$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft File: XlEJvjS4HAy74OQ1mneBpGJLn80.mft (raw, json) Hash identifier: TGDWuwLtYlWAIvYAg/n2TKxMmpHODjktD9OLXG1WE4Y= Subject key identifier: 73:8D:7A:50:04:6E:4B:09:FE:C8:E3:35:22:B9:C2:60:1D:66:40:11 Authority key identifier: 5E:51:09:BE:34:B8:1C:0C:BB:E0:E4:35:9A:77:81:A4:62:4B:9F:CD Certificate issuer: /CN=A91E5D61/serialNumber=5E5109BE34B81C0CBBE0E4359A7781A4624B9FCD Certificate serial: 12FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft Manifest number: 47F5 Signing time: Tue 16 Sep 2025 14:21:19 +0000 Manifest this update: Tue 16 Sep 2025 14:21:19 +0000 Manifest next update: Tue 23 Sep 2025 14:21:19 +0000 Files and hashes: 1: XlEJvjS4HAy74OQ1mneBpGJLn80.crl (hash: vc/TnuEuM/Arlfp2RpMYvZrEHnfye6Qj0qSWBoDtbVM=) 2: C5FA430E179711EDB9008D18C4F9AE02.roa (hash: y0CRNa7V0TgYNmJJlENwmVgI1Qa7VZV0yF0dM9ke4Fc=) 3: 12300E80ECD911EEB21F7B7FC4F9AE02.roa (hash: hei/cgFAUZIGCHaatDAW34u7WoWx8+SizsC0TsbKAW0=) 4: 792023A8E0DD11EE86DB926AC4F9AE02.roa (hash: GOy9OboZpKQbKQnVi7OFhab7NMhnYhuV2h2uNtdNUpY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.crl rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Sep 2025 14:21:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4858 (0x12fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D61, serialNumber=5E5109BE34B81C0CBBE0E4359A7781A4624B9FCD Validity Not Before: Sep 16 14:21:19 2025 GMT Not After : Sep 23 14:21:19 2025 GMT Subject: CN=68c9725f-e0ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a3:74:b2:a2:98:63:b1:7c:e3:e1:be:63:bc: 25:c9:1b:bd:c8:42:18:fe:67:ad:c2:02:ab:85:65: 3c:c5:ea:e1:7d:6a:a5:7c:0d:c0:50:94:ad:84:bb: 58:68:4e:b6:5a:d0:49:48:2d:1f:84:5f:85:aa:e8: f3:2d:39:30:7f:78:a9:ec:63:7e:25:d3:e9:74:1f: 15:8b:b0:95:a4:3b:39:60:03:dd:4a:9f:63:91:98: 8c:62:fc:94:89:8e:d5:6a:3c:63:a5:f0:79:c8:be: 9a:cd:82:50:4a:05:b8:8e:c7:a5:99:ec:b7:aa:16: 56:26:55:7f:a6:90:1b:41:04:fa:4c:28:8e:e2:46: 86:9c:0b:b1:bb:44:7b:e1:6d:7c:6d:7c:b2:76:c5: 70:87:b7:39:26:60:3b:51:20:24:73:2d:ef:7a:dc: 87:66:a1:c3:01:1b:42:7d:09:ff:61:4e:eb:ce:a4: 69:db:7a:97:95:a2:12:d3:6a:04:18:35:7a:f5:64: 28:a2:b2:a6:12:f5:f6:42:8e:57:05:95:a9:63:28: a3:f2:9a:fa:2b:fe:94:d9:ed:10:b1:d0:de:cf:11: 4e:af:4a:f3:a9:5e:4e:b7:68:8a:fa:41:d6:84:c2: 9f:e6:36:6f:50:11:7b:5d:65:e5:32:a0:13:0e:8b: c8:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:8D:7A:50:04:6E:4B:09:FE:C8:E3:35:22:B9:C2:60:1D:66:40:11 X509v3 Authority Key Identifier: keyid:5E:51:09:BE:34:B8:1C:0C:BB:E0:E4:35:9A:77:81:A4:62:4B:9F:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:20:38:4c:bf:c1:d0:bc:ec:cf:bd:00:5a:f0:34:97:40:ba: e0:7d:90:80:bc:15:89:3b:15:b8:82:1f:9a:09:b4:d5:21:d4: 8a:a3:9d:b6:d4:19:8d:55:37:6b:2b:0c:cb:1b:35:d5:63:28: 90:71:13:d0:c2:46:5b:71:c8:88:42:b5:0a:9f:16:31:79:32: 9f:1b:0f:17:40:07:9b:43:27:48:d4:c2:9a:7f:04:f4:6a:6e: f3:05:70:7c:76:71:5c:01:2e:ec:29:2d:91:2d:bd:45:b5:6e: 45:ec:c9:0d:8e:77:7e:56:b4:f1:b7:28:a6:9f:48:7e:c9:0d: 85:ae:55:fc:37:80:91:f9:75:4b:b8:3e:62:d9:50:b3:cc:3a: 3d:95:ae:74:f2:64:43:ad:c3:a4:65:12:e8:e9:9a:0f:08:2c: f8:01:04:1e:4e:6d:63:8d:07:74:cf:5b:29:3a:c6:9c:c8:7a: ee:8b:c1:40:2b:aa:5e:71:d5:dd:e4:ff:63:42:89:79:53:ea: cb:80:a6:b1:00:7c:0a:50:c1:2e:8f:1e:b1:e1:1d:a0:ac:5a: 78:c6:ba:b8:4d:5e:63:1d:6c:54:ec:7b:34:74:88:4d:82:ab: c2:48:cf:5b:06:d9:43:3a:72:db:2d:46:af:4f:87:32:6f:0e: 74:83:94:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEvowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVENjExMTAvBgNVBAUTKDVFNTEwOUJFMzRCODFDMENCQkUwRTQzNTlBNzc4MUE0 NjI0QjlGQ0QwHhcNMjUwOTE2MTQyMTE5WhcNMjUwOTIzMTQyMTE5WjAYMRYwFAYD VQQDEw02OGM5NzI1Zi1lMGVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp6N0sqKYY7F84+G+Y7wlyRu9yEIY/metwgKrhWU8xerhfWqlfA3AUJSthLtY aE62WtBJSC0fhF+FqujzLTkwf3ip7GN+JdPpdB8Vi7CVpDs5YAPdSp9jkZiMYvyU iY7VajxjpfB5yL6azYJQSgW4jselmey3qhZWJlV/ppAbQQT6TCiO4kaGnAuxu0R7 4W18bXyydsVwh7c5JmA7USAkcy3vetyHZqHDARtCfQn/YU7rzqRp23qXlaIS02oE GDV69WQoorKmEvX2Qo5XBZWpYyij8pr6K/6U2e0QsdDezxFOr0rzqV5Ot2iK+kHW hMKf5jZvUBF7XWXlMqATDovIcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHONelAE bksJ/sjjNSK5wmAdZkARMB8GA1UdIwQYMBaAFF5RCb40uBwMu+DkNZp3gaRiS5/N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUQ2MS8wQzZBMEM5RTFE NzkxMUUyODc5RTM4QzUwOEIwMkNEMi9YbEVKdmpTNEhBeTc0T1ExbW5lQnBHSkxu ODAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hsRUp2alM0SEF5NzRPUTFtbmVCcEdKTG44MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUQ2MS8wQzZBMEM5RTFENzkxMUUyODc5RTM4QzUwOEIwMkNEMi9YbEVKdmpTNEhB eTc0T1ExbW5lQnBHSkxuODAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQIDhMv8HQvOzPvQBa8DSXQLrgfZCAvBWJOxW4gh+aCbTVIdSKo522 1BmNVTdrKwzLGzXVYyiQcRPQwkZbcciIQrUKnxYxeTKfGw8XQAebQydI1MKafwT0 am7zBXB8dnFcAS7sKS2RLb1FtW5F7MkNjnd+VrTxtyimn0h+yQ2FrlX8N4CR+XVL uD5i2VCzzDo9la508mRDrcOkZRLo6ZoPCCz4AQQeTm1jjQd0z1spOsacyHrui8FA K6pecdXd5P9jQol5U+rLgKaxAHwKUMEujx6x4R2grFp4xrq4TV5jHWxU7Hs0dIhN gqvCSM9bBtlDOnLbLUavT4cybw50g5Ta -----END CERTIFICATE-----Generated at Wed Sep 17 20:55:29 2025 by rpki-client