$ rpki-client -vvf rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.mft File: -XyNrMJ-n8zTOuuFNQsmpIFfELc.mft (raw, json) Hash identifier: 34fLWY6Kfw+gpbS9yt6KhFV5HGMGYvzSj7K8U+ZCBZA= Subject key identifier: 86:C0:71:E6:74:5D:8F:9D:12:E7:62:70:19:B9:23:38:96:A5:F1:17 Authority key identifier: F9:7C:8D:AC:C2:7E:9F:CC:D3:3A:EB:85:35:0B:26:A4:81:5F:10:B7 Certificate issuer: /CN=A9196BD8/serialNumber=F97C8DACC27E9FCCD33AEB85350B26A4815F10B7 Certificate serial: 23AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XyNrMJ-n8zTOuuFNQsmpIFfELc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.mft Manifest number: 238E Signing time: Sun 02 Nov 2025 15:50:32 +0000 Manifest this update: Sun 02 Nov 2025 15:50:31 +0000 Manifest next update: Sun 09 Nov 2025 15:50:31 +0000 Files and hashes: 1: -XyNrMJ-n8zTOuuFNQsmpIFfELc.crl (hash: SZuyWqDeqLL9CZ6WEjCAIekS4bQ4Q828Zh5/ma+PEEk=) 2: A768E6B6FB0811ED860A5143C4F9AE02.roa (hash: yQ+XYCupRjpKC1z+KmqRpy0/MHYgLpl3GjcGFImbs1s=) 3: C73BE8A654F311E7AC64ED3AC4F9AE02.roa (hash: c0fUfF2O4q3/3ooNrYKlqBAmFHkp10eQdlPnj3yP614=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.crl rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XyNrMJ-n8zTOuuFNQsmpIFfELc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 15:50:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9130 (0x23aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196BD8, serialNumber=F97C8DACC27E9FCCD33AEB85350B26A4815F10B7 Validity Not Before: Nov 2 15:50:31 2025 GMT Not After : Nov 9 15:50:31 2025 GMT Subject: CN=69077dc7-8e36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:fb:cf:f2:49:90:24:01:e3:5b:d4:7a:57:ca: ab:e2:3d:a1:2e:a4:95:50:14:4b:f6:e7:b1:d2:3e: 59:2f:de:08:4c:18:6a:a5:a6:89:57:f1:ed:90:5e: f8:b1:1b:98:d5:00:c7:a5:01:51:06:db:aa:a8:c2: 03:dd:21:31:07:82:e9:bc:cd:db:1c:86:c1:d6:0c: 29:36:ca:18:f1:96:db:18:00:4c:42:6a:ab:3e:df: 85:64:78:bf:78:2e:8c:f2:fc:f1:9a:d2:8e:50:2c: 02:be:69:86:82:07:33:7d:1d:e5:80:ae:9a:4a:ac: e7:94:d9:dd:e7:f1:e4:7c:49:33:46:8c:f2:84:e6: bc:3b:8c:e3:ce:80:b4:de:6e:31:f7:fb:05:e1:99: 09:4e:f9:9b:8f:de:75:9c:91:52:d5:9b:d4:96:11: b4:93:42:29:e3:fb:f7:51:7d:6a:ce:55:a9:33:6c: 2e:ae:4e:7b:67:e2:af:df:ed:c5:e4:bd:a7:01:79: 2a:33:09:d2:bb:48:68:ee:65:a8:bc:de:7e:71:65: bc:dc:09:4a:bb:82:3c:c8:57:b8:07:79:56:a3:d8: 02:f6:db:6c:b4:0f:97:4c:5d:af:02:36:c9:d1:9c: a8:40:cd:be:0f:e6:a0:45:85:e6:a3:24:b3:6e:7b: eb:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:C0:71:E6:74:5D:8F:9D:12:E7:62:70:19:B9:23:38:96:A5:F1:17 X509v3 Authority Key Identifier: keyid:F9:7C:8D:AC:C2:7E:9F:CC:D3:3A:EB:85:35:0B:26:A4:81:5F:10:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XyNrMJ-n8zTOuuFNQsmpIFfELc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:64:7c:ed:50:92:2c:a8:7c:11:64:86:f3:02:52:e5:8d:10: 48:b6:5f:6c:59:4d:8c:c1:90:1a:b2:e1:10:e3:dc:55:cd:9e: a6:8b:4d:0f:d8:63:54:05:7a:50:0f:45:f5:14:46:1e:4f:72: 21:a7:6c:db:e7:4b:ef:4c:aa:8e:0f:62:e0:ac:c6:17:48:4b: 31:19:14:e7:8c:7b:50:29:8a:15:e2:33:78:6b:67:13:3a:ea: 45:b2:64:82:4c:71:6d:d3:2f:e5:91:cc:44:2b:01:a2:61:1d: 65:69:57:71:0d:6f:b2:1f:44:ed:a1:bf:ef:38:89:5e:c3:7d: b9:b2:f4:83:da:5e:92:ec:cd:bb:d6:1f:f9:b9:0e:0e:17:c5: e8:fe:ee:2f:f7:47:bd:16:27:6e:c3:cc:92:5e:2b:6c:13:70: 05:65:68:7f:b1:bf:8b:db:62:8b:f7:59:b4:ae:40:1c:b9:05: fc:0f:ce:9f:36:90:9c:1d:43:48:14:c0:56:26:ef:9d:1b:6c: 9e:3f:4f:2f:f2:48:6d:72:50:d3:28:a3:e7:a9:e3:23:db:93: 11:b1:4b:3d:95:56:24:c6:57:5f:96:d7:0a:a4:68:2f:81:8c: 17:a9:98:2d:c4:04:6d:36:4e:cf:2f:fc:bf:59:48:0f:a5:11: 93:33:be:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICI6owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZCRDgxMTAvBgNVBAUTKEY5N0M4REFDQzI3RTlGQ0NEMzNBRUI4NTM1MEIyNkE0 ODE1RjEwQjcwHhcNMjUxMTAyMTU1MDMxWhcNMjUxMTA5MTU1MDMxWjAYMRYwFAYD VQQDEw02OTA3N2RjNy04ZTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuPvP8kmQJAHjW9R6V8qr4j2hLqSVUBRL9uex0j5ZL94ITBhqpaaJV/HtkF74 sRuY1QDHpQFRBtuqqMID3SExB4LpvM3bHIbB1gwpNsoY8ZbbGABMQmqrPt+FZHi/ eC6M8vzxmtKOUCwCvmmGggczfR3lgK6aSqznlNnd5/HkfEkzRozyhOa8O4zjzoC0 3m4x9/sF4ZkJTvmbj951nJFS1ZvUlhG0k0Ip4/v3UX1qzlWpM2wurk57Z+Kv3+3F 5L2nAXkqMwnSu0ho7mWovN5+cWW83AlKu4I8yFe4B3lWo9gC9ttstA+XTF2vAjbJ 0ZyoQM2+D+agRYXmoySzbnvr4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIbAceZ0 XY+dEudicBm5IziWpfEXMB8GA1UdIwQYMBaAFPl8jazCfp/M0zrrhTULJqSBXxC3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkJEOC9DNTgzRDIzMjg3 QTIxMUU1OUU1MUYyNTFDNEY5QUUwMi8tWHlOck1KLW44elRPdXVGTlFzbXBJRmZF TGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1YeU5yTUotbjh6VE91dUZOUXNtcElGZkVMYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkJEOC9DNTgzRDIzMjg3QTIxMUU1OUU1MUYyNTFDNEY5QUUwMi8tWHlOck1KLW44 elRPdXVGTlFzbXBJRmZFTGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqZHztUJIsqHwRZIbzAlLljRBItl9sWU2MwZAasuEQ49xVzZ6mi00P 2GNUBXpQD0X1FEYeT3Ihp2zb50vvTKqOD2LgrMYXSEsxGRTnjHtQKYoV4jN4a2cT OupFsmSCTHFt0y/lkcxEKwGiYR1laVdxDW+yH0Ttob/vOIlew325svSD2l6S7M27 1h/5uQ4OF8Xo/u4v90e9Fiduw8ySXitsE3AFZWh/sb+L22KL91m0rkAcuQX8D86f NpCcHUNIFMBWJu+dG2yeP08v8khtclDTKKPnqeMj25MRsUs9lVYkxldfltcKpGgv gYwXqZgtxARtNk7PL/y/WUgPpRGTM757 -----END CERTIFICATE-----Generated at Tue Nov 4 16:13:21 2025 by rpki-client