$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft File: XerjhTD4FfvwubP472N1B4bIrAo.mft (raw, json) Hash identifier: koJtAULu6Rj00ma3624Ltd1DJPe9qgZAeylIikBMIzo= Subject key identifier: D3:BA:87:E5:7E:99:8A:33:14:17:E6:50:3B:15:60:2B:E9:B7:1A:EA Authority key identifier: 5D:EA:E3:85:30:F8:15:FB:F0:B9:B3:F8:EF:63:75:07:86:C8:AC:0A Certificate issuer: /CN=A91A4481/serialNumber=5DEAE38530F815FBF0B9B3F8EF63750786C8AC0A Certificate serial: 0108 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft Manifest number: 0106 Signing time: Fri 19 Sep 2025 05:37:32 +0000 Manifest this update: Fri 19 Sep 2025 05:37:31 +0000 Manifest next update: Fri 26 Sep 2025 05:37:31 +0000 Files and hashes: 1: XerjhTD4FfvwubP472N1B4bIrAo.crl (hash: Gs8bUUqJERNSoibj8YfrAi+nVX+Ft2jTlGF1bxR1kis=) 2: 5B08B12602C211EF9A1E4567C4F9AE02.roa (hash: K+g6F2DggfqAEcFUFS+CObch7aX7JFtpiO+kkOJ8Xy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.crl rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 04:23:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 264 (0x108) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4481, serialNumber=5DEAE38530F815FBF0B9B3F8EF63750786C8AC0A Validity Not Before: Sep 19 05:37:31 2025 GMT Not After : Sep 26 05:37:31 2025 GMT Subject: CN=68ccec1c-2171 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:be:74:89:cc:ad:83:ce:37:35:f9:de:f1:a8: d2:84:a7:b6:98:0e:87:94:ea:ed:09:48:13:cb:8c: d7:26:92:45:73:7e:b9:25:22:2b:32:3d:1e:70:3c: 5c:4f:7f:62:73:3e:70:c1:51:e6:49:1e:ed:f9:16: fd:7c:3a:3d:c9:cf:7b:15:df:cd:0c:15:54:d7:73: 86:67:a0:16:b0:f0:08:48:bd:fc:49:ee:2a:6b:78: ac:eb:c5:4f:d5:e9:ce:e6:fd:1a:9f:1c:9f:44:07: 1f:eb:0b:8b:16:f3:7a:e5:9e:c2:0c:06:77:99:38: 4b:f0:64:29:7c:7a:4a:9f:68:2b:e6:df:60:e8:93: 65:8f:0c:98:80:f0:9f:73:e9:97:0a:d6:db:7d:fd: d0:c1:90:ef:8a:c0:4e:7a:ec:f3:41:7b:90:b2:d5: 28:f0:17:35:97:41:72:c5:ea:3d:b5:4c:08:54:71: 93:fd:f7:cc:a6:6b:5d:f1:dd:ab:d8:35:d9:94:63: 79:f3:5d:d3:f5:1f:7e:ee:03:99:85:80:52:14:a3: 09:7a:5e:86:d4:ef:96:83:ca:fb:b4:6f:a6:da:06: 91:39:a2:34:43:6b:cc:c7:ef:68:9c:bb:ac:a2:12: 61:64:dc:a7:b2:1b:ff:7e:b2:62:32:51:cf:c7:fb: a8:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:BA:87:E5:7E:99:8A:33:14:17:E6:50:3B:15:60:2B:E9:B7:1A:EA X509v3 Authority Key Identifier: keyid:5D:EA:E3:85:30:F8:15:FB:F0:B9:B3:F8:EF:63:75:07:86:C8:AC:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:14:83:b5:d9:9a:42:ce:e1:15:be:cc:67:6b:80:88:35:a7: 49:0a:93:62:30:19:98:97:5e:99:ed:90:bf:4a:f4:a7:8c:b1: 16:7c:79:b0:e0:54:76:ef:74:44:0e:de:3a:26:ab:f2:60:dc: fc:f6:4f:48:d5:65:8c:b7:fa:40:7c:a6:3b:d5:00:9b:05:26: 9c:4f:ee:6d:e1:60:6f:a0:50:8f:68:e9:36:ae:7a:ad:a8:d4: 1b:dd:85:10:90:00:17:5c:bf:4e:32:8e:72:d4:21:6a:f8:4d: 5b:6e:3e:a2:78:1a:9c:3c:6c:8c:5a:9d:2e:ca:4d:8c:f5:d3: 4c:48:40:39:b0:36:e1:c4:d8:62:ba:bd:10:1d:55:15:b8:fa: 49:5e:29:ba:49:73:47:b3:7d:4f:a6:70:a8:b2:a1:22:38:09: 0d:71:cf:6d:bc:de:fb:9a:c8:ec:f1:7a:ed:dc:9a:23:e6:7f: 88:7d:f7:ed:56:1d:cd:c2:63:f4:95:08:5f:98:d1:d5:75:2c: 79:a8:d0:58:c5:fb:27:7a:7e:d6:3a:f1:84:79:56:c2:6f:11: a4:1d:a9:40:e3:87:13:14:b9:36:06:d1:a0:03:08:f2:63:ec: 1e:cb:65:93:88:e3:98:92:14:85:da:f8:a8:dc:41:ee:b4:8b: 23:8a:02:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0ODExMTAvBgNVBAUTKDVERUFFMzg1MzBGODE1RkJGMEI5QjNGOEVGNjM3NTA3 ODZDOEFDMEEwHhcNMjUwOTE5MDUzNzMxWhcNMjUwOTI2MDUzNzMxWjAYMRYwFAYD VQQDEw02OGNjZWMxYy0yMTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxL50icytg843Nfne8ajShKe2mA6HlOrtCUgTy4zXJpJFc365JSIrMj0ecDxc T39icz5wwVHmSR7t+Rb9fDo9yc97Fd/NDBVU13OGZ6AWsPAISL38Se4qa3is68VP 1enO5v0anxyfRAcf6wuLFvN65Z7CDAZ3mThL8GQpfHpKn2gr5t9g6JNljwyYgPCf c+mXCtbbff3QwZDvisBOeuzzQXuQstUo8Bc1l0Fyxeo9tUwIVHGT/ffMpmtd8d2r 2DXZlGN5813T9R9+7gOZhYBSFKMJel6G1O+Wg8r7tG+m2gaROaI0Q2vMx+9onLus ohJhZNynshv/frJiMlHPx/uoeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNO6h+V+ mYozFBfmUDsVYCvptxrqMB8GA1UdIwQYMBaAFF3q44Uw+BX78Lmz+O9jdQeGyKwK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQ4MS9CQzg0MEY0NjAy QzExMUVGQUYzQ0I0NjVDNEY5QUUwMi9YZXJqaFRENEZmdnd1YlA0NzJOMUI0Ykly QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hlcmpoVEQ0RmZ2d3ViUDQ3Mk4xQjRiSXJBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDQ4MS9CQzg0MEY0NjAyQzExMUVGQUYzQ0I0NjVDNEY5QUUwMi9YZXJqaFRENEZm dnd1YlA0NzJOMUI0YklyQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwFIO12ZpCzuEVvsxna4CINadJCpNiMBmYl16Z7ZC/SvSnjLEWfHmw 4FR273REDt46JqvyYNz89k9I1WWMt/pAfKY71QCbBSacT+5t4WBvoFCPaOk2rnqt qNQb3YUQkAAXXL9OMo5y1CFq+E1bbj6ieBqcPGyMWp0uyk2M9dNMSEA5sDbhxNhi ur0QHVUVuPpJXim6SXNHs31PpnCosqEiOAkNcc9tvN77msjs8Xrt3Joj5n+Iffft Vh3NwmP0lQhfmNHVdSx5qNBYxfsnen7WOvGEeVbCbxGkHalA44cTFLk2BtGgAwjy Y+wey2WTiOOYkhSF2vio3EHutIsjigJT -----END CERTIFICATE-----Generated at Fri Sep 19 08:36:10 2025 by rpki-client