$ rpki-client -vvf rpki.apnic.net/member_repository/A91F69E7/46AAD6B2904011EAA688BE45C4F9AE02/XhBeDvkNGLn6S4j640EMah3vcZA.mft File: XhBeDvkNGLn6S4j640EMah3vcZA.mft (raw, json) Hash identifier: ab0DW1BmE4NZ9U5IJR+DMsKM69caxd8DWR5OiUZofOY= Subject key identifier: BE:E0:81:3E:A8:22:C8:A8:23:F5:84:F0:8B:D1:29:5F:93:62:EF:06 Authority key identifier: 5E:10:5E:0E:F9:0D:18:B9:FA:4B:88:FA:E3:41:0C:6A:1D:EF:71:90 Certificate issuer: /CN=A91F69E7/serialNumber=5E105E0EF90D18B9FA4B88FAE3410C6A1DEF7190 Certificate serial: 0C2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XhBeDvkNGLn6S4j640EMah3vcZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F69E7/46AAD6B2904011EAA688BE45C4F9AE02/XhBeDvkNGLn6S4j640EMah3vcZA.mft Manifest number: 0AEF Signing time: Sun 02 Nov 2025 19:56:04 +0000 Manifest this update: Sun 02 Nov 2025 19:56:04 +0000 Manifest next update: Sun 09 Nov 2025 19:56:04 +0000 Files and hashes: 1: XhBeDvkNGLn6S4j640EMah3vcZA.crl (hash: TvPQUhDh8zv6/I2PPC9elRcrihlOyzwr8q/p79xhDUE=) 2: CED9053CE35211EDB7F6B44EC4F9AE02.roa (hash: xTtZn9aZIB/fSzr6F1pFXv9qqXV1JjTBS40WClRRCIw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F69E7/46AAD6B2904011EAA688BE45C4F9AE02/XhBeDvkNGLn6S4j640EMah3vcZA.crl rsync://rpki.apnic.net/member_repository/A91F69E7/46AAD6B2904011EAA688BE45C4F9AE02/XhBeDvkNGLn6S4j640EMah3vcZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XhBeDvkNGLn6S4j640EMah3vcZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:56:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3118 (0xc2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F69E7, serialNumber=5E105E0EF90D18B9FA4B88FAE3410C6A1DEF7190 Validity Not Before: Nov 2 19:56:04 2025 GMT Not After : Nov 9 19:56:04 2025 GMT Subject: CN=6907b754-9f31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:9c:67:1c:cf:b9:dc:6a:41:5f:a5:50:9f:36: 9b:5d:a8:4b:73:e0:c1:ce:fd:65:48:3d:2c:b2:a0: 1e:40:4c:7f:78:8e:44:0e:ba:d4:24:89:19:59:95: 96:89:79:5e:37:14:e7:d4:6c:3c:fd:d6:6f:77:5e: 19:16:eb:d8:55:27:23:f9:f4:3b:cd:ac:87:cf:5e: c7:a9:90:ef:46:47:1d:73:f0:e8:bd:63:0b:b5:ad: 70:e8:23:9e:18:85:74:10:0a:5d:0b:af:5b:d8:c4: e4:e4:93:6a:82:6a:61:2a:f7:b1:a0:03:d6:f2:26: e2:37:c0:0f:a6:95:14:83:ee:3b:af:84:ab:c6:d8: ee:c0:fb:c6:47:86:c1:81:e3:7a:aa:5b:2f:24:cf: c5:2f:d3:f3:dc:30:f3:d3:b9:0d:2a:74:74:c1:48: cd:49:2b:b2:67:89:b3:d5:1a:ff:e7:3e:10:26:77: 6e:55:13:bc:38:49:d8:b8:ed:58:65:e0:bb:16:20: 55:0f:64:1b:ca:26:60:67:3d:be:a0:3e:6b:12:6d: ce:6d:2f:05:2a:33:5b:dc:51:c2:a6:07:45:3d:ea: 69:31:37:8d:95:94:5c:16:31:df:17:68:3c:e4:b1: da:05:7f:dc:25:51:43:76:4b:43:52:0c:90:71:8b: 7f:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:E0:81:3E:A8:22:C8:A8:23:F5:84:F0:8B:D1:29:5F:93:62:EF:06 X509v3 Authority Key Identifier: keyid:5E:10:5E:0E:F9:0D:18:B9:FA:4B:88:FA:E3:41:0C:6A:1D:EF:71:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F69E7/46AAD6B2904011EAA688BE45C4F9AE02/XhBeDvkNGLn6S4j640EMah3vcZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XhBeDvkNGLn6S4j640EMah3vcZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F69E7/46AAD6B2904011EAA688BE45C4F9AE02/XhBeDvkNGLn6S4j640EMah3vcZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:e4:04:0a:b0:37:c6:07:ea:ad:6e:ea:58:1c:28:f7:56:6e: ab:87:39:8a:c9:6e:8d:d6:09:22:48:e5:50:36:86:75:30:12: cb:7f:ad:c5:be:dc:22:36:f4:8f:35:1a:39:49:5c:a5:0d:58: 3e:ef:5c:61:10:85:a3:98:36:fe:7f:70:e2:9d:cf:4a:93:9b: d0:40:6a:c7:dc:15:8a:69:71:dd:dd:df:21:2c:b6:3d:94:40: 48:0d:2f:fc:15:f9:26:e4:05:7c:fb:ae:aa:0a:0f:64:6d:a8: 7f:54:3b:54:df:8a:04:92:ef:31:e3:1c:2b:c3:6f:ab:c6:c6: 65:08:d7:58:4b:9e:3c:62:b2:72:16:ef:bd:e7:a6:2e:77:da: fd:0f:64:3a:52:a7:8a:63:fe:88:ce:a3:13:a3:f1:ef:9d:fb: d9:04:92:56:33:30:3f:d7:68:1a:b9:56:db:df:39:48:9a:bd: 64:e5:4e:63:e0:1d:14:8b:dd:24:35:81:e2:44:43:f5:d2:89: 06:0a:8c:00:7d:a9:1a:e5:4e:d4:f1:41:d6:2c:92:51:b6:3c: 12:b2:24:6a:78:d0:fe:df:fa:5b:e6:41:02:92:59:b7:a5:83: 7b:b8:b4:4e:53:b2:32:1c:f5:03:e4:52:91:3c:a0:6c:f1:ec: 94:4d:76:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDC4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY5RTcxMTAvBgNVBAUTKDVFMTA1RTBFRjkwRDE4QjlGQTRCODhGQUUzNDEwQzZB MURFRjcxOTAwHhcNMjUxMTAyMTk1NjA0WhcNMjUxMTA5MTk1NjA0WjAYMRYwFAYD VQQDEw02OTA3Yjc1NC05ZjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6ZxnHM+53GpBX6VQnzabXahLc+DBzv1lSD0ssqAeQEx/eI5EDrrUJIkZWZWW iXleNxTn1Gw8/dZvd14ZFuvYVScj+fQ7zayHz17HqZDvRkcdc/DovWMLta1w6COe GIV0EApdC69b2MTk5JNqgmphKvexoAPW8ibiN8APppUUg+47r4SrxtjuwPvGR4bB geN6qlsvJM/FL9Pz3DDz07kNKnR0wUjNSSuyZ4mz1Rr/5z4QJnduVRO8OEnYuO1Y ZeC7FiBVD2QbyiZgZz2+oD5rEm3ObS8FKjNb3FHCpgdFPeppMTeNlZRcFjHfF2g8 5LHaBX/cJVFDdktDUgyQcYt/xwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL7ggT6o IsioI/WE8IvRKV+TYu8GMB8GA1UdIwQYMBaAFF4QXg75DRi5+kuI+uNBDGod73GQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjlFNy80NkFBRDZCMjkw NDAxMUVBQTY4OEJFNDVDNEY5QUUwMi9YaEJlRHZrTkdMbjZTNGo2NDBFTWFoM3Zj WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hoQmVEdmtOR0xuNlM0ajY0MEVNYWgzdmNaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjlFNy80NkFBRDZCMjkwNDAxMUVBQTY4OEJFNDVDNEY5QUUwMi9YaEJlRHZrTkdM bjZTNGo2NDBFTWFoM3ZjWkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB85AQKsDfGB+qtbupYHCj3Vm6rhzmKyW6N1gkiSOVQNoZ1MBLLf63F vtwiNvSPNRo5SVylDVg+71xhEIWjmDb+f3Dinc9Kk5vQQGrH3BWKaXHd3d8hLLY9 lEBIDS/8Ffkm5AV8+66qCg9kbah/VDtU34oEku8x4xwrw2+rxsZlCNdYS548YrJy Fu+956Yud9r9D2Q6UqeKY/6IzqMTo/HvnfvZBJJWMzA/12gauVbb3zlImr1k5U5j 4B0Ui90kNYHiREP10okGCowAfaka5U7U8UHWLJJRtjwSsiRqeND+3/pb5kECklm3 pYN7uLROU7IyHPUD5FKRPKBs8eyUTXag -----END CERTIFICATE-----Generated at Tue Nov 4 19:04:08 2025 by rpki-client