$ rpki-client -vvf rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft File: XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft (raw, json) Hash identifier: tEv9ax+iBLknrUcjQL3mNWWROuzYJAb3mSCQig34mt0= Subject key identifier: BB:22:84:85:DB:37:BA:E1:63:7F:DE:5E:2C:CD:60:B4:7F:71:16:8A Authority key identifier: 5C:F5:5B:88:A6:69:DC:7E:82:11:5F:80:60:69:F3:C9:3C:E6:5C:B5 Certificate issuer: /CN=A91D318A/serialNumber=5CF55B88A669DC7E82115F806069F3C93CE65CB5 Certificate serial: 0154 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPVbiKZp3H6CEV-AYGnzyTzmXLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft Manifest number: 0154 Signing time: Fri 19 Sep 2025 04:39:45 +0000 Manifest this update: Fri 19 Sep 2025 04:39:44 +0000 Manifest next update: Fri 26 Sep 2025 04:39:44 +0000 Files and hashes: 1: XPVbiKZp3H6CEV-AYGnzyTzmXLU.crl (hash: 1PO+laKi0d6Pokpd7WRCVBYB057U8qJKSadBsP6D8eQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.crl rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPVbiKZp3H6CEV-AYGnzyTzmXLU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 04:39:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 340 (0x154) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D318A, serialNumber=5CF55B88A669DC7E82115F806069F3C93CE65CB5 Validity Not Before: Sep 19 04:39:44 2025 GMT Not After : Sep 26 04:39:44 2025 GMT Subject: CN=68ccde90-7c2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:19:97:9b:60:fe:a7:17:a4:8b:0e:d9:95:3b: b5:46:61:2c:8d:fc:dc:09:7d:ff:98:06:4b:6f:2b: cb:77:d1:ad:04:c2:df:36:a4:25:6d:5d:7e:68:87: 00:e6:6b:ce:78:70:45:a5:ea:98:0a:db:e0:11:8d: 59:65:b8:db:13:ce:cf:25:f0:e0:f4:7d:30:05:33: 16:12:20:a6:7b:69:51:4d:cc:2d:04:4f:1d:1e:bf: 47:43:6d:89:ed:88:44:3c:c7:37:65:94:5d:69:74: e6:82:de:c8:1b:b5:f1:65:19:77:21:96:93:85:29: 0f:41:ab:02:a1:1b:9f:e9:5e:e7:80:a7:b0:ab:70: 0c:e8:f0:b9:52:dd:12:b5:d9:92:cf:a4:cf:eb:4e: 13:16:0d:ea:81:05:43:41:27:b6:6b:c7:a3:49:26: f5:aa:b9:fc:2a:fd:69:f8:61:15:04:89:b3:0d:c6: f5:ae:a2:4d:c5:2b:87:1a:e1:fb:55:89:18:f3:3c: b5:99:8c:da:94:43:e8:f0:3b:c6:54:78:44:1f:f3: 2d:3c:bd:67:4e:29:dc:90:ea:e4:ca:ff:76:66:09: a6:0b:db:a5:bf:a4:b4:98:62:7d:43:53:49:ca:c9: e0:ca:9e:c5:88:3a:a6:15:a9:dd:88:bd:74:42:b1: 04:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:22:84:85:DB:37:BA:E1:63:7F:DE:5E:2C:CD:60:B4:7F:71:16:8A X509v3 Authority Key Identifier: keyid:5C:F5:5B:88:A6:69:DC:7E:82:11:5F:80:60:69:F3:C9:3C:E6:5C:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPVbiKZp3H6CEV-AYGnzyTzmXLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:31:53:fe:f7:12:d4:90:ec:3a:ba:a6:8b:0e:94:66:8c:10: 35:25:74:ff:24:07:85:47:5d:22:70:73:3f:64:fd:93:e6:17: 19:59:79:92:6c:48:ef:f6:3e:34:e0:ba:42:f9:69:6f:4d:6d: 79:18:65:b0:cf:fc:e1:7b:da:50:d1:c9:fb:4e:63:f8:92:7a: 78:24:dc:04:17:04:79:a6:de:58:3d:8b:79:c6:28:ac:4f:5b: fd:e6:5c:dd:ff:1f:3a:46:43:5d:ab:e6:1e:7c:2a:1a:ef:e8: c2:1b:cf:8e:36:da:a5:1d:44:a3:27:dd:11:fe:92:36:93:63: 53:13:b2:45:2b:dc:41:7f:64:f4:41:8f:65:83:47:12:46:fa: b4:36:7b:7a:d8:59:71:a7:57:b0:f6:66:e0:9c:70:4c:4a:7a: ce:b8:e5:e8:b7:20:b7:b9:82:ce:a3:92:94:55:1d:d6:69:73: f1:26:41:20:f5:eb:50:f3:91:3d:8a:9a:6f:38:82:ce:bf:5d: e6:47:a5:30:53:ec:ac:ad:39:71:01:a9:1b:2e:67:f6:c7:bd: 9c:c8:50:d5:c6:7d:f4:22:32:58:2a:fa:fb:e5:d7:34:31:4c: a5:5f:c1:ba:01:9b:a2:0d:13:53:c6:23:09:3e:13:95:50:9d: 72:b1:b3:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxOEExMTAvBgNVBAUTKDVDRjU1Qjg4QTY2OURDN0U4MjExNUY4MDYwNjlGM0M5 M0NFNjVDQjUwHhcNMjUwOTE5MDQzOTQ0WhcNMjUwOTI2MDQzOTQ0WjAYMRYwFAYD VQQDEw02OGNjZGU5MC03YzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvhmXm2D+pxekiw7ZlTu1RmEsjfzcCX3/mAZLbyvLd9GtBMLfNqQlbV1+aIcA 5mvOeHBFpeqYCtvgEY1ZZbjbE87PJfDg9H0wBTMWEiCme2lRTcwtBE8dHr9HQ22J 7YhEPMc3ZZRdaXTmgt7IG7XxZRl3IZaThSkPQasCoRuf6V7ngKewq3AM6PC5Ut0S tdmSz6TP604TFg3qgQVDQSe2a8ejSSb1qrn8Kv1p+GEVBImzDcb1rqJNxSuHGuH7 VYkY8zy1mYzalEPo8DvGVHhEH/MtPL1nTinckOrkyv92ZgmmC9ulv6S0mGJ9Q1NJ ysngyp7FiDqmFandiL10QrEEpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLsihIXb N7rhY3/eXizNYLR/cRaKMB8GA1UdIwQYMBaAFFz1W4imadx+ghFfgGBp88k85ly1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzE4QS9GNUI1Q0E4MDg3 RTYxMUVFOTdFNkM3NDZDNEY5QUUwMi9YUFZiaUtacDNINkNFVi1BWUduenlUem1Y TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hQVmJpS1pwM0g2Q0VWLUFZR256eVR6bVhMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzE4QS9GNUI1Q0E4MDg3RTYxMUVFOTdFNkM3NDZDNEY5QUUwMi9YUFZiaUtacDNI NkNFVi1BWUduenlUem1YTFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiMVP+9xLUkOw6uqaLDpRmjBA1JXT/JAeFR10icHM/ZP2T5hcZWXmS bEjv9j404LpC+WlvTW15GGWwz/zhe9pQ0cn7TmP4knp4JNwEFwR5pt5YPYt5xiis T1v95lzd/x86RkNdq+YefCoa7+jCG8+ONtqlHUSjJ90R/pI2k2NTE7JFK9xBf2T0 QY9lg0cSRvq0Nnt62Flxp1ew9mbgnHBMSnrOuOXotyC3uYLOo5KUVR3WaXPxJkEg 9etQ85E9ippvOILOv13mR6UwU+ysrTlxAakbLmf2x72cyFDVxn30IjJYKvr75dc0 MUylX8G6AZuiDRNTxiMJPhOVUJ1ysbPN -----END CERTIFICATE-----Generated at Fri Sep 19 09:11:32 2025 by rpki-client