$ rpki-client -vvf rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft File: XpnXCH3VTqLn519cgIcHE4Posp4.mft (raw, json) Hash identifier: AsKTAhQaoChgDc7ApYj0IXMPWBncU2UXY5EqdkFbzeA= Subject key identifier: 28:4D:B8:67:95:16:5A:81:7C:B9:85:6C:8C:50:BC:8C:CB:38:C3:1C Authority key identifier: 5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E Certificate issuer: /CN=A91F81D3/serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Certificate serial: 0B18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft Manifest number: 0AF9 Signing time: Sat 06 Sep 2025 19:34:35 +0000 Manifest this update: Sat 06 Sep 2025 19:34:35 +0000 Manifest next update: Sat 13 Sep 2025 19:34:35 +0000 Files and hashes: 1: XpnXCH3VTqLn519cgIcHE4Posp4.crl (hash: Y31DNNdJPf2/uBO09q8oxktpBbYpX+r2bSaInMhkMhk=) 2: E4A8C1240A3611F08B9CFD4FC4F9AE02.roa (hash: pW6ZkmsKrYO4khbqPdFp+1VATISq0kaXo2DoENq+wFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 19:34:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2840 (0xb18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F81D3, serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Validity Not Before: Sep 6 19:34:35 2025 GMT Not After : Sep 13 19:34:35 2025 GMT Subject: CN=68bc8ccb-7922 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:8c:19:09:e5:40:7e:3f:c0:51:f8:d5:0c:85: 77:74:7b:ff:26:33:f7:bd:7e:58:79:75:c0:f1:32: 9e:47:d5:59:93:75:13:d9:7c:28:8f:a1:fc:e5:06: f7:13:3c:ea:36:fb:1d:3f:a7:5a:ca:4c:44:58:1a: 71:a6:0b:cb:df:d7:18:f1:a1:da:74:01:d0:c9:73: c2:3f:28:b7:bc:fc:b5:82:93:d7:9c:16:92:e9:c9: 67:0a:a0:45:b2:be:7c:ac:9d:bc:60:89:06:2f:ec: c6:05:24:3f:2e:c1:3f:d0:16:d9:72:c5:7d:c4:26: c8:3d:17:e3:94:99:18:cd:53:ac:87:a7:50:c4:7a: 79:cd:b3:79:63:b0:de:91:09:ad:64:6f:bd:b2:d7: 11:9d:94:3b:a3:5e:c0:cb:17:c8:e4:f5:9c:58:45: 80:49:cf:b9:bd:47:85:a5:b5:54:75:03:d0:da:0b: a4:25:f8:80:37:47:60:b5:c7:f9:a1:ac:ee:10:0e: 15:84:56:11:da:e1:d5:6d:54:af:2d:64:4d:a6:c3: a8:da:79:25:0d:e9:b0:bb:18:24:f7:fa:04:1b:de: a3:8a:ef:0b:a4:83:11:e8:13:9f:dd:9f:c2:fd:ef: 18:5a:9a:07:26:00:bb:ff:7f:97:d9:ad:dd:64:04: b9:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:4D:B8:67:95:16:5A:81:7C:B9:85:6C:8C:50:BC:8C:CB:38:C3:1C X509v3 Authority Key Identifier: keyid:5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:ae:0a:ec:f5:a1:46:f3:5b:63:ca:16:62:f2:a0:f2:8a:21: 9e:c5:38:73:0b:55:56:19:68:e8:6c:ad:51:0e:fd:5b:c4:cc: 2b:64:c1:47:95:65:3b:dd:80:13:0b:d7:1a:7e:d6:d5:21:f0: b7:f5:ad:40:7e:0c:21:26:dc:36:5a:72:c3:71:d6:9a:35:ab: 1c:55:a0:69:38:60:e3:fd:41:ac:6e:5e:af:4d:ce:df:cf:f3: 84:27:ce:81:5a:68:de:70:78:b1:30:f8:02:96:c7:8e:2d:31: b5:f2:ad:77:56:cb:c2:96:b8:ab:25:7c:50:19:1d:03:8a:d2: 53:2b:0a:97:ac:6f:55:66:11:d5:f1:fd:f8:83:3b:c6:cc:ce: d7:31:f1:35:f5:cd:9f:ee:a8:09:2a:7f:48:e2:68:61:61:53: 9d:af:cb:98:80:b2:b0:51:ce:e7:a7:24:f2:d4:28:7e:5e:22: 99:9e:6c:cf:07:a4:4a:ac:08:dc:79:4c:55:01:56:ca:f2:39: 12:ca:aa:8a:4e:1b:0f:d8:73:15:ab:79:d9:a7:f4:7b:ce:07: d3:1f:3e:45:47:58:70:4e:d6:73:bf:e3:8e:cc:fc:54:58:37: 38:35:f3:06:73:5e:15:4c:4c:43:cc:5b:2e:51:1a:6a:39:9b: 92:d3:b0:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxRDMxMTAvBgNVBAUTKDVFOTlENzA4N0RENTRFQTJFN0U3NUY1QzgwODcwNzEz ODNFOEIyOUUwHhcNMjUwOTA2MTkzNDM1WhcNMjUwOTEzMTkzNDM1WjAYMRYwFAYD VQQDEw02OGJjOGNjYi03OTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0owZCeVAfj/AUfjVDIV3dHv/JjP3vX5YeXXA8TKeR9VZk3UT2Xwoj6H85Qb3 EzzqNvsdP6daykxEWBpxpgvL39cY8aHadAHQyXPCPyi3vPy1gpPXnBaS6clnCqBF sr58rJ28YIkGL+zGBSQ/LsE/0BbZcsV9xCbIPRfjlJkYzVOsh6dQxHp5zbN5Y7De kQmtZG+9stcRnZQ7o17AyxfI5PWcWEWASc+5vUeFpbVUdQPQ2gukJfiAN0dgtcf5 oazuEA4VhFYR2uHVbVSvLWRNpsOo2nklDemwuxgk9/oEG96jiu8LpIMR6BOf3Z/C /e8YWpoHJgC7/3+X2a3dZAS5YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFChNuGeV FlqBfLmFbIxQvIzLOMMcMB8GA1UdIwQYMBaAFF6Z1wh91U6i5+dfXICHBxOD6LKe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODFEMy8wQTg0NTlGNDUy MzUxMUVBOUEwQ0IyNzNDNEY5QUUwMi9YcG5YQ0gzVlRxTG41MTljZ0ljSEU0UG9z cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hwblhDSDNWVHFMbjUxOWNnSWNIRTRQb3NwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODFEMy8wQTg0NTlGNDUyMzUxMUVBOUEwQ0IyNzNDNEY5QUUwMi9YcG5YQ0gzVlRx TG41MTljZ0ljSEU0UG9zcDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQrgrs9aFG81tjyhZi8qDyiiGexThzC1VWGWjobK1RDv1bxMwrZMFH lWU73YATC9caftbVIfC39a1AfgwhJtw2WnLDcdaaNascVaBpOGDj/UGsbl6vTc7f z/OEJ86BWmjecHixMPgClseOLTG18q13VsvClrirJXxQGR0DitJTKwqXrG9VZhHV 8f34gzvGzM7XMfE19c2f7qgJKn9I4mhhYVOdr8uYgLKwUc7npyTy1Ch+XiKZnmzP B6RKrAjceUxVAVbK8jkSyqqKThsP2HMVq3nZp/R7zgfTHz5FR1hwTtZzv+OOzPxU WDc4NfMGc14VTExDzFsuURpqOZuS07Bv -----END CERTIFICATE-----Generated at Mon Sep 8 08:37:00 2025 by rpki-client