$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft File: XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft (raw, json) Hash identifier: SfaWwhd73ihmaQ/gSUuYIGFgi+fxCuZlyBMrjfWXdgw= Subject key identifier: 69:BA:0E:6E:71:7F:63:FE:96:2A:B0:01:41:F5:64:B8:E9:12:F7:AB Authority key identifier: 5D:CA:45:28:B9:E4:0C:88:E4:67:A4:3F:DC:12:B7:8F:2B:35:45:E3 Certificate issuer: /CN=A91E4BD2/serialNumber=5DCA4528B9E40C88E467A43FDC12B78F2B3545E3 Certificate serial: 094D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft Manifest number: 0946 Signing time: Tue 04 Nov 2025 20:16:06 +0000 Manifest this update: Tue 04 Nov 2025 20:16:05 +0000 Manifest next update: Tue 11 Nov 2025 20:16:05 +0000 Files and hashes: 1: XcpFKLnkDIjkZ6Q_3BK3jys1ReM.crl (hash: WPcp6Iwqock8v/4DLBhmEf2+YQIbgoVPtFAfWVGHZ3w=) 2: A862F866AA3111EA9E08C324C4F9AE02.roa (hash: OW41bUAPIGMrqZxgUYQ1U1pF1P2hht2Fk6aRcB2b9ic=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.crl rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:16:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2381 (0x94d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4BD2, serialNumber=5DCA4528B9E40C88E467A43FDC12B78F2B3545E3 Validity Not Before: Nov 4 20:16:05 2025 GMT Not After : Nov 11 20:16:05 2025 GMT Subject: CN=690a5f06-930c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:2f:48:2b:be:f0:6c:04:d5:de:c4:76:19:2b: 17:87:26:6a:9f:8c:0a:3d:a9:82:4a:e0:c7:71:a5: 96:71:27:56:b2:7f:86:b0:0d:b3:e4:9a:55:99:80: 91:18:b3:eb:43:a5:9d:00:f3:55:1e:e8:39:1e:79: b4:3c:c7:64:d2:9e:d0:94:d6:c2:ef:bb:a3:e4:c8: bb:16:f5:35:db:dc:87:20:35:30:46:3a:46:6f:b3: fd:5e:15:79:45:f2:3e:01:5e:5b:13:ee:ec:2f:2e: 4c:2b:8d:ea:a0:9c:5f:37:b8:51:0e:31:d7:4a:97: 42:14:a5:ff:e8:65:1b:a5:de:1d:e8:eb:a4:52:d0: f6:bf:9b:73:cf:5e:a7:6a:45:41:77:53:05:04:ee: 59:05:e7:e5:7c:14:73:79:82:73:89:f5:35:88:9c: 9b:53:0d:92:1c:14:d6:61:8f:b5:46:ac:40:d1:69: 66:c5:65:fd:69:cb:b7:f6:fb:cb:ad:a4:77:8e:77: 8a:81:82:71:11:35:03:e6:ba:58:4a:c7:dc:89:3f: 92:23:2b:e7:e1:9d:79:90:40:44:2c:cc:25:86:fa: b4:f2:0a:d3:a5:56:28:6e:09:c8:74:93:ed:77:ef: 6c:71:9f:25:4e:00:c3:00:62:2e:2f:e9:86:ef:20: 8d:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:BA:0E:6E:71:7F:63:FE:96:2A:B0:01:41:F5:64:B8:E9:12:F7:AB X509v3 Authority Key Identifier: keyid:5D:CA:45:28:B9:E4:0C:88:E4:67:A4:3F:DC:12:B7:8F:2B:35:45:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:8f:f4:46:b0:02:92:2c:4a:62:98:8e:93:0a:34:2d:a1:cd: 0f:21:3b:79:84:64:04:a4:9b:0f:13:27:5c:dc:d9:da:23:40: 4c:02:15:29:3d:86:b9:ae:18:1c:50:c0:e5:5b:fc:a6:30:c6: 17:f5:40:22:9a:11:6e:f8:eb:22:a6:ba:d9:19:89:3c:ed:f1: 55:52:73:21:50:fc:c6:4f:67:e7:70:74:aa:ea:49:87:99:4b: 9c:76:f2:b9:51:54:90:7a:58:dc:ab:cb:6b:88:2f:0e:1e:e4: a9:14:6a:ce:e6:e2:28:b0:31:ba:e9:07:7e:ce:88:ce:b4:0a: c4:47:b3:e1:9a:24:44:33:a8:de:34:4c:6e:79:78:74:9d:8b: 5b:b5:bc:c5:e6:6b:a8:ad:07:b5:3f:93:ab:c3:e1:3a:61:01: 4a:f7:ef:c2:22:df:73:dc:3c:86:41:37:4b:d1:df:7d:54:5e: 7a:ca:7e:1f:1e:67:3a:d3:c2:76:95:9d:41:ea:91:4e:0f:56: 40:cf:be:24:57:b1:1a:dc:2d:22:e5:3d:96:b4:dc:80:fa:55: b4:ad:43:82:44:6d:0c:48:d8:16:2b:72:e7:6e:60:a4:b1:e5: a9:0c:d8:74:66:3c:fd:98:f0:f9:3c:46:30:6b:ba:31:e6:d9: 9d:c2:e7:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRCRDIxMTAvBgNVBAUTKDVEQ0E0NTI4QjlFNDBDODhFNDY3QTQzRkRDMTJCNzhG MkIzNTQ1RTMwHhcNMjUxMTA0MjAxNjA1WhcNMjUxMTExMjAxNjA1WjAYMRYwFAYD VQQDEw02OTBhNWYwNi05MzBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6S9IK77wbATV3sR2GSsXhyZqn4wKPamCSuDHcaWWcSdWsn+GsA2z5JpVmYCR GLPrQ6WdAPNVHug5Hnm0PMdk0p7QlNbC77uj5Mi7FvU129yHIDUwRjpGb7P9XhV5 RfI+AV5bE+7sLy5MK43qoJxfN7hRDjHXSpdCFKX/6GUbpd4d6OukUtD2v5tzz16n akVBd1MFBO5ZBeflfBRzeYJzifU1iJybUw2SHBTWYY+1RqxA0WlmxWX9acu39vvL raR3jneKgYJxETUD5rpYSsfciT+SIyvn4Z15kEBELMwlhvq08grTpVYobgnIdJPt d+9scZ8lTgDDAGIuL+mG7yCNAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGm6Dm5x f2P+liqwAUH1ZLjpEverMB8GA1UdIwQYMBaAFF3KRSi55AyI5GekP9wSt48rNUXj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEJEMi9GNDBCMTE2QUFB MkYxMUVBOUMyOTU5MUVDNEY5QUUwMi9YY3BGS0xua0RJamtaNlFfM0JLM2p5czFS ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjcEZLTG5rRElqa1o2UV8zQkszanlzMVJlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEJEMi9GNDBCMTE2QUFBMkYxMUVBOUMyOTU5MUVDNEY5QUUwMi9YY3BGS0xua0RJ amtaNlFfM0JLM2p5czFSZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOj/RGsAKSLEpimI6TCjQtoc0PITt5hGQEpJsPEydc3NnaI0BMAhUp PYa5rhgcUMDlW/ymMMYX9UAimhFu+OsiprrZGYk87fFVUnMhUPzGT2fncHSq6kmH mUucdvK5UVSQeljcq8triC8OHuSpFGrO5uIosDG66Qd+zojOtArER7PhmiREM6je NExueXh0nYtbtbzF5muorQe1P5Orw+E6YQFK9+/CIt9z3DyGQTdL0d99VF56yn4f Hmc608J2lZ1B6pFOD1ZAz74kV7Ea3C0i5T2WtNyA+lW0rUOCRG0MSNgWK3LnbmCk seWpDNh0Zjz9mPD5PEYwa7ox5tmdwueO -----END CERTIFICATE-----Generated at Wed Nov 5 12:21:20 2025 by rpki-client