$ rpki-client -vvf rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.mft File: XsX7M07lK5AJy5I8aTvSDwR4oUQ.mft (raw, json) Hash identifier: q4RohIL+zUiyEaaLnVaQSvjhWaBDt95dcobOOjJ11Ak= Subject key identifier: 7A:44:2E:C9:99:D1:1B:00:66:F3:C7:74:CD:44:B4:EB:75:55:84:20 Authority key identifier: 5E:C5:FB:33:4E:E5:2B:90:09:CB:92:3C:69:3B:D2:0F:04:78:A1:44 Certificate issuer: /CN=A918EF87/serialNumber=5EC5FB334EE52B9009CB923C693BD20F0478A144 Certificate serial: 54 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XsX7M07lK5AJy5I8aTvSDwR4oUQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.mft Manifest number: 53 Signing time: Mon 03 Nov 2025 07:13:06 +0000 Manifest this update: Mon 03 Nov 2025 07:13:06 +0000 Manifest next update: Mon 10 Nov 2025 07:13:06 +0000 Files and hashes: 1: XsX7M07lK5AJy5I8aTvSDwR4oUQ.crl (hash: Ss4XJ+1RGRz/PUtw+dbwO/2MdKkjGCnpUdjDqb9Rr0k=) 2: C053613E38B311F08DB63209C4F9AE02.roa (hash: uKfaLXcOCNJdE2XGkLLuO2/nisMUjVXsuFOacDhWkTw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.crl rsync://rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XsX7M07lK5AJy5I8aTvSDwR4oUQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:13:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EF87, serialNumber=5EC5FB334EE52B9009CB923C693BD20F0478A144 Validity Not Before: Nov 3 07:13:06 2025 GMT Not After : Nov 10 07:13:06 2025 GMT Subject: CN=69085602-021f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:23:9f:3a:41:ee:df:2d:64:64:7b:ab:ae:3c: 2e:1b:89:0c:c0:b4:5e:78:e8:86:f2:ae:67:27:1f: c1:13:66:57:a1:f0:48:26:93:79:9b:0a:e9:81:e6: a4:65:24:ca:4f:b1:cf:9a:04:d7:58:11:28:ac:7a: ac:92:2d:8b:4e:1f:9d:d0:50:ad:60:f8:1e:6d:80: 1c:57:4b:a0:8d:9e:a0:6d:81:27:d7:6a:ad:72:0b: f9:a9:79:1c:c6:2b:88:2b:ad:20:85:19:1c:9d:50: 08:ab:29:ed:aa:e1:47:0b:10:23:e9:19:0a:57:f2: eb:f2:e1:23:fd:9c:3a:8b:14:71:a3:fb:1c:4c:7e: 85:d5:31:82:1a:39:af:50:d6:42:f1:ec:9c:54:d2: 9c:ba:ea:44:da:52:1a:66:76:59:e6:91:a0:8d:92: c5:de:64:9c:08:12:ea:87:91:ca:f5:04:6f:35:8a: ec:a3:ed:01:8c:cb:4b:46:b6:11:df:60:20:a1:0a: 23:d0:87:df:b3:8a:25:b7:5e:ee:a9:50:c5:13:45: 08:a8:5e:c2:b4:06:b5:aa:36:27:af:9a:a1:a8:1d: 66:43:22:c3:c1:74:18:3a:2e:74:76:85:01:7f:db: e0:42:db:e6:92:f5:3e:37:06:ad:1c:13:63:8b:15: bf:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:44:2E:C9:99:D1:1B:00:66:F3:C7:74:CD:44:B4:EB:75:55:84:20 X509v3 Authority Key Identifier: keyid:5E:C5:FB:33:4E:E5:2B:90:09:CB:92:3C:69:3B:D2:0F:04:78:A1:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XsX7M07lK5AJy5I8aTvSDwR4oUQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EF87/3400802238B311F091418086C4F9AE02/XsX7M07lK5AJy5I8aTvSDwR4oUQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:f6:4d:05:7c:47:24:16:65:6b:cb:f3:f3:32:d4:95:8c:81: 38:c6:a7:b1:4a:d7:a8:ed:c6:d6:6e:3b:e4:63:f6:89:3b:ca: 15:5e:39:8c:9c:8d:55:9a:35:d7:6e:61:2d:5e:65:11:34:9a: 56:4a:0c:df:be:eb:ae:9d:41:f0:0d:74:6c:40:01:0a:fe:83: 65:00:93:b2:db:9a:70:f3:99:93:3c:e2:00:6b:3a:78:c7:86: 3c:71:d4:33:eb:1e:ff:62:c0:49:bb:72:8b:46:41:ec:ef:64: a0:6f:73:2c:0a:58:7d:b0:61:e9:53:d5:78:5a:48:8b:67:e1: 86:58:5b:35:c5:65:b9:79:d7:50:0a:50:e6:a4:5d:c9:f7:f4: ca:c7:4b:85:ab:b4:85:84:6f:41:72:f8:f2:e6:2b:c7:61:93: c2:9d:be:b0:24:62:3e:3c:4a:c1:d3:b8:6b:86:8b:b1:2a:8b: a5:33:92:c0:d8:c5:d0:13:a6:7e:2f:87:45:e9:eb:a1:91:f7: 2c:84:d8:bb:99:21:8b:1b:29:bd:f9:ce:d5:9a:b5:23:0b:01: ce:e1:b8:f1:87:87:f2:06:f8:6f:93:6e:5e:98:9d:d8:62:43: 76:e5:b9:93:34:4e:f9:00:57:a1:6f:dd:37:e9:fe:56:7e:a8: 3e:e3:f6:b7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RUY4NzExMC8GA1UEBRMoNUVDNUZCMzM0RUU1MkI5MDA5Q0I5MjNDNjkzQkQyMEYw NDc4QTE0NDAeFw0yNTExMDMwNzEzMDZaFw0yNTExMTAwNzEzMDZaMBgxFjAUBgNV BAMTDTY5MDg1NjAyLTAyMWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCeI586Qe7fLWRke6uuPC4biQzAtF546IbyrmcnH8ETZleh8Egmk3mbCumB5qRl JMpPsc+aBNdYESiseqySLYtOH53QUK1g+B5tgBxXS6CNnqBtgSfXaq1yC/mpeRzG K4grrSCFGRydUAirKe2q4UcLECPpGQpX8uvy4SP9nDqLFHGj+xxMfoXVMYIaOa9Q 1kLx7JxU0py66kTaUhpmdlnmkaCNksXeZJwIEuqHkcr1BG81iuyj7QGMy0tGthHf YCChCiPQh9+ziiW3Xu6pUMUTRQioXsK0BrWqNievmqGoHWZDIsPBdBg6LnR2hQF/ 2+BC2+aS9T43Bq0cE2OLFb9vAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUekQuyZnR GwBm88d0zUS063VVhCAwHwYDVR0jBBgwFoAUXsX7M07lK5AJy5I8aTvSDwR4oUQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFRjg3LzM0MDA4MDIyMzhC MzExRjA5MTQxODA4NkM0RjlBRTAyL1hzWDdNMDdsSzVBSnk1SThhVHZTRHdSNG9V US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWHNYN00wN2xLNUFKeTVJOGFUdlNEd1I0b1VRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThF Rjg3LzM0MDA4MDIyMzhCMzExRjA5MTQxODA4NkM0RjlBRTAyL1hzWDdNMDdsSzVB Snk1SThhVHZTRHdSNG9VUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAP2TQV8RyQWZWvL8/My1JWMgTjGp7FK16jtxtZuO+Rj9ok7yhVeOYyc jVWaNdduYS1eZRE0mlZKDN++666dQfANdGxAAQr+g2UAk7LbmnDzmZM84gBrOnjH hjxx1DPrHv9iwEm7cotGQezvZKBvcywKWH2wYelT1XhaSItn4YZYWzXFZbl511AK UOakXcn39MrHS4WrtIWEb0Fy+PLmK8dhk8KdvrAkYj48SsHTuGuGi7Eqi6UzksDY xdATpn4vh0Xp66GR9yyE2LuZIYsbKb35ztWatSMLAc7huPGHh/IG+G+Tbl6Yndhi Q3bluZM0TvkAV6Fv3Tfp/lZ+qD7j9rc= -----END CERTIFICATE-----Generated at Tue Nov 4 19:04:06 2025 by rpki-client