$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft File: X1zijATRbpUODrzVlVVCSD05VtA.mft (raw, json) Hash identifier: jo5Pz1HabjOPnYXh9TdCsM/MJMNVKs+K+exbsrrP3g8= Subject key identifier: 5B:CB:4C:BF:F2:A9:7D:BB:31:40:F8:84:D0:02:14:F2:20:7A:F6:65 Authority key identifier: 5F:5C:E2:8C:04:D1:6E:95:0E:0E:BC:D5:95:55:42:48:3D:39:56:D0 Certificate issuer: /CN=A91F0D86/serialNumber=5F5CE28C04D16E950E0EBCD5955542483D3956D0 Certificate serial: 016D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft Manifest number: 0168 Signing time: Tue 09 Sep 2025 04:01:22 +0000 Manifest this update: Tue 09 Sep 2025 04:01:22 +0000 Manifest next update: Tue 16 Sep 2025 04:01:22 +0000 Files and hashes: 1: X1zijATRbpUODrzVlVVCSD05VtA.crl (hash: OBmXhl/KoCj3dMb5fLfo5ZcD9SyqT7DNpOSU+la8cHA=) 2: 85BF2BE4710111F093C54468C4F9AE02.roa (hash: DHeUh6Boki6/Qn0u9RFENX6qUoDb9jI1NIN7RVH9Vfk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.crl rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 04:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 365 (0x16d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0D86, serialNumber=5F5CE28C04D16E950E0EBCD5955542483D3956D0 Validity Not Before: Sep 9 04:01:22 2025 GMT Not After : Sep 16 04:01:22 2025 GMT Subject: CN=68bfa692-0ed1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:0f:4d:89:cd:59:79:2c:ee:7d:36:da:d7:b9: be:f7:9e:f0:d4:ac:f4:3c:ec:e8:40:36:95:0f:bd: 08:7d:af:c7:83:ee:33:7d:fd:37:a7:3e:b0:67:9a: cc:f2:18:12:f6:a3:45:5b:9c:26:73:3e:79:9f:5f: 4d:d6:6b:96:cf:c4:b4:cd:90:70:f0:6f:bc:59:ba: d1:45:52:8d:f7:f4:13:5e:4a:a2:a8:e6:29:a5:ca: 11:53:24:01:3b:e7:6d:25:60:78:9e:ff:be:f3:52: 40:19:f9:c8:61:b3:d5:33:8a:18:83:d6:86:ff:64: 8f:ee:ee:00:5e:5b:13:a7:64:f7:84:4a:ed:4c:f3: 1c:fe:aa:39:e0:32:b1:86:51:0e:23:2f:7f:5c:54: c9:05:b2:f9:05:be:a6:b7:ca:c6:a7:99:9b:b6:37: bd:7d:d8:cf:a5:24:42:fb:91:b2:b3:42:8f:50:48: ea:3b:71:43:de:26:00:02:37:3c:cf:17:f7:2a:34: 56:ad:d3:17:ef:0e:57:a6:db:19:86:84:11:cd:58: cb:3d:d9:fd:18:df:e6:0d:9b:5c:f9:e1:e7:d9:08: 0b:e0:8a:f6:62:10:6b:ae:57:db:03:50:21:0b:ca: 42:1f:04:f9:41:24:66:ed:23:4c:a2:92:7f:9d:6b: f7:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:CB:4C:BF:F2:A9:7D:BB:31:40:F8:84:D0:02:14:F2:20:7A:F6:65 X509v3 Authority Key Identifier: keyid:5F:5C:E2:8C:04:D1:6E:95:0E:0E:BC:D5:95:55:42:48:3D:39:56:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:78:f8:4b:0a:06:6f:77:db:41:77:3b:c7:d7:55:21:b5:1f: 8a:4b:0b:c0:45:ff:e8:2e:4c:c7:ff:08:4b:81:93:0c:41:9c: d8:27:62:a3:85:3f:6a:96:f4:ef:5b:21:c6:ca:c6:84:47:1c: 9c:3f:a0:02:8e:60:a4:c8:a2:34:a6:28:d0:06:e8:f0:0a:1a: 10:5b:5a:45:b1:f3:59:3f:83:7b:79:30:aa:9d:55:1c:a8:52: b8:f7:35:9b:1d:9b:b1:ae:81:a2:71:cc:76:07:67:36:34:00: 3d:4c:d4:1b:4d:32:6e:b2:91:40:5f:84:eb:df:3e:d1:d1:83: df:b0:9f:ae:f0:02:9d:7a:36:6d:68:e4:db:bf:e2:1e:a1:63: fd:f9:ee:96:dd:c7:5b:c5:c0:08:a8:bc:e4:f1:6d:dc:14:f1: 5c:c3:e9:db:8f:42:ea:2b:b2:1f:de:e5:95:6b:9f:d9:9a:e9: 91:f5:85:a3:a3:0d:00:5b:7c:85:74:ae:43:a5:d1:e8:dc:ab: 02:23:cc:fc:f5:cf:39:b6:b0:36:11:78:5c:11:df:4f:06:7a: 63:e1:4a:a8:83:08:86:fb:0c:2f:e1:e8:a2:87:20:20:93:51: 46:8e:25:66:59:1b:63:c1:75:67:3a:90:f3:1e:58:e5:28:6f: 84:2b:6c:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBEODYxMTAvBgNVBAUTKDVGNUNFMjhDMDREMTZFOTUwRTBFQkNENTk1NTU0MjQ4 M0QzOTU2RDAwHhcNMjUwOTA5MDQwMTIyWhcNMjUwOTE2MDQwMTIyWjAYMRYwFAYD VQQDEw02OGJmYTY5Mi0wZWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Q9Nic1ZeSzufTba17m+957w1Kz0POzoQDaVD70Ifa/Hg+4zff03pz6wZ5rM 8hgS9qNFW5wmcz55n19N1muWz8S0zZBw8G+8WbrRRVKN9/QTXkqiqOYppcoRUyQB O+dtJWB4nv++81JAGfnIYbPVM4oYg9aG/2SP7u4AXlsTp2T3hErtTPMc/qo54DKx hlEOIy9/XFTJBbL5Bb6mt8rGp5mbtje9fdjPpSRC+5Gys0KPUEjqO3FD3iYAAjc8 zxf3KjRWrdMX7w5XptsZhoQRzVjLPdn9GN/mDZtc+eHn2QgL4Ir2YhBrrlfbA1Ah C8pCHwT5QSRm7SNMopJ/nWv38wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFvLTL/y qX27MUD4hNACFPIgevZlMB8GA1UdIwQYMBaAFF9c4owE0W6VDg681ZVVQkg9OVbQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEQ4Ni82OEU3OTc4QTZD QkQxMUVFQjg0NkYzNzlDNEY5QUUwMi9YMXppakFUUmJwVU9EcnpWbFZWQ1NEMDVW dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gxemlqQVRSYnBVT0RyelZsVlZDU0QwNVZ0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEQ4Ni82OEU3OTc4QTZDQkQxMUVFQjg0NkYzNzlDNEY5QUUwMi9YMXppakFUUmJw VU9EcnpWbFZWQ1NEMDVWdEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxePhLCgZvd9tBdzvH11UhtR+KSwvARf/oLkzH/whLgZMMQZzYJ2Kj hT9qlvTvWyHGysaERxycP6ACjmCkyKI0pijQBujwChoQW1pFsfNZP4N7eTCqnVUc qFK49zWbHZuxroGiccx2B2c2NAA9TNQbTTJuspFAX4Tr3z7R0YPfsJ+u8AKdejZt aOTbv+IeoWP9+e6W3cdbxcAIqLzk8W3cFPFcw+nbj0LqK7If3uWVa5/ZmumR9YWj ow0AW3yFdK5DpdHo3KsCI8z89c85trA2EXhcEd9PBnpj4UqogwiG+wwv4eiihyAg k1FGjiVmWRtjwXVnOpDzHljlKG+EK2wS -----END CERTIFICATE-----Generated at Thu Sep 11 01:09:03 2025 by rpki-client