$ rpki-client -vvf rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft File: XZRtT0edN7zhcAywut1RosPfYg8.mft (raw, json) Hash identifier: qQfd4qQN1bK2R2hNivZjfkSpZ9bamVRK2pZniDHuEQQ= Subject key identifier: 68:D7:31:45:E5:7D:4F:40:96:62:AC:B8:DC:EA:1D:F6:82:2D:77:6A Authority key identifier: 5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F Certificate issuer: /CN=A9152787/serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Certificate serial: C9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft Manifest number: C6 Signing time: Wed 05 Nov 2025 06:02:53 +0000 Manifest this update: Wed 05 Nov 2025 06:02:52 +0000 Manifest next update: Wed 12 Nov 2025 06:02:52 +0000 Files and hashes: 1: XZRtT0edN7zhcAywut1RosPfYg8.crl (hash: hpz8xQHvF9EbS+Y6KB6yvTnO2vp56GrE0k4CzdvYUd4=) 2: CB24F37C033711F0B76A8520C4F9AE02.roa (hash: 98s3ds+kGQSvl0ncwBjphBprg+/d5JhkpC63UpEc2Nk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:02:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152787, serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Validity Not Before: Nov 5 06:02:52 2025 GMT Not After : Nov 12 06:02:52 2025 GMT Subject: CN=690ae88d-b15a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:7c:01:5e:e4:7e:0a:5a:57:07:4f:5f:6c:38: 25:9e:63:79:f4:6c:39:d7:df:24:6c:24:6f:fb:5c: fe:ee:9c:f5:ca:e5:51:86:1e:d9:b7:39:c1:c5:cc: 32:ba:57:b3:63:98:86:7e:40:5c:15:38:e2:31:da: c5:ff:b8:e2:8c:5c:03:68:61:59:34:31:41:10:5d: 3d:40:a8:b5:65:7c:ea:ae:83:bc:c1:0c:c4:ce:5a: b1:13:32:3f:a3:ce:d7:75:5d:b5:b3:2b:55:19:00: 54:2b:1a:e7:ce:47:f6:5a:6e:3d:e9:16:6e:89:fd: fb:0c:ba:7e:5e:28:e8:54:3c:9c:49:a9:cc:79:14: 51:04:f3:37:ac:41:de:01:95:67:3c:34:e5:21:ca: b0:e9:ac:7e:b4:86:bf:7f:cf:b9:b1:96:13:97:e8: dd:7f:a2:35:15:53:76:6d:07:9f:ae:53:8f:af:09: c1:14:a6:49:e7:68:e4:1c:e4:e9:e4:08:4a:e0:38: d0:b1:f9:84:be:c6:25:ef:7b:5b:af:b7:b2:57:f7: 2a:8c:44:a3:86:6d:a6:d9:b1:2b:fd:be:68:c1:59: 7c:54:40:03:7a:cd:90:a9:e4:23:5f:0b:83:a8:4f: f8:06:21:d1:b9:b6:8f:5a:c0:ed:db:93:8f:44:e8: 4a:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:D7:31:45:E5:7D:4F:40:96:62:AC:B8:DC:EA:1D:F6:82:2D:77:6A X509v3 Authority Key Identifier: keyid:5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:b2:20:32:44:0b:d7:6a:96:ff:b0:7b:5d:d8:72:a3:44:b8: e3:e8:ed:2b:d9:04:7b:f2:61:da:06:95:e1:96:a3:de:12:8b: a0:63:ce:3e:eb:ad:fe:52:e4:97:ae:de:df:22:68:14:29:59: b1:e8:13:1b:db:dd:c8:7e:6b:45:b3:5d:ab:42:7b:df:aa:d1: f9:38:c9:c9:70:2f:75:15:5f:0c:13:da:0e:6a:6d:a8:27:ac: b9:04:93:db:37:ae:8a:46:57:97:58:96:a0:1b:9d:63:ba:1c: aa:e6:7a:5b:ce:fa:fe:bb:66:ae:8b:5d:29:26:09:25:86:3f: 78:49:2f:8e:97:9e:9a:d6:d1:51:cd:3d:0d:8a:e2:c4:4f:d7: 30:86:1d:6e:9b:74:fe:ee:f3:a8:77:8c:ee:36:95:aa:a8:5c: c1:5b:03:0b:67:e9:b2:eb:df:1f:1b:67:52:cb:30:c4:dc:44: d2:8b:c2:55:bc:10:3c:17:93:84:cc:7d:dd:8d:8c:59:38:21: d6:34:b8:a3:cd:33:bb:b4:86:00:28:54:e9:83:6c:10:3b:a1: e2:24:97:ed:40:04:19:83:84:2c:8b:48:cb:a4:bf:39:14:e1: e7:93:88:58:1a:08:fa:0c:46:98:7a:58:fc:1f:c3:ed:f9:b9: b0:d2:e2:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI3ODcxMTAvBgNVBAUTKDVEOTQ2RDRGNDc5RDM3QkNFMTcwMENCMEJBREQ1MUEy QzNERjYyMEYwHhcNMjUxMTA1MDYwMjUyWhcNMjUxMTEyMDYwMjUyWjAYMRYwFAYD VQQDEw02OTBhZTg4ZC1iMTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyXwBXuR+ClpXB09fbDglnmN59Gw5198kbCRv+1z+7pz1yuVRhh7ZtznBxcwy ulezY5iGfkBcFTjiMdrF/7jijFwDaGFZNDFBEF09QKi1ZXzqroO8wQzEzlqxEzI/ o87XdV21sytVGQBUKxrnzkf2Wm496RZuif37DLp+XijoVDycSanMeRRRBPM3rEHe AZVnPDTlIcqw6ax+tIa/f8+5sZYTl+jdf6I1FVN2bQefrlOPrwnBFKZJ52jkHOTp 5AhK4DjQsfmEvsYl73tbr7eyV/cqjESjhm2m2bEr/b5owVl8VEADes2QqeQjXwuD qE/4BiHRubaPWsDt25OPROhK7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGjXMUXl fU9AlmKsuNzqHfaCLXdqMB8GA1UdIwQYMBaAFF2UbU9HnTe84XAMsLrdUaLD32IP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Mjc4Ny8yMjg2NTYyQThG NzkxMUVGOTJBQzc4MUVDNEY5QUUwMi9YWlJ0VDBlZE43emhjQXl3dXQxUm9zUGZZ ZzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1haUnRUMGVkTjd6aGNBeXd1dDFSb3NQZllnOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Mjc4Ny8yMjg2NTYyQThGNzkxMUVGOTJBQzc4MUVDNEY5QUUwMi9YWlJ0VDBlZE43 emhjQXl3dXQxUm9zUGZZZzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSsiAyRAvXapb/sHtd2HKjRLjj6O0r2QR78mHaBpXhlqPeEougY84+ 663+UuSXrt7fImgUKVmx6BMb293IfmtFs12rQnvfqtH5OMnJcC91FV8ME9oOam2o J6y5BJPbN66KRleXWJagG51juhyq5npbzvr+u2aui10pJgklhj94SS+Ol56a1tFR zT0NiuLET9cwhh1um3T+7vOod4zuNpWqqFzBWwMLZ+my698fG2dSyzDE3ETSi8JV vBA8F5OEzH3djYxZOCHWNLijzTO7tIYAKFTpg2wQO6HiJJftQAQZg4Qsi0jLpL85 FOHnk4hYGgj6DEaYelj8H8Pt+bmw0uJU -----END CERTIFICATE-----Generated at Wed Nov 5 13:07:21 2025 by rpki-client