$ rpki-client -vvf rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.mft File: xiZYMphXjR1K9yc-vXkccjCjdEk.mft (raw, json) Hash identifier: 7H1BKOYkZ6czGjYWTcKI78CMd9UH9Up9l6v86AQNwNo= Subject key identifier: 59:34:92:65:7A:DB:BB:30:25:C8:9F:20:B3:DF:B2:80:FD:BA:45:4D Authority key identifier: C6:26:58:32:98:57:8D:1D:4A:F7:27:3E:BD:79:1C:72:30:A3:74:49 Certificate issuer: /CN=A91186C2/serialNumber=C626583298578D1D4AF7273EBD791C7230A37449 Certificate serial: 90 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiZYMphXjR1K9yc-vXkccjCjdEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.mft Manifest number: 8F Signing time: Sun 19 Oct 2025 09:45:22 +0000 Manifest this update: Sun 19 Oct 2025 09:45:21 +0000 Manifest next update: Sun 26 Oct 2025 09:45:21 +0000 Files and hashes: 1: xiZYMphXjR1K9yc-vXkccjCjdEk.crl (hash: Yseg30rK6CBk+nqAAxsiuhzHEwQ+PhqoPe0O6n2ytoA=) 2: 7DFFCDA4D17F11EF8FAE452BC4F9AE02.roa (hash: 8Wzv5veel/E+M5qspAlwBsfA0pAvjm21LyceiyRo5cA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.crl rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiZYMphXjR1K9yc-vXkccjCjdEk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:45:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91186C2, serialNumber=C626583298578D1D4AF7273EBD791C7230A37449 Validity Not Before: Oct 19 09:45:21 2025 GMT Not After : Oct 26 09:45:21 2025 GMT Subject: CN=68f4b332-dd75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:e5:d6:b5:42:cd:1a:ec:a1:ea:af:1e:72:23: 2e:78:f3:3e:97:94:71:0c:a5:f1:1c:93:d1:90:75: 2b:51:43:ed:7e:d7:81:ad:39:74:da:0e:36:ab:72: 6e:b8:1f:e3:c3:99:85:14:55:ae:1e:00:47:ce:c5: d4:94:64:ac:1b:1b:dd:50:89:6d:e2:10:e0:c8:29: e2:de:10:2c:e1:0f:59:48:1e:e7:cd:84:8c:bb:8f: 9e:2f:40:26:94:f3:de:9e:19:fe:4f:f9:ed:a7:c1: cf:1d:4f:25:df:01:f7:38:77:1e:73:3e:6a:3e:c3: cd:d7:6d:06:8e:2f:9a:b8:1f:25:65:84:43:62:4d: 27:b4:93:60:cc:0b:94:f2:95:2a:1f:4f:af:7a:f9: ff:d9:28:53:1d:bb:bb:55:e2:02:e6:73:9e:fb:a3: f3:1d:bb:db:fb:91:b3:2a:c8:09:0a:63:8c:7f:b3: d4:12:b3:e9:e8:51:d2:d8:b3:ff:e2:a1:00:68:39: f5:88:39:e4:bc:e7:97:53:0a:48:17:28:88:e9:c2: 9c:1c:6a:35:02:cc:5e:94:89:da:39:09:fd:43:8b: 0a:23:97:54:81:67:09:d3:5a:dc:ec:f5:0e:fe:63: 77:59:8b:79:da:04:37:74:1d:97:22:bf:e5:df:35: 47:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:34:92:65:7A:DB:BB:30:25:C8:9F:20:B3:DF:B2:80:FD:BA:45:4D X509v3 Authority Key Identifier: keyid:C6:26:58:32:98:57:8D:1D:4A:F7:27:3E:BD:79:1C:72:30:A3:74:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiZYMphXjR1K9yc-vXkccjCjdEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91186C2/1D2F0724D17F11EFB3846928C4F9AE02/xiZYMphXjR1K9yc-vXkccjCjdEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:0a:f3:d2:1d:b2:e3:8a:1c:6a:e8:ec:b6:e8:15:04:75:27: 0e:9a:91:81:b5:8b:23:cf:7c:76:cb:60:02:93:62:d9:60:f8: 0c:49:40:03:42:1f:87:ce:d2:b7:2a:27:bd:7b:10:06:dc:0f: 48:8d:6c:00:f3:2e:3d:89:8b:4b:e2:8e:ff:26:df:80:2f:d5: 09:89:63:09:29:a8:c6:81:6c:5e:5f:cd:aa:87:9e:f2:b7:86: 71:8f:4f:db:2c:5c:db:9b:d5:e4:14:c1:82:e9:82:a7:3e:22: 50:47:44:16:53:91:87:d3:4d:6f:33:94:53:bb:0b:a6:17:10: 7c:1c:27:61:fa:7a:94:ca:f3:8d:8d:85:f7:64:37:99:85:80: b6:0c:ae:ce:7a:ef:36:ad:de:71:d9:06:6a:6e:22:c4:2b:98: ba:74:2b:85:02:24:55:34:2e:9e:1a:7c:4a:c7:ec:5a:73:41: 9c:44:98:da:b7:ff:2e:0b:6a:82:be:ef:30:e1:f8:a1:19:ab: 03:fe:dc:ca:be:bb:22:d7:1b:4b:73:d1:dc:c9:99:ab:f8:6a: b3:d7:ab:28:8f:d5:ab:03:f1:ae:c0:76:27:bd:ad:cf:80:7d: 12:f9:9e:2e:e5:b9:e0:69:f7:7a:8e:83:21:cb:b3:31:46:94: af:4d:c4:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg2QzIxMTAvBgNVBAUTKEM2MjY1ODMyOTg1NzhEMUQ0QUY3MjczRUJENzkxQzcy MzBBMzc0NDkwHhcNMjUxMDE5MDk0NTIxWhcNMjUxMDI2MDk0NTIxWjAYMRYwFAYD VQQDEw02OGY0YjMzMi1kZDc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmOXWtULNGuyh6q8eciMuePM+l5RxDKXxHJPRkHUrUUPtfteBrTl02g42q3Ju uB/jw5mFFFWuHgBHzsXUlGSsGxvdUIlt4hDgyCni3hAs4Q9ZSB7nzYSMu4+eL0Am lPPenhn+T/ntp8HPHU8l3wH3OHcecz5qPsPN120Gji+auB8lZYRDYk0ntJNgzAuU 8pUqH0+vevn/2ShTHbu7VeIC5nOe+6PzHbvb+5GzKsgJCmOMf7PUErPp6FHS2LP/ 4qEAaDn1iDnkvOeXUwpIFyiI6cKcHGo1AsxelInaOQn9Q4sKI5dUgWcJ01rc7PUO /mN3WYt52gQ3dB2XIr/l3zVHqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFk0kmV6 27swJcifILPfsoD9ukVNMB8GA1UdIwQYMBaAFMYmWDKYV40dSvcnPr15HHIwo3RJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODZDMi8xRDJGMDcyNEQx N0YxMUVGQjM4NDY5MjhDNEY5QUUwMi94aVpZTXBoWGpSMUs5eWMtdlhrY2NqQ2pk RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hpWllNcGhYalIxSzl5Yy12WGtjY2pDamRFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODZDMi8xRDJGMDcyNEQxN0YxMUVGQjM4NDY5MjhDNEY5QUUwMi94aVpZTXBoWGpS MUs5eWMtdlhrY2NqQ2pkRWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHCvPSHbLjihxq6Oy26BUEdScOmpGBtYsjz3x2y2ACk2LZYPgMSUAD Qh+HztK3Kie9exAG3A9IjWwA8y49iYtL4o7/Jt+AL9UJiWMJKajGgWxeX82qh57y t4Zxj0/bLFzbm9XkFMGC6YKnPiJQR0QWU5GH001vM5RTuwumFxB8HCdh+nqUyvON jYX3ZDeZhYC2DK7Oeu82rd5x2QZqbiLEK5i6dCuFAiRVNC6eGnxKx+xac0GcRJja t/8uC2qCvu8w4fihGasD/tzKvrsi1xtLc9HcyZmr+Gqz16soj9WrA/GuwHYnva3P gH0S+Z4u5bngafd6joMhy7MxRpSvTcRb -----END CERTIFICATE-----Generated at Tue Oct 21 00:03:56 2025 by rpki-client