$ rpki-client -vvf rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft File: XAq0JfK0I14cgVaDvWyOi3uAtyc.mft (raw, json) Hash identifier: h6ilw8881YhwS56MtF3mxviMhtoSDdPyJPtAd1s6tEE= Subject key identifier: A3:E2:DF:CF:AF:AA:F7:49:79:CC:D4:88:D9:2F:95:79:EB:D0:D9:13 Authority key identifier: 5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 Certificate issuer: /CN=A917F8A9/serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Certificate serial: 09D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft Manifest number: 09BD Signing time: Sun 02 Nov 2025 19:58:16 +0000 Manifest this update: Sun 02 Nov 2025 19:58:16 +0000 Manifest next update: Sun 09 Nov 2025 19:58:16 +0000 Files and hashes: 1: XAq0JfK0I14cgVaDvWyOi3uAtyc.crl (hash: mbOece7Lx93qIlHHjIJO0ivdtJXcqD492ISbfnZ3NIE=) 2: 83DC30E0D0DB11EA9336962FC4F9AE02.roa (hash: 1xpqucRPj2sGGfUlw/hjqGcWw2RAvQEPEvj1/o7DLww=) 3: 0774A2C894F211EAB30E7682C4F9AE02.roa (hash: Qe2k4Rmt8cYvrQ25NjhCj6HgTDQ2LTBczeZdX5NMi1Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:58:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2516 (0x9d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F8A9, serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Validity Not Before: Nov 2 19:58:16 2025 GMT Not After : Nov 9 19:58:16 2025 GMT Subject: CN=6907b7d8-2c5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:83:02:ca:36:ea:0f:b9:c3:fd:56:05:8c:88: 95:72:df:2a:b1:46:c5:e5:6f:c3:66:da:b6:5f:eb: 61:0a:4f:35:ec:2a:e4:81:b5:d7:5c:c0:0a:7c:f0: 7d:71:76:84:05:8d:83:e9:2a:9b:d7:a3:e1:9e:e1: a1:08:67:05:2f:d5:0b:ed:b2:a1:27:d0:42:26:23: df:c2:8b:c8:59:51:14:cd:72:fa:8c:ae:82:9b:0a: 67:47:aa:5f:e5:c2:ac:74:21:d2:18:01:ca:67:cb: bd:eb:32:f5:d9:6c:d5:2f:78:ec:c3:61:38:6b:08: 06:19:02:1d:10:90:d4:2e:62:f3:eb:ca:30:11:c7: 19:4d:2c:9e:c4:ce:9e:4f:7c:1a:f6:16:1d:71:cf: f9:8e:73:77:54:ba:14:dd:e1:98:c2:4b:b9:c1:6c: 52:45:da:bb:fe:bb:76:4e:fe:79:89:70:72:fb:25: 5e:56:b8:fa:f8:07:0d:f7:7e:76:16:a8:b0:11:32: d4:90:a2:02:24:98:2a:0a:e0:47:48:2f:9d:5e:e4: f4:77:9c:8f:6b:80:24:33:2d:e1:fd:43:76:a6:bc: 66:5c:a0:1f:1e:45:5f:e8:e1:b6:9e:ec:9f:12:e7: e6:6a:9c:9e:b3:12:3d:89:5b:12:49:b3:a7:42:73: 47:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:E2:DF:CF:AF:AA:F7:49:79:CC:D4:88:D9:2F:95:79:EB:D0:D9:13 X509v3 Authority Key Identifier: keyid:5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:13:fc:7d:ec:b1:21:01:74:9c:c0:a7:c8:a6:d0:d4:1f:60: e6:0f:22:74:25:04:19:f8:38:96:2f:8c:26:45:68:7e:9e:81: ed:8c:7d:60:8d:c2:b6:44:93:3e:74:90:ee:31:7c:23:1f:39: 4b:65:ca:7c:70:30:6a:34:94:1c:11:d8:d2:0a:0b:43:6d:d2: a2:ee:e6:20:7f:0e:c4:b9:b6:ff:78:cb:33:45:27:4f:ab:89: d0:7b:56:4d:8d:93:66:32:93:db:be:e4:e0:81:c4:47:92:08: 4b:dc:88:bb:d3:f4:3c:8c:eb:ca:22:4e:2f:70:9f:d3:0a:e4: 9b:38:0f:29:ae:fd:0a:89:be:a5:e3:43:34:30:12:f8:9f:85: ae:58:e1:8a:cb:5b:fb:5c:0e:ab:1a:52:15:3a:20:8e:77:0d: 72:86:95:04:2c:36:d6:3b:b5:2e:28:15:66:ea:97:60:ab:6f: 8d:bd:69:d9:c5:d0:2a:1a:23:96:db:60:c8:23:91:94:3d:c2: f1:1b:e6:e8:d5:63:ab:a1:87:07:20:78:27:e4:17:af:16:b4: 96:e0:1a:6b:45:3c:f5:48:59:47:b4:e9:4f:67:68:57:24:cb: 45:7b:19:a0:29:23:dc:b6:23:83:00:8b:5a:54:b4:2b:92:e1: 26:c6:5e:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCdQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y4QTkxMTAvBgNVBAUTKDVDMEFCNDI1RjJCNDIzNUUxQzgxNTY4M0JENkM4RThC N0I4MEI3MjcwHhcNMjUxMTAyMTk1ODE2WhcNMjUxMTA5MTk1ODE2WjAYMRYwFAYD VQQDEw02OTA3YjdkOC0yYzVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyoMCyjbqD7nD/VYFjIiVct8qsUbF5W/DZtq2X+thCk817CrkgbXXXMAKfPB9 cXaEBY2D6Sqb16PhnuGhCGcFL9UL7bKhJ9BCJiPfwovIWVEUzXL6jK6CmwpnR6pf 5cKsdCHSGAHKZ8u96zL12WzVL3jsw2E4awgGGQIdEJDULmLz68owEccZTSyexM6e T3wa9hYdcc/5jnN3VLoU3eGYwku5wWxSRdq7/rt2Tv55iXBy+yVeVrj6+AcN9352 FqiwETLUkKICJJgqCuBHSC+dXuT0d5yPa4AkMy3h/UN2prxmXKAfHkVf6OG2nuyf EufmapyesxI9iVsSSbOnQnNH7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKPi38+v qvdJeczUiNkvlXnr0NkTMB8GA1UdIwQYMBaAFFwKtCXytCNeHIFWg71sjot7gLcn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjhBOS8yQUEwNDMzMDk0 RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkxNGNnVmFEdld5T2kzdUF0 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hBcTBKZkswSTE0Y2dWYUR2V3lPaTN1QXR5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjhBOS8yQUEwNDMzMDk0RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkx NGNnVmFEdld5T2kzdUF0eWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwE/x97LEhAXScwKfIptDUH2DmDyJ0JQQZ+DiWL4wmRWh+noHtjH1g jcK2RJM+dJDuMXwjHzlLZcp8cDBqNJQcEdjSCgtDbdKi7uYgfw7Eubb/eMszRSdP q4nQe1ZNjZNmMpPbvuTggcRHkghL3Ii70/Q8jOvKIk4vcJ/TCuSbOA8prv0Kib6l 40M0MBL4n4WuWOGKy1v7XA6rGlIVOiCOdw1yhpUELDbWO7UuKBVm6pdgq2+NvWnZ xdAqGiOW22DII5GUPcLxG+bo1WOroYcHIHgn5BevFrSW4BprRTz1SFlHtOlPZ2hX JMtFexmgKSPctiODAItaVLQrkuEmxl5e -----END CERTIFICATE-----Generated at Tue Nov 4 08:19:52 2025 by rpki-client