$ rpki-client -vvf rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft File: XfVm12I2fCjH8_ElYbRxa4yhuWY.mft (raw, json) Hash identifier: USEA2jS8imKzfSpWyOnvNczO4Z9IIcRxM0pXD0igfF0= Subject key identifier: 78:CA:DE:84:A5:F9:5A:EE:24:ED:15:E3:7E:E6:0E:C8:A2:82:E1:06 Authority key identifier: 5D:F5:66:D7:62:36:7C:28:C7:F3:F1:25:61:B4:71:6B:8C:A1:B9:66 Certificate issuer: /CN=A9133B47/serialNumber=5DF566D762367C28C7F3F12561B4716B8CA1B966 Certificate serial: 011B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft Manifest number: 0118 Signing time: Wed 05 Nov 2025 04:59:34 +0000 Manifest this update: Wed 05 Nov 2025 04:59:34 +0000 Manifest next update: Wed 12 Nov 2025 04:59:33 +0000 Files and hashes: 1: XfVm12I2fCjH8_ElYbRxa4yhuWY.crl (hash: zWfFohNz1c5u/4/DMFL48YmQRXysZJYuW5czNNNR5r0=) 2: 23B1A0120FA511EFB28F5235C4F9AE02.roa (hash: 1j2rFTty2/H954Iwvk/ZWmtqptjhE7lYs+ZEPtYw42E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.crl rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:59:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 283 (0x11b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133B47, serialNumber=5DF566D762367C28C7F3F12561B4716B8CA1B966 Validity Not Before: Nov 5 04:59:34 2025 GMT Not After : Nov 12 04:59:33 2025 GMT Subject: CN=690ad9b6-32b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:2a:e7:fb:1a:65:c5:e7:97:dd:9c:d8:4a:71: 3b:61:23:07:eb:90:51:86:15:6a:82:e4:86:54:7c: ab:fa:e1:a6:55:8b:3f:b4:22:d0:2f:4c:06:75:ac: 59:c5:52:19:df:84:f8:ce:e1:af:82:eb:8e:95:3f: 73:46:a1:2e:d4:96:d4:0a:28:ad:03:7c:49:db:96: 94:79:1a:8c:74:83:cb:47:47:b8:26:72:41:57:38: 75:c4:c2:1b:d9:85:27:19:ba:78:d8:6f:9f:3a:34: 79:d5:7b:98:53:d1:3a:3c:cd:bf:e4:49:90:7e:5c: 05:39:b4:ea:10:89:3d:ba:81:a9:4a:5a:3f:dd:bc: 13:4d:f6:42:e6:11:c2:7b:6a:47:e5:92:12:a5:d8: 74:61:4b:36:f8:bb:ac:b8:99:46:10:5d:6f:e2:b4: 8e:68:2d:77:ce:62:50:f4:88:f3:35:d8:24:5f:2b: f2:e9:73:ed:f4:f3:c3:6f:2f:da:2a:ad:d3:52:c2: ea:95:24:b8:96:94:eb:6e:2c:a2:8a:e8:03:97:10: 57:3d:b7:06:25:dd:e4:7b:01:fa:54:21:fa:d5:89: 95:1c:7a:52:73:e4:4d:a5:bb:fe:14:fb:7d:8d:f0: 58:48:c5:b3:25:c5:22:a0:a0:f0:29:7b:db:62:3b: a2:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:CA:DE:84:A5:F9:5A:EE:24:ED:15:E3:7E:E6:0E:C8:A2:82:E1:06 X509v3 Authority Key Identifier: keyid:5D:F5:66:D7:62:36:7C:28:C7:F3:F1:25:61:B4:71:6B:8C:A1:B9:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:1d:10:87:aa:52:2b:d4:b0:26:84:33:58:d6:28:d9:14:52: 88:53:fa:36:bc:1f:8b:52:05:37:84:52:a9:58:a4:63:2d:f8: c7:a5:e9:c1:1b:6d:52:aa:33:98:12:9b:04:4b:3f:a8:10:bc: 0b:b5:07:53:6e:7e:5b:53:2d:2b:46:6a:4b:b9:cd:67:4a:22: fd:ff:c3:e0:d5:b4:f4:2a:2b:90:c9:98:40:ef:31:c6:be:4f: cf:bb:79:f1:d1:08:d9:dd:77:50:b3:77:71:cb:31:b4:a7:49: 21:47:12:c9:64:81:a0:4c:e7:c3:02:7d:e5:2d:11:e0:b8:83: 1f:f8:d4:91:d9:e4:33:b0:31:85:5f:dd:76:52:e3:4f:87:ea: b2:2a:74:f2:76:95:da:29:ba:6d:26:62:10:6f:20:5c:5d:53: a6:88:7f:88:c7:de:ee:0a:64:7f:0d:d4:97:78:f7:c5:e1:7f: 9f:0e:81:78:02:87:cb:f3:40:af:50:c1:ec:86:a8:c6:d2:74: 16:9b:9d:12:63:67:c5:94:93:85:4c:c1:51:81:4e:08:1a:66: 11:0e:cf:54:1c:82:56:1a:09:da:fd:62:57:6f:23:ea:11:01: 6d:45:46:b8:59:b5:07:c9:b9:a0:04:00:41:91:72:c9:a3:86: 5f:19:73:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNCNDcxMTAvBgNVBAUTKDVERjU2NkQ3NjIzNjdDMjhDN0YzRjEyNTYxQjQ3MTZC OENBMUI5NjYwHhcNMjUxMTA1MDQ1OTM0WhcNMjUxMTEyMDQ1OTMzWjAYMRYwFAYD VQQDEw02OTBhZDliNi0zMmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Srn+xplxeeX3ZzYSnE7YSMH65BRhhVqguSGVHyr+uGmVYs/tCLQL0wGdaxZ xVIZ34T4zuGvguuOlT9zRqEu1JbUCiitA3xJ25aUeRqMdIPLR0e4JnJBVzh1xMIb 2YUnGbp42G+fOjR51XuYU9E6PM2/5EmQflwFObTqEIk9uoGpSlo/3bwTTfZC5hHC e2pH5ZISpdh0YUs2+LusuJlGEF1v4rSOaC13zmJQ9IjzNdgkXyvy6XPt9PPDby/a Kq3TUsLqlSS4lpTrbiyiiugDlxBXPbcGJd3kewH6VCH61YmVHHpSc+RNpbv+FPt9 jfBYSMWzJcUioKDwKXvbYjui6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHjK3oSl +VruJO0V437mDsiiguEGMB8GA1UdIwQYMBaAFF31ZtdiNnwox/PxJWG0cWuMoblm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0I0Ny84NzFCOTI5NDBG QTQxMUVGQTFBMTY5MzRDNEY5QUUwMi9YZlZtMTJJMmZDakg4X0VsWWJSeGE0eWh1 V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hmVm0xMkkyZkNqSDhfRWxZYlJ4YTR5aHVXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0I0Ny84NzFCOTI5NDBGQTQxMUVGQTFBMTY5MzRDNEY5QUUwMi9YZlZtMTJJMmZD akg4X0VsWWJSeGE0eWh1V1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXHRCHqlIr1LAmhDNY1ijZFFKIU/o2vB+LUgU3hFKpWKRjLfjHpenB G21SqjOYEpsESz+oELwLtQdTbn5bUy0rRmpLuc1nSiL9/8Pg1bT0KiuQyZhA7zHG vk/Pu3nx0QjZ3XdQs3dxyzG0p0khRxLJZIGgTOfDAn3lLRHguIMf+NSR2eQzsDGF X912UuNPh+qyKnTydpXaKbptJmIQbyBcXVOmiH+Ix97uCmR/DdSXePfF4X+fDoF4 AofL80CvUMHshqjG0nQWm50SY2fFlJOFTMFRgU4IGmYRDs9UHIJWGgna/WJXbyPq EQFtRUa4WbUHybmgBABBkXLJo4ZfGXNA -----END CERTIFICATE-----Generated at Wed Nov 5 21:19:40 2025 by rpki-client