$ rpki-client -vvf rpki.apnic.net/member_repository/A9192BCF/3052CCA63B4D11EE9E1B0772C4F9AE02/XaSteg0ZJFUV5aLYSgxnRwCkP80.mft File: XaSteg0ZJFUV5aLYSgxnRwCkP80.mft (raw, json) Hash identifier: Ox2toqJfUn84FkCMN5aRXvBAICjATyqfphnJ76sRdt0= Subject key identifier: F6:A6:BB:28:E2:21:10:EE:33:47:47:36:57:59:83:1B:B7:B3:EF:24 Authority key identifier: 5D:A4:AD:7A:0D:19:24:55:15:E5:A2:D8:4A:0C:67:47:00:A4:3F:CD Certificate issuer: /CN=A9192BCF/serialNumber=5DA4AD7A0D19245515E5A2D84A0C674700A43FCD Certificate serial: 01A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XaSteg0ZJFUV5aLYSgxnRwCkP80.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192BCF/3052CCA63B4D11EE9E1B0772C4F9AE02/XaSteg0ZJFUV5aLYSgxnRwCkP80.mft Manifest number: 01A3 Signing time: Mon 03 Nov 2025 03:17:58 +0000 Manifest this update: Mon 03 Nov 2025 03:17:58 +0000 Manifest next update: Mon 10 Nov 2025 03:17:57 +0000 Files and hashes: 1: XaSteg0ZJFUV5aLYSgxnRwCkP80.crl (hash: VMCh0CcTxTyrsmHGubPV1BWd8assThV9jVFBkZu/DMs=) 2: 9062BB863C3F11EE8DA7781AC4F9AE02.roa (hash: Ko2wZOucS0J/Gzb2C9yks7gKzQf0Lz0Srb4aABcYNMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192BCF/3052CCA63B4D11EE9E1B0772C4F9AE02/XaSteg0ZJFUV5aLYSgxnRwCkP80.crl rsync://rpki.apnic.net/member_repository/A9192BCF/3052CCA63B4D11EE9E1B0772C4F9AE02/XaSteg0ZJFUV5aLYSgxnRwCkP80.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XaSteg0ZJFUV5aLYSgxnRwCkP80.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:17:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 423 (0x1a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192BCF, serialNumber=5DA4AD7A0D19245515E5A2D84A0C674700A43FCD Validity Not Before: Nov 3 03:17:58 2025 GMT Not After : Nov 10 03:17:57 2025 GMT Subject: CN=69081ee6-673e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:20:bf:ca:98:9c:70:ee:e6:b9:06:a3:03:97: 3c:16:65:99:df:e5:d7:35:50:83:19:19:97:fa:5c: b2:15:c2:1c:f3:dd:e6:bb:48:17:45:fc:01:2f:ff: 1b:fa:36:a5:9b:2e:91:52:84:e4:9f:00:2a:c7:a2: 16:a5:33:4e:a5:bd:7c:07:fa:4d:23:31:47:6e:f6: c7:6c:6e:39:54:9c:b2:78:1a:8a:23:2c:78:61:bf: 08:08:fb:be:ec:ff:ad:3a:12:29:d3:ee:c2:b6:ee: 85:a3:c7:e6:c7:11:a1:b9:f7:1b:cf:10:45:d8:d4: f6:36:ec:de:b9:24:56:68:c0:db:06:98:ca:d9:e8: 06:77:be:a9:dd:df:7d:dc:65:5a:f8:00:27:b2:b7: ca:28:63:ec:e1:75:de:27:0c:f6:e2:b0:c6:72:d0: 66:8e:8d:e7:87:e4:a0:01:57:6f:27:85:aa:1e:73: 15:f8:43:92:77:d0:ee:49:dd:49:10:cb:f5:d3:5b: 94:fc:75:4d:48:77:55:c3:25:cc:18:3e:c7:dd:07: 0f:92:d2:e0:9c:cd:84:b5:f3:2b:d3:81:f9:3b:07: 67:1d:5d:71:82:d2:26:b9:77:36:02:ef:3d:2a:59: b6:1a:3a:49:9e:0f:c4:fd:71:c7:68:62:4e:02:2a: 8d:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:A6:BB:28:E2:21:10:EE:33:47:47:36:57:59:83:1B:B7:B3:EF:24 X509v3 Authority Key Identifier: keyid:5D:A4:AD:7A:0D:19:24:55:15:E5:A2:D8:4A:0C:67:47:00:A4:3F:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192BCF/3052CCA63B4D11EE9E1B0772C4F9AE02/XaSteg0ZJFUV5aLYSgxnRwCkP80.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XaSteg0ZJFUV5aLYSgxnRwCkP80.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192BCF/3052CCA63B4D11EE9E1B0772C4F9AE02/XaSteg0ZJFUV5aLYSgxnRwCkP80.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:eb:52:83:49:a4:77:be:0b:21:c5:af:fc:e9:85:ac:c1:fd: 9c:cd:74:22:d1:ec:40:63:1d:68:bd:35:58:19:1a:63:b8:f4: 6f:40:6b:0d:23:ce:b7:38:f4:4d:5b:7f:34:87:ae:96:81:8b: fc:44:72:82:60:50:55:a7:ff:85:ee:27:89:3d:6b:db:30:2e: 8d:2f:90:3a:da:ff:01:37:aa:6b:71:af:dc:32:78:92:a1:13: b3:21:92:1f:9b:8b:72:7f:23:08:19:a1:c5:92:be:56:26:00: 24:b8:16:d4:9a:74:44:45:d2:5a:fd:1d:b2:6f:88:7b:1a:54: 26:d1:bb:9f:c0:9c:80:0a:9e:ab:ee:43:85:65:76:e1:8e:50: a5:bc:56:b6:8d:d9:ee:34:d0:03:e2:a3:24:9e:5b:28:25:e1: f5:60:5c:80:1b:de:86:fe:67:59:29:fa:88:0a:8d:9b:46:24: b1:a0:48:91:14:48:73:60:19:9d:ee:84:73:93:a6:f3:29:b7: 8d:33:24:b5:59:9e:8c:99:e7:85:10:a6:84:6d:02:ff:7b:8e: 67:0d:16:e3:10:45:fb:cf:c1:10:c2:68:eb:31:22:88:01:13: a0:ea:14:fa:cd:96:bc:fe:c4:32:3d:92:7e:fa:98:7c:c3:24: ea:ec:4b:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJCQ0YxMTAvBgNVBAUTKDVEQTRBRDdBMEQxOTI0NTUxNUU1QTJEODRBMEM2NzQ3 MDBBNDNGQ0QwHhcNMjUxMTAzMDMxNzU4WhcNMjUxMTEwMDMxNzU3WjAYMRYwFAYD VQQDEw02OTA4MWVlNi02NzNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAviC/ypiccO7muQajA5c8FmWZ3+XXNVCDGRmX+lyyFcIc893mu0gXRfwBL/8b +jalmy6RUoTknwAqx6IWpTNOpb18B/pNIzFHbvbHbG45VJyyeBqKIyx4Yb8ICPu+ 7P+tOhIp0+7Ctu6Fo8fmxxGhufcbzxBF2NT2NuzeuSRWaMDbBpjK2egGd76p3d99 3GVa+AAnsrfKKGPs4XXeJwz24rDGctBmjo3nh+SgAVdvJ4WqHnMV+EOSd9DuSd1J EMv101uU/HVNSHdVwyXMGD7H3QcPktLgnM2EtfMr04H5OwdnHV1xgtImuXc2Au89 Klm2GjpJng/E/XHHaGJOAiqN5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPamuyji IRDuM0dHNldZgxu3s+8kMB8GA1UdIwQYMBaAFF2krXoNGSRVFeWi2EoMZ0cApD/N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkJDRi8zMDUyQ0NBNjNC NEQxMUVFOUUxQjA3NzJDNEY5QUUwMi9YYVN0ZWcwWkpGVVY1YUxZU2d4blJ3Q2tQ ODAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hhU3RlZzBaSkZVVjVhTFlTZ3huUndDa1A4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MkJDRi8zMDUyQ0NBNjNCNEQxMUVFOUUxQjA3NzJDNEY5QUUwMi9YYVN0ZWcwWkpG VVY1YUxZU2d4blJ3Q2tQODAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBs61KDSaR3vgshxa/86YWswf2czXQi0exAYx1ovTVYGRpjuPRvQGsN I863OPRNW380h66WgYv8RHKCYFBVp/+F7ieJPWvbMC6NL5A62v8BN6prca/cMniS oROzIZIfm4tyfyMIGaHFkr5WJgAkuBbUmnRERdJa/R2yb4h7GlQm0bufwJyACp6r 7kOFZXbhjlClvFa2jdnuNNAD4qMknlsoJeH1YFyAG96G/mdZKfqICo2bRiSxoEiR FEhzYBmd7oRzk6bzKbeNMyS1WZ6MmeeFEKaEbQL/e45nDRbjEEX7z8EQwmjrMSKI AROg6hT6zZa8/sQyPZJ++ph8wyTq7Etw -----END CERTIFICATE-----Generated at Tue Nov 4 12:40:37 2025 by rpki-client