$ rpki-client -vvf rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft File: XJzBFCqQdWDNmfBuXdAt5OIulEU.mft (raw, json) Hash identifier: DOb5eXL+74RojuSwTo76EXKUktRA0LjDrzVRmjBa4bI= Subject key identifier: E6:DA:37:76:38:CC:6F:60:A4:8E:1C:F8:8D:14:64:AB:0D:4C:EF:54 Authority key identifier: 5C:9C:C1:14:2A:90:75:60:CD:99:F0:6E:5D:D0:2D:E4:E2:2E:94:45 Certificate issuer: /CN=A911636A/serialNumber=5C9CC1142A907560CD99F06E5DD02DE4E22E9445 Certificate serial: 0242 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJzBFCqQdWDNmfBuXdAt5OIulEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft Manifest number: 0235 Signing time: Sun 19 Oct 2025 04:18:06 +0000 Manifest this update: Sun 19 Oct 2025 04:18:05 +0000 Manifest next update: Sun 26 Oct 2025 04:18:05 +0000 Files and hashes: 1: XJzBFCqQdWDNmfBuXdAt5OIulEU.crl (hash: Vc1NaRLpqn3qoo00TURLUSjR7jCVfGnA+bB2p3UrSzA=) 2: D98071A44F4411F0AF01D40FC4F9AE02.roa (hash: jPpBuj/csuD+KDzy/QfN9S3fduIPNOyEYRQiDC1LErw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.crl rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJzBFCqQdWDNmfBuXdAt5OIulEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:18:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 578 (0x242) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911636A, serialNumber=5C9CC1142A907560CD99F06E5DD02DE4E22E9445 Validity Not Before: Oct 19 04:18:05 2025 GMT Not After : Oct 26 04:18:05 2025 GMT Subject: CN=68f4667d-0efb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:68:0e:9e:d0:d2:02:ff:10:cd:d3:e4:33:c7: 7b:32:ba:07:10:ae:6b:ba:b9:37:e4:3f:ec:1e:11: 6f:0d:08:48:f0:f5:cb:2c:78:76:ad:b6:22:9b:06: e1:8c:9e:73:b8:83:5d:b2:e5:fa:65:d5:48:a6:60: 9f:ab:d3:05:ee:e9:d4:c2:d1:80:05:02:c4:53:40: bb:7e:4b:77:18:1d:dc:f5:c7:28:86:14:1a:04:9e: 67:44:d1:dc:c2:5a:62:42:c8:e1:e7:1e:c8:2d:ba: 04:93:d0:45:98:41:14:e6:02:98:f9:d6:0b:77:4d: f1:83:d2:b0:cc:58:94:d4:45:50:c7:d9:73:d4:4a: 44:40:99:42:6c:ef:80:45:12:03:e6:82:bd:5d:51: 9a:2b:cf:e6:21:ca:9d:d9:15:fe:c4:ba:81:00:63: 8b:46:32:0e:cf:cc:b9:98:b0:de:fe:bc:49:10:27: ce:27:46:45:53:20:ef:4d:12:ab:53:26:71:cc:d2: dc:8e:5c:55:6f:42:3e:4b:9e:10:61:9d:32:bf:09: c0:b0:fa:9f:59:e2:38:46:93:92:40:5c:59:c1:20: 2e:4d:de:47:c2:14:de:e2:79:c6:65:81:88:e3:7b: 6a:c6:d4:00:90:db:98:97:cb:d1:0d:d1:7c:5d:3c: 64:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:DA:37:76:38:CC:6F:60:A4:8E:1C:F8:8D:14:64:AB:0D:4C:EF:54 X509v3 Authority Key Identifier: keyid:5C:9C:C1:14:2A:90:75:60:CD:99:F0:6E:5D:D0:2D:E4:E2:2E:94:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJzBFCqQdWDNmfBuXdAt5OIulEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:7d:8c:46:65:fb:db:18:91:40:08:a4:94:71:75:f8:e3:4b: 3d:c2:78:da:b7:75:30:76:3b:99:ac:b8:de:ae:07:96:6c:83: 22:05:75:b0:9d:d6:6e:39:7a:42:b0:e5:25:d4:1f:87:8f:85: bf:b2:47:fe:bc:78:4a:b4:47:45:0f:63:de:92:ef:ef:54:5d: b5:e8:c2:41:1c:46:a0:0e:96:1b:f8:39:46:bf:bd:1a:d5:6f: c8:74:0d:d6:31:6a:29:3f:06:49:fd:e3:85:cf:29:ff:16:3a: e8:50:26:ca:a3:bf:2c:c3:08:3c:cd:b4:75:28:c0:18:2a:90: 79:d7:62:5e:68:74:6a:a0:42:76:3f:a5:a6:3c:8d:d6:43:1d: dc:ac:07:a3:6e:49:0f:6a:e1:42:f7:e2:03:a6:3b:1c:12:86: 68:ef:8e:4e:ac:6e:da:8d:3b:71:ec:56:46:cb:ba:29:87:b6: b5:09:66:58:36:40:4c:7f:5d:ca:d5:b2:86:af:fe:d0:68:a2: 99:8e:e2:02:d1:27:27:8c:68:5c:64:d3:4b:ef:9e:ab:dc:ef: a3:3e:bb:b6:e7:76:d6:ae:13:74:66:2e:71:76:3a:23:51:e2: 55:e3:63:30:18:11:16:ec:8a:0e:17:32:04:2a:f7:6d:d0:a7: 2d:3c:26:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTYzNkExMTAvBgNVBAUTKDVDOUNDMTE0MkE5MDc1NjBDRDk5RjA2RTVERDAyREU0 RTIyRTk0NDUwHhcNMjUxMDE5MDQxODA1WhcNMjUxMDI2MDQxODA1WjAYMRYwFAYD VQQDEw02OGY0NjY3ZC0wZWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGgOntDSAv8QzdPkM8d7MroHEK5rurk35D/sHhFvDQhI8PXLLHh2rbYimwbh jJ5zuINdsuX6ZdVIpmCfq9MF7unUwtGABQLEU0C7fkt3GB3c9ccohhQaBJ5nRNHc wlpiQsjh5x7ILboEk9BFmEEU5gKY+dYLd03xg9KwzFiU1EVQx9lz1EpEQJlCbO+A RRID5oK9XVGaK8/mIcqd2RX+xLqBAGOLRjIOz8y5mLDe/rxJECfOJ0ZFUyDvTRKr UyZxzNLcjlxVb0I+S54QYZ0yvwnAsPqfWeI4RpOSQFxZwSAuTd5HwhTe4nnGZYGI 43tqxtQAkNuYl8vRDdF8XTxk6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFObaN3Y4 zG9gpI4c+I0UZKsNTO9UMB8GA1UdIwQYMBaAFFycwRQqkHVgzZnwbl3QLeTiLpRF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjM2QS9CMEYzM0QyQTY2 RUUxMUVEQjNCNDFBNURDNEY5QUUwMi9YSnpCRkNxUWRXRE5tZkJ1WGRBdDVPSXVs RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hKekJGQ3FRZFdETm1mQnVYZEF0NU9JdWxFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjM2QS9CMEYzM0QyQTY2RUUxMUVEQjNCNDFBNURDNEY5QUUwMi9YSnpCRkNxUWRX RE5tZkJ1WGRBdDVPSXVsRVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATfYxGZfvbGJFACKSUcXX440s9wnjat3UwdjuZrLjergeWbIMiBXWw ndZuOXpCsOUl1B+Hj4W/skf+vHhKtEdFD2Peku/vVF216MJBHEagDpYb+DlGv70a 1W/IdA3WMWopPwZJ/eOFzyn/FjroUCbKo78swwg8zbR1KMAYKpB512JeaHRqoEJ2 P6WmPI3WQx3crAejbkkPauFC9+IDpjscEoZo745OrG7ajTtx7FZGy7oph7a1CWZY NkBMf13K1bKGr/7QaKKZjuIC0ScnjGhcZNNL756r3O+jPru253bWrhN0Zi5xdjoj UeJV42MwGBEW7IoOFzIEKvdt0KctPCZd -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:45 2025 by rpki-client