$ rpki-client -vvf rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft File: X8G2OMzN_5nWRFZVKcgHCGhomzE.mft (raw, json) Hash identifier: or9eXyPAcrK1Gp/29qvNjdu2RuQKjZIHHIp5Hg2Jeqg= Subject key identifier: 94:A5:1D:13:67:32:CA:6E:38:05:D7:7E:33:36:E1:17:95:1C:A4:C1 Authority key identifier: 5F:C1:B6:38:CC:CD:FF:99:D6:44:56:55:29:C8:07:08:68:68:9B:31 Certificate issuer: /CN=A918E28E/serialNumber=5FC1B638CCCDFF99D644565529C8070868689B31 Certificate serial: 6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8G2OMzN_5nWRFZVKcgHCGhomzE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft Manifest number: 6B Signing time: Wed 17 Sep 2025 07:42:06 +0000 Manifest this update: Wed 17 Sep 2025 07:42:06 +0000 Manifest next update: Wed 24 Sep 2025 07:42:06 +0000 Files and hashes: 1: X8G2OMzN_5nWRFZVKcgHCGhomzE.crl (hash: If2R3aQyC+cKbSuEIE8AYCSztqfzoO5vt3d5FCvm7SM=) 2: AA456842107211F09A9E631FC4F9AE02.roa (hash: 6DJYRNtdCQtPDVdh/suSAFKdKgawzgUz82oOnswPp6w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.crl rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8G2OMzN_5nWRFZVKcgHCGhomzE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 07:42:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E28E, serialNumber=5FC1B638CCCDFF99D644565529C8070868689B31 Validity Not Before: Sep 17 07:42:06 2025 GMT Not After : Sep 24 07:42:06 2025 GMT Subject: CN=68ca664e-b330 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:0c:b4:3c:89:76:93:84:6b:eb:16:3c:b7:28: f5:8d:88:16:71:ff:06:2a:a3:32:50:28:e0:d4:3e: 61:44:57:44:ff:46:99:14:51:78:aa:37:96:08:a7: 63:a7:e5:6a:2f:59:17:a6:66:68:a1:dc:24:f4:a7: 18:45:ee:d9:2b:f4:da:f7:43:be:4d:24:5d:21:67: 9a:6e:31:d0:f5:e6:2d:78:7a:96:b5:6f:32:cd:44: 5a:9b:bc:0f:ad:d6:79:c2:4b:5e:94:c9:18:1e:d6: 2c:91:22:62:be:c2:d4:df:ce:d3:50:d8:f0:be:2c: a3:7e:15:d8:08:1b:14:ea:38:a8:65:c3:d9:f0:b5: d1:ba:0c:e3:c9:84:63:32:36:46:10:a2:9c:e1:d0: 14:b5:ab:d8:82:bf:4c:f2:8d:9a:39:58:23:06:61: c7:c8:c8:8a:65:2d:ba:b4:83:4e:9a:fa:47:7c:76: 78:89:b1:f2:2e:26:42:83:0c:2e:3f:34:bc:9c:d2: 39:00:cf:74:f7:9a:bf:56:63:bb:6f:69:a8:65:53: 56:d9:79:1f:0a:db:eb:96:28:27:de:83:8c:28:78: a1:e7:8a:ca:48:84:c1:ef:eb:9e:a6:c4:25:f2:b7: 03:03:c2:85:00:d0:13:4d:60:a0:58:8e:0f:d9:2c: 0d:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:A5:1D:13:67:32:CA:6E:38:05:D7:7E:33:36:E1:17:95:1C:A4:C1 X509v3 Authority Key Identifier: keyid:5F:C1:B6:38:CC:CD:FF:99:D6:44:56:55:29:C8:07:08:68:68:9B:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8G2OMzN_5nWRFZVKcgHCGhomzE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E28E/CDA3A71EF59B11EFA4F57128C4F9AE02/X8G2OMzN_5nWRFZVKcgHCGhomzE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:ec:95:89:d6:3c:31:85:cf:a5:e5:48:da:f6:15:13:e2:26: ef:d8:95:97:fa:01:b0:99:a0:28:27:62:a5:94:eb:84:85:64: 83:5b:d9:ca:1c:2f:bb:3d:ae:fe:94:e0:70:0a:71:51:35:e4: 9c:b6:b4:66:60:64:bb:a5:4f:13:89:9f:06:0c:0d:ae:0c:52: b7:69:97:f7:1a:90:13:8f:be:98:e0:54:e3:f8:50:73:cb:3d: dd:db:66:3e:c7:d1:ab:ea:52:11:c2:f2:63:e3:55:41:98:9d: 05:d4:82:7b:5c:35:5f:a0:14:82:da:c3:09:6d:23:ec:cf:a9: 5a:83:ce:90:d4:31:83:5e:e6:cb:fc:46:af:38:eb:dd:55:61: ec:02:c2:3a:b7:e1:55:09:f9:74:35:c3:a3:2a:6b:a4:71:de: 3b:7f:8d:63:de:9e:ef:88:ff:c0:69:b0:3c:50:7d:3e:48:d4: 9b:c9:81:44:e0:0a:e3:d4:a2:b0:00:9f:cf:fa:9e:6a:06:8f: 8f:5c:ce:d5:d7:8b:10:51:28:9d:74:53:ba:7e:5c:33:3a:f9: 56:e8:82:ac:15:8d:cc:25:ef:72:61:c2:79:09:b0:de:d3:97: 0c:92:67:94:99:0a:5f:bc:f6:d3:fe:59:16:4a:19:43:5e:3a: 5a:f2:f0:32 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RTI4RTExMC8GA1UEBRMoNUZDMUI2MzhDQ0NERkY5OUQ2NDQ1NjU1MjlDODA3MDg2 ODY4OUIzMTAeFw0yNTA5MTcwNzQyMDZaFw0yNTA5MjQwNzQyMDZaMBgxFjAUBgNV BAMTDTY4Y2E2NjRlLWIzMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCYDLQ8iXaThGvrFjy3KPWNiBZx/wYqozJQKODUPmFEV0T/RpkUUXiqN5YIp2On 5WovWRemZmih3CT0pxhF7tkr9Nr3Q75NJF0hZ5puMdD15i14epa1bzLNRFqbvA+t 1nnCS16UyRge1iyRImK+wtTfztNQ2PC+LKN+FdgIGxTqOKhlw9nwtdG6DOPJhGMy NkYQopzh0BS1q9iCv0zyjZo5WCMGYcfIyIplLbq0g06a+kd8dniJsfIuJkKDDC4/ NLyc0jkAz3T3mr9WY7tvaahlU1bZeR8K2+uWKCfeg4woeKHnispIhMHv656mxCXy twMDwoUA0BNNYKBYjg/ZLA0NAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUlKUdE2cy ym44Bdd+MzbhF5UcpMEwHwYDVR0jBBgwFoAUX8G2OMzN/5nWRFZVKcgHCGhomzEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFMjhFL0NEQTNBNzFFRjU5 QjExRUZBNEY1NzEyOEM0RjlBRTAyL1g4RzJPTXpOXzVuV1JGWlZLY2dIQ0dob216 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWDhHMk9Nek5fNW5XUkZaVktjZ0hDR2hvbXpFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThF MjhFL0NEQTNBNzFFRjU5QjExRUZBNEY1NzEyOEM0RjlBRTAyL1g4RzJPTXpOXzVu V1JGWlZLY2dIQ0dob216RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHXslYnWPDGFz6XlSNr2FRPiJu/YlZf6AbCZoCgnYqWU64SFZINb2coc L7s9rv6U4HAKcVE15Jy2tGZgZLulTxOJnwYMDa4MUrdpl/cakBOPvpjgVOP4UHPL Pd3bZj7H0avqUhHC8mPjVUGYnQXUgntcNV+gFILawwltI+zPqVqDzpDUMYNe5sv8 Rq84691VYewCwjq34VUJ+XQ1w6Mqa6Rx3jt/jWPenu+I/8BpsDxQfT5I1JvJgUTg CuPUorAAn8/6nmoGj49cztXXixBRKJ10U7p+XDM6+VbogqwVjcwl73JhwnkJsN7T lwySZ5SZCl+89tP+WRZKGUNeOlry8DI= -----END CERTIFICATE-----Generated at Fri Sep 19 00:38:52 2025 by rpki-client