$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft File: Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft (raw, json) Hash identifier: 5s+46yK6CZ52YAAknkub5sS55vkRVq9XReVYV3X6o9Q= Subject key identifier: 3D:E8:45:51:21:00:F3:7E:0C:C7:FA:30:36:D5:32:09:7B:34:B7:E0 Authority key identifier: 5E:BD:A7:FA:A8:01:C5:A2:74:DC:23:D1:71:F8:8B:46:A1:1E:41:54 Certificate issuer: /CN=A91B4F01/serialNumber=5EBDA7FAA801C5A274DC23D171F88B46A11E4154 Certificate serial: 04BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft Manifest number: 04B6 Signing time: Tue 04 Nov 2025 23:58:47 +0000 Manifest this update: Tue 04 Nov 2025 23:58:47 +0000 Manifest next update: Tue 11 Nov 2025 23:58:47 +0000 Files and hashes: 1: Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.crl (hash: raWld2N5+YSq0vi9MI3DEb2M2wmakrAPL+SzEyIuhAA=) 2: BD115AB24B7C11ECA63C0038C4F9AE02.roa (hash: IcEuGPt4GTNEbPQpjAanlaif3gO8wRzi48eufGxQr4U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.crl rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:58:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1210 (0x4ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4F01, serialNumber=5EBDA7FAA801C5A274DC23D171F88B46A11E4154 Validity Not Before: Nov 4 23:58:47 2025 GMT Not After : Nov 11 23:58:47 2025 GMT Subject: CN=690a9337-80fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:38:b2:bd:1c:7f:fa:61:63:3c:3a:47:51:bd: fc:85:2c:95:f6:80:86:b6:64:db:b1:93:e6:d3:ef: ea:03:24:dc:97:5e:5b:64:c4:9e:d4:e2:63:0c:bb: d7:28:82:f6:35:e5:e5:34:1b:7c:e7:e5:dd:1c:07: 19:93:bb:df:9c:09:5a:45:a9:db:ad:1b:ad:97:ac: f8:46:f3:9f:95:93:d3:0b:73:45:45:0e:15:b9:5d: 26:1f:05:f8:7b:54:cd:57:98:56:ee:c8:24:b2:c5: 36:ba:0e:88:ac:69:8a:3d:56:0a:9f:26:d8:02:33: 3b:be:ff:70:ca:57:89:03:61:9a:14:1f:53:47:c8: 32:5b:b9:24:6b:79:0e:ba:d6:cf:2c:d7:cc:68:7f: 50:1b:0d:9b:d2:7e:29:f9:a4:0e:d9:16:27:81:31: be:8d:95:dd:27:a2:76:ca:9d:68:b6:47:c8:ce:45: 55:70:46:2e:ab:3e:32:80:77:b8:60:bf:de:21:6e: dd:d7:2d:88:fe:64:17:74:7b:b4:7a:01:c2:ad:df: 8b:71:31:f9:78:3e:8d:29:fa:f7:61:7c:4b:2a:77: a9:2d:0b:41:af:dc:14:e5:8b:63:33:46:a8:5b:38: 88:40:65:76:b3:0d:90:e1:a5:57:04:26:35:1c:fa: c0:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:E8:45:51:21:00:F3:7E:0C:C7:FA:30:36:D5:32:09:7B:34:B7:E0 X509v3 Authority Key Identifier: keyid:5E:BD:A7:FA:A8:01:C5:A2:74:DC:23:D1:71:F8:8B:46:A1:1E:41:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:b2:2e:6f:ab:fa:7e:99:90:6b:f8:3c:89:dc:8f:de:7e:0a: 20:24:f3:a6:0a:2d:30:a6:a3:f8:a0:c4:5b:a0:89:7d:94:5b: 49:7d:c6:cf:ea:9e:fc:db:82:b7:8e:4c:ce:a4:d9:fb:df:d7: 85:04:94:37:15:9d:be:00:c7:46:6e:72:cf:b3:08:ab:05:7b: ee:16:ff:ba:f6:17:30:12:f5:34:72:90:94:8d:17:05:73:02: 61:53:c1:bb:97:9e:0f:f2:ec:07:15:9a:a5:1b:b0:7c:2a:37: 0c:46:58:73:51:96:70:1a:b9:f9:46:e7:7b:9d:6b:27:f9:c7: 18:15:17:f5:25:6c:ff:e8:a0:c4:03:47:7f:f2:d0:99:66:52: 4b:25:b4:e2:a9:81:9d:94:5e:60:dc:9a:cb:b4:09:a5:89:fb: d6:17:fa:42:df:25:d2:31:a1:70:dd:11:7d:b9:c5:9d:ec:e8: 8a:f8:77:6e:62:1e:45:24:4b:65:a0:6b:c3:8b:10:88:3d:e6: 37:87:80:c1:6f:f6:62:9d:9f:d1:91:d5:6f:47:0e:04:75:ff: 0d:bc:38:57:a0:6f:78:88:01:94:70:90:91:9d:75:fd:52:9e: 89:7d:ef:83:04:b4:54:1d:b2:60:c3:e7:3c:c2:38:f6:a9:5e: c9:ad:40:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRGMDExMTAvBgNVBAUTKDVFQkRBN0ZBQTgwMUM1QTI3NERDMjNEMTcxRjg4QjQ2 QTExRTQxNTQwHhcNMjUxMTA0MjM1ODQ3WhcNMjUxMTExMjM1ODQ3WjAYMRYwFAYD VQQDEw02OTBhOTMzNy04MGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2TiyvRx/+mFjPDpHUb38hSyV9oCGtmTbsZPm0+/qAyTcl15bZMSe1OJjDLvX KIL2NeXlNBt85+XdHAcZk7vfnAlaRanbrRutl6z4RvOflZPTC3NFRQ4VuV0mHwX4 e1TNV5hW7sgkssU2ug6IrGmKPVYKnybYAjM7vv9wyleJA2GaFB9TR8gyW7kka3kO utbPLNfMaH9QGw2b0n4p+aQO2RYngTG+jZXdJ6J2yp1otkfIzkVVcEYuqz4ygHe4 YL/eIW7d1y2I/mQXdHu0egHCrd+LcTH5eD6NKfr3YXxLKnepLQtBr9wU5YtjM0ao WziIQGV2sw2Q4aVXBCY1HPrAIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD3oRVEh APN+DMf6MDbVMgl7NLfgMB8GA1UdIwQYMBaAFF69p/qoAcWidNwj0XH4i0ahHkFU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEYwMS9BNzAwQTg0NDRC NzgxMUVDODZFNTBBMzBDNEY5QUUwMi9YcjJuLXFnQnhhSjAzQ1BSY2ZpTFJxRWVR VlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hyMm4tcWdCeGFKMDNDUFJjZmlMUnFFZVFWUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEYwMS9BNzAwQTg0NDRCNzgxMUVDODZFNTBBMzBDNEY5QUUwMi9YcjJuLXFnQnhh SjAzQ1BSY2ZpTFJxRWVRVlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9si5vq/p+mZBr+DyJ3I/efgogJPOmCi0wpqP4oMRboIl9lFtJfcbP 6p7824K3jkzOpNn739eFBJQ3FZ2+AMdGbnLPswirBXvuFv+69hcwEvU0cpCUjRcF cwJhU8G7l54P8uwHFZqlG7B8KjcMRlhzUZZwGrn5Rud7nWsn+ccYFRf1JWz/6KDE A0d/8tCZZlJLJbTiqYGdlF5g3JrLtAmlifvWF/pC3yXSMaFw3RF9ucWd7OiK+Hdu Yh5FJEtloGvDixCIPeY3h4DBb/ZinZ/RkdVvRw4Edf8NvDhXoG94iAGUcJCRnXX9 Up6Jfe+DBLRUHbJgw+c8wjj2qV7JrUDT -----END CERTIFICATE-----Generated at Wed Nov 5 09:51:57 2025 by rpki-client