$ rpki-client -vvf rpki.apnic.net/member_repository/A912E791/19C68D063A0511ECA944051BC4F9AE02/xNe5S537ZPXBiScjMNvcrSp9AW4.mft File: xNe5S537ZPXBiScjMNvcrSp9AW4.mft (raw, json) Hash identifier: ZlQHYePqabqgbaaOueaflXHRZasSUkdwsH86LPAA06Q= Subject key identifier: 8B:15:17:8F:88:94:68:24:8B:B7:C4:1A:9C:C8:C4:28:37:40:D7:AC Authority key identifier: C4:D7:B9:4B:9D:FB:64:F5:C1:89:27:23:30:DB:DC:AD:2A:7D:01:6E Certificate issuer: /CN=A912E791/serialNumber=C4D7B94B9DFB64F5C189272330DBDCAD2A7D016E Certificate serial: 050B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNe5S537ZPXBiScjMNvcrSp9AW4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E791/19C68D063A0511ECA944051BC4F9AE02/xNe5S537ZPXBiScjMNvcrSp9AW4.mft Manifest number: 04F7 Signing time: Sun 19 Oct 2025 01:34:49 +0000 Manifest this update: Sun 19 Oct 2025 01:34:49 +0000 Manifest next update: Sun 26 Oct 2025 01:34:49 +0000 Files and hashes: 1: xNe5S537ZPXBiScjMNvcrSp9AW4.crl (hash: TxOZpUElLKIA2NzNFNGgyLsnOaeUpBbrUDrVyLu5yoA=) 2: 9E9D5C66157C11F0B4CD801EC4F9AE02.roa (hash: 1C34cm2EkOQCZ4JCIngq0S5UUVGOvkcAMgGxSVETRwg=) 3: 83595478B65E11EF8DB85B32C4F9AE02.roa (hash: 8tjvkR4DoTk7UtvsWE0jDhrG+DVKY6Vhv3UaWUDUXuE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E791/19C68D063A0511ECA944051BC4F9AE02/xNe5S537ZPXBiScjMNvcrSp9AW4.crl rsync://rpki.apnic.net/member_repository/A912E791/19C68D063A0511ECA944051BC4F9AE02/xNe5S537ZPXBiScjMNvcrSp9AW4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNe5S537ZPXBiScjMNvcrSp9AW4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:34:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1291 (0x50b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E791, serialNumber=C4D7B94B9DFB64F5C189272330DBDCAD2A7D016E Validity Not Before: Oct 19 01:34:49 2025 GMT Not After : Oct 26 01:34:49 2025 GMT Subject: CN=68f44039-3de3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:09:ed:54:c4:d3:db:cb:e9:64:a7:0c:90:be: 3e:6a:0a:97:28:4e:03:11:82:4c:d0:81:ad:1c:9b: 5f:33:d1:de:58:56:89:bb:2d:53:05:8d:96:a2:22: 9c:47:be:07:2f:74:68:0e:25:b7:48:17:d8:1d:2c: 9f:b9:99:14:1d:fb:1b:95:52:01:ec:5e:28:c7:ac: 7f:4d:3e:85:d6:5c:6d:e4:4b:31:d2:70:0f:91:c0: 9d:48:84:b5:a5:e8:96:66:60:db:cc:03:9d:23:a0: 88:73:00:45:e4:8d:2f:c6:fa:b1:b4:57:0f:ef:24: 1e:bc:eb:20:fa:7e:45:3c:81:c3:6d:a0:0d:11:52: dd:2f:79:d4:a5:dc:51:46:66:ac:b8:59:74:96:e1: 67:9f:c7:bc:fd:e0:33:ad:b0:02:79:b5:8e:51:cc: 4f:a7:c2:1a:14:bb:85:56:2c:02:ec:20:fe:a7:6b: 78:ac:be:76:57:f6:64:a7:d7:61:6a:4e:2b:67:4e: 01:31:e7:1c:45:b1:7a:fc:7e:af:05:9e:f8:21:56: 09:e7:2e:e3:c6:a5:76:34:bd:65:48:cc:e3:3b:6e: c2:61:86:a7:78:b8:ec:b8:a2:05:f5:ca:d1:48:22: a4:82:75:a2:f0:4c:f2:64:ce:6d:8c:e2:26:89:a7: 2f:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:15:17:8F:88:94:68:24:8B:B7:C4:1A:9C:C8:C4:28:37:40:D7:AC X509v3 Authority Key Identifier: keyid:C4:D7:B9:4B:9D:FB:64:F5:C1:89:27:23:30:DB:DC:AD:2A:7D:01:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E791/19C68D063A0511ECA944051BC4F9AE02/xNe5S537ZPXBiScjMNvcrSp9AW4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNe5S537ZPXBiScjMNvcrSp9AW4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E791/19C68D063A0511ECA944051BC4F9AE02/xNe5S537ZPXBiScjMNvcrSp9AW4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:3c:08:10:88:27:28:0b:3b:1f:00:c6:0c:e4:62:a3:4b:e8: 2e:d9:93:58:3e:57:40:7f:c2:75:6a:32:a3:35:75:f1:a9:c4: c8:d4:37:3e:8f:9d:e9:d6:5f:28:77:58:ec:db:de:0a:85:17: cd:a5:87:6f:7b:38:55:db:67:47:de:25:de:be:e2:6f:f9:a7: 19:58:80:8d:7a:5e:19:0d:31:44:d0:16:52:f3:9f:27:58:bf: b5:17:09:6b:cd:36:d5:ce:f9:ba:90:12:8b:23:27:ac:8d:70: 88:61:4c:7c:4e:5c:6e:31:79:54:a3:2d:0f:dc:19:d2:11:46: 63:d0:32:c2:2c:42:d4:61:56:53:ff:b2:ee:7c:a0:31:a6:fd: ab:ac:d8:e9:a2:9c:c1:c6:4a:ee:ae:9a:21:95:99:fb:19:d4: 83:7d:66:52:57:fe:59:37:31:bc:de:d0:63:d3:c5:20:df:00: af:41:2e:ce:b9:a0:2a:d2:03:67:4c:fa:79:a6:9b:93:18:5b: 32:04:7f:d4:3e:ba:77:fb:29:90:7e:c4:54:87:74:33:05:53: 4d:36:64:c2:59:bd:2c:40:96:af:be:8d:44:49:c5:24:28:99: 0c:20:4e:f6:4e:01:36:ab:d8:ce:a7:2c:c7:70:1f:50:78:d2: 74:c5:f5:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU3OTExMTAvBgNVBAUTKEM0RDdCOTRCOURGQjY0RjVDMTg5MjcyMzMwREJEQ0FE MkE3RDAxNkUwHhcNMjUxMDE5MDEzNDQ5WhcNMjUxMDI2MDEzNDQ5WjAYMRYwFAYD VQQDEw02OGY0NDAzOS0zZGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoAntVMTT28vpZKcMkL4+agqXKE4DEYJM0IGtHJtfM9HeWFaJuy1TBY2WoiKc R74HL3RoDiW3SBfYHSyfuZkUHfsblVIB7F4ox6x/TT6F1lxt5Esx0nAPkcCdSIS1 peiWZmDbzAOdI6CIcwBF5I0vxvqxtFcP7yQevOsg+n5FPIHDbaANEVLdL3nUpdxR RmasuFl0luFnn8e8/eAzrbACebWOUcxPp8IaFLuFViwC7CD+p2t4rL52V/Zkp9dh ak4rZ04BMeccRbF6/H6vBZ74IVYJ5y7jxqV2NL1lSMzjO27CYYaneLjsuKIF9crR SCKkgnWi8EzyZM5tjOImiacvZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIsVF4+I lGgki7fEGpzIxCg3QNesMB8GA1UdIwQYMBaAFMTXuUud+2T1wYknIzDb3K0qfQFu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTc5MS8xOUM2OEQwNjNB MDUxMUVDQTk0NDA1MUJDNEY5QUUwMi94TmU1UzUzN1pQWEJpU2NqTU52Y3JTcDlB VzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hOZTVTNTM3WlBYQmlTY2pNTnZjclNwOUFXNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTc5MS8xOUM2OEQwNjNBMDUxMUVDQTk0NDA1MUJDNEY5QUUwMi94TmU1UzUzN1pQ WEJpU2NqTU52Y3JTcDlBVzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChPAgQiCcoCzsfAMYM5GKjS+gu2ZNYPldAf8J1ajKjNXXxqcTI1Dc+ j53p1l8od1js294KhRfNpYdvezhV22dH3iXevuJv+acZWICNel4ZDTFE0BZS858n WL+1FwlrzTbVzvm6kBKLIyesjXCIYUx8TlxuMXlUoy0P3BnSEUZj0DLCLELUYVZT /7LufKAxpv2rrNjpopzBxkrurpohlZn7GdSDfWZSV/5ZNzG83tBj08Ug3wCvQS7O uaAq0gNnTPp5ppuTGFsyBH/UPrp3+ymQfsRUh3QzBVNNNmTCWb0sQJavvo1EScUk KJkMIE72TgE2q9jOpyzHcB9QeNJ0xfWb -----END CERTIFICATE-----Generated at Sun Oct 19 23:30:41 2025 by rpki-client