$ rpki-client -vvf rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft File: XHIqJhQciPfNQPObN0raf7wfmx8.mft (raw, json) Hash identifier: kAQWxIMRvhyH6VDtnp2fkLH7CyHuzHPiuWLnqpkD4+I= Subject key identifier: 96:AC:CB:85:0E:D8:87:36:3A:DF:05:0C:8F:9E:D3:EF:03:82:1B:6C Authority key identifier: 5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F Certificate issuer: /CN=A91D824A/serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Certificate serial: F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft Manifest number: ED Signing time: Wed 05 Nov 2025 05:34:27 +0000 Manifest this update: Wed 05 Nov 2025 05:34:26 +0000 Manifest next update: Wed 12 Nov 2025 05:34:26 +0000 Files and hashes: 1: XHIqJhQciPfNQPObN0raf7wfmx8.crl (hash: JdGeA8rhB8h/6T/2En6XanTkYiGXByqXlG57Mbwc6ik=) 2: D956F03AAB0211F083CD7E11C4F9AE02.roa (hash: qeoKnKi/L1qnb3FQ608yL9sJPnPOyw3KIsMI+MrC40Y=) 3: F0FCC9ECABF411F0B9E4F837C4F9AE02.roa (hash: kBaQGDaRm957tvzLCzGaAnm3IbVtZ/CNyACT06yHE1Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:34:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 244 (0xf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D824A, serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Validity Not Before: Nov 5 05:34:26 2025 GMT Not After : Nov 12 05:34:26 2025 GMT Subject: CN=690ae1e2-1b56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:5d:81:3a:f9:32:0e:8e:39:f3:62:0d:2a:e8: 49:2d:39:2c:88:f6:a7:f9:7b:35:26:a9:0a:93:99: e0:e4:78:bb:02:a9:59:06:c8:29:f7:33:70:7a:65: 48:21:c1:e7:a7:8a:cd:cb:ce:e7:73:06:eb:03:0d: 20:cf:ab:80:84:8f:32:75:56:95:a5:cd:4e:9e:59: 9b:27:c7:4e:b5:7d:26:04:ef:4f:2f:1e:47:6b:57: 08:6a:70:47:b4:c9:77:97:7f:c4:99:2d:bf:8b:95: b6:8b:87:ff:57:86:ce:75:95:f9:61:ca:3d:60:7b: b5:10:45:92:f0:57:4c:a4:42:92:33:1e:cf:9d:1a: 7a:5e:a1:bc:59:84:f8:61:47:62:55:27:3e:b9:23: 8c:b4:e6:83:a6:9c:bb:a8:d1:dd:bb:ba:fd:ee:34: 90:b2:79:6a:b8:b0:a5:57:9b:ca:27:4b:78:63:83: 7b:38:67:95:9b:0e:24:3a:ce:91:f1:7b:b0:1a:2b: fa:5f:4f:33:42:49:f7:89:dd:2c:62:a0:a4:ed:f4: 04:42:fd:19:e0:67:54:de:a2:ce:74:7c:3c:6b:f2: b7:8f:df:3c:11:06:0c:ad:25:bd:8e:8f:9d:a2:36: 38:83:69:a1:64:bc:e0:5a:8c:13:6b:27:4f:6f:25: 30:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:AC:CB:85:0E:D8:87:36:3A:DF:05:0C:8F:9E:D3:EF:03:82:1B:6C X509v3 Authority Key Identifier: keyid:5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:d6:2f:02:4c:6f:c5:3a:83:b5:4e:6d:a2:84:7c:58:66:37: ef:f6:48:90:bc:f1:58:54:41:38:0f:5c:32:a9:f9:72:ec:6e: 5e:61:66:ac:19:3b:cc:10:ee:18:27:cc:7e:80:21:3a:6e:10: 22:4c:fb:5d:25:c2:4a:9a:b3:07:09:ef:d5:f4:5f:ae:ee:8c: 92:60:58:f0:9f:34:1f:72:39:20:93:ed:ce:8a:cc:24:a8:28: d7:48:40:66:3b:52:ad:44:f4:16:47:e9:13:0d:3c:82:a2:a5: 0d:40:bd:ff:4c:8f:f5:04:aa:32:79:ca:96:ee:86:90:1c:0f: 9c:10:a3:1a:34:ab:bc:12:4d:ae:d8:72:dd:61:c3:23:69:e5: a2:f1:3c:03:83:36:cb:29:13:7e:c3:ed:dd:df:c8:a6:e4:43: c1:18:f6:22:c6:75:de:c9:fa:9d:91:9f:fe:4c:26:ec:54:14: ef:07:79:0a:17:c5:db:c0:22:1f:b4:aa:11:c0:a5:33:dc:29: 08:75:2c:e6:61:8a:d7:c9:4c:6c:e9:57:5a:d7:b4:98:c2:17: 14:06:72:38:1c:1e:c2:ed:e3:a0:f5:f3:3d:ff:2e:73:73:90: c0:50:cf:48:fc:04:d1:ef:a2:ef:dc:a5:24:68:2f:db:92:f4: 96:99:e3:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgyNEExMTAvBgNVBAUTKDVDNzIyQTI2MTQxQzg4RjdDRDQwRjM5QjM3NEFEQTdG QkMxRjlCMUYwHhcNMjUxMTA1MDUzNDI2WhcNMjUxMTEyMDUzNDI2WjAYMRYwFAYD VQQDEw02OTBhZTFlMi0xYjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2V2BOvkyDo4582INKuhJLTksiPan+Xs1JqkKk5ng5Hi7AqlZBsgp9zNwemVI IcHnp4rNy87ncwbrAw0gz6uAhI8ydVaVpc1OnlmbJ8dOtX0mBO9PLx5Ha1cIanBH tMl3l3/EmS2/i5W2i4f/V4bOdZX5Yco9YHu1EEWS8FdMpEKSMx7PnRp6XqG8WYT4 YUdiVSc+uSOMtOaDppy7qNHdu7r97jSQsnlquLClV5vKJ0t4Y4N7OGeVmw4kOs6R 8XuwGiv6X08zQkn3id0sYqCk7fQEQv0Z4GdU3qLOdHw8a/K3j988EQYMrSW9jo+d ojY4g2mhZLzgWowTaydPbyUwkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJasy4UO 2Ic2Ot8FDI+e0+8DghtsMB8GA1UdIwQYMBaAFFxyKiYUHIj3zUDzmzdK2n+8H5sf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODI0QS80QURGMzNGQzVC OUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQZk5RUE9iTjByYWY3d2Zt eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hISXFKaFFjaVBmTlFQT2JOMHJhZjd3Zm14OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODI0QS80QURGMzNGQzVCOUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQ Zk5RUE9iTjByYWY3d2ZteDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAb1i8CTG/FOoO1Tm2ihHxYZjfv9kiQvPFYVEE4D1wyqfly7G5eYWas GTvMEO4YJ8x+gCE6bhAiTPtdJcJKmrMHCe/V9F+u7oySYFjwnzQfcjkgk+3Oiswk qCjXSEBmO1KtRPQWR+kTDTyCoqUNQL3/TI/1BKoyecqW7oaQHA+cEKMaNKu8Ek2u 2HLdYcMjaeWi8TwDgzbLKRN+w+3d38im5EPBGPYixnXeyfqdkZ/+TCbsVBTvB3kK F8XbwCIftKoRwKUz3CkIdSzmYYrXyUxs6Vda17SYwhcUBnI4HB7C7eOg9fM9/y5z c5DAUM9I/ATR76Lv3KUkaC/bkvSWmeNO -----END CERTIFICATE-----Generated at Wed Nov 5 08:29:06 2025 by rpki-client