$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft File: XAo1I_02RadjWvJRmtzQAuEy-84.mft (raw, json) Hash identifier: dE8Ej7skzDjDfgrauXCsnj7KhSdm33TkfmOClXx+O88= Subject key identifier: 55:32:34:C2:8D:44:7A:6C:02:28:F9:64:EA:21:A9:52:77:09:2B:CF Authority key identifier: 5C:0A:35:23:FD:36:45:A7:63:5A:F2:51:9A:DC:D0:02:E1:32:FB:CE Certificate issuer: /CN=A91B0F90/serialNumber=5C0A3523FD3645A7635AF2519ADCD002E132FBCE Certificate serial: 83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft Manifest number: 79 Signing time: Wed 17 Sep 2025 07:38:32 +0000 Manifest this update: Wed 17 Sep 2025 07:38:31 +0000 Manifest next update: Wed 24 Sep 2025 07:38:31 +0000 Files and hashes: 1: XAo1I_02RadjWvJRmtzQAuEy-84.crl (hash: lQuTNMKNaz9LgPiLpj2+K+C89Z24C7cEga/eyVj2W44=) 2: 304DD002EFAB11EF97C9610FC4F9AE02.roa (hash: nY9SnH3XV0jBQtfc+UOqx27pO7JEzdlFPgYbBdgEcrs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.crl rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 07:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 131 (0x83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0F90, serialNumber=5C0A3523FD3645A7635AF2519ADCD002E132FBCE Validity Not Before: Sep 17 07:38:31 2025 GMT Not After : Sep 24 07:38:31 2025 GMT Subject: CN=68ca6577-90cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:41:0a:e7:7c:b7:c6:67:9b:07:b8:56:2a:4c: 51:1a:8c:ed:d4:5c:e1:50:52:b8:90:71:3c:1d:c1: 16:e7:9a:10:66:52:ea:bb:3e:73:3f:34:6f:3f:e9: 19:3a:76:65:75:c0:c5:50:6e:53:a6:ed:fb:7e:a5: a3:44:cd:7c:5e:0c:46:39:6f:2b:85:06:94:f7:31: b6:62:fc:13:8c:85:44:be:3f:3d:58:fb:7e:55:34: 95:80:79:25:a4:4d:25:4d:e3:cf:c0:91:65:ab:36: 26:27:a4:c7:e9:1f:31:f3:91:2f:ba:ac:5d:e5:a4: 53:f4:e5:d1:c4:59:ae:22:f6:96:df:3a:6d:29:42: fc:f1:81:53:da:d7:76:ba:cb:b4:d7:0e:a3:c1:b2: 99:da:a1:5e:57:a2:27:b9:1b:26:04:a9:52:74:29: 2a:85:32:62:7e:dc:2b:3d:aa:b3:64:3e:d3:05:8b: ae:3e:28:b6:86:69:62:c8:da:0b:db:f5:d9:7f:e0: 92:25:12:22:e6:9b:3e:49:8f:b1:e9:49:e2:0b:0b: 73:eb:d2:c2:a9:7c:44:d5:25:72:cb:14:de:36:2d: ce:fd:0b:df:57:24:9c:62:34:3a:47:a9:a6:ad:bc: ac:07:5e:02:3a:b0:0a:61:ff:8e:43:af:70:aa:1e: bc:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:32:34:C2:8D:44:7A:6C:02:28:F9:64:EA:21:A9:52:77:09:2B:CF X509v3 Authority Key Identifier: keyid:5C:0A:35:23:FD:36:45:A7:63:5A:F2:51:9A:DC:D0:02:E1:32:FB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:28:e2:c6:41:1f:31:25:d8:c7:77:5e:95:4c:68:38:6e:46: 26:b7:95:84:7f:35:0f:f7:5d:c6:5e:53:99:e2:ae:99:f2:5c: 5d:92:d7:fc:e4:aa:90:ef:ca:f1:2c:a4:35:5e:d2:e0:a5:73: 40:c1:8b:5d:06:e4:40:a5:94:45:52:11:53:11:a3:1b:90:60: 0d:6a:cd:da:29:0f:92:ce:bd:61:ff:0c:e7:a2:26:ca:89:30: 73:ba:0c:26:d1:b3:64:74:03:c1:b2:d0:c6:2b:75:24:8d:b2: 67:35:9e:92:79:a4:0a:47:dd:d6:6e:ea:d0:71:73:0d:c0:0a: 6e:01:93:1c:32:cc:db:72:62:4c:34:f9:f4:07:de:1a:8d:4a: cb:d4:60:d4:73:7d:77:db:06:31:c2:69:ca:84:44:90:ca:b5: 95:08:84:13:89:9c:1a:7a:94:21:5e:6d:1c:9d:b5:fe:ef:c0: c6:17:19:4d:fd:f5:8d:1b:c8:86:8d:ed:26:b0:9e:52:ae:3f: f9:f2:b1:9c:56:83:44:3f:0b:6b:0b:53:fd:ea:45:38:d7:2f: b4:48:05:0a:aa:f8:d6:bb:8f:7b:b3:59:a5:dd:d8:c9:b2:e4: 03:fe:ef:87:02:68:ff:0b:3a:68:fa:3c:95:40:8b:e6:e1:db: 07:ef:4a:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBGOTAxMTAvBgNVBAUTKDVDMEEzNTIzRkQzNjQ1QTc2MzVBRjI1MTlBRENEMDAy RTEzMkZCQ0UwHhcNMjUwOTE3MDczODMxWhcNMjUwOTI0MDczODMxWjAYMRYwFAYD VQQDEw02OGNhNjU3Ny05MGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA20EK53y3xmebB7hWKkxRGozt1FzhUFK4kHE8HcEW55oQZlLquz5zPzRvP+kZ OnZldcDFUG5Tpu37fqWjRM18XgxGOW8rhQaU9zG2YvwTjIVEvj89WPt+VTSVgHkl pE0lTePPwJFlqzYmJ6TH6R8x85Evuqxd5aRT9OXRxFmuIvaW3zptKUL88YFT2td2 usu01w6jwbKZ2qFeV6InuRsmBKlSdCkqhTJiftwrPaqzZD7TBYuuPii2hmliyNoL 2/XZf+CSJRIi5ps+SY+x6UniCwtz69LCqXxE1SVyyxTeNi3O/QvfVyScYjQ6R6mm rbysB14COrAKYf+OQ69wqh68sQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFUyNMKN RHpsAij5ZOohqVJ3CSvPMB8GA1UdIwQYMBaAFFwKNSP9NkWnY1ryUZrc0ALhMvvO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMEY5MC8wNDc3OUI5Q0VE ODExMUVGQTAwMzY2MTZDNEY5QUUwMi9YQW8xSV8wMlJhZGpXdkpSbXR6UUF1RXkt ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hBbzFJXzAyUmFkald2SlJtdHpRQXVFeS04NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MEY5MC8wNDc3OUI5Q0VEODExMUVGQTAwMzY2MTZDNEY5QUUwMi9YQW8xSV8wMlJh ZGpXdkpSbXR6UUF1RXktODQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1KOLGQR8xJdjHd16VTGg4bkYmt5WEfzUP913GXlOZ4q6Z8lxdktf8 5KqQ78rxLKQ1XtLgpXNAwYtdBuRApZRFUhFTEaMbkGANas3aKQ+Szr1h/wznoibK iTBzugwm0bNkdAPBstDGK3UkjbJnNZ6SeaQKR93WburQcXMNwApuAZMcMszbcmJM NPn0B94ajUrL1GDUc3132wYxwmnKhESQyrWVCIQTiZwaepQhXm0cnbX+78DGFxlN /fWNG8iGje0msJ5Srj/58rGcVoNEPwtrC1P96kU41y+0SAUKqvjWu497s1ml3djJ suQD/u+HAmj/Czpo+jyVQIvm4dsH70p4 -----END CERTIFICATE-----Generated at Fri Sep 19 00:43:34 2025 by rpki-client