$ rpki-client -vvf rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft File: X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft (raw, json) Hash identifier: y+G3xIpnz4HtS7FaebF4nBPxDohVQrEK+ZAG70rIUos= Subject key identifier: 91:E8:40:38:2D:1D:95:38:B2:2B:E1:D9:A9:BD:6F:46:EC:C0:CA:B2 Authority key identifier: 5F:C2:79:2C:F4:40:B8:57:83:9D:68:8A:70:B6:0F:07:62:AB:AB:35 Certificate issuer: /CN=A9170304/serialNumber=5FC2792CF440B857839D688A70B60F0762ABAB35 Certificate serial: 34CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft Manifest number: 34C2 Signing time: Mon 08 Sep 2025 14:38:20 +0000 Manifest this update: Mon 08 Sep 2025 14:38:20 +0000 Manifest next update: Mon 15 Sep 2025 14:38:20 +0000 Files and hashes: 1: X8J5LPRAuFeDnWiKcLYPB2KrqzU.crl (hash: 76Kr02lyhDOgjDSDGd4VHmtQVFFXo5PyisD0k1TPofY=) 2: 6D106CEE3AA011EB963B4842C4F9AE02.roa (hash: m1Ja+K+BQF88h58Y18w9A7vu3WiRuOsB65pKsql8BvI=) 3: 3A304DB4F54411EE8FF34627C4F9AE02.roa (hash: Zl4gUZhHt66LNUFLaLmernm+th1hHU0/5O3LszjxBds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.crl rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 14:38:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13515 (0x34cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170304, serialNumber=5FC2792CF440B857839D688A70B60F0762ABAB35 Validity Not Before: Sep 8 14:38:20 2025 GMT Not After : Sep 15 14:38:20 2025 GMT Subject: CN=68beea5c-d0cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d9:a7:c7:2a:50:08:08:fe:5e:5f:20:b5:5d: 63:b1:bf:01:51:88:1f:7a:03:58:d8:6d:aa:96:cd: 81:37:40:83:46:ff:cc:86:ff:4d:6a:53:3e:d3:cd: 01:d9:9f:4a:9f:02:fa:fe:89:6e:ec:37:e1:ce:a2: 75:3d:de:59:57:48:f9:8a:75:48:f0:f8:67:44:34: 90:ec:c8:75:b3:b6:a1:04:7d:fe:a9:da:4b:db:5b: 80:28:1d:25:fb:58:1e:31:39:cc:ad:34:f4:66:8d: b3:c1:80:3e:64:a5:51:74:20:53:99:be:8d:e2:9f: 63:47:2e:18:d0:be:97:b1:30:fa:e4:f8:98:f5:ab: 77:43:40:6c:b3:d5:53:7e:3e:93:a4:76:a6:4e:85: 8f:1c:d3:13:d9:8b:35:88:b9:22:eb:82:68:ef:00: 72:3d:e8:b5:61:71:b5:d6:d3:93:49:db:1f:19:4f: ae:5b:9f:70:7c:85:6e:89:f5:1f:9f:fa:a8:87:48: 8b:15:a3:7c:55:59:f9:6c:46:91:ff:55:28:cd:39: 66:cf:8f:03:65:f6:ab:cb:b8:5f:1f:87:1f:60:22: fc:21:f9:88:84:4e:62:0f:ff:8d:94:88:8b:a1:f0: 49:df:a1:04:dc:c2:ae:cc:66:0e:27:9e:c1:08:46: 69:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:E8:40:38:2D:1D:95:38:B2:2B:E1:D9:A9:BD:6F:46:EC:C0:CA:B2 X509v3 Authority Key Identifier: keyid:5F:C2:79:2C:F4:40:B8:57:83:9D:68:8A:70:B6:0F:07:62:AB:AB:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:7d:90:c9:47:ce:9a:2c:0f:48:d8:be:24:ec:c8:66:bd:e7: fa:01:7c:5a:4b:80:08:12:8a:46:93:af:b7:14:59:f6:1c:6d: 9a:b1:f3:41:32:ad:6d:ba:f2:6d:95:f3:b6:9f:f3:05:b5:b2: 4f:dd:8a:d4:3c:04:4b:e8:7d:18:4d:71:7b:b6:b9:8c:ff:43: ec:ef:af:b6:73:df:5d:2e:c6:7b:64:88:9d:90:d1:fe:f1:cb: cb:37:6e:3e:ad:ef:c9:92:4d:3f:a6:91:d4:23:9a:8c:09:c4: 9b:c8:9b:0b:37:b6:52:17:98:62:45:b2:cc:3c:8b:d2:64:f6: df:c0:59:c2:d2:56:c3:3d:2d:c3:aa:71:eb:d2:7a:74:f3:1c: 9a:b0:ed:a5:57:63:34:fa:8e:73:07:e8:8e:c5:f7:1a:f1:7f: 26:e3:8c:d8:f6:90:88:56:75:ad:93:1b:52:e8:d1:6f:c3:c4: 1f:8d:d0:7b:68:97:a7:ae:73:34:d8:df:19:0b:b5:77:e5:9b: 55:37:9f:91:5c:79:81:7c:c7:bb:29:38:71:25:f1:b0:45:3f: 8a:19:01:c8:37:0b:e0:a1:07:70:ce:ed:9c:f0:78:8c:a1:7d: bc:99:36:6b:eb:e7:59:e8:35:8f:bc:8c:56:7a:14:9f:74:9d: 6e:82:fb:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAzMDQxMTAvBgNVBAUTKDVGQzI3OTJDRjQ0MEI4NTc4MzlENjg4QTcwQjYwRjA3 NjJBQkFCMzUwHhcNMjUwOTA4MTQzODIwWhcNMjUwOTE1MTQzODIwWjAYMRYwFAYD VQQDEw02OGJlZWE1Yy1kMGNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs9mnxypQCAj+Xl8gtV1jsb8BUYgfegNY2G2qls2BN0CDRv/Mhv9NalM+080B 2Z9KnwL6/olu7DfhzqJ1Pd5ZV0j5inVI8PhnRDSQ7Mh1s7ahBH3+qdpL21uAKB0l +1geMTnMrTT0Zo2zwYA+ZKVRdCBTmb6N4p9jRy4Y0L6XsTD65PiY9at3Q0Bss9VT fj6TpHamToWPHNMT2Ys1iLki64Jo7wByPei1YXG11tOTSdsfGU+uW59wfIVuifUf n/qoh0iLFaN8VVn5bEaR/1UozTlmz48DZfary7hfH4cfYCL8IfmIhE5iD/+NlIiL ofBJ36EE3MKuzGYOJ57BCEZpPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJHoQDgt HZU4sivh2am9b0bswMqyMB8GA1UdIwQYMBaAFF/CeSz0QLhXg51oinC2Dwdiq6s1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDMwNC9BQjgyNDlCMjFE OEUxMUUyQjE4MjI2RUQwOEIwMkNEMi9YOEo1TFBSQXVGZURuV2lLY0xZUEIyS3Jx elUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g4SjVMUFJBdUZlRG5XaUtjTFlQQjJLcnF6VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDMwNC9BQjgyNDlCMjFEOEUxMUUyQjE4MjI2RUQwOEIwMkNEMi9YOEo1TFBSQXVG ZURuV2lLY0xZUEIyS3JxelUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1fZDJR86aLA9I2L4k7Mhmvef6AXxaS4AIEopGk6+3FFn2HG2asfNB Mq1tuvJtlfO2n/MFtbJP3YrUPARL6H0YTXF7trmM/0Ps76+2c99dLsZ7ZIidkNH+ 8cvLN24+re/Jkk0/ppHUI5qMCcSbyJsLN7ZSF5hiRbLMPIvSZPbfwFnC0lbDPS3D qnHr0np08xyasO2lV2M0+o5zB+iOxfca8X8m44zY9pCIVnWtkxtS6NFvw8QfjdB7 aJenrnM02N8ZC7V35ZtVN5+RXHmBfMe7KThxJfGwRT+KGQHINwvgoQdwzu2c8HiM oX28mTZr6+dZ6DWPvIxWehSfdJ1ugvt1 -----END CERTIFICATE-----Generated at Tue Sep 9 13:25:24 2025 by rpki-client