$ rpki-client -vvf rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft File: XqEcijop4GlzwfEhYR1aXCobBp0.mft (raw, json) Hash identifier: NTtUzO835yvHjoZtCkB3Ta91yEsZPX45JStpCfu4wLs= Subject key identifier: E9:E2:9A:F9:A6:4D:C0:E0:26:4D:C5:BA:C7:AD:DE:27:3A:82:C9:ED Authority key identifier: 5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D Certificate issuer: /CN=A91A654C/serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Certificate serial: 0778 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft Manifest number: 0755 Signing time: Sat 06 Sep 2025 22:02:09 +0000 Manifest this update: Sat 06 Sep 2025 22:02:08 +0000 Manifest next update: Sat 13 Sep 2025 22:02:08 +0000 Files and hashes: 1: XqEcijop4GlzwfEhYR1aXCobBp0.crl (hash: dM7wpmw1kiN2wdZIIZpkPg3qgFsjxBVeQz+VbRE14i4=) 2: 66FC64186D0711F0AC1BE951C4F9AE02.roa (hash: yghGvORjCbrwPbkKWVhSZ4zOTt6ioVsM8lRS5kJkr+0=) 3: 5A51D464F5FA11EC9B35372AC4F9AE02.roa (hash: ibMAngc6C4+JXufdc4UjRpgLZzdehYxv7hgLysgCefA=) 4: 94A5320663A111F092E32646C4F9AE02.roa (hash: e6KNfiSRL8HIlZFdQYAqnN5O/JJ1gZgCqccGEgtmPUM=) 5: 0940732E0E6311EDB98DEA0DC4F9AE02.roa (hash: EtYv33VoONviB5DogmNb9f2t5IayVZNNzvoHIml90Q8=) 6: 0A37FEFA0E6311EDB98DEA0DC4F9AE02.roa (hash: B3TtfKIV8qBTfY8o/1C3LKcqpx/TLDJeKafLYgXCPS4=) 7: 9507206A63A111F092E32646C4F9AE02.roa (hash: M0FoVt5RwJimEJ3yM4LIg2YOQNmwyICgIMilWYDArBs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 22:02:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1912 (0x778) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A654C, serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Validity Not Before: Sep 6 22:02:08 2025 GMT Not After : Sep 13 22:02:08 2025 GMT Subject: CN=68bcaf61-26c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:69:d3:64:f5:6e:6e:f7:2d:15:3c:84:04:68: 0c:d0:cb:67:9d:51:21:15:58:d3:d9:40:aa:82:bf: ee:10:80:8d:af:22:7c:79:31:94:48:52:14:51:98: f2:80:61:78:e9:dd:7d:6e:82:88:f6:56:69:d7:99: c7:08:0c:6a:f8:66:9b:8f:c8:f4:1c:7b:c5:55:92: fb:ec:90:51:e0:65:78:45:38:99:18:24:e1:cf:65: c3:37:61:bc:93:63:ef:f5:e0:3f:c3:a3:82:ad:11: e5:10:15:c5:b8:05:33:74:53:0a:ad:9d:1a:a0:06: 4c:d0:91:ad:58:c9:76:74:d8:47:1d:5a:04:42:45: 33:91:d4:e5:77:a4:5e:bb:f0:b1:03:c2:83:8a:c9: b7:0f:79:18:06:03:9d:70:d9:ae:dc:81:84:51:81: b4:ba:d8:e4:c1:32:59:0e:5e:c4:78:a6:96:eb:1a: 69:ef:95:72:06:15:77:cf:1b:85:41:45:f3:f2:6a: ff:cc:51:e6:1d:87:01:b7:78:17:a3:d2:32:c2:42: f9:31:ca:4a:b4:e3:e8:ed:40:b6:82:91:86:7c:62: e5:ec:c6:58:e3:67:9a:3d:7f:4f:b7:55:cf:7e:39: 67:8f:ad:c3:e3:17:26:7b:0c:8e:f9:10:8c:65:80: a7:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:E2:9A:F9:A6:4D:C0:E0:26:4D:C5:BA:C7:AD:DE:27:3A:82:C9:ED X509v3 Authority Key Identifier: keyid:5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:ab:b7:d9:1f:4b:b6:3f:3c:bd:4b:60:f6:c9:47:69:6d:93: d3:b8:ae:12:fc:1e:3b:eb:54:1a:47:52:e1:1b:25:e7:47:81: f5:2b:e5:4b:53:9d:06:15:b9:66:dd:ef:60:08:82:dd:dd:ec: cd:9b:8b:9e:37:42:ac:77:77:21:dc:bb:16:97:60:1e:03:84: ad:80:df:8d:c7:21:31:e7:2b:64:7d:88:07:ea:38:cf:2e:c5: 78:ef:8d:0b:94:8b:db:b9:0f:22:a4:47:6a:81:d7:e3:43:e8: 02:06:31:1c:43:cb:23:ef:29:55:f2:b8:e3:45:09:48:53:55: 82:44:20:f3:fe:29:86:ee:49:77:13:f0:b6:7f:4f:cd:d7:55: 1c:c6:65:f6:bf:c7:05:bb:c4:fb:bb:46:ef:5e:15:93:d6:f0: 1f:38:a7:d2:e8:01:4d:24:31:c2:b0:1c:97:c8:65:84:2d:0c: 1c:c9:c3:6e:14:3b:7e:c3:e6:16:e8:97:af:36:a1:2e:1f:5c: ef:f3:7c:96:00:b5:22:73:c6:24:39:b8:d8:5d:ce:e0:3c:d1: 96:95:0d:eb:dc:45:d9:19:99:13:79:57:d5:08:e4:1a:35:bf: ae:96:d9:0a:32:5a:4a:6e:00:12:e1:da:5d:a1:6b:c7:27:ca: 9c:16:37:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1NEMxMTAvBgNVBAUTKDVFQTExQzhBM0EyOUUwNjk3M0MxRjEyMTYxMUQ1QTVD MkExQjA2OUQwHhcNMjUwOTA2MjIwMjA4WhcNMjUwOTEzMjIwMjA4WjAYMRYwFAYD VQQDEw02OGJjYWY2MS0yNmM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqmnTZPVubvctFTyEBGgM0MtnnVEhFVjT2UCqgr/uEICNryJ8eTGUSFIUUZjy gGF46d19boKI9lZp15nHCAxq+Gabj8j0HHvFVZL77JBR4GV4RTiZGCThz2XDN2G8 k2Pv9eA/w6OCrRHlEBXFuAUzdFMKrZ0aoAZM0JGtWMl2dNhHHVoEQkUzkdTld6Re u/CxA8KDism3D3kYBgOdcNmu3IGEUYG0utjkwTJZDl7EeKaW6xpp75VyBhV3zxuF QUXz8mr/zFHmHYcBt3gXo9IywkL5McpKtOPo7UC2gpGGfGLl7MZY42eaPX9Pt1XP fjlnj63D4xcmewyO+RCMZYCndQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOnimvmm TcDgJk3Fuset3ic6gsntMB8GA1UdIwQYMBaAFF6hHIo6KeBpc8HxIWEdWlwqGwad MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjU0Qy81MUE5RUFDQzQx NjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRHbHp3ZkVoWVIxYVhDb2JC cDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hxRWNpam9wNEdsendmRWhZUjFhWENvYkJwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjU0Qy81MUE5RUFDQzQxNjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRH bHp3ZkVoWVIxYVhDb2JCcDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxq7fZH0u2Pzy9S2D2yUdpbZPTuK4S/B4761QaR1LhGyXnR4H1K+VL U50GFblm3e9gCILd3ezNm4ueN0Ksd3ch3LsWl2AeA4StgN+NxyEx5ytkfYgH6jjP LsV4740LlIvbuQ8ipEdqgdfjQ+gCBjEcQ8sj7ylV8rjjRQlIU1WCRCDz/imG7kl3 E/C2f0/N11UcxmX2v8cFu8T7u0bvXhWT1vAfOKfS6AFNJDHCsByXyGWELQwcycNu FDt+w+YW6JevNqEuH1zv83yWALUic8YkObjYXc7gPNGWlQ3r3EXZGZkTeVfVCOQa Nb+ultkKMlpKbgAS4dpdoWvHJ8qcFjcn -----END CERTIFICATE-----Generated at Mon Sep 8 02:25:52 2025 by rpki-client