$ rpki-client -vvf rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft File: XiM50eqvU0mhOKR5fagtDrTfqew.mft (raw, json) Hash identifier: yApS370UfMV/+j8ZQUY1xpdR1kgf7qq/ZSvRE0dh9vU= Subject key identifier: A1:62:0E:C5:52:DF:34:77:A2:DB:29:09:22:94:76:4E:F2:2A:DF:A3 Authority key identifier: 5E:23:39:D1:EA:AF:53:49:A1:38:A4:79:7D:A8:2D:0E:B4:DF:A9:EC Certificate issuer: /CN=A918CFAD/serialNumber=5E2339D1EAAF5349A138A4797DA82D0EB4DFA9EC Certificate serial: 012E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft Manifest number: 012C Signing time: Wed 05 Nov 2025 04:44:41 +0000 Manifest this update: Wed 05 Nov 2025 04:44:40 +0000 Manifest next update: Wed 12 Nov 2025 04:44:40 +0000 Files and hashes: 1: XiM50eqvU0mhOKR5fagtDrTfqew.crl (hash: TzfZOmnOmEtr436nYR+YdYpoTvbts8m0ryWY2OXravA=) 2: D161B1F0EA0411EE98A86A13C4F9AE02.roa (hash: +NOhwE6m6lpwH5XuFy8HqU1ULWBp+YrGh21v4UoRt+M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.crl rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:44:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 302 (0x12e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CFAD, serialNumber=5E2339D1EAAF5349A138A4797DA82D0EB4DFA9EC Validity Not Before: Nov 5 04:44:40 2025 GMT Not After : Nov 12 04:44:40 2025 GMT Subject: CN=690ad638-2b3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:16:c2:21:01:75:5f:2a:b9:ec:8f:41:a9:06: 34:96:63:8a:d7:9d:81:5a:0e:cd:5b:02:ee:76:39: e7:92:5a:d0:f0:eb:23:05:de:fd:49:c3:52:57:0d: ea:9a:63:03:be:20:b1:fe:81:45:f8:90:9d:16:c1: b5:3c:17:5a:80:e9:af:b3:e7:5f:fd:95:23:84:e9: 2a:75:84:27:d5:da:58:3a:dd:4d:c2:7d:c8:bf:b6: f2:d7:de:51:0c:7f:9a:89:56:24:f0:57:21:5e:47: 61:2e:72:6e:f7:05:8a:10:10:3a:64:e0:87:71:9e: 48:e9:c0:4d:68:84:f0:7a:f9:dd:a5:16:ac:8a:69: d2:f1:9a:31:3f:82:b7:f2:c6:e2:ed:25:94:03:d7: 02:b3:5e:8f:5e:6e:42:01:0f:30:78:a0:7d:b6:72: b6:79:63:c0:55:dd:5d:1e:24:fb:41:b0:df:c9:d9: d2:2f:0e:a2:06:74:4b:53:02:e3:21:2a:eb:cb:4f: 6b:3b:0c:4c:43:63:0a:d4:f1:6f:be:d8:94:94:f7: da:e3:71:0a:e0:56:f0:0a:43:63:e7:f0:67:bc:e7: 8b:85:6d:8a:7c:31:67:94:70:75:36:0a:78:b0:f5: bb:d4:54:02:15:b7:a6:15:de:5b:a0:2a:04:92:06: bb:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:62:0E:C5:52:DF:34:77:A2:DB:29:09:22:94:76:4E:F2:2A:DF:A3 X509v3 Authority Key Identifier: keyid:5E:23:39:D1:EA:AF:53:49:A1:38:A4:79:7D:A8:2D:0E:B4:DF:A9:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XiM50eqvU0mhOKR5fagtDrTfqew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CFAD/4C900F1CEA0411EE92D10611C4F9AE02/XiM50eqvU0mhOKR5fagtDrTfqew.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:11:6c:56:31:c3:9e:cd:af:6b:2f:e7:3c:05:62:e0:cd:9b: 81:7a:13:a4:6f:a4:34:54:e4:3e:ea:2f:6d:ba:db:b3:dd:e4: dd:5f:09:c3:e9:dd:cb:ae:c7:85:83:4d:90:36:04:ee:35:75: 36:5d:ad:d9:d5:e7:6a:c5:53:6c:24:14:cd:cf:33:eb:2e:9b: 91:91:65:fd:83:4a:5b:55:59:f1:8a:39:cc:28:32:23:cb:61: 01:05:92:8c:25:75:96:fe:ad:f3:c1:d4:27:57:b7:2b:40:31: 15:69:03:62:54:06:23:05:1f:cc:57:05:3a:ff:24:fe:40:ad: bf:dd:5c:02:7c:40:33:5c:f3:68:21:59:9a:92:51:e0:73:82: 3d:9f:65:9a:c3:3b:fd:46:73:70:22:cc:6a:8b:a9:6e:5e:a6: 15:eb:9e:14:00:5d:d8:95:0a:0c:b9:26:95:48:27:34:38:0c: 44:a9:44:c3:70:25:90:b8:c5:34:e4:d7:62:5a:ec:37:62:e6: 4b:7f:07:b6:b5:20:fd:9a:98:08:a5:5b:7d:05:ce:3f:21:8e: ee:84:7a:b5:bb:5c:cc:de:e9:81:91:59:a5:11:92:e5:b3:65: 17:f4:33:88:be:a2:24:0c:8b:d2:84:62:f0:5c:0a:eb:47:9a: c1:68:9a:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENGQUQxMTAvBgNVBAUTKDVFMjMzOUQxRUFBRjUzNDlBMTM4QTQ3OTdEQTgyRDBF QjRERkE5RUMwHhcNMjUxMTA1MDQ0NDQwWhcNMjUxMTEyMDQ0NDQwWjAYMRYwFAYD VQQDEw02OTBhZDYzOC0yYjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1hbCIQF1Xyq57I9BqQY0lmOK152BWg7NWwLudjnnklrQ8OsjBd79ScNSVw3q mmMDviCx/oFF+JCdFsG1PBdagOmvs+df/ZUjhOkqdYQn1dpYOt1Nwn3Iv7by195R DH+aiVYk8FchXkdhLnJu9wWKEBA6ZOCHcZ5I6cBNaITwevndpRasimnS8ZoxP4K3 8sbi7SWUA9cCs16PXm5CAQ8weKB9tnK2eWPAVd1dHiT7QbDfydnSLw6iBnRLUwLj ISrry09rOwxMQ2MK1PFvvtiUlPfa43EK4FbwCkNj5/BnvOeLhW2KfDFnlHB1Ngp4 sPW71FQCFbemFd5boCoEkga7iQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKFiDsVS 3zR3otspCSKUdk7yKt+jMB8GA1UdIwQYMBaAFF4jOdHqr1NJoTikeX2oLQ6036ns MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0ZBRC80QzkwMEYxQ0VB MDQxMUVFOTJEMTA2MTFDNEY5QUUwMi9YaU01MGVxdlUwbWhPS1I1ZmFndERyVGZx ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1hpTTUwZXF2VTBtaE9LUjVmYWd0RHJUZnFldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Q0ZBRC80QzkwMEYxQ0VBMDQxMUVFOTJEMTA2MTFDNEY5QUUwMi9YaU01MGVxdlUw bWhPS1I1ZmFndERyVGZxZXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjEWxWMcOeza9rL+c8BWLgzZuBehOkb6Q0VOQ+6i9tutuz3eTdXwnD 6d3LrseFg02QNgTuNXU2Xa3Z1edqxVNsJBTNzzPrLpuRkWX9g0pbVVnxijnMKDIj y2EBBZKMJXWW/q3zwdQnV7crQDEVaQNiVAYjBR/MVwU6/yT+QK2/3VwCfEAzXPNo IVmaklHgc4I9n2Wawzv9RnNwIsxqi6luXqYV654UAF3YlQoMuSaVSCc0OAxEqUTD cCWQuMU05NdiWuw3YuZLfwe2tSD9mpgIpVt9Bc4/IY7uhHq1u1zM3umBkVmlEZLl s2UX9DOIvqIkDIvShGLwXArrR5rBaJpa -----END CERTIFICATE-----Generated at Wed Nov 5 15:40:42 2025 by rpki-client