$ rpki-client -vvf rpki.apnic.net/member_repository/A914F870/C924246AD7E211EFAF0B3B7DC4F9AE02/XVXxUJtvA0JNKUT4Efhpk4CZu7w.mft File: XVXxUJtvA0JNKUT4Efhpk4CZu7w.mft (raw, json) Hash identifier: ZAY7ry9WEg2V0o6GGFj+QhUM3Yfd4FiXf0iVtjXLvJQ= Subject key identifier: EB:04:82:6E:0B:83:7F:5E:20:DE:6E:0D:A2:A4:ED:69:99:2B:73:8E Authority key identifier: 5D:55:F1:50:9B:6F:03:42:4D:29:44:F8:11:F8:69:93:80:99:BB:BC Certificate issuer: /CN=A914F870/serialNumber=5D55F1509B6F03424D2944F811F869938099BBBC Certificate serial: 8F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XVXxUJtvA0JNKUT4Efhpk4CZu7w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F870/C924246AD7E211EFAF0B3B7DC4F9AE02/XVXxUJtvA0JNKUT4Efhpk4CZu7w.mft Manifest number: 8D Signing time: Sun 19 Oct 2025 09:50:01 +0000 Manifest this update: Sun 19 Oct 2025 09:50:01 +0000 Manifest next update: Sun 26 Oct 2025 09:50:01 +0000 Files and hashes: 1: XVXxUJtvA0JNKUT4Efhpk4CZu7w.crl (hash: 3er+BQ2EYIbiwClvsVz1/I7xTxSnkSAWI8BdXoDd4Qs=) 2: 212A832AD7E311EF86266212C4F9AE02.roa (hash: Emvh4XBjBptzRrG38iyz0eQDBTxXK34fPTXWG8ay+kA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F870/C924246AD7E211EFAF0B3B7DC4F9AE02/XVXxUJtvA0JNKUT4Efhpk4CZu7w.crl rsync://rpki.apnic.net/member_repository/A914F870/C924246AD7E211EFAF0B3B7DC4F9AE02/XVXxUJtvA0JNKUT4Efhpk4CZu7w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XVXxUJtvA0JNKUT4Efhpk4CZu7w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:50:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F870, serialNumber=5D55F1509B6F03424D2944F811F869938099BBBC Validity Not Before: Oct 19 09:50:01 2025 GMT Not After : Oct 26 09:50:01 2025 GMT Subject: CN=68f4b449-83cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:30:5c:26:1d:fb:d5:1f:3d:4a:1f:fd:1f:c9: 5e:b0:5a:ae:7f:f6:d7:71:b2:e9:f0:00:79:49:0c: 51:ba:c3:22:f7:a5:92:f3:73:e7:cc:2d:6c:6d:60: 61:2b:86:5d:76:d6:a8:61:1e:58:5b:f0:0d:01:c8: 90:90:48:40:b0:81:2d:af:1b:33:c7:74:76:d0:5e: 61:c9:5f:fc:a3:0e:13:7b:a5:6b:4c:e1:2b:a3:7c: 54:6e:34:42:cf:95:ed:25:96:c5:14:60:ea:2b:56: 9e:cb:e3:a7:48:28:98:20:5a:d4:88:c7:03:b3:e1: b2:0d:30:0e:8c:6f:59:f2:1a:7b:43:54:23:6f:2d: 00:88:b7:aa:23:c9:79:2d:2d:46:84:c6:ea:e2:b5: 07:d0:68:d2:45:28:66:75:43:22:dc:17:80:1b:c3: 57:77:2c:da:18:9b:98:37:01:02:62:40:d3:52:2b: 1a:a0:23:88:19:8d:f9:40:9a:48:38:c4:ba:41:96: e6:19:81:54:80:fe:0c:05:5f:c9:6e:80:4c:b0:d6: 4e:27:b1:6f:52:e7:be:3e:8e:60:95:fc:12:a5:d8: 77:a6:b0:7c:f2:4e:84:f6:af:7e:b3:d7:07:8d:e3: 54:39:ff:09:3b:a1:7d:37:31:4a:fb:36:a7:47:9b: ee:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:04:82:6E:0B:83:7F:5E:20:DE:6E:0D:A2:A4:ED:69:99:2B:73:8E X509v3 Authority Key Identifier: keyid:5D:55:F1:50:9B:6F:03:42:4D:29:44:F8:11:F8:69:93:80:99:BB:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F870/C924246AD7E211EFAF0B3B7DC4F9AE02/XVXxUJtvA0JNKUT4Efhpk4CZu7w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XVXxUJtvA0JNKUT4Efhpk4CZu7w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F870/C924246AD7E211EFAF0B3B7DC4F9AE02/XVXxUJtvA0JNKUT4Efhpk4CZu7w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:60:a5:ff:2e:ce:7f:9b:b3:50:fb:21:e1:dd:72:1d:a2:65: 3c:aa:23:0e:e8:d6:ac:ad:fd:00:2a:13:6b:19:9c:a4:90:2b: 02:82:a5:b1:81:5e:8a:27:a3:8b:b8:99:eb:c8:0b:db:da:33: 8b:d7:9a:95:45:09:d4:5a:fc:b5:93:47:82:43:e4:7c:9c:c4: cc:d3:35:9e:da:be:07:fc:0b:f5:ef:e2:f3:05:68:51:a7:3e: c7:d1:5d:c7:30:9c:05:86:53:6b:fd:25:92:9f:a4:2e:38:19: b9:3c:38:52:53:cb:81:4c:ac:af:6b:d5:fd:2a:d5:b4:66:88: bb:e1:60:d3:81:e9:3d:b7:db:81:45:59:8a:61:e2:76:dc:8d: 46:70:54:f0:2a:cb:50:b6:0c:62:f4:c1:ae:b2:d2:bc:09:e8: 8e:8b:a5:ad:c5:25:a1:e2:1b:92:4f:88:a7:e7:2a:2a:b9:26: 32:d9:d9:7b:c0:f3:37:62:6a:8f:32:2e:bb:f9:2e:14:65:43: 80:d1:7b:9b:cc:03:c8:32:94:46:27:4a:45:fd:0c:1c:02:a5: c3:cb:23:26:25:05:97:b2:35:75:3d:c4:6a:b0:fe:71:e0:67: 3f:3a:76:7a:22:cb:a1:71:98:a4:eb:1d:d5:45:c6:e7:65:8e: e8:c2:2d:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY4NzAxMTAvBgNVBAUTKDVENTVGMTUwOUI2RjAzNDI0RDI5NDRGODExRjg2OTkz ODA5OUJCQkMwHhcNMjUxMDE5MDk1MDAxWhcNMjUxMDI2MDk1MDAxWjAYMRYwFAYD VQQDEw02OGY0YjQ0OS04M2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8jBcJh371R89Sh/9H8lesFquf/bXcbLp8AB5SQxRusMi96WS83PnzC1sbWBh K4ZddtaoYR5YW/ANAciQkEhAsIEtrxszx3R20F5hyV/8ow4Te6VrTOEro3xUbjRC z5XtJZbFFGDqK1aey+OnSCiYIFrUiMcDs+GyDTAOjG9Z8hp7Q1Qjby0AiLeqI8l5 LS1GhMbq4rUH0GjSRShmdUMi3BeAG8NXdyzaGJuYNwECYkDTUisaoCOIGY35QJpI OMS6QZbmGYFUgP4MBV/JboBMsNZOJ7FvUue+Po5glfwSpdh3prB88k6E9q9+s9cH jeNUOf8JO6F9NzFK+zanR5vugQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOsEgm4L g39eIN5uDaKk7WmZK3OOMB8GA1UdIwQYMBaAFF1V8VCbbwNCTSlE+BH4aZOAmbu8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Rjg3MC9DOTI0MjQ2QUQ3 RTIxMUVGQUYwQjNCN0RDNEY5QUUwMi9YVlh4VUp0dkEwSk5LVVQ0RWZocGs0Q1p1 N3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1hWWHhVSnR2QTBKTktVVDRFZmhwazRDWnU3dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Rjg3MC9DOTI0MjQ2QUQ3RTIxMUVGQUYwQjNCN0RDNEY5QUUwMi9YVlh4VUp0dkEw Sk5LVVQ0RWZocGs0Q1p1N3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgYKX/Ls5/m7NQ+yHh3XIdomU8qiMO6Nasrf0AKhNrGZykkCsCgqWx gV6KJ6OLuJnryAvb2jOL15qVRQnUWvy1k0eCQ+R8nMTM0zWe2r4H/Av17+LzBWhR pz7H0V3HMJwFhlNr/SWSn6QuOBm5PDhSU8uBTKyva9X9KtW0Zoi74WDTgek9t9uB RVmKYeJ23I1GcFTwKstQtgxi9MGustK8CeiOi6WtxSWh4huST4in5yoquSYy2dl7 wPM3YmqPMi67+S4UZUOA0XubzAPIMpRGJ0pF/QwcAqXDyyMmJQWXsjV1PcRqsP5x 4Gc/OnZ6IsuhcZik6x3VRcbnZY7owi3e -----END CERTIFICATE-----Generated at Mon Oct 20 19:25:30 2025 by rpki-client