$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft File: X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft (raw, json) Hash identifier: PrUGob0yENcYo5xg1cu+K5iv0/oOYfG58kamqxdJAa4= Subject key identifier: 5A:D6:02:EE:5B:71:0F:DE:87:B6:80:C5:44:3C:91:3B:B8:75:56:9E Authority key identifier: 5F:8A:F3:59:73:FD:4F:A5:63:F3:3B:73:76:53:46:82:10:7B:C8:F9 Certificate issuer: /CN=A91CE285/serialNumber=5F8AF35973FD4FA563F33B7376534682107BC8F9 Certificate serial: 0A0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft Manifest number: 0A05 Signing time: Tue 04 Nov 2025 19:56:46 +0000 Manifest this update: Tue 04 Nov 2025 19:56:46 +0000 Manifest next update: Tue 11 Nov 2025 19:56:46 +0000 Files and hashes: 1: X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl (hash: dA/m12TMYAaM2jTbcpT6NGv0lln6tCnxy6KqTcyY0iA=) 2: E5C4974689CF11EAA39AF441C4F9AE02.roa (hash: S/+GQ9LaNR6oJzl2BIn9qWcVDZWjqUHkpie5l4NiGuc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:56:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2572 (0xa0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE285, serialNumber=5F8AF35973FD4FA563F33B7376534682107BC8F9 Validity Not Before: Nov 4 19:56:46 2025 GMT Not After : Nov 11 19:56:46 2025 GMT Subject: CN=690a5a7e-1d61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:67:c7:5d:3f:48:a9:42:42:34:c5:99:69:50: 5e:18:3b:72:68:1a:fb:8a:eb:05:38:c4:a1:6f:2c: 06:1c:1d:f5:19:ff:86:f0:c3:c7:00:2c:d5:e9:54: 4e:94:b0:ea:c7:0f:11:50:b3:cb:c8:ed:50:2d:f6: 10:d1:3d:6b:dc:82:33:7d:b2:a5:ff:3d:5d:3c:49: 1f:ca:92:0b:76:82:2c:5d:11:bc:41:6b:b4:2a:76: ee:fb:5d:73:d3:74:45:45:a4:48:f3:68:f8:6e:5a: 9c:de:38:a3:ca:b4:5c:86:cc:bb:dc:b3:41:88:1f: 53:d7:59:c9:17:dc:bb:c3:12:d1:3a:e4:1e:4e:d6: 10:70:c4:73:b1:d0:18:4f:90:81:1d:0b:fa:50:32: 48:ef:60:d2:9d:78:b3:44:8f:13:e6:3c:ed:cb:26: 92:20:88:a2:b8:04:f0:7d:3d:20:27:a8:12:4e:b6: f7:a2:af:b6:19:c5:32:34:45:8d:18:1f:1f:8b:a2: f6:8b:40:07:38:d3:5d:4f:27:67:4a:3c:fe:05:ce: d4:60:a8:fd:cf:da:a5:72:49:c6:0a:11:72:72:c2: 58:ed:55:56:66:dd:c3:08:39:fd:8d:82:65:93:5e: 97:2c:78:d7:2c:57:84:75:1f:f0:96:6a:d0:b7:3c: 43:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:D6:02:EE:5B:71:0F:DE:87:B6:80:C5:44:3C:91:3B:B8:75:56:9E X509v3 Authority Key Identifier: keyid:5F:8A:F3:59:73:FD:4F:A5:63:F3:3B:73:76:53:46:82:10:7B:C8:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:ea:d5:57:d8:dd:eb:72:13:73:aa:a5:83:ca:3d:2a:17:95: 47:80:21:e8:92:5b:69:af:d6:da:9b:4e:45:d5:4e:26:a2:16: 96:5a:d3:a5:03:be:20:b3:20:66:05:c8:c6:14:02:ae:34:06: 69:32:e1:0e:31:ea:d5:d6:80:31:d3:f2:5d:37:ac:7c:22:cb: 91:62:5a:e6:85:a1:4c:96:13:8b:6c:4f:53:36:92:01:1e:51: 0b:cb:6f:bd:cc:2e:72:0d:4a:f9:01:dc:b2:74:1d:23:ee:f3: b7:d0:da:f8:2c:c0:31:44:24:43:e5:f4:38:1e:33:fe:09:59: be:bb:72:03:0f:8c:b2:b5:da:b7:03:2f:74:9f:7b:2c:8b:93: 29:1d:fd:75:f0:6b:89:1c:8b:0a:9c:b9:c7:68:62:ba:29:e5: aa:db:5f:01:3a:91:72:77:93:f0:5d:ea:a3:8b:ae:aa:55:a5: f0:9b:e1:6d:3b:74:8e:b1:3a:fd:db:8c:13:4a:de:9e:56:ba: e9:e4:9e:8d:6c:fe:21:89:51:5d:58:d9:b7:b8:a4:8d:57:42: db:22:ba:7e:4c:f6:71:5d:95:35:ad:f2:81:3d:38:a7:a9:22: 2a:1f:6e:ac:ed:ec:46:25:8c:5d:b7:44:d0:6d:61:21:04:50: d5:1d:cc:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyODUxMTAvBgNVBAUTKDVGOEFGMzU5NzNGRDRGQTU2M0YzM0I3Mzc2NTM0Njgy MTA3QkM4RjkwHhcNMjUxMTA0MTk1NjQ2WhcNMjUxMTExMTk1NjQ2WjAYMRYwFAYD VQQDEw02OTBhNWE3ZS0xZDYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu2fHXT9IqUJCNMWZaVBeGDtyaBr7iusFOMShbywGHB31Gf+G8MPHACzV6VRO lLDqxw8RULPLyO1QLfYQ0T1r3IIzfbKl/z1dPEkfypILdoIsXRG8QWu0Knbu+11z 03RFRaRI82j4blqc3jijyrRchsy73LNBiB9T11nJF9y7wxLROuQeTtYQcMRzsdAY T5CBHQv6UDJI72DSnXizRI8T5jztyyaSIIiiuATwfT0gJ6gSTrb3oq+2GcUyNEWN GB8fi6L2i0AHONNdTydnSjz+Bc7UYKj9z9qlcknGChFycsJY7VVWZt3DCDn9jYJl k16XLHjXLFeEdR/wlmrQtzxDAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFrWAu5b cQ/eh7aAxUQ8kTu4dVaeMB8GA1UdIwQYMBaAFF+K81lz/U+lY/M7c3ZTRoIQe8j5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTI4NS81RTE2NDhCNjg0 QkMxMUVBQTUyNjIyNjNDNEY5QUUwMi9YNHJ6V1hQOVQ2Vmo4enR6ZGxOR2doQjd5 UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0cnpXWFA5VDZWajh6dHpkbE5HZ2hCN3lQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTI4NS81RTE2NDhCNjg0QkMxMUVBQTUyNjIyNjNDNEY5QUUwMi9YNHJ6V1hQOVQ2 Vmo4enR6ZGxOR2doQjd5UGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCv6tVX2N3rchNzqqWDyj0qF5VHgCHokltpr9bam05F1U4mohaWWtOl A74gsyBmBcjGFAKuNAZpMuEOMerV1oAx0/JdN6x8IsuRYlrmhaFMlhOLbE9TNpIB HlELy2+9zC5yDUr5AdyydB0j7vO30Nr4LMAxRCRD5fQ4HjP+CVm+u3IDD4yytdq3 Ay90n3ssi5MpHf118GuJHIsKnLnHaGK6KeWq218BOpFyd5PwXeqji66qVaXwm+Ft O3SOsTr924wTSt6eVrrp5J6NbP4hiVFdWNm3uKSNV0LbIrp+TPZxXZU1rfKBPTin qSIqH26s7exGJYxdt0TQbWEhBFDVHcx/ -----END CERTIFICATE-----Generated at Wed Nov 5 21:40:12 2025 by rpki-client