzNSV3R4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NDNS8yQUM0RDMzRTQ2QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0 QWVwVUdMejZOUEczUld0eE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDDMorFruBPD6AwmzYfU5kdO+g0h6+NF5QHceoE5MSGeVc6cY+2qZUt PX0qOX65lcQJj7TzyR6FGLHkI2XOqAf7NkybY5Sv2jvqM8/E6cKhhdPx34mnYu4/ jfek6J+VWeWWWc4S1DHLluHWe/SrGC6xV+fGBiVKQV9mRFk2jqOSpoFpziIzr2Nk T0fgb75kYkgld553FfXwpKY8JMKU24Mo/5uSGq0+Wsl5AEcjZb7/efEQ42xPnARm 5GGQBmYlalmmoJJXcn1yYmowheTwy5jMAk0Xpiics0R6ZtAhEvSY22eMKIsDUz5u Rf6U8VOtl6jMuVy85DaK9z+G+HJUd0O5 -----END CERTIFICATE-----Generated at Sun Sep 7 15:21:12 2025 by rpki-client