$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft File: XnKqfVsdVjLl0z_scvp0M_Sc4po.mft (raw, json) Hash identifier: wokmk2lcqDX4Nh1/uNpGNR9ujBW3+6v27jrTpBVRQrw= Subject key identifier: EC:43:D3:EE:F0:83:AD:F1:7A:2D:88:AD:E8:4D:BE:FC:1F:EC:87:E8 Authority key identifier: 5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A Certificate issuer: /CN=A91C9E82/serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Certificate serial: 01AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft Manifest number: 0186 Signing time: Fri 05 Sep 2025 04:15:26 +0000 Manifest this update: Fri 05 Sep 2025 04:15:26 +0000 Manifest next update: Fri 12 Sep 2025 04:15:26 +0000 Files and hashes: 1: XnKqfVsdVjLl0z_scvp0M_Sc4po.crl (hash: VvWwvRnYzo32ZZkKJASw9cqfDMLkzPIbZifasiyU4Bo=) 2: 36C31E00637111EEA51CA05EC4F9AE02.roa (hash: lY96nEi5CKYTXJTj1z2X+4msAEH0lgBh87K7FsjTVZ8=) 3: 00E626A4A57611EF98285E5FC4F9AE02.roa (hash: 08NPSGEr7+x4MzDThoj8ZzRXxZk450XlydgirrF3WE4=) 4: 98BE8828663D11EE8CBBAE7CC4F9AE02.roa (hash: OnFM4tWhowHbvjU4usSptKOpZeLKLT7QxFEJy+UEpYk=) 5: 99341DD6663D11EE8CBBAE7CC4F9AE02.roa (hash: NzwtW94OGR5LBUfhUFwuihytDl5251IuikJ6D/DeFPA=) 6: 678C24C0663F11EEBD955D43C4F9AE02.roa (hash: Rlo1FH4ToBEybkPEC2r5mS4GIe86F2K5uAovVfJDrI8=) 7: 9830B6D8663D11EE8CBBAE7CC4F9AE02.roa (hash: RmkIIPTPM365rnHi3iyE65DKC/DdOKV16KKoUBGaAYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 04:15:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 427 (0x1ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9E82, serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Validity Not Before: Sep 5 04:15:26 2025 GMT Not After : Sep 12 04:15:26 2025 GMT Subject: CN=68ba63de-4326 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:04:09:f6:dd:ce:13:cf:d6:ec:40:78:1d:95: ae:19:7b:b3:d4:92:b4:79:b7:b8:97:3a:f7:8c:a8: b8:7c:61:97:31:ba:a5:6f:c9:33:06:7d:c4:6c:3f: 48:f7:af:14:2e:55:42:9e:6e:91:f7:da:44:b0:da: 7c:e2:f2:c6:c9:a4:aa:b9:ed:0c:e4:4d:ac:1b:cf: 30:93:08:0a:48:17:60:24:6c:86:fa:09:51:d9:5a: 18:12:6c:4d:73:73:fd:50:a4:b2:d8:e3:45:f6:f5: 11:d6:fd:a6:44:b3:a4:9e:0e:51:ee:c4:5a:0c:bc: c2:c9:d1:b8:4f:d0:94:be:b5:18:f3:e7:3f:0b:6b: 9f:2a:cc:30:df:c5:df:98:b5:ed:c1:74:4c:4f:c2: 3a:f3:0f:cb:f2:4d:a0:36:40:f7:ac:c3:76:35:43: 2d:1d:60:1c:97:44:97:95:60:5d:c7:1d:c6:c5:4c: e6:8e:e0:dc:d6:c8:ea:b0:c5:f4:b8:09:c3:da:e2: fa:e2:66:33:38:02:3c:e4:ad:e7:ff:f0:09:ce:b8: 0f:3e:92:4f:24:13:ef:ef:b7:23:b0:cb:89:cf:c7: 34:0c:74:12:d1:38:51:ff:4b:17:41:62:09:a9:ab: f1:fa:11:a4:dc:05:2e:ec:9f:59:51:e1:f5:83:9f: 69:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:43:D3:EE:F0:83:AD:F1:7A:2D:88:AD:E8:4D:BE:FC:1F:EC:87:E8 X509v3 Authority Key Identifier: keyid:5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:03:e4:62:de:24:1c:95:a4:3c:43:dd:7e:8d:5d:46:09:8a: e1:c7:80:e2:ac:20:bc:ae:fe:77:cb:ab:5f:f7:39:23:0b:31: db:94:f0:49:23:77:a2:10:8b:d5:63:c8:07:93:12:55:a8:14: 8a:93:7e:b7:bb:02:4b:5b:fa:1b:d0:b0:ec:15:7b:27:f4:dc: 10:59:e0:f9:0a:4e:3c:41:1c:53:67:2e:3d:a9:f7:ac:3d:03: 2a:3e:4c:dc:1b:66:df:61:38:7c:14:76:1c:d1:7e:3d:49:c6: 3d:e6:e9:b9:cc:19:e4:67:c1:fb:07:20:d8:cc:67:81:43:06: 97:54:65:47:49:f0:43:9b:b9:2c:b7:d9:74:ae:f7:46:ab:43: 21:6c:ea:87:44:7d:1e:7f:58:72:9f:5a:89:79:a2:c0:a1:d8: 2b:d9:f8:7a:c1:b5:39:3c:42:7e:a4:a3:39:0b:e4:83:8f:06: e3:5d:7d:ef:62:99:80:73:3c:ef:f4:d5:9b:f5:e7:21:e6:61: f3:ae:f5:5d:42:d7:37:08:23:3b:d2:b0:90:34:da:b7:3e:41: cb:1e:3f:d1:28:ba:6d:9d:63:2e:d6:92:79:fb:72:33:c3:98: 0b:77:12:78:a3:3d:58:4b:6c:73:d1:7d:7f:df:f1:1e:af:21: d2:6e:f7:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlFODIxMTAvBgNVBAUTKDVFNzJBQTdENUIxRDU2MzJFNUQzM0ZFQzcyRkE3NDMz RjQ5Q0UyOUEwHhcNMjUwOTA1MDQxNTI2WhcNMjUwOTEyMDQxNTI2WjAYMRYwFAYD VQQDEw02OGJhNjNkZS00MzI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmAQJ9t3OE8/W7EB4HZWuGXuz1JK0ebe4lzr3jKi4fGGXMbqlb8kzBn3EbD9I 968ULlVCnm6R99pEsNp84vLGyaSque0M5E2sG88wkwgKSBdgJGyG+glR2VoYEmxN c3P9UKSy2ONF9vUR1v2mRLOkng5R7sRaDLzCydG4T9CUvrUY8+c/C2ufKsww38Xf mLXtwXRMT8I68w/L8k2gNkD3rMN2NUMtHWAcl0SXlWBdxx3GxUzmjuDc1sjqsMX0 uAnD2uL64mYzOAI85K3n//AJzrgPPpJPJBPv77cjsMuJz8c0DHQS0ThR/0sXQWIJ qavx+hGk3AUu7J9ZUeH1g59pOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOxD0+7w g63xei2IrehNvvwf7IfoMB8GA1UdIwQYMBaAFF5yqn1bHVYy5dM/7HL6dDP0nOKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUU4Mi9FQTdFNUZBNjYz NkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZqTGwwel9zY3ZwME1fU2M0 cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huS3FmVnNkVmpMbDB6X3NjdnAwTV9TYzRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUU4Mi9FQTdFNUZBNjYzNkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZq TGwwel9zY3ZwME1fU2M0cG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/A+Ri3iQclaQ8Q91+jV1GCYrhx4DirCC8rv53y6tf9zkjCzHblPBJ I3eiEIvVY8gHkxJVqBSKk363uwJLW/ob0LDsFXsn9NwQWeD5Ck48QRxTZy49qfes PQMqPkzcG2bfYTh8FHYc0X49ScY95um5zBnkZ8H7ByDYzGeBQwaXVGVHSfBDm7ks t9l0rvdGq0MhbOqHRH0ef1hyn1qJeaLAodgr2fh6wbU5PEJ+pKM5C+SDjwbjXX3v YpmAczzv9NWb9ech5mHzrvVdQtc3CCM70rCQNNq3PkHLHj/RKLptnWMu1pJ5+3Iz w5gLdxJ4oz1YS2xz0X1/3/EeryHSbvce -----END CERTIFICATE-----Generated at Sat Sep 6 13:23:57 2025 by rpki-client