$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft File: X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft (raw, json) Hash identifier: gYzP5q1b3qKFKxNRr1wLBafrN0hLnaJ6sZfvqZjbpKo= Subject key identifier: 36:36:0D:3D:E8:A0:5F:F0:63:85:25:2E:E7:54:B2:DF:68:A9:8B:C1 Authority key identifier: 5F:8A:F3:59:73:FD:4F:A5:63:F3:3B:73:76:53:46:82:10:7B:C8:F9 Certificate issuer: /CN=A91CE285/serialNumber=5F8AF35973FD4FA563F33B7376534682107BC8F9 Certificate serial: 09E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft Manifest number: 09E0 Signing time: Sun 24 Aug 2025 19:56:52 +0000 Manifest this update: Sun 24 Aug 2025 19:56:52 +0000 Manifest next update: Sun 31 Aug 2025 19:56:52 +0000 Files and hashes: 1: X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl (hash: aoANVV1Q0e7UbIMwxA8jFhLIvd29ZWmGXqCHDRycsi4=) 2: E5C4974689CF11EAA39AF441C4F9AE02.roa (hash: S/+GQ9LaNR6oJzl2BIn9qWcVDZWjqUHkpie5l4NiGuc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 19:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2535 (0x9e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE285, serialNumber=5F8AF35973FD4FA563F33B7376534682107BC8F9 Validity Not Before: Aug 24 19:56:52 2025 GMT Not After : Aug 31 19:56:52 2025 GMT Subject: CN=68ab6e84-da78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:b2:50:12:a6:d5:1f:cd:b3:c2:45:a1:c5:0b: 1c:e8:c1:0f:ec:f6:8a:9c:5a:6a:48:22:01:39:45: 22:34:4c:86:50:44:3b:68:51:b0:7d:d3:78:cd:26: 57:f9:eb:44:56:25:2c:0f:6e:d8:8b:af:ea:0e:95: 12:3c:89:60:58:3b:f5:76:ce:20:35:72:89:96:4b: 63:8b:af:a1:a7:5a:a3:64:9b:43:7c:2f:05:3a:b1: 9d:a7:94:51:4a:fe:68:27:fa:9c:fc:b4:1b:13:e0: ba:58:5a:55:d5:49:12:bd:6b:5f:b2:7f:36:89:4b: ab:16:63:28:52:c8:05:7f:ea:bb:67:4d:c1:2e:c0: ab:f6:9f:53:f7:6d:4b:41:c4:8a:68:e3:3f:6c:e5: 1d:75:68:5a:e9:d1:c3:c4:f4:e0:d9:16:a2:60:b5: 9b:96:d3:56:cc:9e:3e:f5:08:e6:67:c8:f3:53:a3: b4:bb:ca:fa:55:78:e2:b0:10:6c:55:71:c3:ba:a1: f1:56:8d:20:08:f3:af:38:fe:d1:73:9b:3d:29:13: 45:e5:2a:64:a6:54:66:68:af:7a:b8:9a:c7:62:11: 15:51:72:ef:27:3b:27:79:ed:96:38:55:4f:10:88: 0e:65:d4:ff:5c:02:35:03:79:f0:fa:6b:5e:94:8b: ec:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:36:0D:3D:E8:A0:5F:F0:63:85:25:2E:E7:54:B2:DF:68:A9:8B:C1 X509v3 Authority Key Identifier: keyid:5F:8A:F3:59:73:FD:4F:A5:63:F3:3B:73:76:53:46:82:10:7B:C8:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:cd:5e:6e:9b:fe:c7:b1:87:e1:ba:b6:54:99:28:af:10:77: 89:36:e4:fe:bc:00:7d:f2:da:30:90:c7:fe:c0:0d:3f:40:e5: 28:c1:d7:91:e6:ee:7b:2d:88:80:1a:1d:b9:f4:a2:d1:d3:21: d7:d0:36:8c:f8:39:e3:db:12:90:11:49:96:9c:12:72:b9:34: 55:fe:8c:63:10:ef:63:91:6d:27:6e:b7:c3:cd:64:a7:1c:ab: 6f:6e:78:f5:19:a0:39:0f:14:48:53:14:75:de:28:70:0a:ad: 2c:72:a0:03:51:59:4c:86:97:8c:f5:d6:2a:07:9d:c8:4f:8e: bc:24:ea:e0:47:20:04:d1:ef:89:02:45:c5:68:74:54:18:c8: 86:31:6e:2a:4b:85:c0:e6:ea:b1:69:c6:5c:82:47:18:17:de: 16:ee:1e:cb:da:44:8d:81:9a:74:d9:d6:92:99:84:fe:66:db: e8:51:0c:87:f0:85:4b:f8:22:45:c3:67:c4:57:5f:96:34:b0: dd:40:51:33:6a:83:ef:6f:1d:9f:c6:59:38:dd:fe:9b:eb:b4: 3d:b4:b3:62:8a:dd:fc:08:63:16:40:07:16:1d:b1:c2:d9:1e: 53:94:08:c1:0e:49:bf:db:ac:2d:1d:74:ff:89:69:35:80:26: 2b:ea:f3:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCecwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyODUxMTAvBgNVBAUTKDVGOEFGMzU5NzNGRDRGQTU2M0YzM0I3Mzc2NTM0Njgy MTA3QkM4RjkwHhcNMjUwODI0MTk1NjUyWhcNMjUwODMxMTk1NjUyWjAYMRYwFAYD VQQDEw02OGFiNmU4NC1kYTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+rJQEqbVH82zwkWhxQsc6MEP7PaKnFpqSCIBOUUiNEyGUEQ7aFGwfdN4zSZX +etEViUsD27Yi6/qDpUSPIlgWDv1ds4gNXKJlktji6+hp1qjZJtDfC8FOrGdp5RR Sv5oJ/qc/LQbE+C6WFpV1UkSvWtfsn82iUurFmMoUsgFf+q7Z03BLsCr9p9T921L QcSKaOM/bOUddWha6dHDxPTg2RaiYLWbltNWzJ4+9QjmZ8jzU6O0u8r6VXjisBBs VXHDuqHxVo0gCPOvOP7Rc5s9KRNF5SpkplRmaK96uJrHYhEVUXLvJzsnee2WOFVP EIgOZdT/XAI1A3nw+mtelIvs+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDY2DT3o oF/wY4UlLudUst9oqYvBMB8GA1UdIwQYMBaAFF+K81lz/U+lY/M7c3ZTRoIQe8j5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTI4NS81RTE2NDhCNjg0 QkMxMUVBQTUyNjIyNjNDNEY5QUUwMi9YNHJ6V1hQOVQ2Vmo4enR6ZGxOR2doQjd5 UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0cnpXWFA5VDZWajh6dHpkbE5HZ2hCN3lQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTI4NS81RTE2NDhCNjg0QkMxMUVBQTUyNjIyNjNDNEY5QUUwMi9YNHJ6V1hQOVQ2 Vmo4enR6ZGxOR2doQjd5UGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHzV5um/7HsYfhurZUmSivEHeJNuT+vAB98towkMf+wA0/QOUowdeR 5u57LYiAGh259KLR0yHX0DaM+Dnj2xKQEUmWnBJyuTRV/oxjEO9jkW0nbrfDzWSn HKtvbnj1GaA5DxRIUxR13ihwCq0scqADUVlMhpeM9dYqB53IT468JOrgRyAE0e+J AkXFaHRUGMiGMW4qS4XA5uqxacZcgkcYF94W7h7L2kSNgZp02daSmYT+ZtvoUQyH 8IVL+CJFw2fEV1+WNLDdQFEzaoPvbx2fxlk43f6b67Q9tLNiit38CGMWQAcWHbHC 2R5TlAjBDkm/26wtHXT/iWk1gCYr6vMH -----END CERTIFICATE-----Generated at Sun Aug 24 22:09:19 2025 by rpki-client