$ rpki-client -vvf rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft File: XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft (raw, json) Hash identifier: p/MlH8qh3OIKK+ElG8yL86aYskjRV5Nntg33kIdoyDQ= Subject key identifier: 51:C1:94:D2:51:CA:D2:68:A1:B7:70:A6:AC:6B:FA:D8:65:DF:F7:39 Authority key identifier: 5C:17:AF:2E:0A:AF:49:0C:EA:A8:4E:2A:AA:71:48:3D:03:95:F1:E4 Certificate issuer: /CN=A91923A9/serialNumber=5C17AF2E0AAF490CEAA84E2AAA71483D0395F1E4 Certificate serial: 01D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBevLgqvSQzqqE4qqnFIPQOV8eQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft Manifest number: 01CC Signing time: Mon 03 Nov 2025 02:51:51 +0000 Manifest this update: Mon 03 Nov 2025 02:51:50 +0000 Manifest next update: Mon 10 Nov 2025 02:51:50 +0000 Files and hashes: 1: XBevLgqvSQzqqE4qqnFIPQOV8eQ.crl (hash: uosrNI6dInRi2zaVkIxMpFi5glbyAkqfL/oi+HTzItw=) 2: 80F75824FAAD11EDB0C98683C4F9AE02.roa (hash: SO9SbWUjXyJ9Yb5w7Q+6mTlLwT6ktJsJ2PGUdf4nf50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.crl rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBevLgqvSQzqqE4qqnFIPQOV8eQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:51:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 465 (0x1d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91923A9, serialNumber=5C17AF2E0AAF490CEAA84E2AAA71483D0395F1E4 Validity Not Before: Nov 3 02:51:50 2025 GMT Not After : Nov 10 02:51:50 2025 GMT Subject: CN=690818c6-1001 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:54:74:1e:da:8b:c2:da:85:0f:0a:39:8b:89: 04:16:c0:62:e9:dd:7a:23:5b:b4:1d:93:21:ad:0a: 6f:47:56:c5:2b:3f:ff:d3:ad:c7:b0:b0:16:93:97: f5:56:7c:63:9e:03:09:89:cd:70:ed:eb:f8:e0:32: d4:37:67:94:03:c3:09:62:53:b2:fa:9a:77:7e:19: 25:1d:26:89:78:ce:3f:65:b1:1e:fc:ab:1c:28:9f: e5:09:84:bf:a9:ff:f3:a0:d2:db:32:c2:b2:86:9e: a2:a4:17:eb:9c:fc:8c:ac:e6:76:13:3d:c8:55:ef: 60:fa:ab:60:09:23:40:fa:23:82:73:e9:d0:96:bb: ed:b6:07:ba:81:8d:ca:6e:98:d9:36:56:70:53:45: 5a:ac:1b:ae:e0:28:14:b5:60:29:cd:a1:bd:14:c1: f8:f1:ff:61:49:69:cc:80:ad:df:3c:93:14:f8:aa: c8:59:3b:e5:fc:aa:00:87:5f:89:88:b5:db:cd:5f: 28:85:43:c7:c1:c3:11:13:4a:d1:6e:f0:62:a2:e2: 63:cd:95:04:f1:1e:1f:28:5a:02:f6:f5:46:ec:9e: b3:9b:bc:ad:18:12:8d:71:51:0f:26:f0:fe:95:2d: db:cb:c5:a1:0c:b7:04:11:1d:bc:5e:1f:04:bb:27: 60:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:C1:94:D2:51:CA:D2:68:A1:B7:70:A6:AC:6B:FA:D8:65:DF:F7:39 X509v3 Authority Key Identifier: keyid:5C:17:AF:2E:0A:AF:49:0C:EA:A8:4E:2A:AA:71:48:3D:03:95:F1:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBevLgqvSQzqqE4qqnFIPQOV8eQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:62:c5:8c:6c:5f:4c:6e:cf:14:c9:a9:d2:ea:bf:ea:54:3b: 0c:99:df:23:88:24:40:34:d1:9a:e1:4f:a9:c4:c0:4f:03:4e: 87:63:b7:b4:14:5d:c6:65:d8:4a:7f:2c:1c:c2:c2:bb:63:18: 00:c1:7a:2a:d9:e6:55:c7:9d:94:82:31:e8:a3:66:e5:1b:ca: bb:c8:5b:5c:d9:95:64:47:96:1a:2c:98:5b:a0:85:08:90:c4: e9:4b:2e:c5:b9:9d:c7:38:59:b6:a9:27:25:6d:8b:30:73:b3: ac:92:0f:db:9d:f3:81:24:4f:94:c4:ac:b1:55:f3:d9:aa:3d: 15:cf:95:4e:b4:89:64:7a:54:54:6f:1d:ec:1a:2f:1b:29:80: 3c:3e:37:63:81:0d:c0:ce:18:f6:6c:20:d1:bf:9b:56:57:26: 68:d5:ee:6a:3a:08:4d:2b:bd:b2:2b:c5:00:d4:24:a8:59:ea: 10:3c:5e:3e:5a:84:f6:ea:36:4a:56:02:33:ab:1e:47:59:1e: 6b:1b:ff:95:22:0f:84:07:c3:46:9d:e7:f9:c4:d6:8c:ba:9b: fb:26:98:9c:b7:d6:92:12:91:b1:ce:3f:09:d4:4e:43:57:14: 94:57:25:74:1d:b0:74:52:71:f5:62:28:5b:ee:13:95:54:16: 99:d5:7d:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTIzQTkxMTAvBgNVBAUTKDVDMTdBRjJFMEFBRjQ5MENFQUE4NEUyQUFBNzE0ODNE MDM5NUYxRTQwHhcNMjUxMTAzMDI1MTUwWhcNMjUxMTEwMDI1MTUwWjAYMRYwFAYD VQQDEw02OTA4MThjNi0xMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn1R0HtqLwtqFDwo5i4kEFsBi6d16I1u0HZMhrQpvR1bFKz//063HsLAWk5f1 VnxjngMJic1w7ev44DLUN2eUA8MJYlOy+pp3fhklHSaJeM4/ZbEe/KscKJ/lCYS/ qf/zoNLbMsKyhp6ipBfrnPyMrOZ2Ez3IVe9g+qtgCSNA+iOCc+nQlrvttge6gY3K bpjZNlZwU0VarBuu4CgUtWApzaG9FMH48f9hSWnMgK3fPJMU+KrIWTvl/KoAh1+J iLXbzV8ohUPHwcMRE0rRbvBiouJjzZUE8R4fKFoC9vVG7J6zm7ytGBKNcVEPJvD+ lS3by8WhDLcEER28Xh8EuydgmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFHBlNJR ytJoobdwpqxr+thl3/c5MB8GA1UdIwQYMBaAFFwXry4Kr0kM6qhOKqpxSD0DlfHk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MjNBOS9BNjM4NzY4NEZB QTUxMUVEQjJCMjk1N0ZDNEY5QUUwMi9YQmV2TGdxdlNRenFxRTRxcW5GSVBRT1Y4 ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hCZXZMZ3F2U1F6cXFFNHFxbkZJUFFPVjhlUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MjNBOS9BNjM4NzY4NEZBQTUxMUVEQjJCMjk1N0ZDNEY5QUUwMi9YQmV2TGdxdlNR enFxRTRxcW5GSVBRT1Y4ZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByYsWMbF9Mbs8UyanS6r/qVDsMmd8jiCRANNGa4U+pxMBPA06HY7e0 FF3GZdhKfywcwsK7YxgAwXoq2eZVx52UgjHoo2blG8q7yFtc2ZVkR5YaLJhboIUI kMTpSy7FuZ3HOFm2qSclbYswc7Oskg/bnfOBJE+UxKyxVfPZqj0Vz5VOtIlkelRU bx3sGi8bKYA8PjdjgQ3Azhj2bCDRv5tWVyZo1e5qOghNK72yK8UA1CSoWeoQPF4+ WoT26jZKVgIzqx5HWR5rG/+VIg+EB8NGnef5xNaMupv7Jpict9aSEpGxzj8J1E5D VxSUVyV0HbB0UnH1Yihb7hOVVBaZ1X0F -----END CERTIFICATE-----Generated at Tue Nov 4 02:14:58 2025 by rpki-client