$ rpki-client -vvf rpki.apnic.net/member_repository/A91275FD/F48AD12226D911E5B24DA633C4F9AE02/Xr3U1fNsaqWbASyeiZqtPCfq2O0.mft File: Xr3U1fNsaqWbASyeiZqtPCfq2O0.mft (raw, json) Hash identifier: 2U9AQhe1lTusmC23VqKq2J4Ra0oUxv5kykJTjoDbJD8= Subject key identifier: 59:0D:D3:E8:45:C0:96:86:AC:75:6F:CA:FF:30:B9:CD:A8:02:4B:AD Authority key identifier: 5E:BD:D4:D5:F3:6C:6A:A5:9B:01:2C:9E:89:9A:AD:3C:27:EA:D8:ED Certificate issuer: /CN=A91275FD/serialNumber=5EBDD4D5F36C6AA59B012C9E899AAD3C27EAD8ED Certificate serial: 2582 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xr3U1fNsaqWbASyeiZqtPCfq2O0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91275FD/F48AD12226D911E5B24DA633C4F9AE02/Xr3U1fNsaqWbASyeiZqtPCfq2O0.mft Manifest number: 2572 Signing time: Tue 04 Nov 2025 15:45:14 +0000 Manifest this update: Tue 04 Nov 2025 15:45:13 +0000 Manifest next update: Tue 11 Nov 2025 15:45:13 +0000 Files and hashes: 1: Xr3U1fNsaqWbASyeiZqtPCfq2O0.crl (hash: 1IuCswOndUVd0LbnvxA3HvD+sY+3l17rT6ggBQokOlg=) 2: C5218598F91711EDBB78FE3CC4F9AE02.roa (hash: xnMX5X2YJrVvWA8Z+ilrknMulrMIGU6wGg57HKZlkt0=) 3: 9461B15C144611EBA5418244C4F9AE02.roa (hash: f2BKC0SfvfCVZzewNCyKNQgaDwalvIHM6ibs4HCHEDg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91275FD/F48AD12226D911E5B24DA633C4F9AE02/Xr3U1fNsaqWbASyeiZqtPCfq2O0.crl rsync://rpki.apnic.net/member_repository/A91275FD/F48AD12226D911E5B24DA633C4F9AE02/Xr3U1fNsaqWbASyeiZqtPCfq2O0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xr3U1fNsaqWbASyeiZqtPCfq2O0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:45:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9602 (0x2582) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91275FD, serialNumber=5EBDD4D5F36C6AA59B012C9E899AAD3C27EAD8ED Validity Not Before: Nov 4 15:45:13 2025 GMT Not After : Nov 11 15:45:13 2025 GMT Subject: CN=690a1f8a-42f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b5:4c:06:4f:a6:b9:d6:6d:e4:89:e1:c2:bd: d1:19:ff:b1:30:41:57:e8:97:8b:c2:4a:45:78:79: fa:79:2c:51:88:c6:34:1d:ef:29:10:80:8d:d1:08: e1:21:53:17:a3:68:35:d6:3e:94:e3:60:96:9b:15: 0f:0a:9d:53:b1:d2:7f:9d:19:1b:1a:0a:e9:2a:ce: d6:d5:68:51:42:2a:df:63:8c:84:b5:45:31:f3:91: 6f:d2:d2:31:b9:fa:de:5f:a9:c9:b7:00:60:a2:41: a3:fc:11:04:98:ad:b4:d0:75:7b:6b:ad:6a:4f:38: d4:36:27:bb:5e:b1:6e:9c:f8:a0:7f:b5:85:28:e8: 5e:d2:33:c1:07:79:b5:17:65:32:f5:63:8d:80:5d: 5a:93:46:84:08:43:31:96:fd:4e:a0:39:e0:27:7a: 4f:e5:c1:ac:f9:5c:68:1f:a4:24:7b:94:46:3a:8a: c2:f1:08:2d:aa:94:1f:b0:1c:8f:4b:52:12:71:2c: 9f:c8:50:ce:4d:c7:7c:7b:e0:55:31:22:3e:07:ef: 6f:48:06:04:83:60:bd:1d:99:47:1d:f8:de:51:f5: 64:83:4d:a8:a1:75:0c:ba:f9:b3:66:67:ee:7a:2f: 36:c8:eb:be:8f:43:29:05:b5:10:70:c4:9b:3c:a9: 80:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:0D:D3:E8:45:C0:96:86:AC:75:6F:CA:FF:30:B9:CD:A8:02:4B:AD X509v3 Authority Key Identifier: keyid:5E:BD:D4:D5:F3:6C:6A:A5:9B:01:2C:9E:89:9A:AD:3C:27:EA:D8:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91275FD/F48AD12226D911E5B24DA633C4F9AE02/Xr3U1fNsaqWbASyeiZqtPCfq2O0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xr3U1fNsaqWbASyeiZqtPCfq2O0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91275FD/F48AD12226D911E5B24DA633C4F9AE02/Xr3U1fNsaqWbASyeiZqtPCfq2O0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:55:e9:17:fe:3d:b7:49:18:0b:7c:36:4f:1d:9f:22:48:4a: 5d:81:89:99:31:c2:c0:6a:71:21:cc:04:9a:da:3c:c8:db:cb: f1:83:3a:ae:b6:af:dc:65:1e:15:1f:5b:6a:2a:8e:af:e4:12: dd:be:63:a1:07:06:e3:ac:f7:cd:38:41:24:d1:2c:81:0c:4d: 01:11:84:e1:5c:d2:f1:04:10:15:6c:f8:91:fd:45:46:a7:ae: 39:dd:12:23:f0:03:47:1b:29:6a:80:7f:2e:70:9f:2e:a3:82: d0:e8:be:02:fb:e4:b4:02:43:fe:f2:5a:fc:22:4d:72:43:de: 02:d6:8e:4b:68:cc:a8:41:ee:8f:c9:71:f9:7c:56:4a:55:50: 8a:27:72:03:b3:da:f6:7b:ba:dd:6e:1a:db:3d:a5:f0:18:07: e0:8a:b7:1f:9a:b1:e8:ce:90:23:06:27:12:08:b1:47:37:8b: 8c:c3:ff:4f:d4:bc:89:c1:9d:00:7a:dc:21:3c:6c:ad:d8:39: 2a:aa:cc:c5:12:83:66:a6:8f:6b:1f:7f:be:2d:2c:3b:08:cc: 9b:bb:03:0b:58:a0:45:8a:68:0e:25:b4:92:f8:f0:f1:82:c3: 67:c5:4e:0a:7c:b1:c1:08:23:c4:d9:c0:cc:a0:f8:a0:e3:8d: f4:cd:3e:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJYIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1RkQxMTAvBgNVBAUTKDVFQkRENEQ1RjM2QzZBQTU5QjAxMkM5RTg5OUFBRDND MjdFQUQ4RUQwHhcNMjUxMTA0MTU0NTEzWhcNMjUxMTExMTU0NTEzWjAYMRYwFAYD VQQDEw02OTBhMWY4YS00MmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwLVMBk+mudZt5Inhwr3RGf+xMEFX6JeLwkpFeHn6eSxRiMY0He8pEICN0Qjh IVMXo2g11j6U42CWmxUPCp1TsdJ/nRkbGgrpKs7W1WhRQirfY4yEtUUx85Fv0tIx ufreX6nJtwBgokGj/BEEmK200HV7a61qTzjUNie7XrFunPigf7WFKOhe0jPBB3m1 F2Uy9WONgF1ak0aECEMxlv1OoDngJ3pP5cGs+VxoH6Qke5RGOorC8QgtqpQfsByP S1IScSyfyFDOTcd8e+BVMSI+B+9vSAYEg2C9HZlHHfjeUfVkg02ooXUMuvmzZmfu ei82yOu+j0MpBbUQcMSbPKmAoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFkN0+hF wJaGrHVvyv8wuc2oAkutMB8GA1UdIwQYMBaAFF691NXzbGqlmwEsnomarTwn6tjt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzVGRC9GNDhBRDEyMjI2 RDkxMUU1QjI0REE2MzNDNEY5QUUwMi9YcjNVMWZOc2FxV2JBU3llaVpxdFBDZnEy TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1hyM1UxZk5zYXFXYkFTeWVpWnF0UENmcTJPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzVGRC9GNDhBRDEyMjI2RDkxMUU1QjI0REE2MzNDNEY5QUUwMi9YcjNVMWZOc2Fx V2JBU3llaVpxdFBDZnEyTzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDIVekX/j23SRgLfDZPHZ8iSEpdgYmZMcLAanEhzASa2jzI28vxgzqu tq/cZR4VH1tqKo6v5BLdvmOhBwbjrPfNOEEk0SyBDE0BEYThXNLxBBAVbPiR/UVG p6453RIj8ANHGylqgH8ucJ8uo4LQ6L4C++S0AkP+8lr8Ik1yQ94C1o5LaMyoQe6P yXH5fFZKVVCKJ3IDs9r2e7rdbhrbPaXwGAfgircfmrHozpAjBicSCLFHN4uMw/9P 1LyJwZ0AetwhPGyt2DkqqszFEoNmpo9rH3++LSw7CMybuwMLWKBFimgOJbSS+PDx gsNnxU4KfLHBCCPE2cDMoPig4430zT7Y -----END CERTIFICATE-----Generated at Tue Nov 4 21:29:55 2025 by rpki-client