$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft File: XEzzdpk9EYUoJw3ZUvMCztV18dw.mft (raw, json) Hash identifier: AOlM8j/1OE/3pbPvF5Mkx79QDRXCMqLKpcjXWjMCtGk= Subject key identifier: 74:F9:38:B7:D8:81:5C:F4:03:EF:2C:D8:E9:40:06:FA:FA:C2:BF:E5 Authority key identifier: 5C:4C:F3:76:99:3D:11:85:28:27:0D:D9:52:F3:02:CE:D5:75:F1:DC Certificate issuer: /CN=A91FBD89/serialNumber=5C4CF376993D118528270DD952F302CED575F1DC Certificate serial: 055A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEzzdpk9EYUoJw3ZUvMCztV18dw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft Manifest number: 055A Signing time: Tue 04 Nov 2025 23:28:28 +0000 Manifest this update: Tue 04 Nov 2025 23:28:28 +0000 Manifest next update: Tue 11 Nov 2025 23:28:28 +0000 Files and hashes: 1: XEzzdpk9EYUoJw3ZUvMCztV18dw.crl (hash: wYtqdyN355aYUovTEN5hkxuzNyJSHJ41l25Ck0IPFYM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.crl rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEzzdpk9EYUoJw3ZUvMCztV18dw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:28:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1370 (0x55a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBD89, serialNumber=5C4CF376993D118528270DD952F302CED575F1DC Validity Not Before: Nov 4 23:28:28 2025 GMT Not After : Nov 11 23:28:28 2025 GMT Subject: CN=690a8c1c-004c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:46:40:51:1a:91:68:6c:ec:a2:e8:20:21:cf: ac:43:a1:93:fe:6c:57:85:e1:28:60:69:b6:3d:3f: c9:62:68:be:c2:5a:d2:0a:80:82:34:7e:c9:45:8f: 84:f6:ab:0c:ca:81:e4:b2:8d:21:ca:70:cc:2c:55: a1:6e:36:18:bc:3d:e4:09:2a:68:b2:b2:48:91:19: e5:6c:b2:82:7b:93:bb:fd:34:20:67:02:10:78:ef: 0a:90:ad:b2:36:45:89:69:d9:7e:c8:db:35:3d:37: ec:8f:56:6d:86:8e:2c:c7:45:37:c6:64:4f:ca:b9: ca:79:18:b4:6a:4c:1b:9d:f6:09:f6:61:68:d6:f7: fa:ff:d2:0b:81:b5:5b:38:a7:38:a9:f3:cb:b6:c3: 76:13:32:ec:c6:9c:95:88:b8:e0:df:52:b2:30:ab: 97:33:6a:b4:19:d8:01:6d:79:e6:96:ab:83:5d:d9: 5c:f8:f8:14:c3:39:98:b4:9d:9d:e3:7c:85:89:0f: 78:48:05:43:32:b7:44:ff:72:af:d8:07:b4:57:1f: 2a:89:79:18:11:5d:eb:6f:82:e5:f9:ce:e9:f9:a9: 82:18:14:91:70:fe:6c:e0:04:c8:a1:f3:5d:12:64: 34:04:00:eb:b7:41:4b:8f:78:d3:06:d9:cf:a6:58: eb:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:F9:38:B7:D8:81:5C:F4:03:EF:2C:D8:E9:40:06:FA:FA:C2:BF:E5 X509v3 Authority Key Identifier: keyid:5C:4C:F3:76:99:3D:11:85:28:27:0D:D9:52:F3:02:CE:D5:75:F1:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEzzdpk9EYUoJw3ZUvMCztV18dw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:e3:4a:3f:db:9b:c0:30:d8:fc:c6:16:77:3f:b3:20:76:2f: 9a:54:77:16:b7:52:6e:0a:e1:ad:18:ba:5c:c8:7b:49:77:b6: 72:08:14:db:b0:7c:a2:1b:9d:99:c7:11:7c:0d:0d:4f:e7:eb: 05:c9:98:c7:7d:f2:54:c9:0c:a1:c5:34:f4:05:84:6c:0b:6b: b6:2c:1a:ef:2c:30:19:da:49:67:5c:79:46:51:7c:b4:b4:62: 6c:8e:37:39:9a:14:51:f3:9b:2f:0e:e4:ec:36:46:6e:78:fb: ca:37:5d:e1:4c:00:e2:16:7d:84:f9:2a:f2:24:1c:5f:25:ed: 79:a7:c3:25:2d:ab:23:5f:5e:7b:e9:a8:39:45:3b:b0:69:89: a7:3a:ef:08:1c:81:3e:ef:56:88:28:6a:f4:9a:31:22:bb:87: 86:5b:c0:53:81:93:76:3c:c1:cd:f8:52:e3:bc:fe:31:8f:3e: ac:55:df:1a:51:44:b7:aa:0a:00:05:d1:b4:c2:18:f0:d8:74: b8:25:22:f8:d2:b2:be:59:6d:1b:27:75:d6:18:5d:79:aa:16: 95:76:5a:62:da:0a:ab:18:e2:6a:40:c2:fc:96:2a:b4:e1:31: 41:6f:59:10:dd:e2:c6:f3:77:cf:bd:36:58:fc:f6:5e:10:12: 4b:d9:3b:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJEODkxMTAvBgNVBAUTKDVDNENGMzc2OTkzRDExODUyODI3MEREOTUyRjMwMkNF RDU3NUYxREMwHhcNMjUxMTA0MjMyODI4WhcNMjUxMTExMjMyODI4WjAYMRYwFAYD VQQDEw02OTBhOGMxYy0wMDRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuUZAURqRaGzsouggIc+sQ6GT/mxXheEoYGm2PT/JYmi+wlrSCoCCNH7JRY+E 9qsMyoHkso0hynDMLFWhbjYYvD3kCSposrJIkRnlbLKCe5O7/TQgZwIQeO8KkK2y NkWJadl+yNs1PTfsj1Ztho4sx0U3xmRPyrnKeRi0akwbnfYJ9mFo1vf6/9ILgbVb OKc4qfPLtsN2EzLsxpyViLjg31KyMKuXM2q0GdgBbXnmlquDXdlc+PgUwzmYtJ2d 43yFiQ94SAVDMrdE/3Kv2Ae0Vx8qiXkYEV3rb4Ll+c7p+amCGBSRcP5s4ATIofNd EmQ0BADrt0FLj3jTBtnPpljrxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHT5OLfY gVz0A+8s2OlABvr6wr/lMB8GA1UdIwQYMBaAFFxM83aZPRGFKCcN2VLzAs7VdfHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkQ4OS9GMzdDODhFRTBC N0UxMUVDODMxMjk2NDhDNEY5QUUwMi9YRXp6ZHBrOUVZVW9KdzNaVXZNQ3p0VjE4 ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hFenpkcGs5RVlVb0p3M1pVdk1DenRWMThkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkQ4OS9GMzdDODhFRTBCN0UxMUVDODMxMjk2NDhDNEY5QUUwMi9YRXp6ZHBrOUVZ VW9KdzNaVXZNQ3p0VjE4ZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCg40o/25vAMNj8xhZ3P7Mgdi+aVHcWt1JuCuGtGLpcyHtJd7ZyCBTb sHyiG52ZxxF8DQ1P5+sFyZjHffJUyQyhxTT0BYRsC2u2LBrvLDAZ2klnXHlGUXy0 tGJsjjc5mhRR85svDuTsNkZuePvKN13hTADiFn2E+SryJBxfJe15p8MlLasjX157 6ag5RTuwaYmnOu8IHIE+71aIKGr0mjEiu4eGW8BTgZN2PMHN+FLjvP4xjz6sVd8a UUS3qgoABdG0whjw2HS4JSL40rK+WW0bJ3XWGF15qhaVdlpi2gqrGOJqQML8liq0 4TFBb1kQ3eLG83fPvTZY/PZeEBJL2Tve -----END CERTIFICATE-----Generated at Wed Nov 5 05:49:55 2025 by rpki-client