$ rpki-client -vvf rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft File: XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft (raw, json) Hash identifier: BoIs59TqoE4jBiDLpWQyqKiSDDHNRrtSx/3iBFAA1Bs= Subject key identifier: 43:DE:13:78:B1:E6:D8:EB:D3:02:A5:2D:79:A9:C2:FF:33:18:68:3C Authority key identifier: 5C:2C:58:27:C4:E8:99:BC:2A:50:34:06:C5:CB:09:B1:8E:13:3F:C6 Certificate issuer: /CN=A9153F9E/serialNumber=5C2C5827C4E899BC2A503406C5CB09B18E133FC6 Certificate serial: 0721 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCxYJ8TombwqUDQGxcsJsY4TP8Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft Manifest number: 0721 Signing time: Sun 02 Nov 2025 21:45:09 +0000 Manifest this update: Sun 02 Nov 2025 21:45:09 +0000 Manifest next update: Sun 09 Nov 2025 21:45:09 +0000 Files and hashes: 1: XCxYJ8TombwqUDQGxcsJsY4TP8Y.crl (hash: HgzdpoyUQdAn0oY1JTF/Muy4ElhGjw2HZ+4OwBnMZds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.crl rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCxYJ8TombwqUDQGxcsJsY4TP8Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:45:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1825 (0x721) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153F9E, serialNumber=5C2C5827C4E899BC2A503406C5CB09B18E133FC6 Validity Not Before: Nov 2 21:45:09 2025 GMT Not After : Nov 9 21:45:09 2025 GMT Subject: CN=6907d0e5-28de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:44:d8:ae:52:d1:14:82:38:76:6e:3b:b7:88: 1c:65:cd:05:bb:78:8c:90:88:64:d3:89:3f:a8:b3: 62:ef:cd:d9:7c:09:a0:43:34:99:45:cc:21:13:51: 76:db:75:01:1d:02:74:0d:c9:b6:9f:85:d2:98:53: f3:ab:87:e4:a3:e1:b6:27:a1:bc:a9:14:47:4c:fa: b7:38:d5:6c:4c:2d:3a:51:a3:75:09:0e:ce:0a:61: d0:88:ea:33:13:06:e1:a7:9a:62:21:b0:e6:db:79: 0b:57:c4:ba:1a:3b:d6:cc:f3:d0:a0:41:36:a6:fd: 54:87:14:af:81:ef:b2:2e:2f:c9:06:5c:e6:ee:84: 3a:ec:a4:91:91:c1:f7:09:80:6f:65:43:b4:cd:84: 5f:c1:d0:1f:a1:af:b3:11:70:82:75:80:b2:8f:7f: 22:63:79:16:f8:1f:05:b6:72:1d:8f:40:35:3f:11: fd:5e:2d:8d:fb:d9:72:bd:74:8c:5c:ab:b2:c2:e6: c5:6c:9d:6d:99:da:16:ce:52:e0:bc:b5:cc:a4:6a: 1b:5b:d3:d8:9e:a8:86:65:2c:0f:55:c2:b3:39:be: d8:eb:8f:24:d5:8d:b0:33:b9:d2:da:07:4c:15:93: 86:ab:b1:3e:56:77:fb:85:96:6c:03:44:22:82:43: fd:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:DE:13:78:B1:E6:D8:EB:D3:02:A5:2D:79:A9:C2:FF:33:18:68:3C X509v3 Authority Key Identifier: keyid:5C:2C:58:27:C4:E8:99:BC:2A:50:34:06:C5:CB:09:B1:8E:13:3F:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCxYJ8TombwqUDQGxcsJsY4TP8Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:99:9c:ca:0c:84:03:be:ca:67:53:88:31:4d:20:0f:25:f0: 29:c3:bb:a4:53:92:ad:89:eb:0b:19:78:ea:5d:3d:e5:59:59: a0:e4:b7:a8:e0:ee:90:69:ca:d0:c7:59:5c:b3:7d:24:73:b3: e4:fb:59:71:6c:26:08:d9:1f:18:59:ef:04:03:2b:89:aa:44: d5:e1:ce:18:f3:b9:c6:73:75:4d:71:ab:0c:54:06:f5:7c:6a: 75:5d:04:07:60:d8:74:5e:a5:64:01:85:18:b0:7b:50:29:f8: d5:2c:3d:f9:01:47:93:47:5e:5a:67:70:90:e4:84:3a:d0:db: 3c:43:3c:c4:35:29:87:eb:0b:c2:75:1e:9d:04:31:c6:f8:7a: 8e:f8:c9:80:db:d0:95:5d:da:ce:82:fb:22:58:af:26:99:dc: 8c:d2:7b:08:bd:02:41:38:55:f9:6e:21:3d:14:83:c1:b2:18: 14:e3:a5:31:32:97:3d:1b:8c:06:c6:f3:f5:b0:74:3d:d2:cb: f8:12:bd:21:ce:15:84:9b:12:e2:41:55:6e:08:ef:af:6e:91: ff:9e:25:3f:fa:cd:08:bd:ab:32:f3:56:00:54:1e:3f:91:64: 03:3d:5a:68:f1:3d:8a:47:f5:0b:64:9a:a4:ea:6d:00:12:df: 79:c2:a3:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICByEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNGOUUxMTAvBgNVBAUTKDVDMkM1ODI3QzRFODk5QkMyQTUwMzQwNkM1Q0IwOUIx OEUxMzNGQzYwHhcNMjUxMTAyMjE0NTA5WhcNMjUxMTA5MjE0NTA5WjAYMRYwFAYD VQQDEw02OTA3ZDBlNS0yOGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm0TYrlLRFII4dm47t4gcZc0Fu3iMkIhk04k/qLNi783ZfAmgQzSZRcwhE1F2 23UBHQJ0Dcm2n4XSmFPzq4fko+G2J6G8qRRHTPq3ONVsTC06UaN1CQ7OCmHQiOoz Ewbhp5piIbDm23kLV8S6GjvWzPPQoEE2pv1UhxSvge+yLi/JBlzm7oQ67KSRkcH3 CYBvZUO0zYRfwdAfoa+zEXCCdYCyj38iY3kW+B8FtnIdj0A1PxH9Xi2N+9lyvXSM XKuywubFbJ1tmdoWzlLgvLXMpGobW9PYnqiGZSwPVcKzOb7Y648k1Y2wM7nS2gdM FZOGq7E+Vnf7hZZsA0QigkP95wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEPeE3ix 5tjr0wKlLXmpwv8zGGg8MB8GA1UdIwQYMBaAFFwsWCfE6Jm8KlA0BsXLCbGOEz/G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0Y5RS8wMEQ4Qzg4QzUz QUYxMUVCOTkzMDA5MTZDNEY5QUUwMi9YQ3hZSjhUb21id3FVRFFHeGNzSnNZNFRQ OFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hDeFlKOFRvbWJ3cVVEUUd4Y3NKc1k0VFA4WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0Y5RS8wMEQ4Qzg4QzUzQUYxMUVCOTkzMDA5MTZDNEY5QUUwMi9YQ3hZSjhUb21i d3FVRFFHeGNzSnNZNFRQOFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMmZzKDIQDvspnU4gxTSAPJfApw7ukU5KtiesLGXjqXT3lWVmg5Leo 4O6QacrQx1lcs30kc7Pk+1lxbCYI2R8YWe8EAyuJqkTV4c4Y87nGc3VNcasMVAb1 fGp1XQQHYNh0XqVkAYUYsHtQKfjVLD35AUeTR15aZ3CQ5IQ60Ns8QzzENSmH6wvC dR6dBDHG+HqO+MmA29CVXdrOgvsiWK8mmdyM0nsIvQJBOFX5biE9FIPBshgU46Ux Mpc9G4wGxvP1sHQ90sv4Er0hzhWEmxLiQVVuCO+vbpH/niU/+s0Ivasy81YAVB4/ kWQDPVpo8T2KR/ULZJqk6m0AEt95wqNh -----END CERTIFICATE-----Generated at Tue Nov 4 19:04:13 2025 by rpki-client