$ rpki-client -vvf rpki.apnic.net/member_repository/A913EF9C/CD2CA8F8D3EA11EFA66C4760C4F9AE02/xEOdwB4g0WzFoO-YF9Qb9iiXZSQ.mft File: xEOdwB4g0WzFoO-YF9Qb9iiXZSQ.mft (raw, json) Hash identifier: qbwPb7tufjqw0D9L6bDOacSBAoedDATotHhGIbAcQaM= Subject key identifier: 61:64:8D:B5:E0:47:AD:BD:0A:7E:99:3A:90:4C:E8:D9:6F:4B:73:43 Authority key identifier: C4:43:9D:C0:1E:20:D1:6C:C5:A0:EF:98:17:D4:1B:F6:28:97:65:24 Certificate issuer: /CN=A913EF9C/serialNumber=C4439DC01E20D16CC5A0EF9817D41BF628976524 Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xEOdwB4g0WzFoO-YF9Qb9iiXZSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913EF9C/CD2CA8F8D3EA11EFA66C4760C4F9AE02/xEOdwB4g0WzFoO-YF9Qb9iiXZSQ.mft Manifest number: 95 Signing time: Mon 03 Nov 2025 06:27:08 +0000 Manifest this update: Mon 03 Nov 2025 06:27:08 +0000 Manifest next update: Mon 10 Nov 2025 06:27:08 +0000 Files and hashes: 1: xEOdwB4g0WzFoO-YF9Qb9iiXZSQ.crl (hash: cQW6YFEQA196bEnmcs4ulsA5ietHL898SbEVW1JX31M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913EF9C/CD2CA8F8D3EA11EFA66C4760C4F9AE02/xEOdwB4g0WzFoO-YF9Qb9iiXZSQ.crl rsync://rpki.apnic.net/member_repository/A913EF9C/CD2CA8F8D3EA11EFA66C4760C4F9AE02/xEOdwB4g0WzFoO-YF9Qb9iiXZSQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xEOdwB4g0WzFoO-YF9Qb9iiXZSQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:27:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913EF9C, serialNumber=C4439DC01E20D16CC5A0EF9817D41BF628976524 Validity Not Before: Nov 3 06:27:08 2025 GMT Not After : Nov 10 06:27:08 2025 GMT Subject: CN=69084b3c-c8a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:79:db:b5:40:9d:ff:35:d4:27:8b:7a:3d:0e: 23:86:93:35:11:03:98:f3:a7:8f:20:d7:f1:2a:f2: 0a:fb:5c:72:18:6c:5d:46:9e:67:4d:ee:1c:c0:68: 0f:03:d6:e8:af:94:69:7e:de:8c:ed:3c:cd:c3:3e: 61:4d:44:e5:5d:11:62:2b:01:70:b4:f3:83:ba:ed: d5:7a:f6:26:9d:b8:c2:f5:75:32:a0:da:31:d9:0c: d8:4e:6d:b9:50:77:cd:be:e3:f8:c1:55:0e:3e:62: b1:cf:1e:37:25:97:e4:6f:5f:87:99:b5:7d:76:4d: 9d:38:2d:9e:8f:a5:27:df:75:c5:0f:5a:eb:85:04: 6a:b9:6e:08:00:3f:56:7f:a8:ad:61:72:9c:29:7b: ce:9d:b1:e9:fa:e0:6f:da:a5:1e:bc:fe:f1:92:f5: 36:d3:80:1f:b0:52:71:d2:db:5a:db:10:3d:02:e4: 49:4e:3f:fd:5e:06:a6:48:4b:e2:b4:82:8f:b8:24: 49:01:28:92:ab:2e:be:3e:64:fc:91:7b:5b:77:0f: bd:17:15:01:2d:79:f9:44:01:77:18:97:b2:ea:0c: b5:b1:60:23:3c:e0:80:fd:90:ff:2a:00:d9:45:68: 96:51:4f:0d:c4:8c:90:bd:c4:57:56:8d:50:94:83: 4a:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:64:8D:B5:E0:47:AD:BD:0A:7E:99:3A:90:4C:E8:D9:6F:4B:73:43 X509v3 Authority Key Identifier: keyid:C4:43:9D:C0:1E:20:D1:6C:C5:A0:EF:98:17:D4:1B:F6:28:97:65:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913EF9C/CD2CA8F8D3EA11EFA66C4760C4F9AE02/xEOdwB4g0WzFoO-YF9Qb9iiXZSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xEOdwB4g0WzFoO-YF9Qb9iiXZSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EF9C/CD2CA8F8D3EA11EFA66C4760C4F9AE02/xEOdwB4g0WzFoO-YF9Qb9iiXZSQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:28:d0:d6:6f:20:02:c2:e0:ef:ec:85:1e:b6:ef:9b:11:9a: 05:5a:f9:af:20:b2:21:e2:b5:0a:ed:48:fa:18:6d:c8:64:4b: 4e:c8:fa:b0:cc:8d:a9:35:3c:a8:c4:ba:ab:00:aa:61:ce:5e: 8c:62:5e:49:2e:f5:98:49:42:2a:b9:28:ec:b6:95:ac:b8:1b: d6:f0:b5:25:74:da:35:49:69:10:32:2c:33:39:51:8d:1b:03: d4:81:97:db:17:78:3b:3e:a4:0d:c0:6d:88:8e:73:93:b0:a9: c3:00:15:24:e8:f3:e2:93:93:ba:8d:01:37:68:8a:fb:13:2c: 13:84:31:e3:e5:93:bd:06:17:34:22:7a:08:95:6d:9c:16:77: af:db:94:1d:09:1b:f0:1a:9b:42:6a:14:fc:e4:f0:db:4e:90: d8:51:df:c8:13:72:f8:a8:4f:d4:dc:5e:5f:06:25:89:6e:9e: b1:eb:1a:c8:61:92:b2:69:51:45:89:70:32:37:78:ee:55:c1: dc:a8:5f:67:29:61:1c:2f:74:7e:5f:5c:99:d9:b3:97:e5:ae: f5:f5:50:33:ad:85:97:10:fa:55:6d:33:26:99:8d:92:36:e3: 74:e1:6e:70:34:ec:8a:c6:6a:49:ca:6c:67:0a:12:0d:b6:17: ae:d2:60:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0VGOUMxMTAvBgNVBAUTKEM0NDM5REMwMUUyMEQxNkNDNUEwRUY5ODE3RDQxQkY2 Mjg5NzY1MjQwHhcNMjUxMTAzMDYyNzA4WhcNMjUxMTEwMDYyNzA4WjAYMRYwFAYD VQQDEw02OTA4NGIzYy1jOGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3HnbtUCd/zXUJ4t6PQ4jhpM1EQOY86ePINfxKvIK+1xyGGxdRp5nTe4cwGgP A9bor5Rpft6M7TzNwz5hTUTlXRFiKwFwtPODuu3VevYmnbjC9XUyoNox2QzYTm25 UHfNvuP4wVUOPmKxzx43JZfkb1+HmbV9dk2dOC2ej6Un33XFD1rrhQRquW4IAD9W f6itYXKcKXvOnbHp+uBv2qUevP7xkvU204AfsFJx0tta2xA9AuRJTj/9XgamSEvi tIKPuCRJASiSqy6+PmT8kXtbdw+9FxUBLXn5RAF3GJey6gy1sWAjPOCA/ZD/KgDZ RWiWUU8NxIyQvcRXVo1QlINKqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGFkjbXg R629Cn6ZOpBM6NlvS3NDMB8GA1UdIwQYMBaAFMRDncAeINFsxaDvmBfUG/Yol2Uk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRUY5Qy9DRDJDQThGOEQz RUExMUVGQTY2QzQ3NjBDNEY5QUUwMi94RU9kd0I0ZzBXekZvTy1ZRjlRYjlpaVha U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hFT2R3QjRnMFd6Rm9PLVlGOVFiOWlpWFpTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RUY5Qy9DRDJDQThGOEQzRUExMUVGQTY2QzQ3NjBDNEY5QUUwMi94RU9kd0I0ZzBX ekZvTy1ZRjlRYjlpaVhaU1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3KNDWbyACwuDv7IUetu+bEZoFWvmvILIh4rUK7Uj6GG3IZEtOyPqw zI2pNTyoxLqrAKphzl6MYl5JLvWYSUIquSjstpWsuBvW8LUldNo1SWkQMiwzOVGN GwPUgZfbF3g7PqQNwG2IjnOTsKnDABUk6PPik5O6jQE3aIr7EywThDHj5ZO9Bhc0 InoIlW2cFnev25QdCRvwGptCahT85PDbTpDYUd/IE3L4qE/U3F5fBiWJbp6x6xrI YZKyaVFFiXAyN3juVcHcqF9nKWEcL3R+X1yZ2bOX5a719VAzrYWXEPpVbTMmmY2S NuN04W5wNOyKxmpJymxnChINtheu0mDa -----END CERTIFICATE-----Generated at Tue Nov 4 21:34:50 2025 by rpki-client