$ rpki-client -vvf rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft File: XctT6r5qkI7KhlLekkgHxQnFLTA.mft (raw, json) Hash identifier: qPHile6GVmrP8/8PsS/SbtPRXpb5j/7qAK2CXT/VnaY= Subject key identifier: F1:B0:30:B2:C1:04:2C:72:8B:07:3C:BA:EF:FD:4C:DE:05:E4:74:0C Authority key identifier: 5D:CB:53:EA:BE:6A:90:8E:CA:86:52:DE:92:48:07:C5:09:C5:2D:30 Certificate issuer: /CN=A918560D/serialNumber=5DCB53EABE6A908ECA8652DE924807C509C52D30 Certificate serial: 0D27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft Manifest number: 0D1D Signing time: Thu 18 Sep 2025 18:14:28 +0000 Manifest this update: Thu 18 Sep 2025 18:14:27 +0000 Manifest next update: Thu 25 Sep 2025 18:14:27 +0000 Files and hashes: 1: XctT6r5qkI7KhlLekkgHxQnFLTA.crl (hash: oYGEMancSIsG3H93/Ef8jF46JSENQMWuJF2jXqbqxmI=) 2: 41A8E738045111EA9C7DF516C4F9AE02.roa (hash: t9j99ouqyAO1DSlTWOraKVE9DSXzBdaScfcUdlzhboc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.crl rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 18:14:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3367 (0xd27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918560D, serialNumber=5DCB53EABE6A908ECA8652DE924807C509C52D30 Validity Not Before: Sep 18 18:14:27 2025 GMT Not After : Sep 25 18:14:27 2025 GMT Subject: CN=68cc4c03-0357 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:1d:62:aa:9e:ef:8c:bb:93:db:2f:e2:a5:be: ac:65:84:83:01:6d:ef:e4:99:d8:48:6a:06:5a:c7: 43:8b:2d:96:d5:28:cf:78:42:a6:0a:65:a4:72:e9: 40:60:8e:19:e7:3c:9c:62:0f:42:53:ff:a9:96:12: ae:99:7a:70:ff:bc:c3:c6:db:f5:f4:58:09:bc:c9: a8:d3:a1:df:a8:2d:9b:0b:9a:ff:b3:39:25:02:d9: 05:9e:1e:83:4e:54:84:9a:8f:25:b4:e1:36:ee:b8: 03:f7:3c:83:5a:a6:9b:72:da:77:83:ef:64:95:f4: d1:74:7a:b4:4c:10:e3:2e:60:85:3b:cd:32:a7:3f: a3:23:fb:0a:66:25:4d:c8:32:a5:a9:c6:2e:b5:a0: 65:53:de:c5:d5:ae:68:43:76:df:86:f6:cf:3c:7b: 80:15:cf:03:71:cc:8e:4b:d4:40:ef:3b:01:2c:61: 60:f6:54:c4:02:2f:62:96:f5:57:42:f8:b5:4d:3a: fd:e3:34:b1:e3:60:ee:4c:e9:8d:3e:de:2d:4a:61: 14:7f:a7:8a:cb:61:32:98:fa:eb:c0:91:94:29:81: 61:27:3c:69:ea:a5:33:d9:67:ef:7c:5f:32:e5:f4: 4c:df:14:0e:82:a2:94:52:5b:a0:32:66:70:f3:ad: 44:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:B0:30:B2:C1:04:2C:72:8B:07:3C:BA:EF:FD:4C:DE:05:E4:74:0C X509v3 Authority Key Identifier: keyid:5D:CB:53:EA:BE:6A:90:8E:CA:86:52:DE:92:48:07:C5:09:C5:2D:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:67:02:33:b6:3c:8a:d7:72:ce:d4:08:e3:c1:f0:65:1a:b0: 1c:72:77:13:18:45:d6:2c:0d:ee:00:6f:ea:e5:47:11:20:25: 64:e4:3d:7d:57:fb:e4:95:9a:27:97:ae:f8:da:5d:c7:c4:b2: 90:ab:b3:ee:61:56:8c:ba:da:e4:f0:8f:88:58:51:e9:8a:99: c9:43:97:98:17:8f:18:1e:7c:63:0e:44:63:b9:a5:ac:fb:79: fc:f8:92:8d:bc:18:13:86:fb:b5:fc:29:04:e7:cd:4a:06:56: 9e:ba:81:d4:d8:e7:cc:12:2c:5d:77:c5:bf:20:4f:a5:2c:65: f6:8c:54:79:43:23:8c:8c:19:8b:8f:6b:63:ad:ad:9d:bd:99: 14:9d:84:97:63:f9:6a:12:03:d9:0a:48:99:7e:ee:f4:f5:cc: 3c:40:ef:b3:5b:3b:4c:36:b1:1b:8f:4b:d2:0e:82:71:cd:8c: 99:7e:78:a3:e2:06:ad:a0:06:ad:ca:77:13:87:ac:6b:8c:a9: 64:63:d1:b5:5b:0a:34:a1:a4:9c:15:57:08:39:35:48:9d:c1: 9d:3c:fe:bd:16:68:a1:10:8a:b3:94:fb:09:de:6e:1f:d3:a2: 39:77:ac:60:aa:f6:1f:2d:cf:de:34:f3:aa:a8:15:8f:c4:e1: 55:92:91:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU2MEQxMTAvBgNVBAUTKDVEQ0I1M0VBQkU2QTkwOEVDQTg2NTJERTkyNDgwN0M1 MDlDNTJEMzAwHhcNMjUwOTE4MTgxNDI3WhcNMjUwOTI1MTgxNDI3WjAYMRYwFAYD VQQDEw02OGNjNGMwMy0wMzU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0R1iqp7vjLuT2y/ipb6sZYSDAW3v5JnYSGoGWsdDiy2W1SjPeEKmCmWkculA YI4Z5zycYg9CU/+plhKumXpw/7zDxtv19FgJvMmo06HfqC2bC5r/szklAtkFnh6D TlSEmo8ltOE27rgD9zyDWqabctp3g+9klfTRdHq0TBDjLmCFO80ypz+jI/sKZiVN yDKlqcYutaBlU97F1a5oQ3bfhvbPPHuAFc8DccyOS9RA7zsBLGFg9lTEAi9ilvVX Qvi1TTr94zSx42DuTOmNPt4tSmEUf6eKy2EymPrrwJGUKYFhJzxp6qUz2WfvfF8y 5fRM3xQOgqKUUlugMmZw861EfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPGwMLLB BCxyiwc8uu/9TN4F5HQMMB8GA1UdIwQYMBaAFF3LU+q+apCOyoZS3pJIB8UJxS0w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTYwRC9GNURDQTZENEU1 QjgxMUU5OEE3NjEyMEVDNEY5QUUwMi9YY3RUNnI1cWtJN0tobExla2tnSHhRbkZM VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjdFQ2cjVxa0k3S2hsTGVra2dIeFFuRkxUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTYwRC9GNURDQTZENEU1QjgxMUU5OEE3NjEyMEVDNEY5QUUwMi9YY3RUNnI1cWtJ N0tobExla2tnSHhRbkZMVEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMZwIztjyK13LO1AjjwfBlGrAccncTGEXWLA3uAG/q5UcRICVk5D19 V/vklZonl6742l3HxLKQq7PuYVaMutrk8I+IWFHpipnJQ5eYF48YHnxjDkRjuaWs +3n8+JKNvBgThvu1/CkE581KBlaeuoHU2OfMEixdd8W/IE+lLGX2jFR5QyOMjBmL j2tjra2dvZkUnYSXY/lqEgPZCkiZfu709cw8QO+zWztMNrEbj0vSDoJxzYyZfnij 4gatoAatyncTh6xrjKlkY9G1Wwo0oaScFVcIOTVIncGdPP69FmihEIqzlPsJ3m4f 06I5d6xgqvYfLc/eNPOqqBWPxOFVkpF2 -----END CERTIFICATE-----Generated at Fri Sep 19 01:40:29 2025 by rpki-client