$ rpki-client -vvf rpki.apnic.net/member_repository/A913F927/AF5211FE00A211EA9A4E8A87C4F9AE02/xctXefg2BxxSgISGkWfLwa4IuRc.mft File: xctXefg2BxxSgISGkWfLwa4IuRc.mft (raw, json) Hash identifier: wUK1Pu+y0RCdM9CDZ2oVtmJVIo1wnsOt16pUWl1gdBk= Subject key identifier: E3:F5:83:74:3C:84:91:E3:57:DC:02:DC:A8:82:68:A8:E0:92:F2:15 Authority key identifier: C5:CB:57:79:F8:36:07:1C:52:80:84:86:91:67:CB:C1:AE:08:B9:17 Certificate issuer: /CN=A913F927/serialNumber=C5CB5779F836071C528084869167CBC1AE08B917 Certificate serial: 0CA5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xctXefg2BxxSgISGkWfLwa4IuRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F927/AF5211FE00A211EA9A4E8A87C4F9AE02/xctXefg2BxxSgISGkWfLwa4IuRc.mft Manifest number: 0CA0 Signing time: Mon 20 Oct 2025 18:49:58 +0000 Manifest this update: Mon 20 Oct 2025 18:49:58 +0000 Manifest next update: Mon 27 Oct 2025 18:49:58 +0000 Files and hashes: 1: xctXefg2BxxSgISGkWfLwa4IuRc.crl (hash: ee8V3LjidGbkiF8HUMrj3UTKlpOhvkrGC6ozpSvsX/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F927/AF5211FE00A211EA9A4E8A87C4F9AE02/xctXefg2BxxSgISGkWfLwa4IuRc.crl rsync://rpki.apnic.net/member_repository/A913F927/AF5211FE00A211EA9A4E8A87C4F9AE02/xctXefg2BxxSgISGkWfLwa4IuRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xctXefg2BxxSgISGkWfLwa4IuRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 18:23:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3237 (0xca5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F927, serialNumber=C5CB5779F836071C528084869167CBC1AE08B917 Validity Not Before: Oct 20 18:49:58 2025 GMT Not After : Oct 27 18:49:58 2025 GMT Subject: CN=68f68456-6c64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:5c:2c:fa:94:36:a9:c3:a8:fa:fe:c2:9a:48: 8f:b0:7a:f0:44:c5:51:6d:cc:29:ae:39:60:4b:93: 30:d8:c0:43:68:38:a0:40:d1:b9:e1:b7:68:b9:11: 1b:0b:b0:3d:98:7b:2d:ca:ef:ad:24:b0:84:dd:d7: d8:7d:79:12:28:aa:d6:fb:20:cb:d5:e4:ce:2f:e2: aa:b1:ad:a6:9d:76:c7:ce:a3:38:0a:05:e3:d9:f3: e7:5e:a6:ce:61:41:cd:4b:61:78:98:e5:59:7d:b1: be:1c:42:2e:ec:d6:cc:e6:2d:9b:4b:92:b7:9c:88: 5c:27:44:30:36:d5:74:4f:ca:7c:a7:2a:e8:b3:41: 5e:2a:a7:f0:65:72:b0:b5:0f:ad:12:89:45:0a:6a: b6:0c:2e:30:40:6e:1c:b1:b7:a7:28:f7:8c:89:66: aa:0b:21:95:b3:2d:6e:32:40:73:a9:32:97:7c:5d: 0d:6d:e6:59:2b:28:41:02:5a:1b:9f:e4:f9:29:e6: 0a:80:6e:17:08:07:c6:ce:5d:a0:6a:c7:d6:f3:af: ca:c3:92:03:65:e9:76:cb:98:3c:02:b6:30:73:c7: 0a:d1:e2:c4:6d:ef:e8:5a:1c:4d:13:57:1c:08:6d: b6:36:e1:30:e7:00:0f:6d:b4:a6:8f:e2:e7:de:7f: 51:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:F5:83:74:3C:84:91:E3:57:DC:02:DC:A8:82:68:A8:E0:92:F2:15 X509v3 Authority Key Identifier: keyid:C5:CB:57:79:F8:36:07:1C:52:80:84:86:91:67:CB:C1:AE:08:B9:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F927/AF5211FE00A211EA9A4E8A87C4F9AE02/xctXefg2BxxSgISGkWfLwa4IuRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xctXefg2BxxSgISGkWfLwa4IuRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F927/AF5211FE00A211EA9A4E8A87C4F9AE02/xctXefg2BxxSgISGkWfLwa4IuRc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:84:a1:cf:e3:c6:ca:77:a4:be:4b:43:4a:cf:cd:b2:bc:5f: 12:3f:2a:c5:58:56:84:fb:48:ce:77:a9:3a:6a:99:0b:3b:1e: 8e:96:a1:05:c1:de:0e:db:c0:fe:e7:5b:5d:75:dc:bb:45:4f: df:24:45:0f:21:38:85:c3:ff:c3:c5:de:0f:0b:4d:0c:f5:98: ea:0a:ec:8c:55:7c:db:aa:9a:60:06:00:5a:0e:3e:6a:f3:a7: 90:22:21:f8:a7:8a:80:51:6d:2d:de:66:68:54:58:0a:97:2b: 63:26:90:54:f5:41:b3:57:91:50:cf:f8:77:7e:43:12:ec:42: b0:7a:ab:20:1d:25:e7:bd:17:46:b3:2f:57:20:ae:e2:eb:40: 9c:99:62:eb:67:93:96:76:ef:88:f8:44:6f:0f:7c:65:99:5e: fb:b5:b3:c2:21:00:7d:7a:54:03:f3:ec:41:00:68:11:4c:66: c7:0a:00:c9:ea:ba:30:d6:b0:f8:89:8b:81:cb:91:2e:4b:91: 4d:7a:73:ed:23:74:d2:1c:cf:0a:aa:cd:e2:51:ac:b8:53:d6: e8:4c:b3:fc:36:d9:f7:93:20:bf:61:9d:4a:ed:30:71:47:d1: 45:7d:2e:d4:07:5a:4b:80:89:d5:1a:90:5d:b2:bd:47:a9:a3: d3:0c:f0:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Y5MjcxMTAvBgNVBAUTKEM1Q0I1Nzc5RjgzNjA3MUM1MjgwODQ4NjkxNjdDQkMx QUUwOEI5MTcwHhcNMjUxMDIwMTg0OTU4WhcNMjUxMDI3MTg0OTU4WjAYMRYwFAYD VQQDEw02OGY2ODQ1Ni02YzY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA91ws+pQ2qcOo+v7CmkiPsHrwRMVRbcwprjlgS5Mw2MBDaDigQNG54bdouREb C7A9mHstyu+tJLCE3dfYfXkSKKrW+yDL1eTOL+Kqsa2mnXbHzqM4CgXj2fPnXqbO YUHNS2F4mOVZfbG+HEIu7NbM5i2bS5K3nIhcJ0QwNtV0T8p8pyros0FeKqfwZXKw tQ+tEolFCmq2DC4wQG4csbenKPeMiWaqCyGVsy1uMkBzqTKXfF0NbeZZKyhBAlob n+T5KeYKgG4XCAfGzl2gasfW86/Kw5IDZel2y5g8ArYwc8cK0eLEbe/oWhxNE1cc CG22NuEw5wAPbbSmj+Ln3n9R2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOP1g3Q8 hJHjV9wC3KiCaKjgkvIVMB8GA1UdIwQYMBaAFMXLV3n4NgccUoCEhpFny8GuCLkX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjkyNy9BRjUyMTFGRTAw QTIxMUVBOUE0RThBODdDNEY5QUUwMi94Y3RYZWZnMkJ4eFNnSVNHa1dmTHdhNEl1 UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hjdFhlZmcyQnh4U2dJU0drV2ZMd2E0SXVSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjkyNy9BRjUyMTFGRTAwQTIxMUVBOUE0RThBODdDNEY5QUUwMi94Y3RYZWZnMkJ4 eFNnSVNHa1dmTHdhNEl1UmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUhKHP48bKd6S+S0NKz82yvF8SPyrFWFaE+0jOd6k6apkLOx6OlqEF wd4O28D+51tdddy7RU/fJEUPITiFw//Dxd4PC00M9ZjqCuyMVXzbqppgBgBaDj5q 86eQIiH4p4qAUW0t3mZoVFgKlytjJpBU9UGzV5FQz/h3fkMS7EKweqsgHSXnvRdG sy9XIK7i60CcmWLrZ5OWdu+I+ERvD3xlmV77tbPCIQB9elQD8+xBAGgRTGbHCgDJ 6row1rD4iYuBy5EuS5FNenPtI3TSHM8Kqs3iUay4U9boTLP8Ntn3kyC/YZ1K7TBx R9FFfS7UB1pLgInVGpBdsr1HqaPTDPDB -----END CERTIFICATE-----Generated at Mon Oct 20 21:39:27 2025 by rpki-client