$ rpki-client -vvf rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft File: XHIqJhQciPfNQPObN0raf7wfmx8.mft (raw, json) Hash identifier: KSh3KVY+uiqVA7r6d2qRi9jOF96oTBXay/4OuHI3Nto= Subject key identifier: EE:CD:B0:16:6C:AE:0C:B8:EE:F7:6A:DA:AA:40:6B:1C:DA:E9:CD:AF Authority key identifier: 5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F Certificate issuer: /CN=A91D824A/serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Certificate serial: D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft Manifest number: CC Signing time: Sun 07 Sep 2025 06:12:12 +0000 Manifest this update: Sun 07 Sep 2025 06:12:12 +0000 Manifest next update: Sun 14 Sep 2025 06:12:12 +0000 Files and hashes: 1: XHIqJhQciPfNQPObN0raf7wfmx8.crl (hash: S2fbkVnDQn6hTcF+i+E5YvXPDIN+1xW9Rk5BQxgtxqs=) 2: D69C342850E311F098697E1BC4F9AE02.roa (hash: BsgTCGS6ZY9wo4DRbXqJWgsBM56PxcgPxCxnw/1lRZA=) 3: EA438F3050E311F08CF2971BC4F9AE02.roa (hash: IjL6cu6bZiACksELIxEiXf/UtBVghk3xr9SoGwHtz+o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 06:12:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D824A, serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Validity Not Before: Sep 7 06:12:12 2025 GMT Not After : Sep 14 06:12:12 2025 GMT Subject: CN=68bd223c-a530 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:27:a2:98:c7:82:57:2b:99:1c:52:3b:ac:6e: a2:b7:e5:0a:87:d8:8a:67:a9:c6:3d:7b:33:37:ed: 5e:20:34:90:ea:1a:cc:4d:02:37:3e:3d:b9:27:50: 9c:21:81:20:7f:ae:03:f3:6b:a0:d9:ce:9d:d0:9c: bf:16:71:70:b8:ff:ab:55:6a:f9:1a:24:a4:a9:82: ac:af:9f:a1:c1:5b:c3:15:78:64:90:4f:44:8c:2c: 49:a5:72:c5:a2:6a:92:57:31:3f:d4:63:74:98:47: 87:e1:c8:22:5e:78:03:c5:d0:7a:d2:30:4c:21:18: 28:16:33:97:54:88:92:c6:4a:38:5b:5a:82:ba:d3: f5:1f:d1:31:84:49:f8:cf:12:ef:df:33:b6:68:34: ad:8b:cb:4c:fe:c3:65:11:c7:f2:fd:77:8c:98:2e: eb:6c:cf:00:45:53:8c:7b:41:23:9d:84:50:51:21: f0:c4:4b:63:8c:9a:c5:d9:e7:f0:1f:c4:59:6e:bd: 5f:b0:d4:b5:e4:8b:a2:72:da:7f:77:65:7d:70:8a: 1d:9e:45:c6:94:2a:ef:89:8f:32:ca:b9:4c:c6:30: 76:76:0d:65:9e:a6:c6:0c:33:4d:21:d3:14:7c:0c: 78:65:69:ed:94:e7:70:44:df:e0:cc:92:ab:e8:92: 35:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:CD:B0:16:6C:AE:0C:B8:EE:F7:6A:DA:AA:40:6B:1C:DA:E9:CD:AF X509v3 Authority Key Identifier: keyid:5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:70:b6:48:05:33:10:60:8e:a4:be:93:a1:61:f3:c5:0e:b9: cc:4d:0f:cf:07:e7:91:c2:27:0d:2d:23:64:e2:ea:11:43:76: 6f:a7:9d:d1:ad:d7:d8:06:63:7f:8f:27:f9:77:88:32:e3:81: 8e:ad:08:eb:2c:cd:82:bd:36:46:ec:bb:bc:24:1e:e0:09:06: a2:bb:55:9d:41:d9:7e:2b:37:98:94:06:75:5a:9f:29:4d:31: 46:8f:78:c6:a6:d5:4e:a8:bb:36:54:89:c0:46:d4:bd:54:d7: 6d:df:c6:45:77:d4:38:a2:72:dc:08:48:e8:c1:da:ba:00:88: 9a:95:94:8c:89:6c:30:8d:20:d9:d1:16:a9:ac:16:29:dd:cb: de:c7:e7:74:ad:04:8e:38:a1:66:31:3c:f8:d3:06:04:93:83: 67:96:9f:45:a7:6b:41:41:07:1f:b2:ee:e0:8a:f7:4f:3d:8e: 0d:b0:62:b1:eb:49:f0:d5:63:7c:55:ad:1d:75:df:06:48:04: 27:f0:45:63:fd:29:03:b9:94:ce:9a:1b:d3:e9:8c:71:f4:9d: 00:3c:7b:b7:93:40:6c:f4:5b:03:eb:52:50:e2:b8:2c:09:3b: 7e:48:b4:85:0e:a5:71:55:32:b1:da:c8:27:e6:2a:06:e3:09: ae:70:da:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgyNEExMTAvBgNVBAUTKDVDNzIyQTI2MTQxQzg4RjdDRDQwRjM5QjM3NEFEQTdG QkMxRjlCMUYwHhcNMjUwOTA3MDYxMjEyWhcNMjUwOTE0MDYxMjEyWjAYMRYwFAYD VQQDEw02OGJkMjIzYy1hNTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwSeimMeCVyuZHFI7rG6it+UKh9iKZ6nGPXszN+1eIDSQ6hrMTQI3Pj25J1Cc IYEgf64D82ug2c6d0Jy/FnFwuP+rVWr5GiSkqYKsr5+hwVvDFXhkkE9EjCxJpXLF omqSVzE/1GN0mEeH4cgiXngDxdB60jBMIRgoFjOXVIiSxko4W1qCutP1H9ExhEn4 zxLv3zO2aDSti8tM/sNlEcfy/XeMmC7rbM8ARVOMe0EjnYRQUSHwxEtjjJrF2efw H8RZbr1fsNS15Iuictp/d2V9cIodnkXGlCrviY8yyrlMxjB2dg1lnqbGDDNNIdMU fAx4ZWntlOdwRN/gzJKr6JI1pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO7NsBZs rgy47vdq2qpAaxza6c2vMB8GA1UdIwQYMBaAFFxyKiYUHIj3zUDzmzdK2n+8H5sf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODI0QS80QURGMzNGQzVC OUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQZk5RUE9iTjByYWY3d2Zt eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hISXFKaFFjaVBmTlFQT2JOMHJhZjd3Zm14OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODI0QS80QURGMzNGQzVCOUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQ Zk5RUE9iTjByYWY3d2ZteDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPcLZIBTMQYI6kvpOhYfPFDrnMTQ/PB+eRwicNLSNk4uoRQ3Zvp53R rdfYBmN/jyf5d4gy44GOrQjrLM2CvTZG7Lu8JB7gCQaiu1WdQdl+KzeYlAZ1Wp8p TTFGj3jGptVOqLs2VInARtS9VNdt38ZFd9Q4onLcCEjowdq6AIialZSMiWwwjSDZ 0RaprBYp3cvex+d0rQSOOKFmMTz40wYEk4Nnlp9Fp2tBQQcfsu7givdPPY4NsGKx 60nw1WN8Va0ddd8GSAQn8EVj/SkDuZTOmhvT6Yxx9J0APHu3k0Bs9FsD61JQ4rgs CTt+SLSFDqVxVTKx2sgn5ioG4wmucNp6 -----END CERTIFICATE-----Generated at Sun Sep 7 15:21:13 2025 by rpki-client