$ rpki-client -vvf rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.mft File: xiZYMphXjR1K9yc-vXkccjCjdEk.mft (raw, json) Hash identifier: Tjl2c6u5TIuN2xb0gFRE60Q5gC/eNR4K2Io8fEW0HJI= Subject key identifier: 22:38:88:46:18:20:7C:A8:00:C9:5D:BA:50:46:6C:A6:9C:D8:66:82 Authority key identifier: C6:26:58:32:98:57:8D:1D:4A:F7:27:3E:BD:79:1C:72:30:A3:74:49 Certificate issuer: /CN=A91186C2/serialNumber=C626583298578D1D4AF7273EBD791C7230A37449 Certificate serial: 9B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiZYMphXjR1K9yc-vXkccjCjdEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.mft Manifest number: 99 Signing time: Wed 05 Nov 2025 06:36:41 +0000 Manifest this update: Wed 05 Nov 2025 06:36:41 +0000 Manifest next update: Wed 12 Nov 2025 06:36:41 +0000 Files and hashes: 1: xiZYMphXjR1K9yc-vXkccjCjdEk.crl (hash: MhVpvKfjb/m0JzNlz4/B5xJukLVD14E7+RORLueahrA=) 2: 7DFFCDA4D17F11EF8FAE452BC4F9AE02.roa (hash: yxYbVT0G3FIFNHaQq21RRd4odOx6/tGbrON4MVMOYMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.crl rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiZYMphXjR1K9yc-vXkccjCjdEk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:36:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91186C2, serialNumber=C626583298578D1D4AF7273EBD791C7230A37449 Validity Not Before: Nov 5 06:36:41 2025 GMT Not After : Nov 12 06:36:41 2025 GMT Subject: CN=690af079-6534 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:0e:34:1d:24:cb:73:4b:8a:cf:81:f5:af:79: 17:8b:b5:3d:d2:be:aa:17:ca:9d:16:e0:33:da:7d: aa:36:94:33:b8:7b:7a:7d:7c:3a:31:20:0b:64:75: a5:67:93:f7:47:f9:cd:f8:44:99:0f:18:23:a5:ad: df:2b:42:b1:00:4d:77:a7:8c:f8:d9:c2:d7:af:d0: 60:5a:9e:10:56:9b:a6:df:e8:76:5d:64:08:24:dc: 6b:c4:68:fd:80:88:ee:3e:5c:92:42:98:e1:ba:34: 63:7a:95:75:a9:c7:98:30:cc:65:74:30:4c:07:54: 82:0f:9b:43:db:a3:00:36:c6:79:de:b4:26:ef:f8: f8:bb:0d:82:6d:db:a6:38:c8:54:a5:d3:26:63:66: a4:3a:b4:0c:f0:94:a0:3b:5a:76:76:63:a0:a6:06: 65:9f:a9:e2:7d:bf:bb:d8:60:dd:25:34:1d:76:ef: 2f:4e:b9:97:f1:05:a9:2a:1a:c5:5e:40:ef:15:60: 9a:00:0f:c5:11:15:d8:67:dc:a1:47:20:b9:ae:f5: d8:94:0d:63:d8:01:22:6a:e4:83:78:e5:07:52:48: 85:70:0a:cf:a6:c6:13:a3:a0:88:1d:35:22:bd:54: b3:1b:e0:62:ce:6a:a7:e6:28:c0:25:9a:17:f4:51: 4f:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:38:88:46:18:20:7C:A8:00:C9:5D:BA:50:46:6C:A6:9C:D8:66:82 X509v3 Authority Key Identifier: keyid:C6:26:58:32:98:57:8D:1D:4A:F7:27:3E:BD:79:1C:72:30:A3:74:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiZYMphXjR1K9yc-vXkccjCjdEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:34:80:07:25:9c:39:81:e1:3e:95:42:32:b0:32:5f:73:0a: 91:2b:ec:30:96:b0:48:f5:2e:88:a0:51:b8:c8:99:78:09:f0: 21:0c:a8:a4:10:be:83:2a:22:5b:c9:44:8e:c0:11:56:50:14: 89:97:6e:75:0e:6f:0d:cd:66:30:00:c9:45:ae:d8:07:3d:97: 40:71:5f:13:61:f9:32:da:78:1d:1d:72:d7:31:7d:de:a3:b8: c8:91:b3:1c:e6:28:2f:a6:b3:52:d6:ad:54:1f:a9:c8:04:96: 53:ff:24:0a:c8:74:70:60:75:d5:32:df:6d:5e:fa:f3:8b:db: 6b:1f:07:6c:07:f7:94:85:73:81:92:f9:83:39:c5:85:95:16: 2b:62:b2:54:f3:52:bf:dd:8b:0e:e7:33:6e:ba:80:fb:e0:ec: e9:d2:a0:79:ae:37:1d:4d:e3:af:77:aa:c8:61:eb:75:e0:49: 32:a6:4f:cf:e7:76:31:c4:e0:2a:ad:10:b7:00:8c:52:da:25: 52:ff:92:2b:64:2a:20:eb:19:ce:f0:75:ea:4f:5b:11:14:be: 02:14:89:02:ad:1b:a5:29:d1:a7:67:8d:6c:f2:1c:43:19:bb: 74:bf:23:c7:43:b6:8f:16:b8:21:71:b1:32:cf:a7:1f:86:d3: 7b:5c:08:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg2QzIxMTAvBgNVBAUTKEM2MjY1ODMyOTg1NzhEMUQ0QUY3MjczRUJENzkxQzcy MzBBMzc0NDkwHhcNMjUxMTA1MDYzNjQxWhcNMjUxMTEyMDYzNjQxWjAYMRYwFAYD VQQDEw02OTBhZjA3OS02NTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1w40HSTLc0uKz4H1r3kXi7U90r6qF8qdFuAz2n2qNpQzuHt6fXw6MSALZHWl Z5P3R/nN+ESZDxgjpa3fK0KxAE13p4z42cLXr9BgWp4QVpum3+h2XWQIJNxrxGj9 gIjuPlySQpjhujRjepV1qceYMMxldDBMB1SCD5tD26MANsZ53rQm7/j4uw2Cbdum OMhUpdMmY2akOrQM8JSgO1p2dmOgpgZln6nifb+72GDdJTQddu8vTrmX8QWpKhrF XkDvFWCaAA/FERXYZ9yhRyC5rvXYlA1j2AEiauSDeOUHUkiFcArPpsYTo6CIHTUi vVSzG+Bizmqn5ijAJZoX9FFPhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCI4iEYY IHyoAMldulBGbKac2GaCMB8GA1UdIwQYMBaAFMYmWDKYV40dSvcnPr15HHIwo3RJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODZDMi8xRDJGMDcyNEQx N0YxMUVGQjM4NDY5MjhDNEY5QUUwMi94aVpZTXBoWGpSMUs5eWMtdlhrY2NqQ2pk RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hpWllNcGhYalIxSzl5Yy12WGtjY2pDamRFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODZDMi8xRDJGMDcyNEQxN0YxMUVGQjM4NDY5MjhDNEY5QUUwMi94aVpZTXBoWGpS MUs5eWMtdlhrY2NqQ2pkRWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDGNIAHJZw5geE+lUIysDJfcwqRK+wwlrBI9S6IoFG4yJl4CfAhDKik EL6DKiJbyUSOwBFWUBSJl251Dm8NzWYwAMlFrtgHPZdAcV8TYfky2ngdHXLXMX3e o7jIkbMc5igvprNS1q1UH6nIBJZT/yQKyHRwYHXVMt9tXvrzi9trHwdsB/eUhXOB kvmDOcWFlRYrYrJU81K/3YsO5zNuuoD74Ozp0qB5rjcdTeOvd6rIYet14Ekypk/P 53YxxOAqrRC3AIxS2iVS/5IrZCog6xnO8HXqT1sRFL4CFIkCrRulKdGnZ41s8hxD Gbt0vyPHQ7aPFrghcbEyz6cfhtN7XAix -----END CERTIFICATE-----Generated at Wed Nov 5 21:42:19 2025 by rpki-client