$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft File: XAo1I_02RadjWvJRmtzQAuEy-84.mft (raw, json) Hash identifier: hFc+aXab4bW8V7Dc6+qtCiN+mNWMXOheX7EdPqs+cN4= Subject key identifier: 2F:2E:DF:D1:3A:F3:81:44:0F:E3:9A:0D:62:C1:89:46:81:10:7E:C6 Authority key identifier: 5C:0A:35:23:FD:36:45:A7:63:5A:F2:51:9A:DC:D0:02:E1:32:FB:CE Certificate issuer: /CN=A91B0F90/serialNumber=5C0A3523FD3645A7635AF2519ADCD002E132FBCE Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft Manifest number: 90 Signing time: Mon 03 Nov 2025 06:38:50 +0000 Manifest this update: Mon 03 Nov 2025 06:38:50 +0000 Manifest next update: Mon 10 Nov 2025 06:38:50 +0000 Files and hashes: 1: XAo1I_02RadjWvJRmtzQAuEy-84.crl (hash: aiwp12m2tHZo4oad1uOV2OVGskTYfNdgqllzUlbElvg=) 2: 304DD002EFAB11EF97C9610FC4F9AE02.roa (hash: nY9SnH3XV0jBQtfc+UOqx27pO7JEzdlFPgYbBdgEcrs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.crl rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:38:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0F90, serialNumber=5C0A3523FD3645A7635AF2519ADCD002E132FBCE Validity Not Before: Nov 3 06:38:50 2025 GMT Not After : Nov 10 06:38:50 2025 GMT Subject: CN=69084dfa-b56f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:06:62:51:ce:05:7d:63:7b:a0:7e:6e:6a:bf: f7:b3:95:91:16:45:fe:c9:3b:41:82:f8:1d:33:ac: 84:70:41:f2:67:47:3e:8c:87:bf:58:3f:67:3c:41: 1d:b2:b7:90:b3:b7:d0:ff:bd:c2:9c:dc:9e:ec:88: f3:85:47:f7:6a:13:03:c9:4c:0e:d6:13:c0:73:19: b1:96:37:7f:24:60:bd:c5:37:93:4a:ed:92:eb:93: 3c:a0:1d:ac:76:e4:06:f1:9d:d6:1b:1f:18:ad:07: ad:17:85:c1:5d:5e:e7:0a:a7:b9:7b:ef:25:d0:b5: 91:03:a2:5d:0d:61:78:7e:4b:be:64:78:8b:2d:b6: 9e:d9:e2:2b:81:b8:95:ce:a7:14:3a:4a:7d:76:e4: 05:24:8d:5b:69:12:eb:10:b3:31:54:c7:7d:19:5c: 9b:af:d1:78:b7:53:a0:53:7b:23:1b:c3:9e:c9:1c: c2:6d:10:8a:4f:58:d7:b2:b2:99:97:c7:1c:15:c0: c5:01:04:1a:af:32:d5:68:16:83:25:15:74:1e:ee: 9c:60:e5:dc:77:af:36:7b:07:4b:a1:ee:52:61:96: 57:01:5d:56:4d:5f:4d:b1:81:ff:f8:99:8e:64:6d: ea:0d:9e:84:8c:0b:bd:6e:e7:25:ad:22:e2:e6:d4: b0:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:2E:DF:D1:3A:F3:81:44:0F:E3:9A:0D:62:C1:89:46:81:10:7E:C6 X509v3 Authority Key Identifier: keyid:5C:0A:35:23:FD:36:45:A7:63:5A:F2:51:9A:DC:D0:02:E1:32:FB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAo1I_02RadjWvJRmtzQAuEy-84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0F90/04779B9CED8111EFA0036616C4F9AE02/XAo1I_02RadjWvJRmtzQAuEy-84.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:b4:e3:39:b7:ae:3b:7f:77:e4:f5:47:0c:33:09:ec:59:8c: fd:11:48:8d:c7:a5:48:21:90:52:36:e5:e2:fd:8c:5d:08:6d: 35:72:30:50:91:b4:90:52:75:ed:c6:a5:c2:89:ed:87:4f:42: 6e:a4:95:23:44:82:4f:06:f5:2f:bd:dd:c1:bc:dd:eb:16:f1: c8:58:2c:7d:44:b7:ce:b4:29:1a:9c:af:dc:10:d0:4f:e2:40: 2f:42:bb:54:b0:d2:bd:77:00:e1:d6:c3:2e:4d:5a:63:60:0c: f6:b2:6b:d0:52:27:50:9d:f4:6e:27:9e:d5:71:86:ea:89:2e: b5:e4:1a:09:9c:43:25:48:f4:76:f7:97:3e:0a:6c:3b:34:ac: 25:4d:ba:64:a0:90:43:66:3d:97:d1:96:e7:02:9b:7f:18:0d: d2:05:05:ae:36:47:81:1d:fa:1f:48:53:11:00:a2:74:c8:1f: 3c:f0:0d:f8:47:57:f0:dd:26:54:8b:8d:4d:ab:01:c2:c2:9e: fe:e4:b4:d0:32:4c:88:1e:cc:96:31:f9:67:c9:eb:39:85:6d: f4:bc:d9:d5:7b:99:bd:d4:45:d7:e8:8f:7d:f7:d9:a3:da:cd: fa:27:7a:6c:bf:8c:1b:db:f3:7c:e0:bb:c7:1e:01:4d:89:2f: fd:95:7c:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBGOTAxMTAvBgNVBAUTKDVDMEEzNTIzRkQzNjQ1QTc2MzVBRjI1MTlBRENEMDAy RTEzMkZCQ0UwHhcNMjUxMTAzMDYzODUwWhcNMjUxMTEwMDYzODUwWjAYMRYwFAYD VQQDEw02OTA4NGRmYS1iNTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAywZiUc4FfWN7oH5uar/3s5WRFkX+yTtBgvgdM6yEcEHyZ0c+jIe/WD9nPEEd sreQs7fQ/73CnNye7IjzhUf3ahMDyUwO1hPAcxmxljd/JGC9xTeTSu2S65M8oB2s duQG8Z3WGx8YrQetF4XBXV7nCqe5e+8l0LWRA6JdDWF4fku+ZHiLLbae2eIrgbiV zqcUOkp9duQFJI1baRLrELMxVMd9GVybr9F4t1OgU3sjG8OeyRzCbRCKT1jXsrKZ l8ccFcDFAQQarzLVaBaDJRV0Hu6cYOXcd682ewdLoe5SYZZXAV1WTV9NsYH/+JmO ZG3qDZ6EjAu9buclrSLi5tSwuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC8u39E6 84FED+OaDWLBiUaBEH7GMB8GA1UdIwQYMBaAFFwKNSP9NkWnY1ryUZrc0ALhMvvO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMEY5MC8wNDc3OUI5Q0VE ODExMUVGQTAwMzY2MTZDNEY5QUUwMi9YQW8xSV8wMlJhZGpXdkpSbXR6UUF1RXkt ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hBbzFJXzAyUmFkald2SlJtdHpRQXVFeS04NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MEY5MC8wNDc3OUI5Q0VEODExMUVGQTAwMzY2MTZDNEY5QUUwMi9YQW8xSV8wMlJh ZGpXdkpSbXR6UUF1RXktODQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLtOM5t647f3fk9UcMMwnsWYz9EUiNx6VIIZBSNuXi/YxdCG01cjBQ kbSQUnXtxqXCie2HT0JupJUjRIJPBvUvvd3BvN3rFvHIWCx9RLfOtCkanK/cENBP 4kAvQrtUsNK9dwDh1sMuTVpjYAz2smvQUidQnfRuJ57VcYbqiS615BoJnEMlSPR2 95c+Cmw7NKwlTbpkoJBDZj2X0ZbnApt/GA3SBQWuNkeBHfofSFMRAKJ0yB888A34 R1fw3SZUi41NqwHCwp7+5LTQMkyIHsyWMflnyes5hW30vNnVe5m91EXX6I9999mj 2s36J3psv4wb2/N84LvHHgFNiS/9lXyJ -----END CERTIFICATE-----Generated at Tue Nov 4 12:39:33 2025 by rpki-client