$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft File: XK9B9ks3Umh5jipdqgwUAADNdHM.mft (raw, json) Hash identifier: JIE5w3EnE8rex7t63nhwAks1N21FmYHT3UUpZgGbaQs= Subject key identifier: B8:D8:88:95:01:98:E0:AA:61:5C:C6:CA:89:40:9A:1E:61:25:02:7E Authority key identifier: 5C:AF:41:F6:4B:37:52:68:79:8E:2A:5D:AA:0C:14:00:00:CD:74:73 Certificate issuer: /CN=A91ED73E/serialNumber=5CAF41F64B375268798E2A5DAA0C140000CD7473 Certificate serial: 1434 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XK9B9ks3Umh5jipdqgwUAADNdHM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft Manifest number: 1428 Signing time: Sun 02 Nov 2025 16:54:11 +0000 Manifest this update: Sun 02 Nov 2025 16:54:09 +0000 Manifest next update: Sun 09 Nov 2025 16:54:09 +0000 Files and hashes: 1: XK9B9ks3Umh5jipdqgwUAADNdHM.crl (hash: NexeTog0nfkTfUrt47ZoOe5ChNyNShT2xNacttyK2J4=) 2: 1983150A3BB911EEB0CA4809C4F9AE02.roa (hash: SmYPi2RSloxSaKTT7RKvc8hMxfYT7RAYE5IrJ7qdRzM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.crl rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XK9B9ks3Umh5jipdqgwUAADNdHM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:54:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5172 (0x1434) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED73E, serialNumber=5CAF41F64B375268798E2A5DAA0C140000CD7473 Validity Not Before: Nov 2 16:54:09 2025 GMT Not After : Nov 9 16:54:09 2025 GMT Subject: CN=69078cb2-1280 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f0:42:47:fc:7f:45:f4:c2:b0:30:8f:58:ba: 7c:87:c2:21:59:d9:44:ab:f9:40:0a:95:5f:5c:db: b5:c1:54:ca:2e:e0:a7:0f:ea:1b:8b:b9:83:ce:99: e3:fb:68:c9:6c:ac:c9:ed:28:14:61:52:3b:d8:09: 6f:35:9b:61:66:28:1b:5f:8c:aa:bc:77:5c:01:be: 84:27:ff:5f:ab:ee:14:6c:ae:cf:b5:3b:e1:b0:4d: c2:74:d9:db:e0:50:81:a3:c4:49:25:09:30:0a:f7: 41:79:cd:ce:0f:4f:4f:9e:0f:a4:26:21:e9:9d:be: 00:13:45:c4:be:be:cc:b7:e4:26:d9:24:d5:4f:66: 40:1d:d9:0a:32:eb:d9:22:31:37:95:35:fd:79:bc: 2a:00:0c:20:78:cc:75:15:c8:f1:f1:bd:20:39:5f: 05:ca:6b:da:41:59:a0:6c:c2:3f:b4:f1:fb:24:d7: 8a:60:6c:1d:a0:53:08:3c:57:41:88:67:5c:19:79: ec:0d:71:ca:23:b1:15:0a:1f:7b:e1:e2:44:4f:24: e9:11:1b:c5:6a:5f:9f:06:be:28:9e:85:af:2f:8f: 80:3e:c4:00:4a:e7:59:c6:eb:21:9a:20:be:6e:3d: af:d1:74:82:b7:d5:eb:6e:6b:54:7d:80:51:68:eb: 54:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:D8:88:95:01:98:E0:AA:61:5C:C6:CA:89:40:9A:1E:61:25:02:7E X509v3 Authority Key Identifier: keyid:5C:AF:41:F6:4B:37:52:68:79:8E:2A:5D:AA:0C:14:00:00:CD:74:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XK9B9ks3Umh5jipdqgwUAADNdHM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:d2:c4:c6:05:86:0f:57:69:ae:74:fc:ff:9c:74:30:50:8a: 94:1e:1b:f2:d3:61:af:c0:be:b0:23:73:9e:dd:61:66:a4:c6: 0d:53:86:60:fa:1c:e2:d6:ef:b2:26:ce:48:c2:f9:79:f0:3f: 77:8a:95:c9:9d:35:4d:31:26:8f:86:1f:7c:b4:9d:20:92:fc: 2f:f6:40:a3:f4:79:59:cb:5a:71:80:06:fe:64:63:46:f7:26: b8:27:3d:28:09:94:9c:c7:68:e7:b9:b2:90:dd:9d:a4:5c:80: 6f:bd:a8:50:30:00:63:7b:0f:b6:13:e7:3e:0d:5c:47:d9:53: 04:c7:da:1b:14:dc:c8:da:e4:47:1f:54:cb:b4:3d:1b:49:19: 80:18:18:df:06:df:74:f1:d9:60:41:ab:a7:1c:1d:a9:43:a5: 98:72:e6:e3:f4:9b:9d:a7:ed:2e:3a:48:29:5e:d3:e6:8c:e5: c3:66:26:46:db:98:66:08:08:93:3a:a6:fb:9a:99:c4:0e:34: 09:a4:e2:24:f7:e7:e1:00:c0:f2:62:1b:20:5d:f8:f3:c1:b6: 89:07:e6:ac:bd:d2:30:75:b8:30:49:51:c4:a3:b2:1d:f8:0d: 74:29:5d:c9:4c:bd:c6:1a:52:8f:73:44:24:6f:8e:30:7b:7a: ef:ee:02:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFDQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ3M0UxMTAvBgNVBAUTKDVDQUY0MUY2NEIzNzUyNjg3OThFMkE1REFBMEMxNDAw MDBDRDc0NzMwHhcNMjUxMTAyMTY1NDA5WhcNMjUxMTA5MTY1NDA5WjAYMRYwFAYD VQQDEw02OTA3OGNiMi0xMjgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwvBCR/x/RfTCsDCPWLp8h8IhWdlEq/lACpVfXNu1wVTKLuCnD+obi7mDzpnj +2jJbKzJ7SgUYVI72AlvNZthZigbX4yqvHdcAb6EJ/9fq+4UbK7PtTvhsE3CdNnb 4FCBo8RJJQkwCvdBec3OD09Png+kJiHpnb4AE0XEvr7Mt+Qm2STVT2ZAHdkKMuvZ IjE3lTX9ebwqAAwgeMx1Fcjx8b0gOV8FymvaQVmgbMI/tPH7JNeKYGwdoFMIPFdB iGdcGXnsDXHKI7EVCh974eJETyTpERvFal+fBr4onoWvL4+APsQASudZxushmiC+ bj2v0XSCt9XrbmtUfYBRaOtUywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLjYiJUB mOCqYVzGyolAmh5hJQJ+MB8GA1UdIwQYMBaAFFyvQfZLN1JoeY4qXaoMFAAAzXRz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDczRS8wMUI4MjEwQTg5 ODkxMUU4Qjk4QkVDM0FDNEY5QUUwMi9YSzlCOWtzM1VtaDVqaXBkcWd3VUFBRE5k SE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hLOUI5a3MzVW1oNWppcGRxZ3dVQUFETmRITS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDczRS8wMUI4MjEwQTg5ODkxMUU4Qjk4QkVDM0FDNEY5QUUwMi9YSzlCOWtzM1Vt aDVqaXBkcWd3VUFBRE5kSE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAK0sTGBYYPV2mudPz/nHQwUIqUHhvy02GvwL6wI3Oe3WFmpMYNU4Zg +hzi1u+yJs5Iwvl58D93ipXJnTVNMSaPhh98tJ0gkvwv9kCj9HlZy1pxgAb+ZGNG 9ya4Jz0oCZScx2jnubKQ3Z2kXIBvvahQMABjew+2E+c+DVxH2VMEx9obFNzI2uRH H1TLtD0bSRmAGBjfBt908dlgQaunHB2pQ6WYcubj9Judp+0uOkgpXtPmjOXDZiZG 25hmCAiTOqb7mpnEDjQJpOIk9+fhAMDyYhsgXfjzwbaJB+asvdIwdbgwSVHEo7Id +A10KV3JTL3GGlKPc0Qkb44we3rv7gK5 -----END CERTIFICATE-----Generated at Tue Nov 4 08:16:09 2025 by rpki-client