$ rpki-client -vvf rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft File: XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft (raw, json) Hash identifier: YLbHzv9AAT7b1D6Z22820j4Tq0PK65iqj/8nQnIilXs= Subject key identifier: 18:88:CC:92:36:CD:AC:CE:41:C5:4D:D5:BE:55:EC:E7:27:EF:8B:E6 Authority key identifier: 5E:84:25:16:65:70:4C:DD:DF:2F:3F:9B:E8:2E:31:FF:B0:74:A5:8E Certificate issuer: /CN=A9127EAD/serialNumber=5E84251665704CDDDF2F3F9BE82E31FFB074A58E Certificate serial: 0841 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoQlFmVwTN3fLz-b6C4x_7B0pY4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft Manifest number: 083A Signing time: Tue 04 Nov 2025 20:51:17 +0000 Manifest this update: Tue 04 Nov 2025 20:51:17 +0000 Manifest next update: Tue 11 Nov 2025 20:51:17 +0000 Files and hashes: 1: XoQlFmVwTN3fLz-b6C4x_7B0pY4.crl (hash: HU2hscA9h/bISaUpGy91aVE6sbdPZeNgaUztxAUnIlk=) 2: 6CAC2064EA2211EA9C2F064AC4F9AE02.roa (hash: TEdKwP64TuQMUa2RFZqVEQD/HQzdAAlp9eIMPDVHh5E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.crl rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoQlFmVwTN3fLz-b6C4x_7B0pY4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:51:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2113 (0x841) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127EAD, serialNumber=5E84251665704CDDDF2F3F9BE82E31FFB074A58E Validity Not Before: Nov 4 20:51:17 2025 GMT Not After : Nov 11 20:51:17 2025 GMT Subject: CN=690a6745-6699 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:2d:e3:1f:54:1c:8a:13:24:3f:ca:1b:c3:ae: c1:6e:86:1b:6d:e7:5c:26:ed:cc:bc:69:b3:cc:b6: fd:bc:df:49:0e:d1:45:93:11:a7:cc:53:2b:df:43: 98:17:28:93:a0:33:0a:c5:84:43:e8:be:bc:2f:4a: a8:b2:ba:72:76:b5:2c:cb:01:b0:bc:56:2e:2a:22: b4:81:71:6d:52:37:f5:23:5b:87:46:62:b5:25:f6: 2b:ae:56:e8:b6:e1:a8:2b:a0:9f:76:cf:ac:65:da: ef:e9:20:61:ee:83:ff:33:62:39:68:35:69:67:28: 2e:06:60:f6:c5:bc:de:f7:83:1d:11:e6:52:0e:e7: b0:22:bf:6d:fc:92:d2:49:bd:a0:f6:1b:ce:d1:8c: 13:c1:6b:60:a4:77:6b:d0:a3:5a:0a:57:b7:c7:0e: 4e:b3:65:6a:6f:4f:24:7d:ca:b4:89:f7:fa:92:f3: ea:45:0c:c0:8c:a7:c6:b9:7d:72:ff:b2:d9:03:a7: c6:ab:7a:fd:77:63:9d:11:2f:85:26:57:21:93:09: a7:02:7a:3d:4d:1a:11:b1:92:78:05:93:14:dd:38: 6b:e8:4c:a0:41:ad:5d:93:20:0d:df:14:9e:ab:40: ec:ac:e5:92:1b:82:0e:ec:b6:2e:d3:1c:f1:ef:a8: f5:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:88:CC:92:36:CD:AC:CE:41:C5:4D:D5:BE:55:EC:E7:27:EF:8B:E6 X509v3 Authority Key Identifier: keyid:5E:84:25:16:65:70:4C:DD:DF:2F:3F:9B:E8:2E:31:FF:B0:74:A5:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoQlFmVwTN3fLz-b6C4x_7B0pY4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127EAD/E9B70666EA2011EA9CBFAD48C4F9AE02/XoQlFmVwTN3fLz-b6C4x_7B0pY4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:6f:fd:b4:e9:91:7e:57:d0:a7:f4:d5:55:62:9c:c2:3d:61: df:9f:3a:4c:69:da:0f:31:83:ee:5f:fe:d2:c1:b3:07:31:ae: 71:e9:0b:a9:cf:3e:44:4c:38:34:56:d2:1c:7d:9f:84:1d:cc: 39:39:a4:0e:51:c2:72:a5:04:25:17:02:d2:2d:70:5c:75:49: 2b:08:9b:1f:d1:c3:5a:2d:c1:f5:fe:36:09:0f:8d:b2:89:e2: c4:99:2e:41:4e:7c:3f:e0:ca:11:d0:ce:23:0f:32:92:bc:0e: 6c:be:de:e3:6e:f8:b2:b8:ad:90:72:8b:83:18:4f:45:8e:a9: b3:eb:e1:81:38:ec:28:87:c6:f9:d6:37:5a:79:29:7e:35:49: af:15:48:39:98:a4:dd:11:d8:be:60:c4:de:e8:16:72:f2:1d: 3c:aa:ab:b8:9f:0b:51:46:3b:e4:7d:de:29:87:f6:d8:69:7a: b6:6a:23:2d:cd:f0:69:1a:04:4f:80:10:23:51:b7:69:55:95: a0:00:cd:b3:fc:2d:cb:4d:2e:20:86:7e:73:3e:51:3d:e7:1a: 58:5e:fd:61:eb:f5:88:56:54:84:09:e6:a8:ca:19:aa:7e:6b: 88:1d:29:56:09:2c:a3:2a:90:7d:cf:e9:78:af:86:f9:75:77: a0:c5:9f:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdFQUQxMTAvBgNVBAUTKDVFODQyNTE2NjU3MDRDRERERjJGM0Y5QkU4MkUzMUZG QjA3NEE1OEUwHhcNMjUxMTA0MjA1MTE3WhcNMjUxMTExMjA1MTE3WjAYMRYwFAYD VQQDEw02OTBhNjc0NS02Njk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3i3jH1QcihMkP8obw67BboYbbedcJu3MvGmzzLb9vN9JDtFFkxGnzFMr30OY FyiToDMKxYRD6L68L0qosrpydrUsywGwvFYuKiK0gXFtUjf1I1uHRmK1JfYrrlbo tuGoK6Cfds+sZdrv6SBh7oP/M2I5aDVpZyguBmD2xbze94MdEeZSDuewIr9t/JLS Sb2g9hvO0YwTwWtgpHdr0KNaCle3xw5Os2Vqb08kfcq0iff6kvPqRQzAjKfGuX1y /7LZA6fGq3r9d2OdES+FJlchkwmnAno9TRoRsZJ4BZMU3Thr6EygQa1dkyAN3xSe q0DsrOWSG4IO7LYu0xzx76j1TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBiIzJI2 zazOQcVN1b5V7Ocn74vmMB8GA1UdIwQYMBaAFF6EJRZlcEzd3y8/m+guMf+wdKWO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0VBRC9FOUI3MDY2NkVB MjAxMUVBOUNCRkFENDhDNEY5QUUwMi9Yb1FsRm1Wd1ROM2ZMei1iNkM0eF83QjBw WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hvUWxGbVZ3VE4zZkx6LWI2QzR4XzdCMHBZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0VBRC9FOUI3MDY2NkVBMjAxMUVBOUNCRkFENDhDNEY5QUUwMi9Yb1FsRm1Wd1RO M2ZMei1iNkM0eF83QjBwWTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUb/206ZF+V9Cn9NVVYpzCPWHfnzpMadoPMYPuX/7SwbMHMa5x6Qup zz5ETDg0VtIcfZ+EHcw5OaQOUcJypQQlFwLSLXBcdUkrCJsf0cNaLcH1/jYJD42y ieLEmS5BTnw/4MoR0M4jDzKSvA5svt7jbviyuK2QcouDGE9Fjqmz6+GBOOwoh8b5 1jdaeSl+NUmvFUg5mKTdEdi+YMTe6BZy8h08qqu4nwtRRjvkfd4ph/bYaXq2aiMt zfBpGgRPgBAjUbdpVZWgAM2z/C3LTS4ghn5zPlE95xpYXv1h6/WIVlSECeaoyhmq fmuIHSlWCSyjKpB9z+l4r4b5dXegxZ9U -----END CERTIFICATE-----Generated at Wed Nov 5 12:27:41 2025 by rpki-client