$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft File: XSeFtU0WPtAepUGLz6NPG3RWtxM.mft (raw, json) Hash identifier: gICNAozxW7gEhTJ0yBadc3nPca9X0NSaTk/QpwUfCOk= Subject key identifier: E7:E1:BF:90:BA:9A:9B:5F:A1:29:87:49:40:19:F7:A5:1F:84:A5:2B Authority key identifier: 5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 Certificate issuer: /CN=A9167CC5/serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Certificate serial: 04E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft Manifest number: 04CB Signing time: Sun 02 Nov 2025 23:49:31 +0000 Manifest this update: Sun 02 Nov 2025 23:49:31 +0000 Manifest next update: Sun 09 Nov 2025 23:49:31 +0000 Files and hashes: 1: XSeFtU0WPtAepUGLz6NPG3RWtxM.crl (hash: vrWOrIsJlBq7q90n+XQCaWYaylpEQKoTS2nPfNBTy8M=) 2: 6337963E4C3D11ECB5FF844FC4F9AE02.roa (hash: 3KTOI3tChJ1EuHHkZIxY0+a6WeVb+6nR6Jk3wwfwMHU=) 3: ACE844F047AA11ECA0F05026C4F9AE02.roa (hash: xweR0My4YSEWr28C8V1U/OMEuVwH/Ly7NJUba0hYsCg=) 4: 1F77EFA44C4011EC952D5A23C4F9AE02.roa (hash: c5WQ+yUKORBq8d/u8k3An8QJMDIFK4yVXiwWYWbL5qc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:49:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1251 (0x4e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CC5, serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Validity Not Before: Nov 2 23:49:31 2025 GMT Not After : Nov 9 23:49:31 2025 GMT Subject: CN=6907ee0b-6cb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:3c:a6:bb:c7:44:6f:de:24:b9:19:d2:6c:f8: 64:ff:ea:66:69:e2:3f:fe:6d:95:87:f5:72:b2:14: 27:69:bb:b9:25:94:9e:30:32:a4:45:89:1c:82:e2: 0d:b6:61:35:01:2f:b8:3c:51:32:bc:23:39:b1:e3: f9:da:7e:d7:3a:be:56:3a:20:bd:7a:41:ce:13:d6: dc:12:60:f5:52:e0:68:e6:1a:a2:6f:7b:ff:f8:87: 00:98:26:71:0d:33:53:de:a2:a0:35:44:50:eb:0c: 07:1d:6a:8a:ca:67:4c:fc:f9:7d:ed:44:85:b1:1c: 36:dc:18:47:f7:45:98:f3:45:a1:70:de:52:2e:02: 0c:9b:b6:93:9f:c9:3f:b2:8a:8f:eb:c4:7f:97:05: 02:38:5e:91:c2:df:7a:12:eb:49:1e:f1:06:1b:0f: 6b:0d:07:40:ab:82:4b:34:8b:4a:5c:70:af:7e:ff: 5b:ab:53:7f:8b:a2:68:c7:b3:c7:32:28:48:1c:28: cf:0d:4b:b1:1f:a6:ed:65:74:16:04:34:00:97:df: 08:19:d1:de:c8:df:af:c3:5c:5a:8f:df:d5:58:46: 61:b7:e8:e3:60:f2:19:17:38:50:97:72:ce:10:fd: 5d:de:eb:73:fa:d2:6f:eb:2d:56:be:f8:bf:f8:46: 9c:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:E1:BF:90:BA:9A:9B:5F:A1:29:87:49:40:19:F7:A5:1F:84:A5:2B X509v3 Authority Key Identifier: keyid:5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:e4:35:59:85:1e:f8:87:a8:59:9a:7f:62:c3:00:5b:e5:0f: 47:8a:6f:5e:b1:3b:3a:60:07:0b:d2:25:9d:14:b9:8f:74:94: e0:d8:11:8d:a8:f9:04:10:6c:05:e0:6f:c0:8f:5c:07:aa:3b: 89:80:5e:45:49:88:0e:da:3c:1f:04:90:e9:91:83:31:e3:67: fb:d3:8d:2c:a2:7d:97:03:64:d0:17:c2:5d:50:81:08:0d:27: bd:40:c9:56:82:58:7e:03:e4:b6:f5:27:9f:4a:d3:a2:a4:d3: 8f:1e:d3:71:74:07:66:94:38:89:51:5e:58:e7:e3:6d:cf:83: e8:ee:a0:f4:52:ca:8e:8a:26:d8:f6:55:ef:82:03:73:42:7d: 1d:a8:67:66:e0:90:88:a1:4d:b9:0b:b4:2a:62:5d:a6:f3:5b: b6:c4:00:f5:a7:ec:e9:91:63:34:e7:6e:91:3f:5f:89:4c:3e: 39:a1:98:51:ba:d3:a1:35:6d:7f:e9:1b:0e:96:43:61:3f:8d: de:48:6a:72:8d:e1:47:47:ec:0c:39:cb:27:3a:d1:88:66:05: be:e1:f2:6a:cd:65:03:78:8b:c0:36:25:87:d9:8b:ee:d0:7d: 78:a2:ee:c4:40:3d:d7:6b:8a:12:ee:94:9d:35:40:9f:6c:65: cf:c9:02:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQzUxMTAvBgNVBAUTKDVEMjc4NUI1NEQxNjNFRDAxRUE1NDE4QkNGQTM0RjFC NzQ1NkI3MTMwHhcNMjUxMTAyMjM0OTMxWhcNMjUxMTA5MjM0OTMxWjAYMRYwFAYD VQQDEw02OTA3ZWUwYi02Y2I5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtzymu8dEb94kuRnSbPhk/+pmaeI//m2Vh/VyshQnabu5JZSeMDKkRYkcguIN tmE1AS+4PFEyvCM5seP52n7XOr5WOiC9ekHOE9bcEmD1UuBo5hqib3v/+IcAmCZx DTNT3qKgNURQ6wwHHWqKymdM/Pl97USFsRw23BhH90WY80WhcN5SLgIMm7aTn8k/ soqP68R/lwUCOF6Rwt96EutJHvEGGw9rDQdAq4JLNItKXHCvfv9bq1N/i6Jox7PH MihIHCjPDUuxH6btZXQWBDQAl98IGdHeyN+vw1xaj9/VWEZht+jjYPIZFzhQl3LO EP1d3utz+tJv6y1Wvvi/+EacMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOfhv5C6 mptfoSmHSUAZ96UfhKUrMB8GA1UdIwQYMBaAFF0nhbVNFj7QHqVBi8+jTxt0VrcT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NDNS8yQUM0RDMzRTQ2 QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0QWVwVUdMejZOUEczUld0 eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTZUZ0VTBXUHRBZXBVR0x6Nk5QRzNSV3R4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NDNS8yQUM0RDMzRTQ2QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0 QWVwVUdMejZOUEczUld0eE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCE5DVZhR74h6hZmn9iwwBb5Q9Him9esTs6YAcL0iWdFLmPdJTg2BGN qPkEEGwF4G/Aj1wHqjuJgF5FSYgO2jwfBJDpkYMx42f7040son2XA2TQF8JdUIEI DSe9QMlWglh+A+S29SefStOipNOPHtNxdAdmlDiJUV5Y5+Ntz4Po7qD0UsqOiibY 9lXvggNzQn0dqGdm4JCIoU25C7QqYl2m81u2xAD1p+zpkWM0526RP1+JTD45oZhR utOhNW1/6RsOlkNhP43eSGpyjeFHR+wMOcsnOtGIZgW+4fJqzWUDeIvANiWH2Yvu 0H14ou7EQD3Xa4oS7pSdNUCfbGXPyQK2 -----END CERTIFICATE-----Generated at Tue Nov 4 20:21:52 2025 by rpki-client