$ rpki-client -vvf rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft File: XiM50eqvU0mhOKR5fagtDrTfqew.mft (raw, json) Hash identifier: 1+w/lNwGNgB6EpKZ3w6uwlSNfg0ahprDmTS+qkJkJKY= Subject key identifier: 9A:F8:53:74:70:52:AD:41:08:8C:F7:99:C7:B4:3D:45:BB:1A:47:13 Authority key identifier: 5E:23:39:D1:EA:AF:53:49:A1:38:A4:79:7D:A8:2D:0E:B4:DF:A9:EC Certificate issuer: /CN=A918CFAD/serialNumber=5E2339D1EAAF5349A138A4797DA82D0EB4DFA9EC Certificate serial: 0110 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft Manifest number: 010E Signing time: Fri 05 Sep 2025 05:18:52 +0000 Manifest this update: Fri 05 Sep 2025 05:18:51 +0000 Manifest next update: Fri 12 Sep 2025 05:18:51 +0000 Files and hashes: 1: XiM50eqvU0mhOKR5fagtDrTfqew.crl (hash: Syl7al14OFfjFY6c+ttvLcwpjazOsOHoznarTaqDL1E=) 2: D161B1F0EA0411EE98A86A13C4F9AE02.roa (hash: +NOhwE6m6lpwH5XuFy8HqU1ULWBp+YrGh21v4UoRt+M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.crl rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:18:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 272 (0x110) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CFAD, serialNumber=5E2339D1EAAF5349A138A4797DA82D0EB4DFA9EC Validity Not Before: Sep 5 05:18:51 2025 GMT Not After : Sep 12 05:18:51 2025 GMT Subject: CN=68ba72bb-d005 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:38:ed:44:e6:85:c1:c2:b0:54:70:84:67:01: da:64:71:8c:53:07:28:08:19:6f:0e:09:80:21:3f: 12:19:5c:51:5e:ac:f1:a0:d1:fd:d6:91:26:a9:a9: 23:c5:d4:9c:42:dd:1a:a4:3d:13:dd:e0:9f:5f:89: fb:eb:ee:8a:b4:ff:99:a6:ab:36:0e:e6:11:3e:1b: e3:66:49:a5:15:af:eb:94:6e:74:7a:92:18:8e:f3: d4:9b:61:70:ea:c6:4d:03:e8:52:75:d7:3e:47:0e: a0:31:6d:9d:74:ff:a1:a4:66:53:8c:5a:61:52:98: 7d:aa:39:b4:61:07:84:53:cb:1a:ef:86:42:2f:46: bc:fb:2a:68:6a:4c:58:8f:1b:b8:6a:e3:f2:e7:d2: 78:32:6f:3e:62:48:a5:d2:23:fc:d5:e6:07:04:40: 70:dd:3f:fc:21:46:43:c2:7d:b8:4c:ec:53:e0:4d: ec:5a:da:a8:61:aa:96:c0:b9:8b:a1:a0:14:b6:4f: a4:44:aa:3b:21:97:e2:1d:c4:e5:f5:3c:c6:35:09: cd:78:5f:ce:1c:11:57:aa:93:38:56:93:93:b7:f0: 31:e0:53:15:21:6c:a8:02:6a:3d:e7:a2:3e:58:1a: ac:ca:bd:56:4d:9f:47:de:22:67:36:ba:34:70:fa: 52:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:F8:53:74:70:52:AD:41:08:8C:F7:99:C7:B4:3D:45:BB:1A:47:13 X509v3 Authority Key Identifier: keyid:5E:23:39:D1:EA:AF:53:49:A1:38:A4:79:7D:A8:2D:0E:B4:DF:A9:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:86:e8:e1:ac:c7:e7:6d:71:a4:f3:18:82:f7:f7:43:ab:d3: 1b:31:aa:f0:13:ef:9d:67:c8:8d:96:5a:65:8c:28:e0:2c:ee: f9:40:74:d2:6a:d6:e7:9e:92:2e:0d:fc:9e:2b:01:b8:62:01: ef:c0:a2:b3:ea:29:b7:82:d9:1b:84:f4:7d:2d:a1:7f:9c:db: 14:f3:97:d4:b3:29:d8:dc:be:19:a5:99:87:40:9e:d2:5f:ca: cb:5b:82:9a:33:76:5e:df:fd:38:1e:cf:e4:d7:ce:9a:0c:60: 76:64:22:a8:6b:92:eb:be:6c:8b:fb:59:20:b5:f7:57:6c:57: 18:1e:d4:59:29:b5:1e:cf:17:a7:ef:52:47:e4:17:70:39:c9: 51:bd:8a:9b:44:a7:9c:8f:38:05:8e:b2:d0:3c:48:63:af:89: 6c:62:68:a8:51:04:8f:3f:02:69:b0:b7:83:93:1f:a9:cf:71: e4:48:dd:81:7a:aa:6c:23:b7:b7:4d:7b:df:6f:33:65:66:a9: 9e:cc:71:66:9e:47:70:0e:85:21:80:f5:23:c5:a4:cd:a6:22: b4:e7:f4:37:aa:86:bf:da:5a:7a:85:f6:2f:cc:7c:44:b5:1b: b6:2c:bf:fa:83:a5:06:80:71:24:b1:04:95:87:c9:8e:08:64: db:d7:97:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENGQUQxMTAvBgNVBAUTKDVFMjMzOUQxRUFBRjUzNDlBMTM4QTQ3OTdEQTgyRDBF QjRERkE5RUMwHhcNMjUwOTA1MDUxODUxWhcNMjUwOTEyMDUxODUxWjAYMRYwFAYD VQQDEw02OGJhNzJiYi1kMDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1jjtROaFwcKwVHCEZwHaZHGMUwcoCBlvDgmAIT8SGVxRXqzxoNH91pEmqakj xdScQt0apD0T3eCfX4n76+6KtP+Zpqs2DuYRPhvjZkmlFa/rlG50epIYjvPUm2Fw 6sZNA+hSddc+Rw6gMW2ddP+hpGZTjFphUph9qjm0YQeEU8sa74ZCL0a8+ypoakxY jxu4auPy59J4Mm8+Ykil0iP81eYHBEBw3T/8IUZDwn24TOxT4E3sWtqoYaqWwLmL oaAUtk+kRKo7IZfiHcTl9TzGNQnNeF/OHBFXqpM4VpOTt/Ax4FMVIWyoAmo956I+ WBqsyr1WTZ9H3iJnNro0cPpSWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJr4U3Rw Uq1BCIz3mce0PUW7GkcTMB8GA1UdIwQYMBaAFF4jOdHqr1NJoTikeX2oLQ6036ns MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0ZBRC80QzkwMEYxQ0VB MDQxMUVFOTJEMTA2MTFDNEY5QUUwMi9YaU01MGVxdlUwbWhPS1I1ZmFndERyVGZx ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1hpTTUwZXF2VTBtaE9LUjVmYWd0RHJUZnFldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Q0ZBRC80QzkwMEYxQ0VBMDQxMUVFOTJEMTA2MTFDNEY5QUUwMi9YaU01MGVxdlUw bWhPS1I1ZmFndERyVGZxZXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxhujhrMfnbXGk8xiC9/dDq9MbMarwE++dZ8iNllpljCjgLO75QHTS atbnnpIuDfyeKwG4YgHvwKKz6im3gtkbhPR9LaF/nNsU85fUsynY3L4ZpZmHQJ7S X8rLW4KaM3Ze3/04Hs/k186aDGB2ZCKoa5LrvmyL+1kgtfdXbFcYHtRZKbUezxen 71JH5BdwOclRvYqbRKecjzgFjrLQPEhjr4lsYmioUQSPPwJpsLeDkx+pz3HkSN2B eqpsI7e3TXvfbzNlZqmezHFmnkdwDoUhgPUjxaTNpiK05/Q3qoa/2lp6hfYvzHxE tRu2LL/6g6UGgHEksQSVh8mOCGTb15cK -----END CERTIFICATE-----Generated at Sat Sep 6 21:10:08 2025 by rpki-client