$ rpki-client -vvf rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft File: XucUYNY3KKxeq5GKVB0NcFFXfU0.mft (raw, json) Hash identifier: IRWS5dMdoL1QFXAjmGtSMDmkPNlHgDy+VNjDxuBSds0= Subject key identifier: 0A:B6:5F:53:1D:E1:1B:28:A9:78:31:09:9E:C0:DB:97:E4:E7:21:01 Authority key identifier: 5E:E7:14:60:D6:37:28:AC:5E:AB:91:8A:54:1D:0D:70:51:57:7D:4D Certificate issuer: /CN=A91B758E/serialNumber=5EE71460D63728AC5EAB918A541D0D7051577D4D Certificate serial: 0122 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XucUYNY3KKxeq5GKVB0NcFFXfU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft Manifest number: 0122 Signing time: Wed 17 Sep 2025 05:18:44 +0000 Manifest this update: Wed 17 Sep 2025 05:18:43 +0000 Manifest next update: Wed 24 Sep 2025 05:18:43 +0000 Files and hashes: 1: XucUYNY3KKxeq5GKVB0NcFFXfU0.crl (hash: UhGE3AgseqkvjsWLq9jYy9lij4ilIeCsrUzsg87uMro=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.crl rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XucUYNY3KKxeq5GKVB0NcFFXfU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 05:18:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 290 (0x122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B758E, serialNumber=5EE71460D63728AC5EAB918A541D0D7051577D4D Validity Not Before: Sep 17 05:18:43 2025 GMT Not After : Sep 24 05:18:43 2025 GMT Subject: CN=68ca44b3-005b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:42:9f:c9:96:58:dc:0a:bb:0d:85:13:f3:70: 59:a7:17:6a:89:98:23:73:26:20:07:25:a4:30:c4: 17:be:4e:33:c8:bd:4d:3b:c5:ba:bc:b8:ff:4e:37: d9:21:63:18:d3:51:b8:1e:9c:e8:64:a0:2e:27:5a: f4:ab:db:74:a5:e2:c6:74:bb:9a:7e:b8:93:1d:47: dc:ce:bf:87:de:e0:69:3b:2c:88:f2:25:f2:6e:68: 83:3f:39:9b:1d:5c:f4:d1:e4:23:de:a0:a2:27:11: c7:eb:e5:8c:7e:ac:af:6c:5c:96:e5:67:ff:b8:e8: b4:a8:c2:25:42:f1:0e:89:93:e6:62:3b:c8:c4:5d: 87:3c:26:6e:13:8c:98:93:12:19:c0:d6:66:88:87: 8e:a6:18:29:d5:77:38:a0:dc:5a:1f:bc:f0:bb:8a: 2d:2a:d2:9a:93:c1:7d:7b:03:af:07:79:78:1b:f4: ad:7a:03:5e:4e:f0:72:85:b7:70:ca:bd:bb:38:db: 30:0d:d2:a3:37:79:f0:5a:8d:f0:ad:ce:bc:d9:71: f0:2d:c8:84:9e:9b:a3:0c:14:0c:51:09:be:0c:6e: 77:1b:40:f6:ae:64:c2:db:09:cf:1d:c4:a5:8c:08: ab:2e:d0:04:89:ce:22:2c:89:d3:95:b3:59:83:c3: ea:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:B6:5F:53:1D:E1:1B:28:A9:78:31:09:9E:C0:DB:97:E4:E7:21:01 X509v3 Authority Key Identifier: keyid:5E:E7:14:60:D6:37:28:AC:5E:AB:91:8A:54:1D:0D:70:51:57:7D:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XucUYNY3KKxeq5GKVB0NcFFXfU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:c2:8e:2c:de:5b:a2:cd:cc:fc:b9:78:56:f2:95:55:41:07: 6e:74:85:7b:03:55:30:8f:5f:cf:05:21:35:99:1f:8a:81:8b: cd:a1:22:4d:29:db:a2:05:e0:d0:29:04:43:1b:b5:97:89:8d: 5e:a5:1c:b1:2f:1d:7c:01:96:63:67:98:19:41:28:49:c1:9f: 10:e7:c8:53:6b:06:af:cc:fe:32:ae:23:88:71:6e:7f:1a:0c: e0:17:5d:cb:37:a7:a2:76:f9:03:c0:c0:2d:f9:bc:6d:0b:88: bd:54:ec:27:bf:05:d8:94:66:db:06:b6:ba:bb:7f:ff:73:07: 54:9d:f3:43:c9:bd:01:9d:95:a8:6e:b4:e7:30:e2:d4:77:ea: 30:b8:4c:da:6a:ff:9c:7c:65:3b:c3:41:15:50:e9:7b:e2:ee: ac:0b:60:58:5d:a7:3a:9c:83:98:0f:fb:6a:ef:ca:da:53:da: 84:2a:06:61:fb:2c:2a:00:c2:8b:47:5a:58:ab:0c:5b:46:e3: 2d:b8:5e:eb:05:d0:64:b1:f4:12:6d:db:a4:0b:8b:36:c2:83: 42:03:66:98:62:ec:ba:13:e8:17:a8:e9:97:3a:f2:2c:02:f2: 1e:1b:3e:3d:91:a7:02:3d:37:eb:c3:a0:9a:4e:9f:46:8f:ce: e7:75:3c:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc1OEUxMTAvBgNVBAUTKDVFRTcxNDYwRDYzNzI4QUM1RUFCOTE4QTU0MUQwRDcw NTE1NzdENEQwHhcNMjUwOTE3MDUxODQzWhcNMjUwOTI0MDUxODQzWjAYMRYwFAYD VQQDEw02OGNhNDRiMy0wMDViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqEKfyZZY3Aq7DYUT83BZpxdqiZgjcyYgByWkMMQXvk4zyL1NO8W6vLj/TjfZ IWMY01G4HpzoZKAuJ1r0q9t0peLGdLuafriTHUfczr+H3uBpOyyI8iXybmiDPzmb HVz00eQj3qCiJxHH6+WMfqyvbFyW5Wf/uOi0qMIlQvEOiZPmYjvIxF2HPCZuE4yY kxIZwNZmiIeOphgp1Xc4oNxaH7zwu4otKtKak8F9ewOvB3l4G/StegNeTvByhbdw yr27ONswDdKjN3nwWo3wrc682XHwLciEnpujDBQMUQm+DG53G0D2rmTC2wnPHcSl jAirLtAEic4iLInTlbNZg8PqkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAq2X1Md 4RsoqXgxCZ7A25fk5yEBMB8GA1UdIwQYMBaAFF7nFGDWNyisXquRilQdDXBRV31N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzU4RS9FNzk5RjkyMkQ1 M0QxMUVFOEYxRThBODVDNEY5QUUwMi9YdWNVWU5ZM0tLeGVxNUdLVkIwTmNGRlhm VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h1Y1VZTlkzS0t4ZXE1R0tWQjBOY0ZGWGZVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzU4RS9FNzk5RjkyMkQ1M0QxMUVFOEYxRThBODVDNEY5QUUwMi9YdWNVWU5ZM0tL eGVxNUdLVkIwTmNGRlhmVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbwo4s3luizcz8uXhW8pVVQQdudIV7A1Uwj1/PBSE1mR+KgYvNoSJN KduiBeDQKQRDG7WXiY1epRyxLx18AZZjZ5gZQShJwZ8Q58hTawavzP4yriOIcW5/ GgzgF13LN6eidvkDwMAt+bxtC4i9VOwnvwXYlGbbBra6u3//cwdUnfNDyb0BnZWo brTnMOLUd+owuEzaav+cfGU7w0EVUOl74u6sC2BYXac6nIOYD/tq78raU9qEKgZh +ywqAMKLR1pYqwxbRuMtuF7rBdBksfQSbdukC4s2woNCA2aYYuy6E+gXqOmXOvIs AvIeGz49kacCPTfrw6CaTp9Gj87ndTzV -----END CERTIFICATE-----Generated at Thu Sep 18 21:43:01 2025 by rpki-client