$ rpki-client -vvf rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft File: XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft (raw, json) Hash identifier: UzHg7SVW+HWU/lddmnNznigOgbYHCCF6ddicyTr87SI= Subject key identifier: 06:C3:CC:81:05:A0:AB:A2:0C:23:37:7A:EE:8A:3A:A5:1A:C4:4B:33 Authority key identifier: 5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1 Certificate issuer: /CN=A91B23B3/serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1 Certificate serial: 0A0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft Manifest number: 09E5 Signing time: Tue 04 Nov 2025 20:02:21 +0000 Manifest this update: Tue 04 Nov 2025 20:02:21 +0000 Manifest next update: Tue 11 Nov 2025 20:02:21 +0000 Files and hashes: 1: XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl (hash: WpbxvooaQnHp7W2CdbKPvrqnUD+umQFxc29vjTjKlHM=) 2: 3818D9A09A9011EFB14F1729C4F9AE02.roa (hash: vvb4CejOVJri8OIdHwWGwZEAuucKhYGTP+ke3m07dcM=) 3: 2109DFF2EFBB11EC95A1FD0DC4F9AE02.roa (hash: MvhHzk/9f8tTuJ4ji5wkdvYja5PdDGGnrgSYFLH3YU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:02:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2570 (0xa0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B23B3, serialNumber=5C368439CBC5F5A45715D6476BEAA6686D0951B1 Validity Not Before: Nov 4 20:02:21 2025 GMT Not After : Nov 11 20:02:21 2025 GMT Subject: CN=690a5bcd-c968 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e8:4e:e7:ba:76:73:d7:3f:be:8c:09:38:09: f9:94:1f:3f:09:2a:36:c8:d1:4b:1b:81:0b:db:4e: d5:39:28:bb:27:d2:1b:9f:7c:f0:65:14:7d:54:52: f9:8f:de:79:95:4c:b2:21:d1:1a:6c:52:6d:2d:d8: dd:66:5a:e8:dc:00:80:8e:f1:a9:57:1e:8f:bb:0f: 50:8d:58:87:61:0c:0e:d4:83:32:47:76:4a:8d:87: e5:96:8b:b5:18:ab:1a:e1:43:5d:a3:c4:57:f4:e3: eb:39:a8:14:26:74:40:f8:3b:97:68:b7:92:57:cd: 68:87:ac:55:1f:fb:01:43:56:5f:c6:ba:a7:e7:b5: 56:a7:4f:e6:c9:aa:1c:36:c0:7e:d5:97:b8:f9:04: d3:c6:be:5c:f1:26:4b:96:cd:c4:d2:e4:9d:e8:7b: 78:e7:6c:9f:49:78:68:f8:df:5e:14:ad:93:6b:da: 7d:30:c4:88:89:9e:86:34:35:4b:ad:b5:bd:59:d1: ee:25:fc:48:9f:f5:e8:39:48:26:d0:bf:9a:9b:b2: 09:ba:fd:60:f6:76:8e:c4:4d:7e:4e:63:a1:a3:d0: 1e:15:62:d2:b3:29:af:47:e5:10:11:2b:04:b8:00: f9:67:45:9b:f6:b6:ca:13:2c:17:54:1a:b3:9f:fd: 74:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:C3:CC:81:05:A0:AB:A2:0C:23:37:7A:EE:8A:3A:A5:1A:C4:4B:33 X509v3 Authority Key Identifier: keyid:5C:36:84:39:CB:C5:F5:A4:57:15:D6:47:6B:EA:A6:68:6D:09:51:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDaEOcvF9aRXFdZHa-qmaG0JUbE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B23B3/E6465A108E9811EAAB58BD3AC4F9AE02/XDaEOcvF9aRXFdZHa-qmaG0JUbE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:1c:28:4e:a8:04:45:e7:38:b9:8e:b3:d2:63:17:ff:73:14: 03:c7:ae:f5:f3:81:48:93:cc:a6:8e:00:52:5c:8a:c6:5d:d3: 1e:d0:aa:90:d9:f9:f4:c9:36:8d:1e:a7:03:1c:00:48:f0:66: ef:2f:30:97:20:b4:10:63:e4:b3:4e:6d:e9:ca:96:0f:67:51: 1b:af:95:a8:e6:8d:51:06:2d:2c:c0:7e:ec:c5:ac:a1:bc:7a: d5:f2:1c:24:67:ef:28:20:e7:ee:5b:2a:cd:6a:13:27:4e:c3: 36:d8:dd:7b:81:4a:e6:f9:32:d9:0f:00:fa:d0:98:c6:b9:19: c0:ad:db:65:0d:28:41:f8:ac:ef:a1:d7:62:33:d5:b0:40:b7: 30:ed:41:c5:38:f1:d1:fe:0e:12:ad:4d:57:61:f8:12:e1:9b: f2:7a:c8:e8:39:4f:d2:53:a6:46:f8:b0:2d:78:ee:85:ea:fb: 23:ad:97:61:2d:de:54:c2:b2:0b:30:5c:93:0c:0f:11:33:98: 62:d3:e5:05:21:d0:b4:83:d8:ee:8b:9e:fa:a6:04:85:61:58: 89:69:fe:c8:e3:3c:3d:49:62:46:d0:ed:66:22:44:aa:7f:42: 66:17:79:9d:a1:41:82:f6:9a:58:43:e8:7c:61:88:4f:2d:c7: 03:9c:36:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjIzQjMxMTAvBgNVBAUTKDVDMzY4NDM5Q0JDNUY1QTQ1NzE1RDY0NzZCRUFBNjY4 NkQwOTUxQjEwHhcNMjUxMTA0MjAwMjIxWhcNMjUxMTExMjAwMjIxWjAYMRYwFAYD VQQDEw02OTBhNWJjZC1jOTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOhO57p2c9c/vowJOAn5lB8/CSo2yNFLG4EL207VOSi7J9Ibn3zwZRR9VFL5 j955lUyyIdEabFJtLdjdZlro3ACAjvGpVx6Puw9QjViHYQwO1IMyR3ZKjYfllou1 GKsa4UNdo8RX9OPrOagUJnRA+DuXaLeSV81oh6xVH/sBQ1Zfxrqn57VWp0/myaoc NsB+1Ze4+QTTxr5c8SZLls3E0uSd6Ht452yfSXho+N9eFK2Ta9p9MMSIiZ6GNDVL rbW9WdHuJfxIn/XoOUgm0L+am7IJuv1g9naOxE1+TmOho9AeFWLSsymvR+UQESsE uAD5Z0Wb9rbKEywXVBqzn/10uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAbDzIEF oKuiDCM3eu6KOqUaxEszMB8GA1UdIwQYMBaAFFw2hDnLxfWkVxXWR2vqpmhtCVGx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjNCMy9FNjQ2NUExMDhF OTgxMUVBQUI1OEJEM0FDNEY5QUUwMi9YRGFFT2N2RjlhUlhGZFpIYS1xbWFHMEpV YkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEYUVPY3ZGOWFSWEZkWkhhLXFtYUcwSlViRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjNCMy9FNjQ2NUExMDhFOTgxMUVBQUI1OEJEM0FDNEY5QUUwMi9YRGFFT2N2Rjlh UlhGZFpIYS1xbWFHMEpVYkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbHChOqARF5zi5jrPSYxf/cxQDx67184FIk8ymjgBSXIrGXdMe0KqQ 2fn0yTaNHqcDHABI8GbvLzCXILQQY+SzTm3pypYPZ1Ebr5Wo5o1RBi0swH7sxayh vHrV8hwkZ+8oIOfuWyrNahMnTsM22N17gUrm+TLZDwD60JjGuRnArdtlDShB+Kzv oddiM9WwQLcw7UHFOPHR/g4SrU1XYfgS4ZvyesjoOU/SU6ZG+LAteO6F6vsjrZdh Ld5UwrILMFyTDA8RM5hi0+UFIdC0g9jui576pgSFYViJaf7I4zw9SWJG0O1mIkSq f0JmF3mdoUGC9ppYQ+h8YYhPLccDnDY8 -----END CERTIFICATE-----Generated at Wed Nov 5 04:28:51 2025 by rpki-client