$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft File: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft (raw, json) Hash identifier: W6W/c7re14C3nvm1o1NT6jm6kPDrs0DVjzFK6aiwEsQ= Subject key identifier: 3E:56:C5:9A:B1:20:52:DE:84:12:7D:FF:43:59:57:F2:65:85:BB:9B Authority key identifier: C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 Certificate issuer: /CN=A91AAF73/serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Certificate serial: 0174 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft Manifest number: 0171 Signing time: Wed 17 Sep 2025 04:22:10 +0000 Manifest this update: Wed 17 Sep 2025 04:22:09 +0000 Manifest next update: Wed 24 Sep 2025 04:22:09 +0000 Files and hashes: 1: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl (hash: Z6jjaW8YvwLtP8ETOp/yzSFyeC94baEl1jA+iNACJnE=) 2: 4B2F1F725E7811EE9307D234C4F9AE02.roa (hash: 3yvbzjuUuh9G6qcJ8V8xglcFed2rUg7lvlhKdI7EHEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 04:22:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 372 (0x174) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF73, serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Validity Not Before: Sep 17 04:22:09 2025 GMT Not After : Sep 24 04:22:09 2025 GMT Subject: CN=68ca3772-7be2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:24:54:bd:71:94:55:a3:24:87:d5:27:f5:d8: b2:61:75:52:ff:07:99:ed:96:b0:b3:41:2c:4d:dc: a3:a7:5a:54:11:07:21:7e:56:7a:f7:8b:6a:67:49: 72:2c:a4:10:f3:a1:85:bf:fd:8e:1e:5e:69:c4:cc: 7b:1d:9a:86:4f:80:0b:47:eb:ad:89:c4:72:ce:1f: dc:8d:2b:bd:eb:f7:57:2c:68:d9:17:40:bc:9d:85: ef:dd:d9:b0:be:0f:06:cf:58:72:db:5d:01:d1:64: cf:e7:6d:a2:d2:83:23:e0:9c:d1:cd:6d:4f:1b:a6: db:b0:37:a3:b5:e2:8e:88:e4:75:28:04:00:85:b3: a1:59:16:a2:a9:09:0a:17:4f:71:6d:4d:41:9f:db: 57:4d:ec:68:ad:66:04:49:33:c0:f5:b1:eb:02:ef: df:4b:96:62:69:45:a7:7b:5b:e9:87:69:49:f5:74: 0f:92:c7:a0:5f:f3:18:d4:c3:d0:88:92:80:29:df: 35:96:e2:0f:5b:07:54:23:14:62:b0:5e:bb:22:03: fc:86:75:1e:b8:00:65:ce:84:f3:83:09:01:42:76: af:21:43:20:67:de:fe:d5:60:ff:91:5d:a9:73:bf: 5e:8a:c2:6e:bd:9d:f1:ea:e8:65:cd:6c:33:ef:64: 0b:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:56:C5:9A:B1:20:52:DE:84:12:7D:FF:43:59:57:F2:65:85:BB:9B X509v3 Authority Key Identifier: keyid:C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:9d:65:12:1d:dc:89:07:09:b6:e1:89:67:b9:83:5a:7c:39: e1:1b:3a:3c:1e:ad:9c:73:6a:2d:51:6c:5a:02:f5:3f:59:bd: 53:a5:fc:26:d8:c4:67:99:b8:d8:1c:75:f8:8b:81:d1:c1:97: 05:ce:01:ab:58:2c:7b:9e:ce:46:23:f7:96:ef:aa:18:63:7a: 7a:15:b3:18:91:b0:e6:4c:95:f7:32:e9:e4:ea:cf:18:b5:53: 3d:dd:d6:7c:28:49:d7:5c:30:a6:77:de:f2:95:40:3f:10:9c: fc:64:22:ff:ab:9d:4f:55:df:a5:4d:d6:e3:b5:a3:2d:62:94: 72:b9:82:3d:9e:34:fd:1e:5a:a4:d1:b2:00:16:97:20:08:a4: 0e:c3:0d:e6:9a:29:68:6a:3a:a5:76:54:7a:f0:f7:c0:4b:1d: 93:fb:22:fe:a8:18:17:8b:8c:c8:cf:b5:ea:de:4a:ea:0b:bd: 74:76:86:43:24:b2:7b:fc:90:3d:05:cd:da:f8:b8:e3:1b:0c: 5a:17:87:ed:10:2b:19:34:bd:34:18:6f:49:0a:7a:92:16:8d: 45:9f:76:08:be:31:2d:8e:43:a4:64:08:41:b5:fb:fe:78:53: 9d:b3:e5:8d:90:6d:fc:23:87:67:2a:66:62:91:fb:49:fe:b2: 22:73:0e:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFGNzMxMTAvBgNVBAUTKEM0MDVGMDYxRTMzQjA3MTdDOTA0RkMxREYzRTc5QkNE Nzk1MjBGQTYwHhcNMjUwOTE3MDQyMjA5WhcNMjUwOTI0MDQyMjA5WjAYMRYwFAYD VQQDEw02OGNhMzc3Mi03YmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxyRUvXGUVaMkh9Un9diyYXVS/weZ7Zaws0EsTdyjp1pUEQchflZ694tqZ0ly LKQQ86GFv/2OHl5pxMx7HZqGT4ALR+uticRyzh/cjSu96/dXLGjZF0C8nYXv3dmw vg8Gz1hy210B0WTP522i0oMj4JzRzW1PG6bbsDejteKOiOR1KAQAhbOhWRaiqQkK F09xbU1Bn9tXTexorWYESTPA9bHrAu/fS5ZiaUWne1vph2lJ9XQPksegX/MY1MPQ iJKAKd81luIPWwdUIxRisF67IgP8hnUeuABlzoTzgwkBQnavIUMgZ97+1WD/kV2p c79eisJuvZ3x6uhlzWwz72QLmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD5WxZqx IFLehBJ9/0NZV/JlhbubMB8GA1UdIwQYMBaAFMQF8GHjOwcXyQT8HfPnm815Ug+m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUY3My9ENUZGMUY0MDVF NzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4ZkpCUHdkOC1lYnpYbFNE NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hBWHdZZU03QnhmSkJQd2Q4LWVielhsU0Q2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUY3My9ENUZGMUY0MDVFNzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4 ZkpCUHdkOC1lYnpYbFNENlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQnWUSHdyJBwm24YlnuYNafDnhGzo8Hq2cc2otUWxaAvU/Wb1Tpfwm 2MRnmbjYHHX4i4HRwZcFzgGrWCx7ns5GI/eW76oYY3p6FbMYkbDmTJX3Munk6s8Y tVM93dZ8KEnXXDCmd97ylUA/EJz8ZCL/q51PVd+lTdbjtaMtYpRyuYI9njT9Hlqk 0bIAFpcgCKQOww3mmiloajqldlR68PfASx2T+yL+qBgXi4zIz7Xq3krqC710doZD JLJ7/JA9Bc3a+LjjGwxaF4ftECsZNL00GG9JCnqSFo1Fn3YIvjEtjkOkZAhBtfv+ eFOds+WNkG38I4dnKmZikftJ/rIicw46 -----END CERTIFICATE-----Generated at Thu Sep 18 20:23:22 2025 by rpki-client