$ rpki-client -vvf rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft File: XLz7z59AY6eYAiqPHiafvf6jb_g.mft (raw, json) Hash identifier: Fw8gfAGTLr2iNfzboUQFrXqrRy2RsEQ45mdr/y4B+vc= Subject key identifier: AE:35:E7:0A:65:FB:E1:25:A1:37:3C:DA:9E:27:3D:BC:64:E3:BA:AF Authority key identifier: 5C:BC:FB:CF:9F:40:63:A7:98:02:2A:8F:1E:26:9F:BD:FE:A3:6F:F8 Certificate issuer: /CN=A917F4F2/serialNumber=5CBCFBCF9F4063A798022A8F1E269FBDFEA36FF8 Certificate serial: 033D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft Manifest number: 0339 Signing time: Wed 05 Nov 2025 01:07:45 +0000 Manifest this update: Wed 05 Nov 2025 01:07:44 +0000 Manifest next update: Wed 12 Nov 2025 01:07:44 +0000 Files and hashes: 1: XLz7z59AY6eYAiqPHiafvf6jb_g.crl (hash: YCNImzqPpz1Os8dqJqOLL9DemWqWsEiAtN2CFx/DxhM=) 2: CA455C5CE0B311ECBC9BEA63C4F9AE02.roa (hash: +ZSBEXRcgClmiO74ln8lB46inGp0vsN6jKOzaxEdX6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.crl rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:07:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 829 (0x33d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F4F2, serialNumber=5CBCFBCF9F4063A798022A8F1E269FBDFEA36FF8 Validity Not Before: Nov 5 01:07:44 2025 GMT Not After : Nov 12 01:07:44 2025 GMT Subject: CN=690aa361-72fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:34:2a:cb:60:ea:67:b7:4b:9b:4f:a4:07:99: 0c:55:22:21:f6:03:22:17:b5:5b:e8:b5:5d:a2:a1: b3:81:1e:34:eb:a8:1f:7b:02:fe:ae:08:48:c5:5a: 4b:2f:dc:4d:7d:5b:2a:74:67:9b:2b:5f:ad:d8:ac: f9:e8:95:6a:23:53:c3:c9:79:9e:3c:ea:de:5b:bd: e1:80:84:d7:0c:8b:46:82:ab:7e:2c:97:df:9b:ff: f8:06:56:31:dc:15:b8:cc:e0:d6:d9:41:83:47:de: 64:96:90:ae:6a:99:56:91:fa:1d:b7:8c:f5:7b:b6: 7a:db:8c:67:7b:b5:dc:53:3f:44:79:08:4a:a9:c0: 7e:e4:45:d7:89:94:eb:9a:72:f1:24:68:6a:00:5b: 2a:3b:64:fa:e5:03:8f:51:37:1c:e6:dd:ae:9e:f3: cf:40:b4:a6:05:11:3a:21:3d:1f:d1:ba:02:d5:c5: fd:98:e6:77:c4:35:6e:2c:8d:17:7e:24:2c:28:62: c6:0c:03:fc:f2:df:61:94:19:a6:b1:21:7c:21:9b: 7d:c1:be:7b:aa:fd:96:46:2a:56:60:15:ae:69:8a: 7c:e7:5a:0a:72:fe:e4:da:09:55:85:30:42:69:c2: 08:9e:c8:27:d4:29:d3:57:97:89:42:f9:11:33:d0: 38:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:35:E7:0A:65:FB:E1:25:A1:37:3C:DA:9E:27:3D:BC:64:E3:BA:AF X509v3 Authority Key Identifier: keyid:5C:BC:FB:CF:9F:40:63:A7:98:02:2A:8F:1E:26:9F:BD:FE:A3:6F:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XLz7z59AY6eYAiqPHiafvf6jb_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F4F2/34D55432E0AF11EC82902F6DC4F9AE02/XLz7z59AY6eYAiqPHiafvf6jb_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:7c:c6:6c:1c:56:c8:c8:d5:4c:3c:f3:03:63:0b:9b:bd:5a: 2e:9c:ba:1c:14:91:eb:33:5e:41:fb:dd:82:33:4b:91:15:fe: d8:19:a7:ce:f7:79:32:46:32:e9:d6:51:82:33:16:c5:fe:2a: c1:6e:e0:38:d1:da:63:da:63:9e:ac:13:24:5e:15:4b:d1:04: 3e:99:0c:05:2e:fc:39:aa:aa:fc:27:f7:e0:6e:64:11:02:3f: b6:c1:8f:69:42:11:b7:1c:d3:ce:72:0c:d9:ad:13:23:a2:6e: e9:79:01:d9:41:e4:b5:67:86:02:97:69:f3:4c:53:54:3a:d2: ec:26:8f:1a:67:9d:93:bc:16:03:2f:6f:bf:2f:22:c9:3a:45: 32:16:7c:b9:6b:59:c2:cb:cd:7e:dd:8d:5c:e1:55:f8:2d:9e: 76:19:e7:63:61:4e:e9:12:eb:61:23:3a:50:f0:5e:14:91:f0: 31:1c:d6:f7:57:4d:46:70:aa:6b:00:98:8c:19:65:f8:52:de: 68:68:77:fa:8d:7e:6f:0e:26:5f:ab:25:37:11:3c:2a:67:9c: cc:b4:f1:20:6b:46:42:d7:1b:d3:39:9b:ce:32:46:fd:45:12: 8e:f9:f9:d4:0e:51:f8:ab:c1:9a:c8:fa:d0:21:96:76:ab:0d: 94:5b:3e:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAz0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y0RjIxMTAvBgNVBAUTKDVDQkNGQkNGOUY0MDYzQTc5ODAyMkE4RjFFMjY5RkJE RkVBMzZGRjgwHhcNMjUxMTA1MDEwNzQ0WhcNMjUxMTEyMDEwNzQ0WjAYMRYwFAYD VQQDEw02OTBhYTM2MS03MmZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3zQqy2DqZ7dLm0+kB5kMVSIh9gMiF7Vb6LVdoqGzgR4066gfewL+rghIxVpL L9xNfVsqdGebK1+t2Kz56JVqI1PDyXmePOreW73hgITXDItGgqt+LJffm//4BlYx 3BW4zODW2UGDR95klpCuaplWkfodt4z1e7Z624xne7XcUz9EeQhKqcB+5EXXiZTr mnLxJGhqAFsqO2T65QOPUTcc5t2unvPPQLSmBRE6IT0f0boC1cX9mOZ3xDVuLI0X fiQsKGLGDAP88t9hlBmmsSF8IZt9wb57qv2WRipWYBWuaYp851oKcv7k2glVhTBC acIInsgn1CnTV5eJQvkRM9A4CwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK415wpl ++EloTc82p4nPbxk47qvMB8GA1UdIwQYMBaAFFy8+8+fQGOnmAIqjx4mn73+o2/4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjRGMi8zNEQ1NTQzMkUw QUYxMUVDODI5MDJGNkRDNEY5QUUwMi9YTHo3ejU5QVk2ZVlBaXFQSGlhZnZmNmpi X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hMejd6NTlBWTZlWUFpcVBIaWFmdmY2amJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjRGMi8zNEQ1NTQzMkUwQUYxMUVDODI5MDJGNkRDNEY5QUUwMi9YTHo3ejU5QVk2 ZVlBaXFQSGlhZnZmNmpiX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrfMZsHFbIyNVMPPMDYwubvVounLocFJHrM15B+92CM0uRFf7YGafO 93kyRjLp1lGCMxbF/irBbuA40dpj2mOerBMkXhVL0QQ+mQwFLvw5qqr8J/fgbmQR Aj+2wY9pQhG3HNPOcgzZrRMjom7peQHZQeS1Z4YCl2nzTFNUOtLsJo8aZ52TvBYD L2+/LyLJOkUyFny5a1nCy81+3Y1c4VX4LZ52GedjYU7pEuthIzpQ8F4UkfAxHNb3 V01GcKprAJiMGWX4Ut5oaHf6jX5vDiZfqyU3ETwqZ5zMtPEga0ZC1xvTOZvOMkb9 RRKO+fnUDlH4q8GayPrQIZZ2qw2UWz5H -----END CERTIFICATE-----Generated at Wed Nov 5 13:31:59 2025 by rpki-client