$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft File: Xx7oK_cJomzAAJlbR0geVPbzgG4.mft (raw, json) Hash identifier: pd0qObcdM110qJgmffV17tEef/127IZHZl1z1oQ5l4E= Subject key identifier: 15:AE:61:80:E1:7F:99:41:6F:C9:0D:FE:31:5C:2C:17:09:1B:4A:88 Authority key identifier: 5F:1E:E8:2B:F7:09:A2:6C:C0:00:99:5B:47:48:1E:54:F6:F3:80:6E Certificate issuer: /CN=A91F9E0A/serialNumber=5F1EE82BF709A26CC000995B47481E54F6F3806E Certificate serial: 0104 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xx7oK_cJomzAAJlbR0geVPbzgG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft Manifest number: 0100 Signing time: Wed 05 Nov 2025 05:21:18 +0000 Manifest this update: Wed 05 Nov 2025 05:21:17 +0000 Manifest next update: Wed 12 Nov 2025 05:21:17 +0000 Files and hashes: 1: Xx7oK_cJomzAAJlbR0geVPbzgG4.crl (hash: F6leq+530rLghQwsHHYm0m8reqWtb/R0LYenbvz4t6Q=) 2: 9F4A37143EA511EF882FE276C4F9AE02.roa (hash: n1rSG6+YrBdrpyC7jAy4PT81hFwvfJMiF3pinZ5UvAs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.crl rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xx7oK_cJomzAAJlbR0geVPbzgG4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:21:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 260 (0x104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9E0A, serialNumber=5F1EE82BF709A26CC000995B47481E54F6F3806E Validity Not Before: Nov 5 05:21:17 2025 GMT Not After : Nov 12 05:21:17 2025 GMT Subject: CN=690adecd-7bb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:4d:13:7e:e4:1e:75:f1:31:80:aa:79:82:92: 58:5e:fa:1d:91:8c:7f:a0:e5:08:4a:63:3e:da:0a: a7:24:ea:2c:fb:de:3c:0a:d0:0c:fa:26:2d:09:fc: d9:d4:a1:7f:da:7d:c5:ff:a2:f2:e0:3b:ff:56:eb: 53:5e:58:bf:09:b8:c5:f9:06:88:e8:59:e0:80:00: 94:70:5d:01:61:5c:37:5e:63:4d:dc:fd:cb:ee:ef: 7c:4f:48:f5:d8:76:cd:43:9c:37:9f:cd:41:3e:18: 32:cb:12:3e:2a:36:8a:a3:4d:7d:f4:07:a4:78:c2: ff:ca:b5:e2:ce:23:38:95:75:55:8a:92:71:08:ef: b5:cc:ef:02:50:65:c6:bf:d6:f0:95:9d:d2:94:19: 87:ce:da:69:9a:2e:40:08:20:75:cc:8e:e5:b7:c7: 0a:e1:d7:b6:52:e5:99:d7:79:51:3e:1b:f5:41:97: 05:d3:29:ba:6a:1e:6e:88:e9:07:47:8c:7b:90:d3: 5d:a9:fb:a7:5d:c3:c5:78:9b:7b:0f:02:a0:25:31: ca:5c:9e:19:7c:20:4a:19:41:a1:b3:a9:2a:20:06: 8d:65:73:d8:6b:2a:d0:d4:c0:ca:d8:55:e1:78:2d: 61:29:a6:c2:a3:ec:b2:a6:0b:94:dc:19:d2:ba:6a: c3:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:AE:61:80:E1:7F:99:41:6F:C9:0D:FE:31:5C:2C:17:09:1B:4A:88 X509v3 Authority Key Identifier: keyid:5F:1E:E8:2B:F7:09:A2:6C:C0:00:99:5B:47:48:1E:54:F6:F3:80:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xx7oK_cJomzAAJlbR0geVPbzgG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:31:ca:70:8d:3d:d3:6e:52:03:75:4f:55:80:bd:68:b9:3f: 78:34:47:d3:65:62:65:97:c5:fc:ac:df:cb:26:f2:55:6a:20: aa:3b:89:a0:23:f8:96:c6:6b:77:2f:33:c4:b1:fc:df:52:fa: 6e:a5:d6:cf:58:a6:a9:6a:e8:03:29:fa:b0:a0:39:1a:7f:db: d6:41:53:59:c0:06:2b:b2:66:d9:6b:b9:f0:03:8b:0c:8a:14: 2f:64:22:ae:e8:d8:00:cf:c0:d9:d1:8c:22:77:2d:45:3c:4d: 6e:0e:b7:1a:06:a2:39:0f:b3:f5:57:b9:a5:1c:40:5a:dd:f6: d8:ae:13:71:4d:8b:97:bd:92:ac:47:32:35:03:da:5f:ef:9c: d9:f5:a8:40:80:5f:f2:43:3b:24:c6:87:ce:ea:d2:7a:15:39: 7e:81:2c:b7:05:fc:de:dc:70:26:69:2d:cf:03:f1:20:56:a6: 03:4b:53:84:97:05:bb:ae:de:09:dd:d5:13:12:dd:bb:71:bb: 09:47:2d:e3:ba:8f:2f:5c:95:76:70:87:46:48:88:53:31:35: e1:34:c9:8a:90:ca:a1:76:a1:fd:db:7a:58:7f:5b:32:cf:46: 02:7d:f8:4f:a8:5c:1a:00:bb:01:7e:a1:32:04:0e:e5:bf:01: 27:95:b8:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlFMEExMTAvBgNVBAUTKDVGMUVFODJCRjcwOUEyNkNDMDAwOTk1QjQ3NDgxRTU0 RjZGMzgwNkUwHhcNMjUxMTA1MDUyMTE3WhcNMjUxMTEyMDUyMTE3WjAYMRYwFAYD VQQDEw02OTBhZGVjZC03YmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl00TfuQedfExgKp5gpJYXvodkYx/oOUISmM+2gqnJOos+948CtAM+iYtCfzZ 1KF/2n3F/6Ly4Dv/VutTXli/CbjF+QaI6FnggACUcF0BYVw3XmNN3P3L7u98T0j1 2HbNQ5w3n81BPhgyyxI+KjaKo0199AekeML/yrXiziM4lXVVipJxCO+1zO8CUGXG v9bwlZ3SlBmHztppmi5ACCB1zI7lt8cK4de2UuWZ13lRPhv1QZcF0ym6ah5uiOkH R4x7kNNdqfunXcPFeJt7DwKgJTHKXJ4ZfCBKGUGhs6kqIAaNZXPYayrQ1MDK2FXh eC1hKabCo+yypguU3BnSumrDwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBWuYYDh f5lBb8kN/jFcLBcJG0qIMB8GA1UdIwQYMBaAFF8e6Cv3CaJswACZW0dIHlT284Bu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUUwQS8wM0IwNTJENDNF NjkxMUVGQTJDRTY3NkFDNEY5QUUwMi9YeDdvS19jSm9tekFBSmxiUjBnZVZQYnpn RzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1h4N29LX2NKb216QUFKbGJSMGdlVlBiemdHNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUUwQS8wM0IwNTJENDNFNjkxMUVGQTJDRTY3NkFDNEY5QUUwMi9YeDdvS19jSm9t ekFBSmxiUjBnZVZQYnpnRzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCMcpwjT3TblIDdU9VgL1ouT94NEfTZWJll8X8rN/LJvJVaiCqO4mg I/iWxmt3LzPEsfzfUvpupdbPWKapaugDKfqwoDkaf9vWQVNZwAYrsmbZa7nwA4sM ihQvZCKu6NgAz8DZ0Ywidy1FPE1uDrcaBqI5D7P1V7mlHEBa3fbYrhNxTYuXvZKs RzI1A9pf75zZ9ahAgF/yQzskxofO6tJ6FTl+gSy3Bfze3HAmaS3PA/EgVqYDS1OE lwW7rt4J3dUTEt27cbsJRy3juo8vXJV2cIdGSIhTMTXhNMmKkMqhdqH923pYf1sy z0YCffhPqFwaALsBfqEyBA7lvwEnlbjl -----END CERTIFICATE-----Generated at Wed Nov 5 16:26:52 2025 by rpki-client