$ rpki-client -vvf rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft File: XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft (raw, json) Hash identifier: PBwgC3GlhG193+z0u5+VHXsVgWj9V6VuGxj3VH+pAiU= Subject key identifier: 97:D6:3E:0B:CD:8A:00:86:8A:5A:9A:7F:4A:9E:72:BB:27:1E:98:39 Authority key identifier: 5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A Certificate issuer: /CN=A91524AF/serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Certificate serial: 04DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft Manifest number: 04C3 Signing time: Wed 05 Nov 2025 00:01:56 +0000 Manifest this update: Wed 05 Nov 2025 00:01:55 +0000 Manifest next update: Wed 12 Nov 2025 00:01:55 +0000 Files and hashes: 1: XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl (hash: Rq/6qbdrJcOeR8yKEx7B1FsoV+/kihcTe9arYlfFG/w=) 2: BEB34436FE3211EFAA1D9A4EC4F9AE02.roa (hash: yFDpBLHsX38bp2JcWh75H9eK/2yaSCGu63FKHuPPshA=) 3: 87840F3AFBD111EFB4804F27C4F9AE02.roa (hash: 4ehbMo37a6ch/Exe1ear/YvsEg7kjNmAG4ZYn9dhULQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:01:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1242 (0x4da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91524AF, serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Validity Not Before: Nov 5 00:01:55 2025 GMT Not After : Nov 12 00:01:55 2025 GMT Subject: CN=690a93f4-f336 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:13:cc:3c:bd:d9:b1:bd:df:83:fe:60:9e:e1: f2:7b:04:62:20:3a:fd:ad:66:39:e9:a7:aa:31:1b: ac:1e:9c:fd:b0:e5:e6:23:35:ed:ce:aa:66:d5:c0: 2c:85:e0:d3:96:0d:9d:ca:cc:da:8f:e6:59:6e:30: 3e:f3:3b:bf:dd:0e:45:9a:bf:76:52:53:10:94:c7: fc:46:94:68:4b:dc:71:78:53:16:dc:30:6a:7e:c8: 0e:b3:30:51:eb:de:8f:ae:e2:cf:a8:02:73:ac:b1: b5:97:6e:25:ac:09:5d:c5:90:03:c1:d9:bb:b1:74: 1c:0a:d7:9b:16:5c:32:93:87:a1:9f:dc:75:ed:d5: 3d:d2:5f:bb:bf:13:51:9a:fd:c2:54:64:fb:e4:6a: d9:80:31:ab:08:c8:40:2f:31:3e:b3:12:b3:bf:72: 45:52:68:10:70:40:62:e4:6f:13:4e:6b:e8:19:b5: 02:da:a1:df:df:0c:71:eb:6f:20:03:f5:ae:61:14: fc:9d:1f:0a:45:5c:e6:f3:0b:4f:3d:99:78:72:d5: 29:3d:ab:d7:21:16:58:5e:e7:6f:dc:4f:ba:5d:d8: 7c:02:c2:7b:72:fa:3f:28:a6:b7:6f:0d:ec:79:70: 3a:9c:f4:66:4d:23:f0:6d:7a:29:45:2b:6b:ad:2a: 78:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:D6:3E:0B:CD:8A:00:86:8A:5A:9A:7F:4A:9E:72:BB:27:1E:98:39 X509v3 Authority Key Identifier: keyid:5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:26:8f:24:0f:ff:61:68:f8:c7:c6:1f:d8:d7:a5:ae:cd:0a: 09:85:1d:29:82:54:cb:72:a8:e0:5e:1a:1d:ff:86:b6:38:96: 4e:86:63:a4:2e:12:11:cc:d3:be:3e:ec:e6:5a:c8:64:91:9e: a8:83:50:89:57:73:a7:a3:9f:eb:01:c8:76:07:95:ac:bd:a2: 3f:c4:38:43:11:5c:d9:6e:90:a0:25:2b:4a:df:a6:3b:91:63: 47:1b:89:5c:ef:04:9f:58:10:e0:58:07:3b:c4:b5:c7:c8:c2: 01:44:09:d5:e9:86:1e:64:a4:5e:30:5c:1f:58:69:e0:7a:c9: 87:f2:9f:37:4a:6b:12:d5:ec:bc:57:30:14:db:2d:c7:f1:f6: f1:c6:25:0e:e1:2c:b0:4e:25:41:f9:4f:7f:b2:60:d7:7c:af: d8:4a:fe:7d:13:ee:2c:c5:4d:88:ff:a3:8d:b4:fe:21:a3:f3: 29:b8:6d:ec:01:80:7d:d9:1d:78:1b:7b:a8:5c:5e:ba:6a:b0: cc:c7:a9:33:45:ac:e5:6c:0a:de:e4:05:7a:02:81:c4:65:98: 9d:28:d2:3a:67:14:70:0a:b4:bd:3d:c5:4d:4c:12:ee:b7:b1: 07:08:96:b6:fc:75:74:86:2a:c3:ec:e2:e9:32:4e:00:48:d9: 32:ab:44:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI0QUYxMTAvBgNVBAUTKDVDMzE1REFGQzUzQTgyRkRENjJDNzIwMDVDNzY0NDMz M0JDMDI5N0EwHhcNMjUxMTA1MDAwMTU1WhcNMjUxMTEyMDAwMTU1WjAYMRYwFAYD VQQDEw02OTBhOTNmNC1mMzM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnxPMPL3Zsb3fg/5gnuHyewRiIDr9rWY56aeqMRusHpz9sOXmIzXtzqpm1cAs heDTlg2dyszaj+ZZbjA+8zu/3Q5Fmr92UlMQlMf8RpRoS9xxeFMW3DBqfsgOszBR 696PruLPqAJzrLG1l24lrAldxZADwdm7sXQcCtebFlwyk4ehn9x17dU90l+7vxNR mv3CVGT75GrZgDGrCMhALzE+sxKzv3JFUmgQcEBi5G8TTmvoGbUC2qHf3wxx628g A/WuYRT8nR8KRVzm8wtPPZl4ctUpPavXIRZYXudv3E+6Xdh8AsJ7cvo/KKa3bw3s eXA6nPRmTSPwbXopRStrrSp43QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJfWPgvN igCGilqaf0qecrsnHpg5MB8GA1UdIwQYMBaAFFwxXa/FOoL91ixyAFx2RDM7wCl6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjRBRi83NkM3RjBGNDUx RjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2M1dMSElBWEhaRU16dkFL WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hERmRyOFU2Z3YzV0xISUFYSFpFTXp2QUtYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjRBRi83NkM3RjBGNDUxRjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2 M1dMSElBWEhaRU16dkFLWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkJo8kD/9haPjHxh/Y16WuzQoJhR0pglTLcqjgXhod/4a2OJZOhmOk LhIRzNO+PuzmWshkkZ6og1CJV3Ono5/rAch2B5WsvaI/xDhDEVzZbpCgJStK36Y7 kWNHG4lc7wSfWBDgWAc7xLXHyMIBRAnV6YYeZKReMFwfWGngesmH8p83SmsS1ey8 VzAU2y3H8fbxxiUO4SywTiVB+U9/smDXfK/YSv59E+4sxU2I/6ONtP4ho/MpuG3s AYB92R14G3uoXF66arDMx6kzRazlbAre5AV6AoHEZZidKNI6ZxRwCrS9PcVNTBLu t7EHCJa2/HV0hirD7OLpMk4ASNkyq0Tk -----END CERTIFICATE-----Generated at Wed Nov 5 10:01:33 2025 by rpki-client