$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft File: XmtaBob1a6DA93-zvzGzhWMiCCQ.mft (raw, json) Hash identifier: O0FQyFxxz67j5uc30ABoePTMNpd3euOlR+HV/bt0mqw= Subject key identifier: 89:12:94:78:3F:3B:7B:DD:C7:D5:70:17:A8:B2:22:2A:0D:DC:1B:89 Authority key identifier: 5E:6B:5A:06:86:F5:6B:A0:C0:F7:7F:B3:BF:31:B3:85:63:22:08:24 Certificate issuer: /CN=A91FE107/serialNumber=5E6B5A0686F56BA0C0F77FB3BF31B38563220824 Certificate serial: 231A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft Manifest number: 2300 Signing time: Mon 08 Sep 2025 15:50:19 +0000 Manifest this update: Mon 08 Sep 2025 15:50:18 +0000 Manifest next update: Mon 15 Sep 2025 15:50:18 +0000 Files and hashes: 1: XmtaBob1a6DA93-zvzGzhWMiCCQ.crl (hash: DmxDcZWz95WgE1vF+D2Zpx8+d8KCvKAcC4XcnkKewCs=) 2: 44C007B0A0D611EDA2603C4EC4F9AE02.roa (hash: MAOIki/mm/t0sbRkALRqm8AR2/Jy8UBEI5Awsr4aYLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.crl rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 15:50:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8986 (0x231a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE107, serialNumber=5E6B5A0686F56BA0C0F77FB3BF31B38563220824 Validity Not Before: Sep 8 15:50:18 2025 GMT Not After : Sep 15 15:50:18 2025 GMT Subject: CN=68befb3a-992e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:e5:c3:1f:e2:3f:02:21:c8:1c:a5:37:eb:a7: 51:fc:e3:99:36:f5:4e:a5:a9:ee:23:c3:50:66:5c: 4e:2f:40:05:39:42:3f:f4:6a:f2:79:3b:b5:75:6c: 5f:6b:91:2a:66:f0:ad:b3:50:eb:51:fb:be:4a:e4: fb:59:46:12:aa:07:f7:c0:78:52:5a:2e:d9:3d:c5: f5:25:34:79:b7:2b:00:4e:40:69:88:4b:b9:80:47: af:f4:6f:27:40:77:ae:65:01:38:e8:44:90:61:64: ef:08:9b:65:c9:48:1e:89:3d:da:21:94:af:bf:89: 46:a7:79:4e:6e:ae:dd:9f:6d:d3:c2:2f:30:3e:5e: 93:ad:1b:68:59:d6:08:62:4a:eb:1a:3b:9d:f0:95: 55:f8:f0:0e:5b:1a:11:99:5d:4f:53:c1:1d:63:9c: 44:0f:b2:5e:f8:5d:6e:af:b7:b5:e6:3f:2e:86:4d: b7:d5:55:e5:7c:ff:a8:e9:e4:74:7f:af:5d:ff:63: 4e:24:5a:13:ab:81:61:2c:04:8b:f6:e8:17:7d:e3: de:17:2c:36:1d:d7:17:75:d3:8c:f4:82:e3:d7:8a: dc:6f:e3:ee:ee:d1:b0:68:69:dc:54:aa:d0:80:14: a1:d4:11:c8:20:d7:c5:7c:d1:fc:2d:e9:de:e2:4d: 7a:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:12:94:78:3F:3B:7B:DD:C7:D5:70:17:A8:B2:22:2A:0D:DC:1B:89 X509v3 Authority Key Identifier: keyid:5E:6B:5A:06:86:F5:6B:A0:C0:F7:7F:B3:BF:31:B3:85:63:22:08:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:1f:11:5c:33:18:50:34:24:11:ba:63:f8:e9:58:75:32:7b: 85:44:4f:b8:8b:a2:56:57:16:53:da:89:a7:21:3b:61:1a:ae: 9e:33:71:cb:50:16:ca:0a:64:c9:d9:42:10:ff:3d:0d:32:5e: 7e:1c:cf:d3:06:ff:d9:26:0c:7e:eb:bc:3e:d1:e9:1a:60:73: a2:4f:97:1d:ef:03:79:c9:d7:66:fc:bf:d6:ef:f8:f1:d0:c9: 0a:ff:e1:1c:01:08:11:24:5b:29:b4:90:4e:0c:e5:13:5e:ac: 03:49:10:3a:49:e0:aa:5f:b9:4f:d0:a6:51:ec:7b:a3:f5:b3: e3:37:77:b4:80:81:8f:c2:5e:a1:95:5e:7b:8e:bc:b8:51:0c: 7d:56:fd:ed:77:7c:a7:79:3f:21:29:5f:b0:97:5d:16:f7:f2: 8d:7e:42:40:0e:1a:fb:78:ac:4a:80:96:f1:27:54:4d:ef:7f: 17:36:41:59:44:ad:a1:49:19:cb:a8:6e:7a:d5:a1:5a:a2:53: 76:2f:52:08:56:53:9d:84:95:92:d9:93:2a:e0:c5:9d:30:6c: 1f:2b:7c:b5:8b:2d:50:5f:42:4f:fb:76:ad:74:d7:42:f1:92: 05:b9:10:02:55:bb:d2:64:ba:56:d0:9b:59:a0:e5:b9:f7:a8: 6d:eb:50:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIxowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkUxMDcxMTAvBgNVBAUTKDVFNkI1QTA2ODZGNTZCQTBDMEY3N0ZCM0JGMzFCMzg1 NjMyMjA4MjQwHhcNMjUwOTA4MTU1MDE4WhcNMjUwOTE1MTU1MDE4WjAYMRYwFAYD VQQDEw02OGJlZmIzYS05OTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9uXDH+I/AiHIHKU366dR/OOZNvVOpanuI8NQZlxOL0AFOUI/9GryeTu1dWxf a5EqZvCts1DrUfu+SuT7WUYSqgf3wHhSWi7ZPcX1JTR5tysATkBpiEu5gEev9G8n QHeuZQE46ESQYWTvCJtlyUgeiT3aIZSvv4lGp3lObq7dn23Twi8wPl6TrRtoWdYI YkrrGjud8JVV+PAOWxoRmV1PU8EdY5xED7Je+F1ur7e15j8uhk231VXlfP+o6eR0 f69d/2NOJFoTq4FhLASL9ugXfePeFyw2HdcXddOM9ILj14rcb+Pu7tGwaGncVKrQ gBSh1BHIINfFfNH8Lene4k16dwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIkSlHg/ O3vdx9VwF6iyIioN3BuJMB8GA1UdIwQYMBaAFF5rWgaG9WugwPd/s78xs4VjIggk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTEwNy9FRTM1QzQ0NjlF NjQxMUU1OUQ0OEZCNjBDNEY5QUUwMi9YbXRhQm9iMWE2REE5My16dnpHemhXTWlD Q1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1htdGFCb2IxYTZEQTkzLXp2ekd6aFdNaUNDUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTEwNy9FRTM1QzQ0NjlFNjQxMUU1OUQ0OEZCNjBDNEY5QUUwMi9YbXRhQm9iMWE2 REE5My16dnpHemhXTWlDQ1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsHxFcMxhQNCQRumP46Vh1MnuFRE+4i6JWVxZT2omnITthGq6eM3HL UBbKCmTJ2UIQ/z0NMl5+HM/TBv/ZJgx+67w+0ekaYHOiT5cd7wN5yddm/L/W7/jx 0MkK/+EcAQgRJFsptJBODOUTXqwDSRA6SeCqX7lP0KZR7Huj9bPjN3e0gIGPwl6h lV57jry4UQx9Vv3td3yneT8hKV+wl10W9/KNfkJADhr7eKxKgJbxJ1RN738XNkFZ RK2hSRnLqG561aFaolN2L1IIVlOdhJWS2ZMq4MWdMGwfK3y1iy1QX0JP+3atdNdC 8ZIFuRACVbvSZLpW0JtZoOW596ht61CW -----END CERTIFICATE-----Generated at Tue Sep 9 21:39:48 2025 by rpki-client