$ rpki-client -vvf rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft File: Xtho2ocq-NaWpcGp-ngp9lJzynk.mft (raw, json) Hash identifier: O/jjE9WN+BMhQtvT5306i/NGFUsKlOFdwI10vpb/DjI= Subject key identifier: 2B:FA:AC:0A:3B:10:E8:60:A5:12:22:6A:C8:B5:3A:FB:17:55:20:E4 Authority key identifier: 5E:D8:68:DA:87:2A:F8:D6:96:A5:C1:A9:FA:78:29:F6:52:73:CA:79 Certificate issuer: /CN=A9119B43/serialNumber=5ED868DA872AF8D696A5C1A9FA7829F65273CA79 Certificate serial: 04C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xtho2ocq-NaWpcGp-ngp9lJzynk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft Manifest number: 04BB Signing time: Sun 02 Nov 2025 23:51:03 +0000 Manifest this update: Sun 02 Nov 2025 23:51:02 +0000 Manifest next update: Sun 09 Nov 2025 23:51:02 +0000 Files and hashes: 1: Xtho2ocq-NaWpcGp-ngp9lJzynk.crl (hash: qo3bpOgRb/MONb2jeZLm+Q47Cdc3HGsJPWUZxKTmKVM=) 2: 6C27C19E4BFA11ECA6797F6DC4F9AE02.roa (hash: 9zlcNMp71CcrKhJ6RcgbQ3pW8nUmE/ShM6R3qPGEpIM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.crl rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xtho2ocq-NaWpcGp-ngp9lJzynk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:51:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1219 (0x4c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119B43, serialNumber=5ED868DA872AF8D696A5C1A9FA7829F65273CA79 Validity Not Before: Nov 2 23:51:02 2025 GMT Not After : Nov 9 23:51:02 2025 GMT Subject: CN=6907ee67-51c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:0b:a8:cf:da:a9:9a:ab:af:22:3d:2a:f8:62: e6:be:45:23:8f:40:3f:ef:84:0c:67:77:3e:63:29: 0c:88:d8:d2:aa:b2:20:e8:27:68:c6:cd:43:95:10: 75:b1:53:dd:2d:d5:6d:31:8f:3d:3f:4f:e5:d7:e0: 4a:2b:a3:47:56:e8:21:4a:be:0b:29:45:de:3c:8e: 4e:e4:d1:ac:94:7b:61:f1:bf:a0:06:02:0c:18:d7: fd:54:03:57:49:07:1b:ee:45:7e:e0:9e:ae:81:15: 20:88:52:2c:1b:3f:ce:d0:dc:37:f6:6d:ec:3a:99: e0:84:bd:71:e8:d5:ce:6e:c3:10:4f:c6:52:af:49: 55:45:34:e3:5b:c7:58:41:9a:4e:1c:12:de:db:43: 9f:59:3b:d7:f0:94:b4:50:c1:35:c0:d5:ca:0e:16: 18:dc:6e:16:34:64:7d:18:d6:9a:9e:be:16:58:6d: 47:ae:5d:6a:d6:88:6a:ba:13:e6:08:f0:84:2c:e4: 4d:3a:cc:72:5f:be:18:7d:be:cc:cd:21:fd:39:35: 44:f3:91:48:b4:b5:9a:b1:f6:eb:f5:ba:94:c3:af: fc:8e:c7:5d:ea:3d:c1:11:d3:e3:28:9c:52:09:38: 18:b4:c6:42:43:c4:a9:aa:56:b6:cd:04:51:2b:33: 2c:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:FA:AC:0A:3B:10:E8:60:A5:12:22:6A:C8:B5:3A:FB:17:55:20:E4 X509v3 Authority Key Identifier: keyid:5E:D8:68:DA:87:2A:F8:D6:96:A5:C1:A9:FA:78:29:F6:52:73:CA:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xtho2ocq-NaWpcGp-ngp9lJzynk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119B43/E5B839824B3A11EC992E8150C4F9AE02/Xtho2ocq-NaWpcGp-ngp9lJzynk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:b1:21:56:65:9d:3e:80:d4:99:bf:20:4b:6a:7e:b2:14:44: c1:fe:14:f8:89:15:eb:a0:98:af:b4:c7:b3:c3:8f:8f:28:71: 51:a2:5c:6c:78:d7:9f:aa:fb:c2:ab:f1:43:db:91:91:33:a0: 0e:17:9e:f9:8f:a7:f6:75:a7:e1:3a:ff:3f:5d:dd:b2:e7:78: 41:45:03:c3:57:09:c3:75:89:0b:23:a2:d9:c3:3b:e4:c3:f8: a4:b1:29:d2:a6:0a:a7:51:ca:91:1d:4b:18:ed:a0:3d:41:57: 97:7c:07:24:c8:43:d6:f3:da:6c:4b:dd:b3:93:7e:5d:4c:bc: 64:22:13:a5:25:75:eb:b7:ec:41:7e:8f:3a:2a:ba:56:f9:c8: f2:6e:06:32:9d:63:60:69:88:ca:06:fd:0f:66:d3:81:4f:11: bd:d9:98:b0:7e:52:1a:dc:c5:c5:b6:7b:65:1c:10:5a:82:60: 46:00:c5:24:db:d3:14:0c:ca:88:55:bf:fd:5a:ac:37:60:b0: a1:0c:75:c4:15:1b:c0:d3:a0:50:78:4b:7e:7d:2d:7a:df:60: af:89:01:56:91:cd:24:e2:28:24:eb:ef:9b:27:3b:65:be:f4: 87:49:66:81:16:2c:85:e3:88:66:ce:ea:74:e3:93:8f:ce:3a: e1:04:e1:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlCNDMxMTAvBgNVBAUTKDVFRDg2OERBODcyQUY4RDY5NkE1QzFBOUZBNzgyOUY2 NTI3M0NBNzkwHhcNMjUxMTAyMjM1MTAyWhcNMjUxMTA5MjM1MTAyWjAYMRYwFAYD VQQDEw02OTA3ZWU2Ny01MWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqQuoz9qpmquvIj0q+GLmvkUjj0A/74QMZ3c+YykMiNjSqrIg6Cdoxs1DlRB1 sVPdLdVtMY89P0/l1+BKK6NHVughSr4LKUXePI5O5NGslHth8b+gBgIMGNf9VANX SQcb7kV+4J6ugRUgiFIsGz/O0Nw39m3sOpnghL1x6NXObsMQT8ZSr0lVRTTjW8dY QZpOHBLe20OfWTvX8JS0UME1wNXKDhYY3G4WNGR9GNaanr4WWG1Hrl1q1ohquhPm CPCELORNOsxyX74Yfb7MzSH9OTVE85FItLWasfbr9bqUw6/8jsdd6j3BEdPjKJxS CTgYtMZCQ8Spqla2zQRRKzMsTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCv6rAo7 EOhgpRIiasi1OvsXVSDkMB8GA1UdIwQYMBaAFF7YaNqHKvjWlqXBqfp4KfZSc8p5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUI0My9FNUI4Mzk4MjRC M0ExMUVDOTkyRTgxNTBDNEY5QUUwMi9YdGhvMm9jcS1OYVdwY0dwLW5ncDlsSnp5 bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h0aG8yb2NxLU5hV3BjR3AtbmdwOWxKenluay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OUI0My9FNUI4Mzk4MjRCM0ExMUVDOTkyRTgxNTBDNEY5QUUwMi9YdGhvMm9jcS1O YVdwY0dwLW5ncDlsSnp5bmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWsSFWZZ0+gNSZvyBLan6yFETB/hT4iRXroJivtMezw4+PKHFRolxs eNefqvvCq/FD25GRM6AOF575j6f2dafhOv8/Xd2y53hBRQPDVwnDdYkLI6LZwzvk w/iksSnSpgqnUcqRHUsY7aA9QVeXfAckyEPW89psS92zk35dTLxkIhOlJXXrt+xB fo86KrpW+cjybgYynWNgaYjKBv0PZtOBTxG92ZiwflIa3MXFtntlHBBagmBGAMUk 29MUDMqIVb/9Wqw3YLChDHXEFRvA06BQeEt+fS1632CviQFWkc0k4igk6++bJztl vvSHSWaBFiyF44hmzup045OPzjrhBOGv -----END CERTIFICATE-----Generated at Tue Nov 4 12:33:05 2025 by rpki-client