$ rpki-client -vvf rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft File: XfVm12I2fCjH8_ElYbRxa4yhuWY.mft (raw, json) Hash identifier: CdL4mOo5tBpGD75rTBS9HzZDdHXDgfauqBQv8RD9Rho= Subject key identifier: 07:8B:76:0A:A7:39:16:22:6D:18:9D:89:90:32:05:CA:86:60:07:5B Authority key identifier: 5D:F5:66:D7:62:36:7C:28:C7:F3:F1:25:61:B4:71:6B:8C:A1:B9:66 Certificate issuer: /CN=A9133B47/serialNumber=5DF566D762367C28C7F3F12561B4716B8CA1B966 Certificate serial: 0113 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft Manifest number: 0110 Signing time: Sun 19 Oct 2025 07:49:26 +0000 Manifest this update: Sun 19 Oct 2025 07:49:26 +0000 Manifest next update: Sun 26 Oct 2025 07:49:26 +0000 Files and hashes: 1: XfVm12I2fCjH8_ElYbRxa4yhuWY.crl (hash: NN5v7IVWVWO0nO5hP3fjl7+u0r4pKjm0pm+RAYl++2I=) 2: 23B1A0120FA511EFB28F5235C4F9AE02.roa (hash: 1j2rFTty2/H954Iwvk/ZWmtqptjhE7lYs+ZEPtYw42E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.crl rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:49:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 275 (0x113) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133B47, serialNumber=5DF566D762367C28C7F3F12561B4716B8CA1B966 Validity Not Before: Oct 19 07:49:26 2025 GMT Not After : Oct 26 07:49:26 2025 GMT Subject: CN=68f49806-9827 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:2c:2d:f9:f0:f8:43:a1:ba:33:b7:b3:d9:e0: 76:92:ac:04:f5:7f:1a:18:74:9b:d3:d0:18:b3:0e: e8:8c:3f:dd:0c:04:f5:23:21:c7:8d:1b:14:16:0e: 20:64:07:42:d5:4e:7f:7e:ed:ab:db:08:26:fa:28: f9:1e:3e:e5:73:78:99:1e:26:fb:e8:6e:c8:10:e1: ea:59:1a:67:c5:24:9f:b1:9e:9b:39:ac:ef:cd:80: 5d:f4:47:b5:33:e6:6d:56:13:aa:cf:33:62:6e:4f: f5:ff:fe:b3:ff:04:53:69:82:96:86:72:c0:be:26: f7:55:3c:9d:a4:63:39:9d:c3:3a:de:f1:1a:f3:e9: 9a:52:9d:01:f5:89:39:0f:1e:b1:a4:32:38:62:82: 60:e2:6b:cf:9c:0b:a8:a4:e7:83:e9:58:81:b8:20: e0:36:b5:9a:d7:a5:a3:45:f9:59:5c:78:e5:10:80: 93:c0:c0:43:d1:ba:2a:a1:27:54:58:ec:53:37:29: 29:61:9c:52:0f:f7:e7:17:d2:09:cd:a5:2c:bf:5d: 05:84:ce:43:3a:56:a1:5a:79:50:8b:ad:fa:fd:c9: 7b:85:51:75:f3:45:a9:6c:b0:ca:56:2a:1a:25:cc: 28:8e:c8:bb:64:e8:4d:10:4d:84:c7:03:32:97:0a: 2a:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:8B:76:0A:A7:39:16:22:6D:18:9D:89:90:32:05:CA:86:60:07:5B X509v3 Authority Key Identifier: keyid:5D:F5:66:D7:62:36:7C:28:C7:F3:F1:25:61:B4:71:6B:8C:A1:B9:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:be:da:e1:b6:4e:8f:b0:a6:cf:93:a6:72:1d:80:71:d1:82: 46:3a:2d:ce:23:48:b9:7b:20:68:8f:d5:5e:b5:47:7e:7a:5f: 36:27:6d:c1:18:b6:25:f8:76:5a:be:20:17:f0:cf:87:27:61: 4f:0d:8f:4b:c8:f2:aa:d0:98:c9:c1:cd:63:e8:5f:fa:d0:d9: 03:6e:1b:c1:56:3e:9a:b2:f5:24:3d:fe:92:74:32:25:39:f4: a8:5e:5d:7e:b1:89:1c:05:6f:aa:a5:bb:c0:0e:eb:3d:06:50: 42:f6:54:2e:cc:c0:85:bb:aa:e1:a4:4c:d8:83:6f:05:f0:bd: 15:32:cd:39:ed:da:ef:6d:f4:42:11:6e:cd:f8:05:dc:75:73: c9:cd:bb:2f:2e:0d:d2:7a:60:78:ea:77:d8:04:3a:48:51:3f: bb:30:6d:8c:44:f0:74:50:b3:d7:e8:2d:91:31:91:c0:2d:2c: 0a:1e:9b:cf:f8:14:30:54:51:c6:53:62:9f:f1:85:0c:bd:2d: a7:0a:f5:ce:ce:b3:5e:1f:4c:9e:5d:26:1d:4e:7c:a3:a6:da: 79:57:35:44:6d:02:da:f2:3b:91:7c:8e:e8:15:f6:ef:32:f7: bd:01:c3:90:bf:b7:3d:b8:3d:a1:21:33:87:8a:c8:79:98:4a: 02:87:c7:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNCNDcxMTAvBgNVBAUTKDVERjU2NkQ3NjIzNjdDMjhDN0YzRjEyNTYxQjQ3MTZC OENBMUI5NjYwHhcNMjUxMDE5MDc0OTI2WhcNMjUxMDI2MDc0OTI2WjAYMRYwFAYD VQQDEw02OGY0OTgwNi05ODI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArSwt+fD4Q6G6M7ez2eB2kqwE9X8aGHSb09AYsw7ojD/dDAT1IyHHjRsUFg4g ZAdC1U5/fu2r2wgm+ij5Hj7lc3iZHib76G7IEOHqWRpnxSSfsZ6bOazvzYBd9Ee1 M+ZtVhOqzzNibk/1//6z/wRTaYKWhnLAvib3VTydpGM5ncM63vEa8+maUp0B9Yk5 Dx6xpDI4YoJg4mvPnAuopOeD6ViBuCDgNrWa16WjRflZXHjlEICTwMBD0boqoSdU WOxTNykpYZxSD/fnF9IJzaUsv10FhM5DOlahWnlQi636/cl7hVF180WpbLDKVioa Jcwojsi7ZOhNEE2ExwMylwoqIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAeLdgqn ORYibRidiZAyBcqGYAdbMB8GA1UdIwQYMBaAFF31ZtdiNnwox/PxJWG0cWuMoblm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0I0Ny84NzFCOTI5NDBG QTQxMUVGQTFBMTY5MzRDNEY5QUUwMi9YZlZtMTJJMmZDakg4X0VsWWJSeGE0eWh1 V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hmVm0xMkkyZkNqSDhfRWxZYlJ4YTR5aHVXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0I0Ny84NzFCOTI5NDBGQTQxMUVGQTFBMTY5MzRDNEY5QUUwMi9YZlZtMTJJMmZD akg4X0VsWWJSeGE0eWh1V1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTvtrhtk6PsKbPk6ZyHYBx0YJGOi3OI0i5eyBoj9VetUd+el82J23B GLYl+HZaviAX8M+HJ2FPDY9LyPKq0JjJwc1j6F/60NkDbhvBVj6asvUkPf6SdDIl OfSoXl1+sYkcBW+qpbvADus9BlBC9lQuzMCFu6rhpEzYg28F8L0VMs057drvbfRC EW7N+AXcdXPJzbsvLg3SemB46nfYBDpIUT+7MG2MRPB0ULPX6C2RMZHALSwKHpvP +BQwVFHGU2Kf8YUMvS2nCvXOzrNeH0yeXSYdTnyjptp5VzVEbQLa8juRfI7oFfbv Mve9AcOQv7c9uD2hITOHish5mEoCh8do -----END CERTIFICATE-----Generated at Tue Oct 21 00:54:23 2025 by rpki-client