$ rpki-client -vvf rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft File: XQ11AElW7cyrm4QnGnNA5jhV_4o.mft (raw, json) Hash identifier: ixuVtLHszbTH8eLI6J6avBz6DG2Klu/hDXSVw1J8Obc= Subject key identifier: 81:89:B3:29:CC:42:76:88:46:41:E9:46:C3:7D:BD:19:42:C5:AC:FC Authority key identifier: 5D:0D:75:00:49:56:ED:CC:AB:9B:84:27:1A:73:40:E6:38:55:FF:8A Certificate issuer: /CN=A912BC39/serialNumber=5D0D75004956EDCCAB9B84271A7340E63855FF8A Certificate serial: 0767 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft Manifest number: 0759 Signing time: Sat 18 Oct 2025 23:03:57 +0000 Manifest this update: Sat 18 Oct 2025 23:03:56 +0000 Manifest next update: Sat 25 Oct 2025 23:03:56 +0000 Files and hashes: 1: XQ11AElW7cyrm4QnGnNA5jhV_4o.crl (hash: 6xn6JHxoIqfDGU+Py23fGyGe5F3370+UDLD3oD7Ft4c=) 2: 8EBA772E3F2B11EB87759716C4F9AE02.roa (hash: JhJ29hsZ9Nl8Kc5Vc5GMGK+cSOOJDZ3+fb8ZbDKNP/w=) 3: 688EAE1E8A1911EC94921D85C4F9AE02.roa (hash: +jUuW9+jw1JUgmOZj9N0BtBUU0s0p/K1kZNOedeoZQI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.crl rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:03:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1895 (0x767) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BC39, serialNumber=5D0D75004956EDCCAB9B84271A7340E63855FF8A Validity Not Before: Oct 18 23:03:56 2025 GMT Not After : Oct 25 23:03:56 2025 GMT Subject: CN=68f41cdd-5b19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:88:77:28:fb:ed:ef:b1:10:4a:6e:2a:3d:52: 77:90:ea:6a:af:40:d7:fd:37:b5:b0:b6:98:d2:88: 88:ac:49:b3:46:8d:ad:ef:1d:68:78:f6:ba:03:73: df:ee:e8:fd:47:d5:fd:4d:a2:df:e8:fd:e4:ba:e6: 51:3b:df:71:69:7a:b1:c3:b1:36:ba:78:78:d8:c1: 1d:ba:29:12:32:2c:c7:d3:79:8a:58:a3:97:9b:b5: 1c:ca:8f:e2:ef:32:19:f5:26:b8:e3:2b:0a:ae:f1: 42:e6:88:06:3e:f2:89:77:7e:46:79:a3:4f:f4:c0: 90:9c:7e:69:23:79:b7:08:cb:a6:12:30:ce:0f:f1: 70:35:4f:ae:46:73:fe:2f:e9:cb:47:82:84:c2:e8: 8a:3f:cb:bb:73:d6:49:15:4f:cd:af:3b:65:dc:db: 9b:44:da:a8:34:c6:18:b4:d6:78:a5:fd:a1:8e:33: 3f:59:8f:8e:60:91:40:72:b6:23:54:2d:c2:88:df: dd:ee:20:59:e1:8d:bb:70:67:8b:9a:55:c3:50:cf: f9:c9:25:31:a1:5e:e5:b9:af:fc:58:14:bb:de:76: 1b:d5:08:a9:95:00:53:98:39:de:90:c6:af:2c:c3: 91:18:59:81:be:51:f1:95:53:23:39:0c:34:0d:54: ed:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:89:B3:29:CC:42:76:88:46:41:E9:46:C3:7D:BD:19:42:C5:AC:FC X509v3 Authority Key Identifier: keyid:5D:0D:75:00:49:56:ED:CC:AB:9B:84:27:1A:73:40:E6:38:55:FF:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:f6:3c:ee:a6:e0:37:79:7c:df:15:1a:3e:46:03:a5:ee:e5: 3e:f8:25:24:14:10:b0:d8:5a:11:68:a5:e4:32:0d:ef:34:35: 87:d9:4c:92:54:f9:8f:36:5e:90:79:e5:41:88:ce:3e:c5:6b: 64:66:4c:a2:66:1f:9a:dc:9d:56:13:72:a4:13:5f:3f:3f:8f: e7:32:bc:55:c9:56:76:7e:e4:04:d1:42:34:00:0d:7a:6d:9c: 43:bb:a4:89:e4:69:7f:7a:06:2a:ff:f4:e2:cb:0f:95:92:38: 98:29:5d:41:9f:bf:5c:b8:06:4d:1f:76:54:4f:b0:21:ab:3e: e6:a1:56:a6:df:2c:08:e2:e5:59:ea:0f:6d:16:d1:a6:14:73: 0f:14:b7:5a:71:4d:37:3c:d6:4d:a6:8f:8e:b7:72:be:3f:79: 30:fa:45:39:23:e4:2f:95:1b:4a:82:d0:9e:88:6b:b9:41:7e: 2c:59:f4:bc:84:31:82:f9:61:45:a1:0c:bd:f4:bb:e0:b7:2f: ff:68:55:10:0b:80:fa:48:84:3b:eb:73:90:2e:fa:09:2b:81: 17:e6:e1:57:43:52:d4:66:cc:2a:5c:57:d2:b7:ad:09:1b:6a: f5:d6:ac:17:a5:a2:ec:4e:38:12:b6:60:82:1a:08:ec:02:88: 38:cf:3b:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJDMzkxMTAvBgNVBAUTKDVEMEQ3NTAwNDk1NkVEQ0NBQjlCODQyNzFBNzM0MEU2 Mzg1NUZGOEEwHhcNMjUxMDE4MjMwMzU2WhcNMjUxMDI1MjMwMzU2WjAYMRYwFAYD VQQDEw02OGY0MWNkZC01YjE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxIh3KPvt77EQSm4qPVJ3kOpqr0DX/Te1sLaY0oiIrEmzRo2t7x1oePa6A3Pf 7uj9R9X9TaLf6P3kuuZRO99xaXqxw7E2unh42MEduikSMizH03mKWKOXm7Ucyo/i 7zIZ9Sa44ysKrvFC5ogGPvKJd35GeaNP9MCQnH5pI3m3CMumEjDOD/FwNU+uRnP+ L+nLR4KEwuiKP8u7c9ZJFU/Nrztl3NubRNqoNMYYtNZ4pf2hjjM/WY+OYJFAcrYj VC3CiN/d7iBZ4Y27cGeLmlXDUM/5ySUxoV7lua/8WBS73nYb1QiplQBTmDnekMav LMORGFmBvlHxlVMjOQw0DVTtSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIGJsynM QnaIRkHpRsN9vRlCxaz8MB8GA1UdIwQYMBaAFF0NdQBJVu3Mq5uEJxpzQOY4Vf+K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkMzOS9CMzdCMTU4RTNG MjkxMUVCOUI5QTIzMTRDNEY5QUUwMi9YUTExQUVsVzdjeXJtNFFuR25OQTVqaFZf NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hRMTFBRWxXN2N5cm00UW5Hbk5BNWpoVl80by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkMzOS9CMzdCMTU4RTNGMjkxMUVCOUI5QTIzMTRDNEY5QUUwMi9YUTExQUVsVzdj eXJtNFFuR25OQTVqaFZfNG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJ9jzupuA3eXzfFRo+RgOl7uU++CUkFBCw2FoRaKXkMg3vNDWH2UyS VPmPNl6QeeVBiM4+xWtkZkyiZh+a3J1WE3KkE18/P4/nMrxVyVZ2fuQE0UI0AA16 bZxDu6SJ5Gl/egYq//Tiyw+VkjiYKV1Bn79cuAZNH3ZUT7Ahqz7moVam3ywI4uVZ 6g9tFtGmFHMPFLdacU03PNZNpo+Ot3K+P3kw+kU5I+QvlRtKgtCeiGu5QX4sWfS8 hDGC+WFFoQy99Lvgty//aFUQC4D6SIQ763OQLvoJK4EX5uFXQ1LUZswqXFfSt60J G2r11qwXpaLsTjgStmCCGgjsAog4zzsJ -----END CERTIFICATE-----Generated at Mon Oct 20 16:04:54 2025 by rpki-client