$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft File: XYnzqvmxOgelsmTy3rpk1cUAZRw.mft (raw, json) Hash identifier: 8ShQ59uKBRduA2KGACKFjaZntlAXBQhQ4hHCTn22f0A= Subject key identifier: 3F:6D:F4:44:7D:F7:A1:90:F5:8D:7A:C3:42:AA:42:C4:21:86:07:33 Authority key identifier: 5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C Certificate issuer: /CN=A91D5240/serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Certificate serial: 01FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft Manifest number: 01F4 Signing time: Mon 15 Sep 2025 02:50:45 +0000 Manifest this update: Mon 15 Sep 2025 02:50:44 +0000 Manifest next update: Mon 22 Sep 2025 02:50:44 +0000 Files and hashes: 1: XYnzqvmxOgelsmTy3rpk1cUAZRw.crl (hash: hED67ESNpTjhaemDJGJEjy3Zjexq1moNezuZ9tBSFMc=) 2: 9EA7B7D8A63911ED874E6630C4F9AE02.roa (hash: 6o0EUZvJBerht1y6bzh1g89SRPPeQ5cLEU5AQhJzOAU=) 3: 5DCE1A1AA63C11ED9306165AC4F9AE02.roa (hash: QPGj0eJqXgnGukiRaT/QHSiAaiIAXjZCnZKqvteNQAI=) 4: 9FBA5FCCA63911ED874E6630C4F9AE02.roa (hash: lCV4Wc/C2vG49K6yvqo7KO+pzcjtBqjnxvlmY9cM+oI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Sep 2025 02:50:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 511 (0x1ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5240, serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Validity Not Before: Sep 15 02:50:44 2025 GMT Not After : Sep 22 02:50:44 2025 GMT Subject: CN=68c77f04-ae26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:49:6c:0e:f6:fe:b2:e6:f8:71:73:b2:e7:16: 9a:a2:5c:c5:87:6f:ab:69:90:f0:aa:65:41:62:78: 37:da:5b:d9:2f:19:c9:1e:92:d1:bb:e1:fd:ff:57: 10:33:44:b2:02:55:40:f0:e5:66:08:41:a6:5d:5b: 44:09:8e:0c:86:01:aa:26:27:58:02:31:b6:b3:1d: 7b:a4:aa:b4:6f:1b:1a:8d:23:4b:88:bf:e3:22:68: ed:c9:f2:42:16:72:c4:36:c8:56:2f:ec:b7:60:f2: 55:f5:e6:f5:e4:95:76:7c:bd:7a:18:5b:f2:93:ea: 19:ea:d0:1b:11:fb:38:9c:bf:53:40:8f:02:39:f1: b8:dc:73:91:b0:08:e4:1a:a6:96:dc:a0:6f:45:8d: 43:4f:b3:dd:79:02:06:0e:ef:9e:94:dd:a5:95:96: 66:76:ba:56:f7:06:45:f3:9c:ba:25:f9:0c:d0:4e: 5a:c5:92:6e:c2:29:f8:c6:fe:77:92:6e:34:06:a8: fb:a1:87:f3:d6:cc:65:3b:06:be:00:2f:32:37:8d: 25:bf:d3:a7:85:eb:15:70:80:c0:a6:06:b8:71:54: 34:5d:7d:ce:d8:a8:69:c4:0b:d4:8c:02:28:0e:83: 8e:17:ab:a1:42:80:20:e7:fa:49:12:0d:9f:f9:0f: 0c:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:6D:F4:44:7D:F7:A1:90:F5:8D:7A:C3:42:AA:42:C4:21:86:07:33 X509v3 Authority Key Identifier: keyid:5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:50:cf:20:e2:db:73:aa:20:66:cd:97:bc:d9:1e:5d:e1:f2: 0c:c8:4a:b6:e5:53:e3:b9:8c:c7:f9:1d:8e:b4:42:c5:b4:75: cd:ef:2a:75:21:3f:dc:98:9b:84:fb:1f:af:6f:be:03:78:f5: b3:69:da:26:b9:f7:29:7c:cc:3c:fb:cd:f1:65:50:70:47:51: 10:79:8b:5d:3d:6c:30:5d:0c:89:cd:1d:1e:72:1d:38:26:d2: b0:3c:38:6e:dc:00:97:c2:30:77:f1:6b:50:11:85:39:c7:1e: e7:42:0b:f2:c4:ba:14:49:4e:26:2f:fe:2e:a7:7a:f8:05:14: 62:a2:81:01:ba:07:dd:08:70:84:06:de:2b:80:15:88:b2:fb: 63:79:63:8a:fe:b4:9d:fb:47:d3:cb:0f:76:83:3d:75:b9:dc: 5d:77:e6:8b:51:7a:23:8c:9c:86:e4:82:32:e0:dc:b5:d8:c2: 0e:86:2d:25:7f:a4:5c:04:eb:66:7c:12:7e:12:f4:03:b2:10: 4f:c5:9b:69:00:5e:a7:c8:85:52:f3:1f:8c:5e:62:d2:00:74: bf:a4:42:1b:57:68:7a:01:79:01:1c:20:46:65:a6:39:c0:87: a9:eb:a7:6f:fe:13:18:8d:5e:09:17:14:89:75:7f:d4:d2:93: 5c:f2:fb:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAf8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUyNDAxMTAvBgNVBAUTKDVEODlGM0FBRjlCMTNBMDdBNUIyNjRGMkRFQkE2NEQ1 QzUwMDY1MUMwHhcNMjUwOTE1MDI1MDQ0WhcNMjUwOTIyMDI1MDQ0WjAYMRYwFAYD VQQDEw02OGM3N2YwNC1hZTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ElsDvb+sub4cXOy5xaaolzFh2+raZDwqmVBYng32lvZLxnJHpLRu+H9/1cQ M0SyAlVA8OVmCEGmXVtECY4MhgGqJidYAjG2sx17pKq0bxsajSNLiL/jImjtyfJC FnLENshWL+y3YPJV9eb15JV2fL16GFvyk+oZ6tAbEfs4nL9TQI8COfG43HORsAjk GqaW3KBvRY1DT7PdeQIGDu+elN2llZZmdrpW9wZF85y6JfkM0E5axZJuwin4xv53 km40Bqj7oYfz1sxlOwa+AC8yN40lv9OnhesVcIDApga4cVQ0XX3O2KhpxAvUjAIo DoOOF6uhQoAg5/pJEg2f+Q8MPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD9t9ER9 96GQ9Y16w0KqQsQhhgczMB8GA1UdIwQYMBaAFF2J86r5sToHpbJk8t66ZNXFAGUc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTI0MC8yN0RERTdEODlC N0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9nZWxzbVR5M3JwazFjVUFa UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hZbnpxdm14T2dlbHNtVHkzcnBrMWNVQVpSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTI0MC8yN0RERTdEODlCN0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9n ZWxzbVR5M3JwazFjVUFaUncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0UM8g4ttzqiBmzZe82R5d4fIMyEq25VPjuYzH+R2OtELFtHXN7yp1 IT/cmJuE+x+vb74DePWzadomufcpfMw8+83xZVBwR1EQeYtdPWwwXQyJzR0ech04 JtKwPDhu3ACXwjB38WtQEYU5xx7nQgvyxLoUSU4mL/4up3r4BRRiooEBugfdCHCE Bt4rgBWIsvtjeWOK/rSd+0fTyw92gz11udxdd+aLUXojjJyG5IIy4Ny12MIOhi0l f6RcBOtmfBJ+EvQDshBPxZtpAF6nyIVS8x+MXmLSAHS/pEIbV2h6AXkBHCBGZaY5 wIep66dv/hMYjV4JFxSJdX/U0pNc8vvc -----END CERTIFICATE-----Generated at Tue Sep 16 06:34:18 2025 by rpki-client