$ rpki-client -vvf rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.mft File: xzON8bdowFB0za7Q_bGkwUrfuLU.mft (raw, json) Hash identifier: u2hg1OCaiZVPI2SAX8Jyo3UVWcr50KauclpFpSepAPk= Subject key identifier: BE:5D:D5:FC:33:5D:6C:93:65:DD:44:F1:1F:DB:2A:DC:B3:68:72:19 Authority key identifier: C7:33:8D:F1:B7:68:C0:50:74:CD:AE:D0:FD:B1:A4:C1:4A:DF:B8:B5 Certificate issuer: /CN=A91C167F/serialNumber=C7338DF1B768C05074CDAED0FDB1A4C14ADFB8B5 Certificate serial: 0186 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xzON8bdowFB0za7Q_bGkwUrfuLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.mft Manifest number: 016B Signing time: Mon 03 Nov 2025 04:19:11 +0000 Manifest this update: Mon 03 Nov 2025 04:19:10 +0000 Manifest next update: Mon 10 Nov 2025 04:19:10 +0000 Files and hashes: 1: xzON8bdowFB0za7Q_bGkwUrfuLU.crl (hash: 5EMut+bmVKZJrj+5K9M7e6h0SbIj9lhUJcCGZ3jeLHU=) 2: 7DA50F9C3E0B11F09779DF13C4F9AE02.roa (hash: aOphwoAXL9FkkZUfHxiPd8GBXzpRzX5FSynk8bgMuYk=) 3: A2516E42DE4511EF8C37E320C4F9AE02.roa (hash: XfIHm/MhIPSh6jZecIK72twugLDWV563OBM4HVySVuo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.crl rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xzON8bdowFB0za7Q_bGkwUrfuLU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:19:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 390 (0x186) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C167F, serialNumber=C7338DF1B768C05074CDAED0FDB1A4C14ADFB8B5 Validity Not Before: Nov 3 04:19:10 2025 GMT Not After : Nov 10 04:19:10 2025 GMT Subject: CN=69082d3e-b2aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:3f:60:2a:12:a9:77:9e:c9:76:5f:ef:ea:65: d3:03:2e:f8:06:e3:65:2d:68:54:aa:c9:56:c1:5a: c2:1a:dc:75:3d:8e:5d:fa:d1:d2:28:38:84:19:5c: d4:dc:34:ac:ec:20:cb:a2:80:14:30:23:d4:76:27: 34:7a:bb:4d:64:d5:08:f4:1e:02:97:4b:15:d4:50: 75:3f:a1:9e:41:e8:2d:57:a0:b2:f1:bf:ed:a3:83: 70:cc:51:4b:0a:42:35:b5:38:14:1e:0a:a5:c4:3a: 6f:d7:5f:37:e3:c4:64:8e:52:75:0e:ac:66:6e:fc: 5a:5d:d0:fc:38:01:81:18:96:f5:fe:ff:b8:df:11: 8b:c4:1f:15:25:77:59:65:a3:b0:93:4a:b3:f4:4b: a9:d2:64:60:50:e7:79:27:7a:ba:b4:0f:aa:31:15: 34:4b:a3:3d:25:0a:61:1d:0f:ec:c1:5d:7d:4d:b0: ae:2e:fe:58:48:3f:c2:12:03:25:f0:be:ba:45:51: fc:aa:b4:a7:d1:f3:c2:f0:de:4b:24:64:c3:dc:75: 37:4d:e4:61:de:7c:b6:68:02:84:9c:e4:15:7e:76: d7:b7:66:80:ca:74:e9:c6:11:e9:bb:0c:fa:b9:32: d3:52:42:e7:e4:65:bd:f7:e3:1c:97:b6:86:7e:9b: 76:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:5D:D5:FC:33:5D:6C:93:65:DD:44:F1:1F:DB:2A:DC:B3:68:72:19 X509v3 Authority Key Identifier: keyid:C7:33:8D:F1:B7:68:C0:50:74:CD:AE:D0:FD:B1:A4:C1:4A:DF:B8:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xzON8bdowFB0za7Q_bGkwUrfuLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:74:8e:60:5c:c0:cb:d5:98:2d:91:f2:4e:48:6a:bf:72:81: d5:c0:6a:03:fc:4a:2a:ed:35:13:3b:2b:d7:d4:9c:a9:d9:f0: af:93:45:e2:a3:84:26:e8:93:3c:48:ef:92:6e:f4:80:6b:28: cf:c4:93:59:ed:0e:57:3a:83:6b:e7:de:e6:e1:03:ae:19:d4: e1:ae:e2:c9:0b:44:45:65:e1:11:0c:96:dc:f3:26:a7:0a:53: 22:09:ed:79:ca:2d:91:d5:0f:9f:a2:27:ff:37:56:96:cd:be: 9d:83:ab:54:6a:58:cd:f3:2d:29:01:17:45:5d:85:f9:9b:7f: 80:7f:d3:60:71:31:cb:a2:90:2e:fb:b1:65:57:d2:e7:27:e3: 23:54:1d:b1:8f:62:0a:3a:97:19:d5:0c:e4:b7:4b:93:3d:86: 9f:0c:9e:95:ec:37:60:8e:fe:20:b8:85:f3:f6:31:62:70:99: d8:6b:6b:57:1c:ac:53:d3:a6:49:45:77:90:1d:8a:8f:c6:85: e9:b2:5c:86:36:e2:b5:75:ad:93:17:27:39:04:bb:94:0e:29: 8d:e3:a0:27:80:f6:43:6c:4b:45:7f:44:8e:c0:bf:a6:23:ee: 2e:fe:0a:4f:f9:eb:9b:0b:70:db:52:13:2b:63:fa:c2:91:8b: 9f:a5:0c:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE2N0YxMTAvBgNVBAUTKEM3MzM4REYxQjc2OEMwNTA3NENEQUVEMEZEQjFBNEMx NEFERkI4QjUwHhcNMjUxMTAzMDQxOTEwWhcNMjUxMTEwMDQxOTEwWjAYMRYwFAYD VQQDEw02OTA4MmQzZS1iMmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsD9gKhKpd57Jdl/v6mXTAy74BuNlLWhUqslWwVrCGtx1PY5d+tHSKDiEGVzU 3DSs7CDLooAUMCPUdic0ertNZNUI9B4Cl0sV1FB1P6GeQegtV6Cy8b/to4NwzFFL CkI1tTgUHgqlxDpv118348RkjlJ1DqxmbvxaXdD8OAGBGJb1/v+43xGLxB8VJXdZ ZaOwk0qz9Eup0mRgUOd5J3q6tA+qMRU0S6M9JQphHQ/swV19TbCuLv5YSD/CEgMl 8L66RVH8qrSn0fPC8N5LJGTD3HU3TeRh3ny2aAKEnOQVfnbXt2aAynTpxhHpuwz6 uTLTUkLn5GW99+Mcl7aGfpt2LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL5d1fwz XWyTZd1E8R/bKtyzaHIZMB8GA1UdIwQYMBaAFMczjfG3aMBQdM2u0P2xpMFK37i1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTY3Ri80QUFCN0JDQUM0 N0QxMUVFOUZDN0M4MEZDNEY5QUUwMi94ek9OOGJkb3dGQjB6YTdRX2JHa3dVcmZ1 TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3h6T044YmRvd0ZCMHphN1FfYkdrd1VyZnVMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTY3Ri80QUFCN0JDQUM0N0QxMUVFOUZDN0M4MEZDNEY5QUUwMi94ek9OOGJkb3dG QjB6YTdRX2JHa3dVcmZ1TFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIdI5gXMDL1ZgtkfJOSGq/coHVwGoD/Eoq7TUTOyvX1Jyp2fCvk0Xi o4Qm6JM8SO+SbvSAayjPxJNZ7Q5XOoNr597m4QOuGdThruLJC0RFZeERDJbc8yan ClMiCe15yi2R1Q+foif/N1aWzb6dg6tUaljN8y0pARdFXYX5m3+Af9NgcTHLopAu +7FlV9LnJ+MjVB2xj2IKOpcZ1Qzkt0uTPYafDJ6V7Ddgjv4guIXz9jFicJnYa2tX HKxT06ZJRXeQHYqPxoXpslyGNuK1da2TFyc5BLuUDimN46AngPZDbEtFf0SOwL+m I+4u/gpP+eubC3DbUhMrY/rCkYufpQw9 -----END CERTIFICATE-----Generated at Tue Nov 4 21:33:42 2025 by rpki-client