$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft File: XmtaBob1a6DA93-zvzGzhWMiCCQ.mft (raw, json) Hash identifier: kaR3AicIWHNvO8wNn1xnwYwExI3Aq/DlEv8stURTaRg= Subject key identifier: DE:A4:AE:78:44:48:A0:20:FC:A9:30:D8:A1:31:6C:D7:54:18:10:C7 Authority key identifier: 5E:6B:5A:06:86:F5:6B:A0:C0:F7:7F:B3:BF:31:B3:85:63:22:08:24 Certificate issuer: /CN=A91FE107/serialNumber=5E6B5A0686F56BA0C0F77FB3BF31B38563220824 Certificate serial: 2337 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft Manifest number: 231D Signing time: Tue 04 Nov 2025 15:55:16 +0000 Manifest this update: Tue 04 Nov 2025 15:55:16 +0000 Manifest next update: Tue 11 Nov 2025 15:55:16 +0000 Files and hashes: 1: XmtaBob1a6DA93-zvzGzhWMiCCQ.crl (hash: BO+varnTFIlvKCuLPNTD0oqU943qtqVXUJ6v4uA6qr0=) 2: 44C007B0A0D611EDA2603C4EC4F9AE02.roa (hash: MAOIki/mm/t0sbRkALRqm8AR2/Jy8UBEI5Awsr4aYLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.crl rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:55:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9015 (0x2337) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE107, serialNumber=5E6B5A0686F56BA0C0F77FB3BF31B38563220824 Validity Not Before: Nov 4 15:55:16 2025 GMT Not After : Nov 11 15:55:16 2025 GMT Subject: CN=690a21e4-2c89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:fc:e8:84:7f:c5:8a:33:75:0c:b1:e7:78:3d: 09:d5:7f:b8:c3:4a:f5:62:7e:85:0b:7b:d6:18:0c: 8b:96:c1:60:87:8e:a6:c8:1b:a6:37:e6:2a:f9:61: 75:1d:6d:46:b7:ca:e4:31:68:15:f2:8d:9f:75:a6: e9:ff:57:0d:94:4c:d0:39:58:04:55:97:1d:1b:9b: f0:d6:40:6a:44:99:05:1d:2e:0a:27:3e:e0:6c:29: 1e:f4:55:21:7a:b4:67:d0:19:6b:c1:7e:00:01:04: d0:e5:6d:17:32:59:ac:a6:65:63:f9:22:8d:57:17: 4e:6d:0a:73:42:10:8c:97:60:b0:6c:73:a1:8f:86: ed:96:e9:44:52:4e:aa:81:76:fe:71:73:ea:2c:6a: 07:48:00:40:7b:3d:15:2a:af:1c:83:09:8b:69:8e: c4:22:a6:6a:d3:66:ec:19:0d:9e:19:63:44:b3:42: f6:d5:91:62:3d:bb:99:c8:6d:56:40:d1:0d:29:77: 61:ad:7a:0a:06:be:25:ec:e4:3f:2a:f2:d7:18:93: ab:40:63:5b:75:49:b8:c9:7a:4c:22:b6:69:2a:da: 58:0d:75:e1:1b:66:6b:d0:3c:a4:9d:49:b2:6f:91: 65:40:39:de:14:e8:05:72:87:f0:0e:2e:d5:60:df: cd:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:A4:AE:78:44:48:A0:20:FC:A9:30:D8:A1:31:6C:D7:54:18:10:C7 X509v3 Authority Key Identifier: keyid:5E:6B:5A:06:86:F5:6B:A0:C0:F7:7F:B3:BF:31:B3:85:63:22:08:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:c6:7c:0c:54:8c:14:5e:4e:28:9b:6d:f9:b6:b7:48:73:db: bd:ca:1b:3f:20:4e:b9:93:6d:2b:1f:f8:26:b2:1b:a6:26:f2: fa:1a:f7:25:09:65:7f:36:e2:ba:15:53:40:31:bb:f4:68:08: 48:7d:4e:7e:54:17:6b:e8:20:96:34:0a:80:bb:7e:55:fc:9f: 79:ec:32:a3:08:71:9e:7f:41:6a:6d:f4:11:37:e7:57:67:c3: b3:fc:60:6a:bb:85:0f:a9:36:78:8d:12:a8:d5:f0:e7:76:7e: 17:7c:05:d9:50:22:fa:36:a8:79:3e:53:1c:85:e9:4f:ca:97: fc:ac:64:ab:88:16:71:b1:3c:cc:95:65:27:01:6b:c8:76:42: db:9a:eb:d2:5f:de:d8:b8:50:ba:aa:db:f8:9e:e7:a2:97:65: 9f:b4:59:54:b8:28:dd:cb:af:5a:bb:d1:67:0f:7b:f8:f0:31: fb:b2:ee:99:67:b0:b4:a5:d6:f5:a0:f9:90:4d:49:b6:31:e8: ae:ee:75:98:9c:27:5a:51:5d:9c:47:9f:82:98:5b:84:6e:7d: e2:f2:be:ef:3a:3a:3e:0b:bd:90:4c:24:4d:0f:81:1b:c1:32: 74:99:0c:b3:fa:8c:07:94:fd:2b:a2:60:fa:10:4a:e1:d6:22: 67:f4:ac:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIzcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkUxMDcxMTAvBgNVBAUTKDVFNkI1QTA2ODZGNTZCQTBDMEY3N0ZCM0JGMzFCMzg1 NjMyMjA4MjQwHhcNMjUxMTA0MTU1NTE2WhcNMjUxMTExMTU1NTE2WjAYMRYwFAYD VQQDEw02OTBhMjFlNC0yYzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwPzohH/FijN1DLHneD0J1X+4w0r1Yn6FC3vWGAyLlsFgh46myBumN+Yq+WF1 HW1Gt8rkMWgV8o2fdabp/1cNlEzQOVgEVZcdG5vw1kBqRJkFHS4KJz7gbCke9FUh erRn0BlrwX4AAQTQ5W0XMlmspmVj+SKNVxdObQpzQhCMl2CwbHOhj4btlulEUk6q gXb+cXPqLGoHSABAez0VKq8cgwmLaY7EIqZq02bsGQ2eGWNEs0L21ZFiPbuZyG1W QNENKXdhrXoKBr4l7OQ/KvLXGJOrQGNbdUm4yXpMIrZpKtpYDXXhG2Zr0DyknUmy b5FlQDneFOgFcofwDi7VYN/NhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN6krnhE SKAg/Kkw2KExbNdUGBDHMB8GA1UdIwQYMBaAFF5rWgaG9WugwPd/s78xs4VjIggk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTEwNy9FRTM1QzQ0NjlF NjQxMUU1OUQ0OEZCNjBDNEY5QUUwMi9YbXRhQm9iMWE2REE5My16dnpHemhXTWlD Q1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1htdGFCb2IxYTZEQTkzLXp2ekd6aFdNaUNDUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTEwNy9FRTM1QzQ0NjlFNjQxMUU1OUQ0OEZCNjBDNEY5QUUwMi9YbXRhQm9iMWE2 REE5My16dnpHemhXTWlDQ1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyxnwMVIwUXk4om235trdIc9u9yhs/IE65k20rH/gmshumJvL6Gvcl CWV/NuK6FVNAMbv0aAhIfU5+VBdr6CCWNAqAu35V/J957DKjCHGef0FqbfQRN+dX Z8Oz/GBqu4UPqTZ4jRKo1fDndn4XfAXZUCL6Nqh5PlMchelPypf8rGSriBZxsTzM lWUnAWvIdkLbmuvSX97YuFC6qtv4nueil2WftFlUuCjdy69au9FnD3v48DH7su6Z Z7C0pdb1oPmQTUm2Meiu7nWYnCdaUV2cR5+CmFuEbn3i8r7vOjo+C72QTCRND4Eb wTJ0mQyz+owHlP0romD6EErh1iJn9Kya -----END CERTIFICATE-----Generated at Wed Nov 5 15:03:54 2025 by rpki-client