$ rpki-client -vvf rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft File: xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft (raw, json) Hash identifier: 88LclCjTZz5VY5VLZkbdhrCXNLI5urHxfuClVkF3yGk= Subject key identifier: 2D:F2:0D:FA:BE:E7:DC:40:B0:B6:DC:86:3E:F8:60:E6:F7:F0:C3:61 Authority key identifier: C7:0B:F3:DF:F4:50:23:D4:1A:F4:C4:DF:5D:76:50:40:B9:24:1A:C7 Certificate issuer: /CN=A91243FE/serialNumber=C70BF3DFF45023D41AF4C4DF5D765040B9241AC7 Certificate serial: 03F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft Manifest number: 03F2 Signing time: Sun 19 Oct 2025 02:26:10 +0000 Manifest this update: Sun 19 Oct 2025 02:26:09 +0000 Manifest next update: Sun 26 Oct 2025 02:26:09 +0000 Files and hashes: 1: xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl (hash: 3D06FmeW2r7Btr8FoWxINv4XAhKUYfJDL/Eiv1AOj2c=) 2: 5ADF4C92956811EC9028F155C4F9AE02.roa (hash: 6C9pOBCK4sWDlaS78t/pprsEcl/8A0s9Wlk6KVMoAhE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:26:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1014 (0x3f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91243FE, serialNumber=C70BF3DFF45023D41AF4C4DF5D765040B9241AC7 Validity Not Before: Oct 19 02:26:09 2025 GMT Not After : Oct 26 02:26:09 2025 GMT Subject: CN=68f44c42-adc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a5:1d:16:43:ce:b9:76:3f:f1:e8:1d:3d:cd: ad:18:b4:17:ac:66:3c:3c:63:60:43:ff:fd:c5:cd: 6d:d1:cf:38:72:ff:87:99:a2:73:6a:d1:d2:6d:7a: e7:b3:16:c4:a0:ad:38:2c:41:c8:93:32:47:32:b3: f2:9e:79:58:de:5a:5f:f6:dc:2f:8b:13:9e:fb:e2: 0e:0a:f6:6d:51:89:9d:c5:2a:e7:a3:2a:56:1a:e5: 20:75:bc:b6:0a:f3:09:99:30:a4:37:bc:b8:ec:15: 5a:cc:c6:97:6d:55:38:f2:32:83:e1:67:29:54:44: d1:9f:c5:10:77:84:c1:5e:9d:6a:85:6a:7e:45:6d: be:87:fb:2d:32:b6:74:66:35:b7:b5:53:3a:dc:37: 17:b3:7d:7d:12:1f:90:31:e7:3a:f2:a7:46:6e:40: 1b:d0:91:34:dc:c3:fc:f5:72:83:09:b1:1c:d4:9a: 7c:2d:4a:d1:a9:9e:71:de:dc:68:64:41:69:84:5f: d5:19:08:6e:17:0e:40:48:50:f6:bd:c4:c1:79:5b: 1d:96:6c:49:1b:a5:0b:94:8d:87:32:c0:0d:d2:33: e6:6f:41:ac:92:6c:ff:e2:48:5e:8b:82:20:cc:ff: 57:bf:14:58:b9:ba:19:85:37:ab:8a:e7:79:73:75: c6:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:F2:0D:FA:BE:E7:DC:40:B0:B6:DC:86:3E:F8:60:E6:F7:F0:C3:61 X509v3 Authority Key Identifier: keyid:C7:0B:F3:DF:F4:50:23:D4:1A:F4:C4:DF:5D:76:50:40:B9:24:1A:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91243FE/98148062956511EC9183BE53C4F9AE02/xwvz3_RQI9Qa9MTfXXZQQLkkGsc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:dc:bf:06:17:cc:d1:f8:21:a1:5c:b7:a8:9c:33:85:e4:8c: ab:19:ec:94:b3:73:85:a7:07:a6:cf:7f:e0:99:ea:20:9c:b7: e8:e8:45:60:be:49:c7:1b:64:1e:62:47:b2:c2:cb:0b:93:3d: a5:ae:88:aa:d0:56:f6:0f:45:bf:29:be:ed:17:f3:00:e8:4f: 58:20:b0:6b:b9:b7:1c:6a:a8:4c:e0:f4:21:f2:35:08:4e:cd: d2:77:25:9f:6e:d7:80:e5:13:9a:22:e5:ec:d7:32:70:ac:9c: 4f:88:25:68:bc:46:8d:ce:10:6b:fa:22:92:ad:43:89:30:c3: 31:31:4d:c8:fb:66:c1:7d:a6:e2:d7:de:f3:a1:63:ae:f5:42: 13:62:6c:18:ff:c3:a3:ad:85:43:0e:a7:fe:08:e9:63:73:e3: bf:9f:40:2b:68:4e:09:32:93:61:8a:98:71:b7:d9:89:86:60: c7:30:61:df:47:14:cb:97:e8:a1:e2:c5:e1:66:28:f3:6c:16: e5:2b:ee:83:95:ef:c8:2c:d9:87:78:92:08:54:f2:cb:f3:f2: 51:8b:56:38:f0:cb:85:3e:2e:d7:28:e3:1f:f6:33:4e:9c:ce: 54:75:06:5c:1a:6d:f0:52:01:6e:16:ae:31:b7:8f:be:11:14: 84:8f:c4:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQzRkUxMTAvBgNVBAUTKEM3MEJGM0RGRjQ1MDIzRDQxQUY0QzRERjVENzY1MDQw QjkyNDFBQzcwHhcNMjUxMDE5MDIyNjA5WhcNMjUxMDI2MDIyNjA5WjAYMRYwFAYD VQQDEw02OGY0NGM0Mi1hZGM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1aUdFkPOuXY/8egdPc2tGLQXrGY8PGNgQ//9xc1t0c84cv+HmaJzatHSbXrn sxbEoK04LEHIkzJHMrPynnlY3lpf9twvixOe++IOCvZtUYmdxSrnoypWGuUgdby2 CvMJmTCkN7y47BVazMaXbVU48jKD4WcpVETRn8UQd4TBXp1qhWp+RW2+h/stMrZ0 ZjW3tVM63DcXs319Eh+QMec68qdGbkAb0JE03MP89XKDCbEc1Jp8LUrRqZ5x3txo ZEFphF/VGQhuFw5ASFD2vcTBeVsdlmxJG6ULlI2HMsAN0jPmb0Gskmz/4khei4Ig zP9XvxRYuboZhTeriud5c3XGCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC3yDfq+ 59xAsLbchj74YOb38MNhMB8GA1UdIwQYMBaAFMcL89/0UCPUGvTE3112UEC5JBrH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDNGRS85ODE0ODA2Mjk1 NjUxMUVDOTE4M0JFNTNDNEY5QUUwMi94d3Z6M19SUUk5UWE5TVRmWFhaUVFMa2tH c2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h3dnozX1JRSTlRYTlNVGZYWFpRUUxra0dzYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDNGRS85ODE0ODA2Mjk1NjUxMUVDOTE4M0JFNTNDNEY5QUUwMi94d3Z6M19SUUk5 UWE5TVRmWFhaUVFMa2tHc2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBV3L8GF8zR+CGhXLeonDOF5IyrGeyUs3OFpwemz3/gmeognLfo6EVg vknHG2QeYkeywssLkz2lroiq0Fb2D0W/Kb7tF/MA6E9YILBrubccaqhM4PQh8jUI Ts3SdyWfbteA5ROaIuXs1zJwrJxPiCVovEaNzhBr+iKSrUOJMMMxMU3I+2bBfabi 197zoWOu9UITYmwY/8OjrYVDDqf+COljc+O/n0AraE4JMpNhiphxt9mJhmDHMGHf RxTLl+ih4sXhZijzbBblK+6Dle/ILNmHeJIIVPLL8/JRi1Y48MuFPi7XKOMf9jNO nM5UdQZcGm3wUgFuFq4xt4++ERSEj8T3 -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:02 2025 by rpki-client