$ rpki-client -vvf rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft File: Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft (raw, json) Hash identifier: sdpazgafnJGckYy46r8N+/xx2pS6M7h/LiPJtsca4pc= Subject key identifier: 8F:30:FC:87:4D:CF:C4:1D:37:78:AA:10:02:1C:BF:91:69:87:B4:D7 Authority key identifier: 5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC Certificate issuer: /CN=A9158E8E/serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Certificate serial: 03FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft Manifest number: 03DB Signing time: Wed 05 Nov 2025 00:45:09 +0000 Manifest this update: Wed 05 Nov 2025 00:45:09 +0000 Manifest next update: Wed 12 Nov 2025 00:45:09 +0000 Files and hashes: 1: Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl (hash: Qe3bDi1SE0htKfvK957T5VkcY2Y+/zf+2Xso/0hUW/g=) 2: 7B6F6276E03811EFAC3C5652C4F9AE02.roa (hash: melteXR1cRharD5muHTsf70+edihxivjKNNQzAZNpLE=) 3: 79C2D638E03811EFAC3C5652C4F9AE02.roa (hash: pIl/ybOSWeNJuXyu7vI+RsUvtpL0KXP/t0jEbgQtU7I=) 4: 7AA94F3CE03811EFAC3C5652C4F9AE02.roa (hash: ImUvDtTwcm68idWdwXB7tEHKc5rG51UP9vCEMxdSyRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:45:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1023 (0x3ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158E8E, serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Validity Not Before: Nov 5 00:45:09 2025 GMT Not After : Nov 12 00:45:09 2025 GMT Subject: CN=690a9e15-3217 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:af:d3:9a:80:80:4e:8b:e2:01:b0:10:68:6c: 10:1b:14:09:a7:2c:66:c3:b4:8f:5b:0b:04:e8:b7: fb:7b:dd:a3:24:fc:50:16:77:26:86:30:08:a5:b7: 33:85:84:9a:c0:94:70:9d:ca:07:f6:d7:7a:fa:7b: ca:4c:7a:2a:fe:26:fc:12:f0:ea:3a:07:9a:5f:12: ea:e0:c1:cc:57:3b:aa:ab:bf:e8:5e:72:61:c9:5d: 9f:77:37:21:e2:13:06:6b:2f:b3:93:dc:11:b2:8c: 7a:24:3c:ba:27:17:65:f1:e0:35:5d:b7:3d:c9:d1: 32:e8:99:e8:a6:66:c2:bb:e8:28:fd:3c:9e:1c:68: b2:78:ed:21:4d:ec:2d:9c:14:19:c7:a2:4b:07:09: 95:46:fa:73:07:96:5b:73:eb:ef:d8:56:1e:86:4d: da:d6:f9:3f:ee:56:f1:23:5f:2a:e7:46:4c:e7:3a: ca:e8:66:e5:e4:7f:08:e6:d9:03:cf:fe:eb:10:11: e9:a4:21:e0:f5:31:a4:37:78:d2:5f:52:44:6b:26: f1:99:ec:b1:e0:b8:f6:1e:10:dd:48:4e:a5:32:73: 2f:a9:b3:d7:c8:39:ba:48:fe:7b:c5:ba:20:4e:0f: 62:1c:97:52:2a:da:c1:00:6d:a6:5a:8b:3b:2f:3c: d9:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:30:FC:87:4D:CF:C4:1D:37:78:AA:10:02:1C:BF:91:69:87:B4:D7 X509v3 Authority Key Identifier: keyid:5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:2e:7f:e4:7b:c8:48:63:14:67:86:67:58:40:e5:f2:c3:c7: bb:03:12:51:1c:17:d9:e5:f1:23:81:70:79:f1:6f:d2:11:75: 57:da:1f:13:46:4f:dd:53:84:ef:97:01:6d:0e:46:f5:39:a3: 7d:e0:77:f2:63:29:73:70:d9:aa:c3:49:0b:31:f0:16:7b:e9: c2:e1:aa:de:27:9a:13:e8:02:e0:e8:51:d8:0d:64:27:5a:3c: 61:0c:47:d6:31:f9:36:70:44:f3:5d:f9:5f:a9:6c:b5:c6:7b: 6b:c9:ad:a4:0c:5e:88:62:09:c9:7c:76:55:99:e1:55:03:59: 1f:bc:de:45:76:5f:95:5c:63:42:9b:5d:1b:6b:d4:40:8f:16: 5a:8c:e7:ca:a5:52:ba:d6:5f:d3:31:0e:4b:e3:ac:d0:97:ab: f0:e0:12:74:df:5e:33:a7:6d:cc:96:ec:6e:73:d0:9b:b2:15: 37:a7:12:b8:57:1d:86:32:8c:3c:23:3d:19:37:f4:4f:8d:dd: 9c:d3:49:60:58:fe:c8:7c:51:f0:98:ca:1f:d4:70:f9:16:ea: 10:0a:76:3c:24:83:7a:bc:c6:4c:a3:7a:42:44:7a:23:e1:2f: 68:3d:41:38:21:51:6b:92:e6:0a:4a:ef:8f:59:60:b7:d2:aa: 86:56:8b:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFOEUxMTAvBgNVBAUTKDVGMkU1RTYyOTMyQkI1MEE4NUZGMkY5QTVGMzFCMkJB REQ1RjM0QUMwHhcNMjUxMTA1MDA0NTA5WhcNMjUxMTEyMDA0NTA5WjAYMRYwFAYD VQQDEw02OTBhOWUxNS0zMjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq6/TmoCAToviAbAQaGwQGxQJpyxmw7SPWwsE6Lf7e92jJPxQFncmhjAIpbcz hYSawJRwncoH9td6+nvKTHoq/ib8EvDqOgeaXxLq4MHMVzuqq7/oXnJhyV2fdzch 4hMGay+zk9wRsox6JDy6Jxdl8eA1Xbc9ydEy6JnopmbCu+go/TyeHGiyeO0hTewt nBQZx6JLBwmVRvpzB5Zbc+vv2FYehk3a1vk/7lbxI18q50ZM5zrK6Gbl5H8I5tkD z/7rEBHppCHg9TGkN3jSX1JEaybxmeyx4Lj2HhDdSE6lMnMvqbPXyDm6SP57xbog Tg9iHJdSKtrBAG2mWos7LzzZGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI8w/IdN z8QdN3iqEAIcv5Fph7TXMB8GA1UdIwQYMBaAFF8uXmKTK7UKhf8vml8xsrrdXzSs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEU4RS8wNEZCQjhGMEFF MEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRRcUZfeS1hWHpHeXV0MWZO S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h5NWVZcE1ydFFxRl95LWFYekd5dXQxZk5Ldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEU4RS8wNEZCQjhGMEFFMEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRR cUZfeS1hWHpHeXV0MWZOS3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBLn/ke8hIYxRnhmdYQOXyw8e7AxJRHBfZ5fEjgXB58W/SEXVX2h8T Rk/dU4TvlwFtDkb1OaN94HfyYylzcNmqw0kLMfAWe+nC4areJ5oT6ALg6FHYDWQn WjxhDEfWMfk2cETzXflfqWy1xntrya2kDF6IYgnJfHZVmeFVA1kfvN5Fdl+VXGNC m10ba9RAjxZajOfKpVK61l/TMQ5L46zQl6vw4BJ0314zp23Mluxuc9CbshU3pxK4 Vx2GMow8Iz0ZN/RPjd2c00lgWP7IfFHwmMof1HD5FuoQCnY8JIN6vMZMo3pCRHoj 4S9oPUE4IVFrkuYKSu+PWWC30qqGVovH -----END CERTIFICATE-----Generated at Wed Nov 5 15:40:25 2025 by rpki-client