$ rpki-client -vvf rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/XOWb6kBJP8xXRnFpIvGYjZYpH74.mft File: XOWb6kBJP8xXRnFpIvGYjZYpH74.mft (raw, json) Hash identifier: 2g73haTfDaI/0PsaXafKtTPBBR0zUETMwj+AXRGuPQM= Subject key identifier: 43:BF:FB:33:DE:FC:82:00:7E:FE:1D:A3:E4:31:98:31:B1:52:31:6E Authority key identifier: 5C:E5:9B:EA:40:49:3F:CC:57:46:71:69:22:F1:98:8D:96:29:1F:BE Certificate issuer: /CN=A9116D68/serialNumber=5CE59BEA40493FCC5746716922F1988D96291FBE Certificate serial: 08A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOWb6kBJP8xXRnFpIvGYjZYpH74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/XOWb6kBJP8xXRnFpIvGYjZYpH74.mft Manifest number: 17E4 Signing time: Sat 18 Oct 2025 18:11:14 +0000 Manifest this update: Sat 18 Oct 2025 18:11:13 +0000 Manifest next update: Sat 25 Oct 2025 18:11:13 +0000 Files and hashes: 1: XOWb6kBJP8xXRnFpIvGYjZYpH74.crl (hash: kjI5hKGWRn7YZwUiq4O6DvrFN3/ifMcYESHZ8WhSZPg=) 2: 98A1BAB6E9B611EE89994B66C4F9AE02.roa (hash: t2aB2zeGB7GLVJUFKuYwNrlRUrrBiilMq9C3DO3eLYk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/XOWb6kBJP8xXRnFpIvGYjZYpH74.crl rsync://rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/XOWb6kBJP8xXRnFpIvGYjZYpH74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOWb6kBJP8xXRnFpIvGYjZYpH74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:11:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2211 (0x8a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116D68, serialNumber=5CE59BEA40493FCC5746716922F1988D96291FBE Validity Not Before: Oct 18 18:11:13 2025 GMT Not After : Oct 25 18:11:13 2025 GMT Subject: CN=68f3d841-b9b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:e0:7e:b4:a0:4b:34:61:18:62:40:5d:0f:8d: 20:ee:46:f9:df:10:98:dd:5c:20:56:56:a4:c7:94: db:97:fd:f4:1e:19:75:c2:69:e8:4b:8c:ba:c6:be: b0:96:27:b1:2c:7d:11:11:d3:ff:95:65:03:c1:10: a7:a8:ec:18:fd:54:70:5b:e0:35:4c:aa:cf:42:81: bf:df:48:e1:62:9d:57:e2:bb:72:1a:57:2d:77:28: 02:4c:7a:34:5a:bc:1d:8c:e6:c9:70:9a:5f:99:72: d2:0c:19:5a:3d:e8:34:c5:da:0c:52:ee:7d:75:0c: f5:e5:5e:30:3b:f4:93:17:50:4c:fb:3c:90:af:b9: 72:28:1b:86:40:39:a7:05:46:9e:44:af:55:a2:31: 81:eb:7a:b3:27:fb:c7:1e:a7:d0:ed:de:ce:e1:66: 5e:d7:37:f8:7e:3f:a2:71:08:8c:07:d5:0e:64:55: f4:4c:8d:ab:20:89:27:59:69:99:bc:ac:c3:49:d2: f4:ba:fc:79:90:d4:2c:0c:25:17:8f:42:c8:55:33: 79:db:8a:e4:27:e0:16:2b:7b:2d:41:1c:8b:bf:5c: df:5d:2c:b8:1e:5f:12:18:4c:b6:6e:05:fb:3f:c3: db:8d:ef:c8:12:7d:02:49:22:1a:1d:1d:f2:04:b6: 79:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:BF:FB:33:DE:FC:82:00:7E:FE:1D:A3:E4:31:98:31:B1:52:31:6E X509v3 Authority Key Identifier: keyid:5C:E5:9B:EA:40:49:3F:CC:57:46:71:69:22:F1:98:8D:96:29:1F:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/XOWb6kBJP8xXRnFpIvGYjZYpH74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOWb6kBJP8xXRnFpIvGYjZYpH74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/XOWb6kBJP8xXRnFpIvGYjZYpH74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:52:69:8c:a6:e9:ea:73:12:f4:0e:95:4a:4a:65:4f:22:71: 2d:8b:8e:58:0f:f5:bf:e5:ab:1e:af:a9:53:9a:db:f6:57:e0: 52:93:4c:3a:42:f8:94:40:ef:92:d6:f8:13:f8:a3:58:46:e8: bc:df:fa:69:48:56:8c:f0:9b:19:b3:8b:b4:46:ec:d8:c7:6b: a9:78:43:f5:45:d3:28:1a:11:56:3a:78:1c:aa:96:e3:6b:57: f0:bd:4b:df:3e:73:74:ba:a5:1b:66:9d:13:ae:36:ad:5d:9d: 7f:e4:97:53:b1:1c:ac:5b:aa:f2:10:b2:bc:a2:02:56:4d:69: 7a:74:4b:ed:e4:8f:b0:8a:36:ef:17:a1:b9:33:a9:f2:4e:0b: ca:60:e9:ba:e1:90:6a:e2:4a:27:c5:89:74:a4:af:73:32:b4: 7f:66:e5:6d:7b:a8:0a:51:84:4f:0e:16:c8:78:1f:3d:ee:ae: c7:49:53:a9:a8:20:1a:bf:d6:f6:ea:2f:66:65:42:da:67:5a: 83:0c:f6:98:ef:eb:07:66:57:8b:5a:49:22:37:07:7e:bf:b6: 14:02:f7:da:66:85:73:9d:d4:3b:29:de:f0:c5:25:2c:07:07: 96:eb:35:7b:e4:f9:e5:2c:a9:1c:77:1f:c9:55:7f:42:e0:a4: 46:05:bb:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTZENjgxMTAvBgNVBAUTKDVDRTU5QkVBNDA0OTNGQ0M1NzQ2NzE2OTIyRjE5ODhE OTYyOTFGQkUwHhcNMjUxMDE4MTgxMTEzWhcNMjUxMDI1MTgxMTEzWjAYMRYwFAYD VQQDEw02OGYzZDg0MS1iOWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm+B+tKBLNGEYYkBdD40g7kb53xCY3VwgVlakx5Tbl/30Hhl1wmnoS4y6xr6w liexLH0REdP/lWUDwRCnqOwY/VRwW+A1TKrPQoG/30jhYp1X4rtyGlctdygCTHo0 WrwdjObJcJpfmXLSDBlaPeg0xdoMUu59dQz15V4wO/STF1BM+zyQr7lyKBuGQDmn BUaeRK9VojGB63qzJ/vHHqfQ7d7O4WZe1zf4fj+icQiMB9UOZFX0TI2rIIknWWmZ vKzDSdL0uvx5kNQsDCUXj0LIVTN524rkJ+AWK3stQRyLv1zfXSy4Hl8SGEy2bgX7 P8Pbje/IEn0CSSIaHR3yBLZ5qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEO/+zPe /IIAfv4do+QxmDGxUjFuMB8GA1UdIwQYMBaAFFzlm+pAST/MV0ZxaSLxmI2WKR++ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNkQ2OC83MjRDQzg0Qzc4 ODcxMUU5QTA4QUVDNjBDNEY5QUUwMi9YT1diNmtCSlA4eFhSbkZwSXZHWWpaWXBI NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hPV2I2a0JKUDh4WFJuRnBJdkdZalpZcEg3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NkQ2OC83MjRDQzg0Qzc4ODcxMUU5QTA4QUVDNjBDNEY5QUUwMi9YT1diNmtCSlA4 eFhSbkZwSXZHWWpaWXBINzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDVUmmMpunqcxL0DpVKSmVPInEti45YD/W/5aser6lTmtv2V+BSk0w6 QviUQO+S1vgT+KNYRui83/ppSFaM8JsZs4u0RuzYx2upeEP1RdMoGhFWOngcqpbj a1fwvUvfPnN0uqUbZp0TrjatXZ1/5JdTsRysW6ryELK8ogJWTWl6dEvt5I+wijbv F6G5M6nyTgvKYOm64ZBq4konxYl0pK9zMrR/ZuVte6gKUYRPDhbIeB897q7HSVOp qCAav9b26i9mZULaZ1qDDPaY7+sHZleLWkkiNwd+v7YUAvfaZoVzndQ7Kd7wxSUs BweW6zV75PnlLKkcdx/JVX9C4KRGBbvZ -----END CERTIFICATE-----Generated at Mon Oct 20 14:02:23 2025 by rpki-client