$ rpki-client -vvf rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft File: XZRtT0edN7zhcAywut1RosPfYg8.mft (raw, json) Hash identifier: aDgAJTbuFekxeulR/M20p1Q8d7c0lQ9knGp2NKc07cc= Subject key identifier: 5C:7E:C5:CA:09:F6:12:A7:0F:25:04:F4:07:59:C9:2E:85:5A:87:7D Authority key identifier: 5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F Certificate issuer: /CN=A9152787/serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft Manifest number: 98 Signing time: Sat 09 Aug 2025 06:50:34 +0000 Manifest this update: Sat 09 Aug 2025 06:50:34 +0000 Manifest next update: Sat 16 Aug 2025 06:50:34 +0000 Files and hashes: 1: XZRtT0edN7zhcAywut1RosPfYg8.crl (hash: ToEIx3G9d+o9d79jvhvtpEE4bBt2fYUzgmwB5kZKeNc=) 2: CB24F37C033711F0B76A8520C4F9AE02.roa (hash: 086QtTZ7qGEzYPBYkqpmBPb1qovlHlBpqUB0MoAAlkQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152787, serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Validity Not Before: Aug 9 06:50:34 2025 GMT Not After : Aug 16 06:50:34 2025 GMT Subject: CN=6896efba-0fb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ae:cb:12:f8:ff:b5:88:97:7c:b8:aa:48:82: 3d:c6:5b:68:46:97:47:98:1e:c6:69:20:f0:5d:4d: 03:93:71:cc:22:37:57:2b:27:ad:1e:7b:de:29:70: 1d:1c:76:64:ab:87:39:82:89:34:8b:5c:3f:fc:99: 9d:bf:05:2d:1b:31:d4:bd:45:2f:a7:25:97:db:cc: cc:75:10:75:3e:d2:eb:5f:60:90:e7:1d:92:e8:fd: a4:95:ad:0a:3d:15:c5:3c:90:4a:a0:01:41:54:3c: 45:39:cd:98:5b:9a:8b:31:3b:df:83:dc:99:3a:41: 93:1f:50:a8:e1:db:40:a6:a5:e4:54:ac:e9:b5:cb: 1b:bc:c5:21:42:6f:ac:de:db:c8:37:fc:08:33:ad: d1:84:20:db:dd:58:73:95:92:da:3b:f2:18:89:35: 14:2e:ed:50:90:ea:58:a9:45:a8:0b:66:57:1b:e9: 5e:c0:77:bb:f2:5c:2c:05:5e:4c:c9:44:f3:89:d3: 34:90:53:9d:8a:8c:0a:ec:fc:46:0e:72:13:38:b4: b0:8c:f6:63:d3:ad:d9:38:f0:40:6a:de:8e:ad:db: db:b8:b3:49:90:8d:f0:f0:c7:06:60:bf:ee:30:42: 4b:6b:8b:64:cd:30:c5:9b:84:a3:07:28:a5:15:1a: f9:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:7E:C5:CA:09:F6:12:A7:0F:25:04:F4:07:59:C9:2E:85:5A:87:7D X509v3 Authority Key Identifier: keyid:5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:c9:57:4f:a3:53:c7:3d:0f:4c:de:9e:b6:b2:05:bd:26:7d: 6e:ab:e2:7b:eb:a7:e8:56:fb:c4:61:7b:4a:cc:03:cb:db:52: c5:8a:91:a3:ed:6a:53:c4:02:74:fd:37:36:e6:77:50:5e:dd: f6:98:89:b0:6a:30:38:45:68:63:ee:b1:2c:88:80:c6:a1:78: 07:40:30:1f:67:27:3f:15:db:ed:fb:88:21:4b:3a:f4:b1:44: 69:37:c7:cc:59:d4:3a:a2:fe:82:31:75:09:0b:93:17:11:83: 1d:13:c4:69:2e:26:fc:4d:91:38:3b:58:9e:98:ca:a2:bf:ab: 26:98:63:34:ce:0f:bf:52:bd:1e:58:7f:97:fb:9b:5f:39:7e: 53:0b:2b:8d:ec:e0:42:f8:5d:4e:32:c6:f6:cf:0c:8e:01:d1: 03:c2:de:93:f1:e1:2a:06:9f:03:6c:4f:b0:23:2e:d5:37:c8: d6:31:60:a4:1c:b4:2e:a4:6d:ab:fa:e9:57:05:48:ca:d7:61: ae:f2:e5:d6:87:45:29:4c:e5:d0:3f:91:04:8c:45:eb:63:3d: d7:4f:44:1c:76:67:9f:0a:4c:86:22:6b:c3:3c:cc:05:30:46: 47:1b:1e:38:d2:22:2c:dd:4f:30:39:42:63:f2:57:55:46:a8: e0:29:a7:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI3ODcxMTAvBgNVBAUTKDVEOTQ2RDRGNDc5RDM3QkNFMTcwMENCMEJBREQ1MUEy QzNERjYyMEYwHhcNMjUwODA5MDY1MDM0WhcNMjUwODE2MDY1MDM0WjAYMRYwFAYD VQQDEw02ODk2ZWZiYS0wZmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtK7LEvj/tYiXfLiqSII9xltoRpdHmB7GaSDwXU0Dk3HMIjdXKyetHnveKXAd HHZkq4c5gok0i1w//JmdvwUtGzHUvUUvpyWX28zMdRB1PtLrX2CQ5x2S6P2kla0K PRXFPJBKoAFBVDxFOc2YW5qLMTvfg9yZOkGTH1Co4dtApqXkVKzptcsbvMUhQm+s 3tvIN/wIM63RhCDb3VhzlZLaO/IYiTUULu1QkOpYqUWoC2ZXG+lewHe78lwsBV5M yUTzidM0kFOdiowK7PxGDnITOLSwjPZj063ZOPBAat6OrdvbuLNJkI3w8McGYL/u MEJLa4tkzTDFm4SjByilFRr5fQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFx+xcoJ 9hKnDyUE9AdZyS6FWod9MB8GA1UdIwQYMBaAFF2UbU9HnTe84XAMsLrdUaLD32IP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Mjc4Ny8yMjg2NTYyQThG NzkxMUVGOTJBQzc4MUVDNEY5QUUwMi9YWlJ0VDBlZE43emhjQXl3dXQxUm9zUGZZ ZzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1haUnRUMGVkTjd6aGNBeXd1dDFSb3NQZllnOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Mjc4Ny8yMjg2NTYyQThGNzkxMUVGOTJBQzc4MUVDNEY5QUUwMi9YWlJ0VDBlZE43 emhjQXl3dXQxUm9zUGZZZzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8yVdPo1PHPQ9M3p62sgW9Jn1uq+J766foVvvEYXtKzAPL21LFipGj 7WpTxAJ0/Tc25ndQXt32mImwajA4RWhj7rEsiIDGoXgHQDAfZyc/Fdvt+4ghSzr0 sURpN8fMWdQ6ov6CMXUJC5MXEYMdE8RpLib8TZE4O1iemMqiv6smmGM0zg+/Ur0e WH+X+5tfOX5TCyuN7OBC+F1OMsb2zwyOAdEDwt6T8eEqBp8DbE+wIy7VN8jWMWCk HLQupG2r+ulXBUjK12Gu8uXWh0UpTOXQP5EEjEXrYz3XT0QcdmefCkyGImvDPMwF MEZHGx440iIs3U8wOUJj8ldVRqjgKacd -----END CERTIFICATE-----Generated at Sun Aug 10 18:16:29 2025 by rpki-client