$ rpki-client -vvf rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.mft File: XEFCLE7PHfpomnDePAORsdR-Vew.mft (raw, json) Hash identifier: 1kuqCdICrxqpIFCnMzmQi4ttCbeCEzeo+eWgZMWSz8A= Subject key identifier: C6:6C:12:A1:82:4C:23:6F:C7:DB:B5:62:D4:AA:3D:56:1D:F3:1F:6E Authority key identifier: 5C:41:42:2C:4E:CF:1D:FA:68:9A:70:DE:3C:03:91:B1:D4:7E:55:EC Certificate issuer: /CN=A916B19D/serialNumber=5C41422C4ECF1DFA689A70DE3C0391B1D47E55EC Certificate serial: 02AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEFCLE7PHfpomnDePAORsdR-Vew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.mft Manifest number: 02A8 Signing time: Wed 17 Sep 2025 02:03:44 +0000 Manifest this update: Wed 17 Sep 2025 02:03:43 +0000 Manifest next update: Wed 24 Sep 2025 02:03:43 +0000 Files and hashes: 1: XEFCLE7PHfpomnDePAORsdR-Vew.crl (hash: 9NmF0+v9vvauWiRn1eDCqWtxS0n9AfpVKnb4jQ2Bd8o=) 2: D11B9044112011EDAC1D3B15C4F9AE02.roa (hash: jBBbANmuNZVxVrVIl9nOmJTDHehO/z/tNRNLXj+1oS0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.crl rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEFCLE7PHfpomnDePAORsdR-Vew.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 02:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 685 (0x2ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B19D, serialNumber=5C41422C4ECF1DFA689A70DE3C0391B1D47E55EC Validity Not Before: Sep 17 02:03:43 2025 GMT Not After : Sep 24 02:03:43 2025 GMT Subject: CN=68ca1700-9ec7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:fd:39:89:c9:de:08:6b:0e:76:36:e9:45:18: 7a:21:62:3a:48:b9:c7:1c:b2:0e:b1:51:1d:2e:2b: f6:2e:d1:27:dc:07:a7:ee:b7:10:7b:0b:07:0d:7e: 29:0d:6d:0a:45:67:47:69:7e:35:37:e6:1b:6e:6a: 27:a5:74:ea:9a:32:82:84:ec:49:25:f2:93:95:0c: 2e:c7:3c:e0:25:66:89:ba:15:24:58:14:c6:4a:17: ed:9b:a0:6e:72:4e:26:ee:bc:10:7f:1b:05:b7:27: d8:92:23:06:3f:3e:86:10:18:84:5d:f1:6c:9e:43: e1:9d:20:31:b5:30:b5:24:b5:4d:87:0c:3f:b6:80: 2f:e5:eb:f9:01:b9:39:0b:c4:d5:77:8a:ec:cd:81: df:5b:18:34:6e:7d:75:a5:4e:61:dc:39:e5:37:83: a7:b0:1f:15:34:8d:94:89:d6:5c:d1:57:90:8f:92: 59:4d:82:c2:82:af:24:3a:af:50:79:d2:16:d0:ac: b9:1c:2d:d6:d0:c6:92:b2:63:bd:1f:ce:0e:c8:5a: 39:c8:9c:79:df:e3:88:4d:14:be:57:00:24:1f:24: f6:f2:62:64:3f:29:ea:93:db:4b:91:5e:68:ea:18: c2:43:40:c3:2d:92:c0:33:c0:7f:01:5c:4e:4e:39: 6f:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:6C:12:A1:82:4C:23:6F:C7:DB:B5:62:D4:AA:3D:56:1D:F3:1F:6E X509v3 Authority Key Identifier: keyid:5C:41:42:2C:4E:CF:1D:FA:68:9A:70:DE:3C:03:91:B1:D4:7E:55:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEFCLE7PHfpomnDePAORsdR-Vew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:65:b4:06:c3:06:fb:32:e7:3e:05:d3:42:bb:72:14:fc:54: f6:37:17:59:0c:00:aa:fc:15:bd:a9:ec:db:a5:2b:ba:88:89: 05:14:6b:57:3a:c8:96:e4:c3:05:73:62:a1:4b:fe:3d:7b:c3: 91:18:4a:17:37:7e:38:37:6b:eb:b8:72:38:af:bf:56:e7:fb: 6a:6f:59:f3:b2:d3:4d:27:ae:4f:68:93:34:00:4d:0c:12:c7: a6:ae:e8:7f:dc:69:8b:53:9b:d8:48:e0:c9:a2:bb:82:b0:e3: f0:07:3d:33:ac:42:ec:01:75:98:e7:00:82:4c:35:03:b0:9b: 07:18:ff:6d:4b:3a:e8:ba:f8:6b:82:fc:7c:41:af:31:82:ff: 81:ea:af:1d:3b:c7:f9:97:56:7d:30:0f:f0:c9:4d:24:49:92: 42:10:87:6b:5e:09:24:a3:6e:29:fe:f6:49:d2:4c:a9:10:9b: 1f:96:5c:8a:92:b8:79:a1:dc:69:24:5d:f3:49:0a:3d:f1:0b: d6:c5:01:22:b2:52:83:52:28:99:a5:3e:b6:eb:bb:d0:f0:8d: 93:b4:ac:e4:6a:5d:f0:59:27:f0:17:da:87:33:31:33:64:43: 39:2c:7f:42:8a:42:31:a7:6d:b3:b3:96:d5:45:db:60:ce:46: 9a:38:84:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAq0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIxOUQxMTAvBgNVBAUTKDVDNDE0MjJDNEVDRjFERkE2ODlBNzBERTNDMDM5MUIx RDQ3RTU1RUMwHhcNMjUwOTE3MDIwMzQzWhcNMjUwOTI0MDIwMzQzWjAYMRYwFAYD VQQDEw02OGNhMTcwMC05ZWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0f05icneCGsOdjbpRRh6IWI6SLnHHLIOsVEdLiv2LtEn3Aen7rcQewsHDX4p DW0KRWdHaX41N+YbbmonpXTqmjKChOxJJfKTlQwuxzzgJWaJuhUkWBTGShftm6Bu ck4m7rwQfxsFtyfYkiMGPz6GEBiEXfFsnkPhnSAxtTC1JLVNhww/toAv5ev5Abk5 C8TVd4rszYHfWxg0bn11pU5h3DnlN4OnsB8VNI2UidZc0VeQj5JZTYLCgq8kOq9Q edIW0Ky5HC3W0MaSsmO9H84OyFo5yJx53+OITRS+VwAkHyT28mJkPynqk9tLkV5o 6hjCQ0DDLZLAM8B/AVxOTjlvUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMZsEqGC TCNvx9u1YtSqPVYd8x9uMB8GA1UdIwQYMBaAFFxBQixOzx36aJpw3jwDkbHUflXs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjE5RC9EMjY5NURERTEx MUUxMUVEOUI1OEZEMTRDNEY5QUUwMi9YRUZDTEU3UEhmcG9tbkRlUEFPUnNkUi1W ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hFRkNMRTdQSGZwb21uRGVQQU9Sc2RSLVZldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjE5RC9EMjY5NURERTExMUUxMUVEOUI1OEZEMTRDNEY5QUUwMi9YRUZDTEU3UEhm cG9tbkRlUEFPUnNkUi1WZXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmZbQGwwb7Muc+BdNCu3IU/FT2NxdZDACq/BW9qezbpSu6iIkFFGtX OsiW5MMFc2KhS/49e8ORGEoXN344N2vruHI4r79W5/tqb1nzstNNJ65PaJM0AE0M Esemruh/3GmLU5vYSODJoruCsOPwBz0zrELsAXWY5wCCTDUDsJsHGP9tSzrouvhr gvx8Qa8xgv+B6q8dO8f5l1Z9MA/wyU0kSZJCEIdrXgkko24p/vZJ0kypEJsfllyK krh5odxpJF3zSQo98QvWxQEislKDUiiZpT6267vQ8I2TtKzkal3wWSfwF9qHMzEz ZEM5LH9CikIxp22zs5bVRdtgzkaaOIR6 -----END CERTIFICATE-----Generated at Thu Sep 18 19:06:24 2025 by rpki-client