$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.mft File: XwIkjJxclPFTxZ9Wdyxf2n-Ncec.mft (raw, json) Hash identifier: 8hOSuQ42cgauGWwxPEgBHv7D2smnR4tMifpvWW/OJzI= Subject key identifier: DA:B5:02:7E:DE:4C:4A:14:E2:72:86:6E:3A:DD:66:72:BB:B9:BD:37 Authority key identifier: 5F:02:24:8C:9C:5C:94:F1:53:C5:9F:56:77:2C:5F:DA:7F:8D:71:E7 Certificate issuer: /CN=A91E3C76/serialNumber=5F02248C9C5C94F153C59F56772C5FDA7F8D71E7 Certificate serial: EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.mft Manifest number: E5 Signing time: Tue 09 Sep 2025 05:31:44 +0000 Manifest this update: Tue 09 Sep 2025 05:31:43 +0000 Manifest next update: Tue 16 Sep 2025 05:31:43 +0000 Files and hashes: 1: XwIkjJxclPFTxZ9Wdyxf2n-Ncec.crl (hash: vwi1vFs1sKv0SVRNWYAP40dJqcHu3i9Rmy8nwtY+4bc=) 2: 51BBEE10B2BE11EFA108946DC4F9AE02.roa (hash: syHq3DbE7eogaPpFVFVsQfYoWLCn9NostuRXmVIHm9Y=) 3: 50F0AF8EB2BE11EFA108946DC4F9AE02.roa (hash: MWqHxm4EUBLTsZ0EUDg6aYtdnfWY5OwTTnXPxS3oZHM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.crl rsync://rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 05:31:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 235 (0xeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3C76, serialNumber=5F02248C9C5C94F153C59F56772C5FDA7F8D71E7 Validity Not Before: Sep 9 05:31:43 2025 GMT Not After : Sep 16 05:31:43 2025 GMT Subject: CN=68bfbbc0-d504 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:32:c5:cf:8c:96:73:10:a4:fc:18:11:bc:57: 82:6b:6f:31:b1:4c:13:59:29:ad:70:6c:4b:c4:a0: 59:41:72:54:56:ec:b8:b5:28:2e:3d:f4:45:6b:53: 77:de:52:16:a8:e6:3f:35:70:c6:70:bd:0c:f8:cb: 55:97:72:8a:59:e7:47:d0:ed:66:fd:24:aa:82:7e: 71:b2:11:d3:0b:73:2b:3a:d2:41:8a:aa:a3:92:9d: 0b:de:c8:aa:0d:72:01:18:df:f0:10:f3:c8:21:2d: a6:71:2a:c2:66:ff:68:93:96:3f:76:36:fe:dc:9b: e3:cd:a7:62:87:a4:02:83:d6:fb:5c:ff:0c:f5:33: 2f:06:2a:52:98:7a:de:4c:63:bf:ac:a4:8a:77:d9: 6a:31:d5:f8:5d:bf:9b:ab:70:a7:ed:51:90:56:c2: cc:1d:cf:6f:20:91:4f:73:17:7d:a1:5e:48:a3:42: 58:20:e9:60:ad:93:02:45:d7:cc:1c:a1:cf:cb:5f: a5:cd:b6:35:1a:1e:ca:61:ae:57:09:d9:97:55:b4: 69:cf:c1:2e:2c:fe:ac:26:da:9d:b8:53:08:61:ee: 7e:77:d3:2b:3c:b5:90:6b:24:93:e3:13:ea:ef:14: 3d:03:4d:4b:96:ea:4c:a8:07:3b:b1:dc:b3:6d:1b: 6f:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:B5:02:7E:DE:4C:4A:14:E2:72:86:6E:3A:DD:66:72:BB:B9:BD:37 X509v3 Authority Key Identifier: keyid:5F:02:24:8C:9C:5C:94:F1:53:C5:9F:56:77:2C:5F:DA:7F:8D:71:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:f5:c2:7a:4b:a2:0f:7c:34:5b:f4:82:ce:f5:af:83:df:62: 0d:d3:e0:3c:d2:de:de:49:8e:b9:e4:00:b5:e0:5b:a5:05:14: e3:d3:63:79:a1:90:76:fe:59:ca:66:9e:cc:3e:2b:5e:08:e5: ba:50:6c:cb:cc:d3:38:a2:88:e0:89:9c:bd:25:de:45:83:ea: 8f:2e:42:36:31:1e:53:ac:68:4d:17:5b:77:55:0c:dc:2c:67: a6:6f:39:5b:ce:6d:ab:1d:85:41:8c:cf:78:ef:72:a5:92:4a: 7e:ae:22:d3:29:f7:a3:5e:b6:3b:cd:5c:0c:37:cd:cb:ae:c0: 4a:51:0a:68:10:b6:9d:f1:8a:a2:7a:18:3f:ae:c6:75:0e:52: f9:ee:1e:74:80:e0:4f:80:8d:90:2c:1a:31:0e:4c:3b:e2:fa: a7:85:c1:24:01:d0:43:95:a1:ff:5e:76:71:b0:3b:42:b7:01: ff:a7:05:62:86:90:25:b9:5d:00:e3:b0:98:e5:87:ed:8d:43: 97:fc:fb:7b:92:80:f6:af:db:20:a0:ff:f1:90:50:a5:75:84: 18:8e:7b:ea:c8:71:07:91:13:3d:be:11:f2:44:1f:81:48:b1: 61:de:53:ce:b2:0b:ed:b8:f9:18:84:03:20:03:34:83:6c:83: 7b:94:60:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNDNzYxMTAvBgNVBAUTKDVGMDIyNDhDOUM1Qzk0RjE1M0M1OUY1Njc3MkM1RkRB N0Y4RDcxRTcwHhcNMjUwOTA5MDUzMTQzWhcNMjUwOTE2MDUzMTQzWjAYMRYwFAYD VQQDEw02OGJmYmJjMC1kNTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApTLFz4yWcxCk/BgRvFeCa28xsUwTWSmtcGxLxKBZQXJUVuy4tSguPfRFa1N3 3lIWqOY/NXDGcL0M+MtVl3KKWedH0O1m/SSqgn5xshHTC3MrOtJBiqqjkp0L3siq DXIBGN/wEPPIIS2mcSrCZv9ok5Y/djb+3Jvjzadih6QCg9b7XP8M9TMvBipSmHre TGO/rKSKd9lqMdX4Xb+bq3Cn7VGQVsLMHc9vIJFPcxd9oV5Io0JYIOlgrZMCRdfM HKHPy1+lzbY1Gh7KYa5XCdmXVbRpz8EuLP6sJtqduFMIYe5+d9MrPLWQayST4xPq 7xQ9A01LlupMqAc7sdyzbRtvRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNq1An7e TEoU4nKGbjrdZnK7ub03MB8GA1UdIwQYMBaAFF8CJIycXJTxU8WfVncsX9p/jXHn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0M3Ni9CNDk5MkQ1MjM0 NTgxMUVGQjQyRjlEMzdDNEY5QUUwMi9Yd0lrakp4Y2xQRlR4WjlXZHl4ZjJuLU5j ZWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h3SWtqSnhjbFBGVHhaOVdkeXhmMm4tTmNlYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0M3Ni9CNDk5MkQ1MjM0NTgxMUVGQjQyRjlEMzdDNEY5QUUwMi9Yd0lrakp4Y2xQ RlR4WjlXZHl4ZjJuLU5jZWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDO9cJ6S6IPfDRb9ILO9a+D32IN0+A80t7eSY655AC14FulBRTj02N5 oZB2/lnKZp7MPiteCOW6UGzLzNM4oojgiZy9Jd5Fg+qPLkI2MR5TrGhNF1t3VQzc LGembzlbzm2rHYVBjM9473Klkkp+riLTKfejXrY7zVwMN83LrsBKUQpoELad8Yqi ehg/rsZ1DlL57h50gOBPgI2QLBoxDkw74vqnhcEkAdBDlaH/XnZxsDtCtwH/pwVi hpAluV0A47CY5YftjUOX/Pt7koD2r9sgoP/xkFCldYQYjnvqyHEHkRM9vhHyRB+B SLFh3lPOsgvtuPkYhAMgAzSDbIN7lGA0 -----END CERTIFICATE-----Generated at Wed Sep 10 07:11:54 2025 by rpki-client