$ rpki-client -vvf rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/xl_8-yz82bzWja6waX0xbPNbI_A.mft File: xl_8-yz82bzWja6waX0xbPNbI_A.mft (raw, json) Hash identifier: er0xglZNiZiPMYBnaO/XEZ/2bjf7SOZ/TzAuA+ijfAk= Subject key identifier: 47:DC:1F:F6:46:EF:C0:13:43:D1:FE:20:5A:C3:E6:53:50:B5:FE:6D Authority key identifier: C6:5F:FC:FB:2C:FC:D9:BC:D6:8D:AE:B0:69:7D:31:6C:F3:5B:23:F0 Certificate issuer: /CN=A91472E2/serialNumber=C65FFCFB2CFCD9BCD68DAEB0697D316CF35B23F0 Certificate serial: 02DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xl_8-yz82bzWja6waX0xbPNbI_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/xl_8-yz82bzWja6waX0xbPNbI_A.mft Manifest number: 02CF Signing time: Sun 19 Oct 2025 03:33:31 +0000 Manifest this update: Sun 19 Oct 2025 03:33:30 +0000 Manifest next update: Sun 26 Oct 2025 03:33:30 +0000 Files and hashes: 1: xl_8-yz82bzWja6waX0xbPNbI_A.crl (hash: Bag4odltx/E9xvw+Vuv/Ivvxx9mqXhgIjrgOaMYWMIY=) 2: 216EE802F87A11EDAAE56C0DC4F9AE02.roa (hash: le7JEqoYvZIMl+uq0wwq/akdNhi0QtrKh8LNnkVREXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/xl_8-yz82bzWja6waX0xbPNbI_A.crl rsync://rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/xl_8-yz82bzWja6waX0xbPNbI_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xl_8-yz82bzWja6waX0xbPNbI_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:33:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 731 (0x2db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91472E2, serialNumber=C65FFCFB2CFCD9BCD68DAEB0697D316CF35B23F0 Validity Not Before: Oct 19 03:33:30 2025 GMT Not After : Oct 26 03:33:30 2025 GMT Subject: CN=68f45c0a-9110 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:3f:24:a4:b7:2f:86:04:57:a8:31:35:9a:a8: 01:f1:fd:6d:4b:3f:36:59:8d:98:fd:b0:88:6f:83: e0:e2:7b:e8:f0:e5:01:3f:91:d9:62:7e:ff:66:d4: a2:bd:98:49:fe:c3:89:26:40:68:ae:b2:fa:32:cc: 06:bd:59:68:9e:a8:04:36:ed:ff:72:2c:8a:13:ae: 1f:23:f8:8c:ed:c5:fc:22:57:eb:f1:bc:40:72:68: 79:0d:88:99:e2:3f:2a:80:6d:28:8b:de:53:b3:b6: fc:f5:ed:a5:2a:3d:18:41:e4:b2:19:4b:e0:93:42: e0:0b:60:44:85:1f:e7:c0:97:30:71:d7:57:21:1b: d2:08:83:fc:95:15:45:0c:96:60:f1:3c:e3:52:56: 35:ba:6b:79:33:e0:b2:92:d8:ba:41:d7:d7:2e:e0: 8c:1b:f6:c3:81:bf:f1:b6:76:82:5a:a9:9d:c0:73: b8:77:9f:31:ba:96:cb:d9:9f:79:93:f9:f6:8b:95: df:c6:d3:63:09:82:a0:d3:7f:e4:f6:c6:16:08:5b: 40:cf:fc:14:ab:de:25:d2:6f:9c:2a:eb:be:02:99: a6:5f:7d:cc:f6:3f:ec:5b:1a:70:85:09:62:a2:90: fe:a1:6f:a7:3e:97:7a:47:4c:e6:b5:85:f9:a4:f0: 8b:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:DC:1F:F6:46:EF:C0:13:43:D1:FE:20:5A:C3:E6:53:50:B5:FE:6D X509v3 Authority Key Identifier: keyid:C6:5F:FC:FB:2C:FC:D9:BC:D6:8D:AE:B0:69:7D:31:6C:F3:5B:23:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/xl_8-yz82bzWja6waX0xbPNbI_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xl_8-yz82bzWja6waX0xbPNbI_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/xl_8-yz82bzWja6waX0xbPNbI_A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:5f:46:6b:50:24:72:2d:74:02:92:ea:56:e1:1c:9a:e9:5e: 53:ad:4d:2c:1c:37:11:ae:8d:58:ae:6d:62:3f:dd:d0:44:d8: 4d:13:96:9e:cb:f3:70:9c:7f:2b:33:e5:7d:21:05:0a:97:35: 15:f6:39:04:df:1a:1f:8e:81:f2:f5:34:50:05:64:4b:fd:c7: fc:c9:18:8c:7c:1c:57:1e:34:1f:ae:b3:31:76:08:fe:eb:db: ec:c7:f7:61:a7:7d:96:b4:eb:81:65:7b:b1:55:b8:8d:08:c8: b2:3d:cb:fa:d0:69:d4:f2:2b:10:ee:ca:9b:03:d5:7a:ae:7f: b0:ad:24:77:52:b0:32:8b:1a:bc:55:83:28:59:90:b6:a7:02: 32:e1:0c:e6:fe:ee:5e:7c:80:98:25:eb:5d:77:55:1f:1f:4d: af:78:c5:68:33:df:ca:ec:5d:f9:f0:a2:ff:75:40:07:26:a0: 12:77:6d:7a:e1:4a:1d:66:da:be:bd:73:b8:04:ca:d8:27:b9: f1:f6:14:69:5c:eb:e2:22:a6:0f:eb:33:21:4d:1a:41:e5:48: 58:62:46:77:58:bf:2f:32:ce:c9:53:f5:13:71:5e:2f:be:d8: cf:05:cf:65:1b:83:71:36:05:73:97:22:27:a9:1d:0f:d3:ff: 7f:41:28:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcyRTIxMTAvBgNVBAUTKEM2NUZGQ0ZCMkNGQ0Q5QkNENjhEQUVCMDY5N0QzMTZD RjM1QjIzRjAwHhcNMjUxMDE5MDMzMzMwWhcNMjUxMDI2MDMzMzMwWjAYMRYwFAYD VQQDEw02OGY0NWMwYS05MTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtz8kpLcvhgRXqDE1mqgB8f1tSz82WY2Y/bCIb4Pg4nvo8OUBP5HZYn7/ZtSi vZhJ/sOJJkBorrL6MswGvVlonqgENu3/ciyKE64fI/iM7cX8Ilfr8bxAcmh5DYiZ 4j8qgG0oi95Ts7b89e2lKj0YQeSyGUvgk0LgC2BEhR/nwJcwcddXIRvSCIP8lRVF DJZg8TzjUlY1umt5M+Cykti6QdfXLuCMG/bDgb/xtnaCWqmdwHO4d58xupbL2Z95 k/n2i5XfxtNjCYKg03/k9sYWCFtAz/wUq94l0m+cKuu+ApmmX33M9j/sWxpwhQli opD+oW+nPpd6R0zmtYX5pPCLCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEfcH/ZG 78ATQ9H+IFrD5lNQtf5tMB8GA1UdIwQYMBaAFMZf/Pss/Nm81o2usGl9MWzzWyPw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzJFMi8yRjE5NTM1QzBD QjIxMUVEOTVDRUM5NUNDNEY5QUUwMi94bF84LXl6ODJieldqYTZ3YVgweGJQTmJJ X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hsXzgteXo4MmJ6V2phNndhWDB4YlBOYklfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzJFMi8yRjE5NTM1QzBDQjIxMUVEOTVDRUM5NUNDNEY5QUUwMi94bF84LXl6ODJi eldqYTZ3YVgweGJQTmJJX0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyX0ZrUCRyLXQCkupW4Rya6V5TrU0sHDcRro1Yrm1iP93QRNhNE5ae y/NwnH8rM+V9IQUKlzUV9jkE3xofjoHy9TRQBWRL/cf8yRiMfBxXHjQfrrMxdgj+ 69vsx/dhp32WtOuBZXuxVbiNCMiyPcv60GnU8isQ7sqbA9V6rn+wrSR3UrAyixq8 VYMoWZC2pwIy4Qzm/u5efICYJetdd1UfH02veMVoM9/K7F358KL/dUAHJqASd216 4UodZtq+vXO4BMrYJ7nx9hRpXOviIqYP6zMhTRpB5UhYYkZ3WL8vMs7JU/UTcV4v vtjPBc9lG4NxNgVzlyInqR0P0/9/QSgr -----END CERTIFICATE-----Generated at Tue Oct 21 01:42:07 2025 by rpki-client