$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8119/A7EC596C133311E5B83D0F7BC4F9AE02/Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.mft File: Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.mft (raw, json) Hash identifier: o3i82JQWC617rJPad0nkQNii7pFjSzjxHj8DoCNkC6g= Subject key identifier: 2F:92:1A:E4:2F:7A:DB:68:7B:E9:02:A3:5C:6A:EF:30:04:30:7D:BD Authority key identifier: 5F:38:F4:19:51:61:62:BD:88:6E:40:BD:A9:27:F5:5D:C6:FF:3E:62 Certificate issuer: /CN=A91F8119/serialNumber=5F38F419516162BD886E40BDA927F55DC6FF3E62 Certificate serial: 25FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8119/A7EC596C133311E5B83D0F7BC4F9AE02/Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.mft Manifest number: 25E3 Signing time: Tue 04 Nov 2025 15:47:52 +0000 Manifest this update: Tue 04 Nov 2025 15:47:51 +0000 Manifest next update: Tue 11 Nov 2025 15:47:51 +0000 Files and hashes: 1: Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.crl (hash: Yku0aAXyW9BBaAGcAhgHju8lNF3TG2FAy2kkSEPC60I=) 2: 171130AE15F011EC805A0A2FC4F9AE02.roa (hash: 41BdfwHnGG7Imzeq7lbaqU4+u/YDHu3w/vuTNhAYy2M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8119/A7EC596C133311E5B83D0F7BC4F9AE02/Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.crl rsync://rpki.apnic.net/member_repository/A91F8119/A7EC596C133311E5B83D0F7BC4F9AE02/Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:47:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9725 (0x25fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8119, serialNumber=5F38F419516162BD886E40BDA927F55DC6FF3E62 Validity Not Before: Nov 4 15:47:51 2025 GMT Not After : Nov 11 15:47:51 2025 GMT Subject: CN=690a2028-8bcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ee:66:80:e7:f4:62:65:d8:b8:bb:4a:66:ed: e9:11:2e:23:5d:66:b6:ad:c6:ce:9d:cc:4d:42:1c: d1:ac:1f:73:56:8b:0d:e8:e0:83:44:e3:ed:da:b5: 3a:58:01:9a:e6:8e:79:20:fc:ef:e6:5e:68:bc:f6: c9:e6:da:17:8e:9e:ed:96:e8:a2:c4:d4:d2:86:3b: 4e:c7:a0:57:96:8d:4f:5e:6f:29:78:c4:ee:c9:67: 37:23:d9:99:ce:4e:4b:36:72:c7:e4:1c:08:b2:00: 4f:aa:cc:42:9f:78:70:d7:71:7c:60:66:bf:49:aa: cf:72:61:42:5d:da:5c:49:17:e3:7f:f1:e0:12:cf: d3:25:3c:21:6f:58:19:b1:a8:db:30:64:2c:9f:04: 45:00:b6:09:51:8d:bf:3f:68:44:76:2e:29:fc:c8: cf:0a:5f:a1:ba:eb:9a:55:46:a6:75:93:a7:42:2c: ac:57:3b:f9:09:af:90:41:48:43:3c:c2:b2:79:20: ec:95:f5:04:ac:07:b5:2b:f9:23:af:78:d0:2f:64: dd:65:87:e0:b0:3b:9f:21:77:be:d6:b2:1d:21:8e: 4a:ee:39:34:95:3f:fd:f8:3d:86:ab:6b:c1:52:83: 5c:c6:ad:80:68:a0:18:92:43:33:70:90:99:43:5f: 3c:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:92:1A:E4:2F:7A:DB:68:7B:E9:02:A3:5C:6A:EF:30:04:30:7D:BD X509v3 Authority Key Identifier: keyid:5F:38:F4:19:51:61:62:BD:88:6E:40:BD:A9:27:F5:5D:C6:FF:3E:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8119/A7EC596C133311E5B83D0F7BC4F9AE02/Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8119/A7EC596C133311E5B83D0F7BC4F9AE02/Xzj0GVFhYr2IbkC9qSf1Xcb_PmI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:64:43:f0:dd:95:12:af:e7:3f:76:af:7a:30:5f:47:f3:02: 89:1a:88:db:a1:d1:00:4e:53:f0:7b:da:f2:4d:05:d1:7c:27: 0d:ec:9e:22:23:f1:81:ba:eb:a6:8b:8f:57:ef:f7:c8:fd:53: 32:8a:c3:3a:d6:40:b2:1d:51:e8:d6:bb:45:95:71:54:0a:4f: c1:b7:67:09:25:47:1c:2f:53:f1:f8:1f:39:c5:cb:a2:a4:f5: ca:1e:0f:4f:40:b7:94:43:39:32:6f:99:fb:0c:fb:2c:6f:b7: c4:24:35:ef:f2:f1:bd:2d:b1:fa:2a:31:c2:7a:f8:64:46:b1: d4:65:5d:ff:86:86:8a:07:06:d2:b6:ab:97:6d:81:b0:b6:97: d4:83:62:66:2d:42:84:f6:af:5e:10:b9:5b:fc:d3:bd:3e:cd: 12:23:fd:63:a4:4e:29:b0:46:a1:a7:f1:ff:40:b2:90:41:1b: 70:23:b2:54:d7:4a:cf:95:45:53:20:3a:89:fe:b6:30:4b:00: 03:64:56:a6:42:db:cf:41:40:17:f4:27:3a:03:20:19:4c:f1: 89:cc:ce:01:89:c2:ca:6a:45:85:57:42:9b:2d:45:eb:7d:c3: 92:f1:29:89:0a:de:3e:c6:15:34:9a:0b:9a:e9:5f:47:c8:02: 47:d6:a4:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJf0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxMTkxMTAvBgNVBAUTKDVGMzhGNDE5NTE2MTYyQkQ4ODZFNDBCREE5MjdGNTVE QzZGRjNFNjIwHhcNMjUxMTA0MTU0NzUxWhcNMjUxMTExMTU0NzUxWjAYMRYwFAYD VQQDEw02OTBhMjAyOC04YmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx+5mgOf0YmXYuLtKZu3pES4jXWa2rcbOncxNQhzRrB9zVosN6OCDROPt2rU6 WAGa5o55IPzv5l5ovPbJ5toXjp7tluiixNTShjtOx6BXlo1PXm8peMTuyWc3I9mZ zk5LNnLH5BwIsgBPqsxCn3hw13F8YGa/SarPcmFCXdpcSRfjf/HgEs/TJTwhb1gZ sajbMGQsnwRFALYJUY2/P2hEdi4p/MjPCl+huuuaVUamdZOnQiysVzv5Ca+QQUhD PMKyeSDslfUErAe1K/kjr3jQL2TdZYfgsDufIXe+1rIdIY5K7jk0lT/9+D2Gq2vB UoNcxq2AaKAYkkMzcJCZQ188TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC+SGuQv ettoe+kCo1xq7zAEMH29MB8GA1UdIwQYMBaAFF849BlRYWK9iG5Avakn9V3G/z5i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODExOS9BN0VDNTk2QzEz MzMxMUU1QjgzRDBGN0JDNEY5QUUwMi9YemowR1ZGaFlyMklia0M5cVNmMVhjYl9Q bUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h6ajBHVkZoWXIySWJrQzlxU2YxWGNiX1BtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODExOS9BN0VDNTk2QzEzMzMxMUU1QjgzRDBGN0JDNEY5QUUwMi9YemowR1ZGaFly Mklia0M5cVNmMVhjYl9QbUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTZEPw3ZUSr+c/dq96MF9H8wKJGojbodEATlPwe9ryTQXRfCcN7J4i I/GBuuumi49X7/fI/VMyisM61kCyHVHo1rtFlXFUCk/Bt2cJJUccL1Px+B85xcui pPXKHg9PQLeUQzkyb5n7DPssb7fEJDXv8vG9LbH6KjHCevhkRrHUZV3/hoaKBwbS tquXbYGwtpfUg2JmLUKE9q9eELlb/NO9Ps0SI/1jpE4psEahp/H/QLKQQRtwI7JU 10rPlUVTIDqJ/rYwSwADZFamQtvPQUAX9Cc6AyAZTPGJzM4BicLKakWFV0KbLUXr fcOS8SmJCt4+xhU0mgua6V9HyAJH1qSD -----END CERTIFICATE-----Generated at Wed Nov 5 16:36:52 2025 by rpki-client