$ rpki-client -vvf rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft File: XqEcijop4GlzwfEhYR1aXCobBp0.mft (raw, json) Hash identifier: AgW7W9Qy2pqVbWXHopGNw80q6she8CsfP42WlQDHSEY= Subject key identifier: 93:2E:A3:BC:F1:1A:27:45:D2:E2:9E:68:8A:5F:DD:FD:00:9E:D0:00 Authority key identifier: 5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D Certificate issuer: /CN=A91A654C/serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Certificate serial: 07A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft Manifest number: 0776 Signing time: Tue 04 Nov 2025 21:46:10 +0000 Manifest this update: Tue 04 Nov 2025 21:46:10 +0000 Manifest next update: Tue 11 Nov 2025 21:46:10 +0000 Files and hashes: 1: XqEcijop4GlzwfEhYR1aXCobBp0.crl (hash: zaE1kcNRpsg2/JyMWegfp4hhHfmjURtmOHPup9eAbxI=) 2: 66FC64186D0711F0AC1BE951C4F9AE02.roa (hash: hWwF88GIP3tV+NyMDvSvQLm3VEbfDC65iFXo9VhwYUk=) 3: 5A51D464F5FA11EC9B35372AC4F9AE02.roa (hash: xKqf+n8kgniX6QnefZ1ax3dHrgOYPyD34X8HXDWa04o=) 4: 94A5320663A111F092E32646C4F9AE02.roa (hash: O5r2+wXt4zH6hxOJA3sUCrB8yg9bHS1XDEYPpgUx1XQ=) 5: 0940732E0E6311EDB98DEA0DC4F9AE02.roa (hash: LjX/y1bmr7lUb6+mhBpoHtfDQ+zCLBR7g1pGcdMOf00=) 6: 0A37FEFA0E6311EDB98DEA0DC4F9AE02.roa (hash: SGNPZCwfC0xAo0xM/Ak76M8pbN3zzIxkj9O1xC+I8EU=) 7: 9507206A63A111F092E32646C4F9AE02.roa (hash: rAuvyeznobZzFQMS0Fgkc4tf80FkzwtmDY5jMNACHCg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:46:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1957 (0x7a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A654C, serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Validity Not Before: Nov 4 21:46:10 2025 GMT Not After : Nov 11 21:46:10 2025 GMT Subject: CN=690a7422-d316 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:41:00:33:94:6d:75:3a:32:f6:75:89:0b:fb: 8c:91:19:c8:e8:36:37:f3:53:c5:31:70:54:46:9d: a3:dc:21:45:1f:04:51:df:ca:95:7a:f8:75:8d:95: c2:e0:06:ba:c0:8a:84:38:f1:fb:20:f3:bd:bf:8e: 7f:6c:ee:af:8f:50:a5:82:3d:c2:9a:95:7b:22:54: 6a:56:ae:96:d1:ad:f6:ed:96:4d:15:8f:33:b2:03: 8d:af:e0:08:cf:34:8c:47:f4:9f:3a:ac:4a:c1:01: bc:19:53:5c:68:96:d5:7a:c8:ce:b6:47:cd:e5:ea: 86:6e:6e:56:35:49:3b:54:57:aa:36:7a:cd:eb:d7: 48:d2:64:87:4b:7b:12:b0:c4:fa:6e:7d:55:f5:b3: a6:6c:9a:9b:31:43:35:d0:4a:39:3a:93:d1:e8:72: 91:cb:a7:d6:e9:ea:5a:9e:20:07:5c:7e:71:00:d0: ea:ba:6b:52:3c:d3:72:78:46:6a:f6:47:43:75:92: 23:94:bc:23:af:be:19:22:b5:3c:fd:45:ff:29:a2: 5b:08:0a:3b:81:d7:8b:6b:88:fa:88:54:22:ed:9e: 46:49:34:2c:06:05:f0:fc:43:19:5d:51:93:28:82: 7f:3a:6e:8d:0e:a4:1e:d9:d5:58:6b:43:c7:8d:b8: e7:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:2E:A3:BC:F1:1A:27:45:D2:E2:9E:68:8A:5F:DD:FD:00:9E:D0:00 X509v3 Authority Key Identifier: keyid:5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:d0:ea:c9:59:84:e8:c2:fc:ff:43:34:bf:3a:ac:26:3a:17: 9f:cf:1f:c1:1f:e1:83:02:b4:3e:26:aa:c2:d3:f4:53:0f:50: c9:f1:e2:06:71:0a:e5:8f:f7:30:5e:42:69:7f:52:ea:b3:32: e4:9c:28:e6:b3:e7:6d:ff:ad:43:bf:4d:11:c4:05:b9:2f:de: ea:52:a1:b5:56:dd:fc:d7:d3:62:f3:51:1f:2d:4b:8c:6e:a5: a7:9a:d6:6d:c7:73:ae:d6:50:c3:8a:8e:4f:79:28:dd:7a:b2: c8:bc:eb:ec:62:76:03:eb:ec:a2:6b:99:79:72:ce:97:73:3b: d5:88:cc:09:f2:53:ab:2f:b1:d2:96:a3:35:90:91:e6:78:67: 07:74:46:71:55:4c:2a:9f:23:56:fc:ac:ca:ed:9f:8e:3b:ae: 9c:7f:d8:fe:0c:7d:fc:f5:5e:5d:b1:8e:3d:51:0c:c4:8f:29: 7c:39:d3:a6:aa:ef:23:09:c8:ef:1a:73:d5:c3:3c:99:b0:fe: 80:a2:46:c6:c1:9c:4b:95:1d:ce:d5:01:70:a5:a9:f7:1e:ad: 31:5f:1c:23:73:99:73:ad:67:24:d5:ae:cd:6f:84:6a:d2:84: e2:d6:2e:a8:f6:6a:2b:25:18:11:fe:f6:fb:f2:a2:87:27:93: eb:35:91:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1NEMxMTAvBgNVBAUTKDVFQTExQzhBM0EyOUUwNjk3M0MxRjEyMTYxMUQ1QTVD MkExQjA2OUQwHhcNMjUxMTA0MjE0NjEwWhcNMjUxMTExMjE0NjEwWjAYMRYwFAYD VQQDEw02OTBhNzQyMi1kMzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzEEAM5RtdToy9nWJC/uMkRnI6DY381PFMXBURp2j3CFFHwRR38qVevh1jZXC 4Aa6wIqEOPH7IPO9v45/bO6vj1Clgj3CmpV7IlRqVq6W0a327ZZNFY8zsgONr+AI zzSMR/SfOqxKwQG8GVNcaJbVesjOtkfN5eqGbm5WNUk7VFeqNnrN69dI0mSHS3sS sMT6bn1V9bOmbJqbMUM10Eo5OpPR6HKRy6fW6epaniAHXH5xANDqumtSPNNyeEZq 9kdDdZIjlLwjr74ZIrU8/UX/KaJbCAo7gdeLa4j6iFQi7Z5GSTQsBgXw/EMZXVGT KIJ/Om6NDqQe2dVYa0PHjbjnOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJMuo7zx GidF0uKeaIpf3f0AntAAMB8GA1UdIwQYMBaAFF6hHIo6KeBpc8HxIWEdWlwqGwad MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjU0Qy81MUE5RUFDQzQx NjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRHbHp3ZkVoWVIxYVhDb2JC cDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hxRWNpam9wNEdsendmRWhZUjFhWENvYkJwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjU0Qy81MUE5RUFDQzQxNjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRH bHp3ZkVoWVIxYVhDb2JCcDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAq0OrJWYTowvz/QzS/OqwmOhefzx/BH+GDArQ+JqrC0/RTD1DJ8eIG cQrlj/cwXkJpf1LqszLknCjms+dt/61Dv00RxAW5L97qUqG1Vt3819Ni81EfLUuM bqWnmtZtx3Ou1lDDio5PeSjderLIvOvsYnYD6+yia5l5cs6XczvViMwJ8lOrL7HS lqM1kJHmeGcHdEZxVUwqnyNW/KzK7Z+OO66cf9j+DH389V5dsY49UQzEjyl8OdOm qu8jCcjvGnPVwzyZsP6AokbGwZxLlR3O1QFwpan3Hq0xXxwjc5lzrWck1a7Nb4Rq 0oTi1i6o9morJRgR/vb78qKHJ5PrNZFi -----END CERTIFICATE-----Generated at Wed Nov 5 05:13:24 2025 by rpki-client