$ rpki-client -vvf rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft File: xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft (raw, json) Hash identifier: 8IZUBi8HCZd1lLbhM4Dk328QjPUzwmWRrtHA1qAIjbw= Subject key identifier: 02:90:19:5D:72:41:93:EE:B2:F7:59:A7:65:2C:82:A2:2E:9D:BE:A7 Authority key identifier: C4:3D:19:C6:D3:97:11:2A:2A:FE:D4:66:61:22:FC:57:6B:47:88:6D Certificate issuer: /CN=A914CA5C/serialNumber=C43D19C6D397112A2AFED4666122FC576B47886D Certificate serial: 03DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xD0ZxtOXESoq_tRmYSL8V2tHiG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft Manifest number: 03D6 Signing time: Mon 03 Nov 2025 00:34:19 +0000 Manifest this update: Mon 03 Nov 2025 00:34:18 +0000 Manifest next update: Mon 10 Nov 2025 00:34:18 +0000 Files and hashes: 1: xD0ZxtOXESoq_tRmYSL8V2tHiG0.crl (hash: wW4Bw5P++MDSJDauPbNHy4nbflbx4ajjU1W4XFD9YvY=) 2: 0484BF6EF76311EC93951455C4F9AE02.roa (hash: ycFGkMxe7h4Ku30iu/P421qHyOaZ/lm2w5Y03BcYNz8=) 3: 3F7E8DCAA45C11EC845FEA36C4F9AE02.roa (hash: DbGKbMecwcykqDAfU21+x6Kvm9Z6g5WTzg4SdqXRisc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.crl rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xD0ZxtOXESoq_tRmYSL8V2tHiG0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:34:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 991 (0x3df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CA5C, serialNumber=C43D19C6D397112A2AFED4666122FC576B47886D Validity Not Before: Nov 3 00:34:18 2025 GMT Not After : Nov 10 00:34:18 2025 GMT Subject: CN=6907f88b-e6f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:4d:26:c8:11:fb:07:92:d1:83:76:1a:d6:e5: 20:8b:2e:3b:8d:b1:92:ea:84:b1:c6:7c:eb:4b:c9: 28:41:6f:f6:3a:52:6b:63:b0:9c:5f:a4:85:45:0e: 9f:56:72:29:a5:83:36:63:25:3c:8c:26:85:61:b1: f1:1e:6d:b0:99:cc:f8:7e:c5:52:d3:3b:b7:b5:43: f7:06:c5:2f:b1:2f:66:a9:ab:45:2c:75:52:4e:62: 21:ba:9c:d8:b8:ed:3f:41:58:19:61:8d:c5:d6:90: 00:d2:1f:ad:ad:ba:27:46:c0:54:c8:08:bd:3e:62: 1c:b8:72:15:c8:62:c5:c1:26:a0:0a:d7:20:23:f6: fd:a8:8c:f6:23:14:5d:c9:a8:07:5d:d9:3d:f1:6c: 36:6e:00:1a:2c:90:f2:ca:8b:79:35:50:cd:67:b0: 16:cf:de:eb:63:ff:f9:36:f9:1f:d9:14:bd:1d:aa: 9c:b8:3e:1d:05:76:eb:c0:39:50:6d:0a:5c:d2:e4: 43:58:c7:ae:92:da:c3:27:06:20:91:db:61:a9:47: 7f:81:c1:ac:4c:5a:11:a8:8e:9c:43:b4:b6:0f:b8: 7e:d7:03:18:79:1c:52:3b:3f:c3:82:ce:32:ea:6a: ed:70:54:0f:6d:5b:20:63:d8:4b:31:da:e1:e9:55: dd:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:90:19:5D:72:41:93:EE:B2:F7:59:A7:65:2C:82:A2:2E:9D:BE:A7 X509v3 Authority Key Identifier: keyid:C4:3D:19:C6:D3:97:11:2A:2A:FE:D4:66:61:22:FC:57:6B:47:88:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xD0ZxtOXESoq_tRmYSL8V2tHiG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CA5C/6510E310A45911ECA87FD80DC4F9AE02/xD0ZxtOXESoq_tRmYSL8V2tHiG0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:1a:4f:d1:72:e5:50:08:e6:c5:4f:e5:cd:b4:58:c4:cb:60: af:77:ba:95:b4:e6:5c:77:07:cb:27:da:52:d3:a3:b6:96:9e: 97:de:6c:eb:78:a9:f7:1d:66:18:7e:2d:1e:1e:91:ea:c7:74: 24:42:d9:6d:45:c0:e8:6e:b8:07:5d:7c:26:89:4c:ec:d1:ee: 61:3b:5b:6d:10:3f:60:bb:1a:27:21:f5:d7:8a:c6:6f:0d:49: 2e:25:be:36:7c:76:79:db:ba:45:f9:ee:69:c4:c0:3d:ee:53: 0a:7b:b9:b5:fe:f8:af:52:4c:f2:87:d9:54:72:ca:1a:94:d9: 30:5c:6d:e0:0a:e6:3a:22:dc:24:95:b9:f3:6d:48:0b:42:75: 17:9b:98:2c:b2:e9:14:89:71:bf:b8:a5:57:4f:00:ca:12:97: 52:5e:1f:34:38:d9:37:e3:15:08:91:a1:62:ba:b2:68:6f:94: 2e:e4:78:b6:7b:92:1c:c1:2f:37:a3:87:55:7c:8b:bc:23:3b: fe:f8:48:65:ce:3d:d2:5c:ea:2a:39:c1:62:22:9f:13:bc:5d: bb:02:05:17:d9:1e:83:fc:e9:86:79:a1:12:03:63:63:2a:e9: 34:5a:f4:b8:e4:84:e2:e4:c7:be:d7:38:77:35:ce:59:53:07: ff:aa:99:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENBNUMxMTAvBgNVBAUTKEM0M0QxOUM2RDM5NzExMkEyQUZFRDQ2NjYxMjJGQzU3 NkI0Nzg4NkQwHhcNMjUxMTAzMDAzNDE4WhcNMjUxMTEwMDAzNDE4WjAYMRYwFAYD VQQDEw02OTA3Zjg4Yi1lNmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtU0myBH7B5LRg3Ya1uUgiy47jbGS6oSxxnzrS8koQW/2OlJrY7CcX6SFRQ6f VnIppYM2YyU8jCaFYbHxHm2wmcz4fsVS0zu3tUP3BsUvsS9mqatFLHVSTmIhupzY uO0/QVgZYY3F1pAA0h+trbonRsBUyAi9PmIcuHIVyGLFwSagCtcgI/b9qIz2IxRd yagHXdk98Ww2bgAaLJDyyot5NVDNZ7AWz97rY//5Nvkf2RS9HaqcuD4dBXbrwDlQ bQpc0uRDWMeuktrDJwYgkdthqUd/gcGsTFoRqI6cQ7S2D7h+1wMYeRxSOz/Dgs4y 6mrtcFQPbVsgY9hLMdrh6VXd9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAKQGV1y QZPusvdZp2UsgqIunb6nMB8GA1UdIwQYMBaAFMQ9GcbTlxEqKv7UZmEi/FdrR4ht MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0E1Qy82NTEwRTMxMEE0 NTkxMUVDQTg3RkQ4MERDNEY5QUUwMi94RDBaeHRPWEVTb3FfdFJtWVNMOFYydEhp RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hEMFp4dE9YRVNvcV90Um1ZU0w4VjJ0SGlHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0E1Qy82NTEwRTMxMEE0NTkxMUVDQTg3RkQ4MERDNEY5QUUwMi94RDBaeHRPWEVT b3FfdFJtWVNMOFYydEhpRzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQGk/RcuVQCObFT+XNtFjEy2Cvd7qVtOZcdwfLJ9pS06O2lp6X3mzr eKn3HWYYfi0eHpHqx3QkQtltRcDobrgHXXwmiUzs0e5hO1ttED9guxonIfXXisZv DUkuJb42fHZ527pF+e5pxMA97lMKe7m1/vivUkzyh9lUcsoalNkwXG3gCuY6Itwk lbnzbUgLQnUXm5gssukUiXG/uKVXTwDKEpdSXh80ONk34xUIkaFiurJob5Qu5Hi2 e5IcwS83o4dVfIu8Izv++Ehlzj3SXOoqOcFiIp8TvF27AgUX2R6D/OmGeaESA2Nj Kuk0WvS45ITi5Me+1zh3Nc5ZUwf/qpnr -----END CERTIFICATE-----Generated at Tue Nov 4 16:31:00 2025 by rpki-client