$ rpki-client -vvf rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft File: XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft (raw, json) Hash identifier: SlLxbino7WbOFLPzbV6LJrJACVRgsGPRxu93vP7h4y0= Subject key identifier: FE:06:26:FF:CD:44:4F:6A:77:D4:DB:7D:5B:62:11:1E:EE:2D:04:D8 Authority key identifier: 5D:5F:61:90:21:5D:FF:0A:C3:54:32:BC:3A:52:A0:8B:D3:41:B7:00 Certificate issuer: /CN=A91D28E1/serialNumber=5D5F6190215DFF0AC35432BC3A52A08BD341B700 Certificate serial: 014E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XV9hkCFd_wrDVDK8OlKgi9NBtwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft Manifest number: 014B Signing time: Wed 17 Sep 2025 04:51:48 +0000 Manifest this update: Wed 17 Sep 2025 04:51:48 +0000 Manifest next update: Wed 24 Sep 2025 04:51:48 +0000 Files and hashes: 1: XV9hkCFd_wrDVDK8OlKgi9NBtwA.crl (hash: oTwsJsKG3s3PmOLcKdU2dIF1owsYiuJOBEXqZHPr93o=) 2: 0A576F089A4C11EEBD557E12C4F9AE02.roa (hash: W3PBLvmUcdE3zAX7FZy5vyT9kW67f//Ujbv+JZHmvZA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.crl rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XV9hkCFd_wrDVDK8OlKgi9NBtwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 04:51:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 334 (0x14e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D28E1, serialNumber=5D5F6190215DFF0AC35432BC3A52A08BD341B700 Validity Not Before: Sep 17 04:51:48 2025 GMT Not After : Sep 24 04:51:48 2025 GMT Subject: CN=68ca3e64-9e3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:6b:7e:82:a9:5d:44:d2:f3:86:30:7f:3e:5a: 93:3a:1e:cc:c4:10:0d:7c:d7:c7:f0:27:d2:92:41: 34:9f:be:8e:60:35:c4:95:34:cb:c9:f2:07:91:b6: 04:51:ae:ef:53:77:39:af:e4:b0:b6:4d:6d:53:be: 45:b6:84:51:11:b1:20:b5:10:59:f4:53:a9:23:d7: 1c:b1:b0:47:86:6a:8b:0b:c8:b1:24:4f:38:75:b2: d2:0f:2c:1b:b9:a2:74:df:6e:a4:2b:9d:0f:e5:02: 8f:66:f4:b6:70:10:ef:ad:ae:f4:c5:15:96:78:de: 74:25:e2:1a:93:3e:9c:6a:52:0c:b7:aa:f4:6d:8d: 63:f9:18:6f:e5:4c:46:41:51:93:b6:b8:ae:b2:3a: a3:35:e8:6f:9c:eb:e5:94:5d:f9:cd:d3:6e:fe:74: 91:33:06:65:dc:31:42:d5:0a:dd:34:bb:db:d1:b9: 55:71:b9:ed:ce:cf:85:24:f1:00:72:87:84:d7:4e: a7:5e:54:25:a4:c6:76:7e:05:01:56:a2:2c:70:60: 0a:c2:51:ab:d5:c4:57:df:8a:b3:db:f0:2d:4f:ac: 03:c2:86:7c:fe:15:5e:79:9a:19:48:b1:80:21:31: 29:36:e6:e0:80:d1:83:75:ea:2b:17:8e:0b:e2:97: 65:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:06:26:FF:CD:44:4F:6A:77:D4:DB:7D:5B:62:11:1E:EE:2D:04:D8 X509v3 Authority Key Identifier: keyid:5D:5F:61:90:21:5D:FF:0A:C3:54:32:BC:3A:52:A0:8B:D3:41:B7:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XV9hkCFd_wrDVDK8OlKgi9NBtwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:1f:a5:a1:1f:ea:21:ca:76:06:70:2e:a0:a2:9e:45:b3:3a: a0:05:70:50:0d:d7:38:a2:33:b1:83:d8:18:39:9a:1f:5d:0d: c2:85:a1:0c:d6:97:45:81:2d:a6:a7:b2:54:d5:31:39:e0:09: 07:ce:75:eb:1a:4f:ba:be:2d:d0:0e:bc:74:a0:bf:6a:3b:e1: f6:50:2b:45:39:81:82:45:6c:1e:1a:cb:e1:c9:97:ba:d3:0f: f7:bc:22:f3:68:67:4b:76:4c:63:d8:51:66:26:12:7f:43:c0: 46:ec:e3:67:a6:1a:b2:b1:a9:8e:c5:d7:87:40:16:14:f1:bb: 0b:d7:26:54:ce:30:2c:b6:5e:a2:b9:43:ec:69:46:bf:92:5c: 01:a7:9d:92:b3:e0:21:14:4e:44:a2:d3:63:29:1f:8f:ef:77: d8:78:53:00:c9:e2:d7:88:f0:7d:d6:46:86:e1:70:04:27:16: a9:a8:1f:d4:82:c4:b9:f8:fd:4b:48:f1:60:c1:64:4e:d0:fb: 5d:81:b6:40:64:03:11:69:a0:36:39:46:f9:39:ee:c8:2e:44: e9:58:85:f6:9a:da:26:84:fc:03:72:13:79:e3:d6:d9:32:31: d1:af:7f:e8:60:af:f7:48:80:82:fd:b4:48:f9:cc:31:5a:59: 00:45:5b:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI4RTExMTAvBgNVBAUTKDVENUY2MTkwMjE1REZGMEFDMzU0MzJCQzNBNTJBMDhC RDM0MUI3MDAwHhcNMjUwOTE3MDQ1MTQ4WhcNMjUwOTI0MDQ1MTQ4WjAYMRYwFAYD VQQDEw02OGNhM2U2NC05ZTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtWt+gqldRNLzhjB/PlqTOh7MxBANfNfH8CfSkkE0n76OYDXElTTLyfIHkbYE Ua7vU3c5r+Swtk1tU75FtoRREbEgtRBZ9FOpI9ccsbBHhmqLC8ixJE84dbLSDywb uaJ0326kK50P5QKPZvS2cBDvra70xRWWeN50JeIakz6calIMt6r0bY1j+Rhv5UxG QVGTtriusjqjNehvnOvllF35zdNu/nSRMwZl3DFC1QrdNLvb0blVcbntzs+FJPEA coeE106nXlQlpMZ2fgUBVqIscGAKwlGr1cRX34qz2/AtT6wDwoZ8/hVeeZoZSLGA ITEpNubggNGDdeorF44L4pdlfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP4GJv/N RE9qd9TbfVtiER7uLQTYMB8GA1UdIwQYMBaAFF1fYZAhXf8Kw1QyvDpSoIvTQbcA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjhFMS9CQkUzRDQzQTlB NDkxMUVFOTA5MkUwNzBDNEY5QUUwMi9YVjloa0NGZF93ckRWREs4T2xLZ2k5TkJ0 d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hWOWhrQ0ZkX3dyRFZESzhPbEtnaTlOQnR3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjhFMS9CQkUzRDQzQTlBNDkxMUVFOTA5MkUwNzBDNEY5QUUwMi9YVjloa0NGZF93 ckRWREs4T2xLZ2k5TkJ0d0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANH6WhH+ohynYGcC6gop5FszqgBXBQDdc4ojOxg9gYOZofXQ3ChaEM 1pdFgS2mp7JU1TE54AkHznXrGk+6vi3QDrx0oL9qO+H2UCtFOYGCRWweGsvhyZe6 0w/3vCLzaGdLdkxj2FFmJhJ/Q8BG7ONnphqysamOxdeHQBYU8bsL1yZUzjAstl6i uUPsaUa/klwBp52Ss+AhFE5EotNjKR+P73fYeFMAyeLXiPB91kaG4XAEJxapqB/U gsS5+P1LSPFgwWRO0PtdgbZAZAMRaaA2OUb5Oe7ILkTpWIX2mtomhPwDchN549bZ MjHRr3/oYK/3SICC/bRI+cwxWlkARVu/ -----END CERTIFICATE-----Generated at Fri Sep 19 00:40:49 2025 by rpki-client