$ rpki-client -vvf rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft File: X3A2SNc_YGlFARjbom-WaC1a5so.mft (raw, json) Hash identifier: KDj1RaltyRVe7r6TkLwqTRts0n/HHFUm1CEFegKDdZI= Subject key identifier: 08:BA:2E:9B:BF:3E:7B:96:83:5B:76:65:F4:53:E3:88:43:37:11:0C Authority key identifier: 5F:70:36:48:D7:3F:60:69:45:01:18:DB:A2:6F:96:68:2D:5A:E6:CA Certificate issuer: /CN=A91508BB/serialNumber=5F703648D73F6069450118DBA26F96682D5AE6CA Certificate serial: 34CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft Manifest number: 34CC Signing time: Sat 18 Oct 2025 14:41:09 +0000 Manifest this update: Sat 18 Oct 2025 14:41:08 +0000 Manifest next update: Sat 25 Oct 2025 14:41:08 +0000 Files and hashes: 1: X3A2SNc_YGlFARjbom-WaC1a5so.crl (hash: 4e2mv0dxY0PZYykcEn1qF4G0AkmqgdrEV+TwfNfLwiA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.crl rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:41:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13516 (0x34cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91508BB, serialNumber=5F703648D73F6069450118DBA26F96682D5AE6CA Validity Not Before: Oct 18 14:41:08 2025 GMT Not After : Oct 25 14:41:08 2025 GMT Subject: CN=68f3a705-5bf1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ea:fe:9a:16:95:7e:12:b2:37:81:41:21:b1: 9b:94:67:02:9b:48:83:dc:84:14:38:36:0c:52:d7: 50:44:99:85:ee:24:a6:d2:b8:a8:96:99:71:39:de: 89:30:89:ca:62:1e:91:f2:f7:11:55:91:f7:4c:4a: f2:b1:45:c6:3a:b3:6b:4b:ea:82:bf:85:84:a3:db: 8f:03:a0:28:cd:3a:b1:92:2b:c5:b8:a6:df:18:f6: 8c:ff:1d:ce:a8:fb:f6:69:40:62:86:bb:c5:24:96: 21:95:ad:4a:91:f6:38:91:82:35:9e:59:af:db:d0: 61:c7:2a:53:88:be:cb:6d:7f:91:1f:82:79:92:6a: ff:17:8b:63:8c:e1:8b:83:53:8c:b8:c8:d9:0d:74: 6b:21:8a:a5:75:40:55:de:f9:42:0b:ef:c0:5a:dc: e1:05:f0:c1:c6:62:11:c1:40:6a:ac:51:d1:67:8d: 01:47:21:b3:dc:d8:19:93:24:98:25:e9:57:6e:8e: 2a:cd:07:8d:07:50:f2:d3:5b:b2:33:20:5c:af:8e: f7:65:33:ce:1e:b4:f9:87:fa:f3:fb:3f:c0:00:73: e8:e3:b6:e3:3e:14:02:82:40:cc:01:e4:19:f5:73: 89:39:f3:ad:bc:40:f4:65:ab:89:24:42:3b:e1:74: 4c:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:BA:2E:9B:BF:3E:7B:96:83:5B:76:65:F4:53:E3:88:43:37:11:0C X509v3 Authority Key Identifier: keyid:5F:70:36:48:D7:3F:60:69:45:01:18:DB:A2:6F:96:68:2D:5A:E6:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X3A2SNc_YGlFARjbom-WaC1a5so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91508BB/5A0D95881D8D11E2A9D607EB08B02CD2/X3A2SNc_YGlFARjbom-WaC1a5so.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:ab:e4:4a:4f:de:42:01:9f:24:8d:87:c9:c5:31:59:58:fd: 91:9c:66:d4:a8:a8:33:38:77:4f:9a:bb:66:d0:59:bc:77:2f: 2c:f7:64:ea:93:dd:a9:98:df:9b:dc:62:de:e5:d5:ea:ec:cc: a1:9d:d6:48:fc:e9:68:9c:68:85:8f:3c:04:fd:58:f0:55:ef: 35:f2:e4:a5:ed:c9:61:92:b3:8c:7f:e4:b3:d9:27:cc:b0:49: e7:5d:12:a5:c9:ba:b2:d7:ef:82:e6:a1:47:f9:55:96:03:52: 9e:dc:6e:0d:40:73:9d:49:98:4e:0e:34:d2:51:f9:19:e7:70: 54:84:6d:6f:65:ba:ed:85:3b:27:08:53:d5:ba:57:0c:42:bd: c7:59:34:88:7c:2d:2d:9e:85:3d:dc:a9:fa:5f:b1:7d:59:c0: 90:e3:07:f0:9c:48:0f:36:f6:d5:30:fb:be:ed:2b:d0:cf:30: 19:3f:b0:b3:75:58:db:16:d1:34:b9:08:34:50:ab:da:84:76: 6a:81:3e:f9:4c:9f:d2:4c:ab:39:8b:50:0e:03:68:e4:ca:24: 10:97:7b:8e:d6:df:24:20:21:67:79:d4:b7:13:e8:4e:2d:ac: 5c:c3:7e:97:4b:9e:68:da:f0:1f:31:37:4c:f5:7f:ca:62:7b: 60:82:c8:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA4QkIxMTAvBgNVBAUTKDVGNzAzNjQ4RDczRjYwNjk0NTAxMThEQkEyNkY5NjY4 MkQ1QUU2Q0EwHhcNMjUxMDE4MTQ0MTA4WhcNMjUxMDI1MTQ0MTA4WjAYMRYwFAYD VQQDEw02OGYzYTcwNS01YmYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqur+mhaVfhKyN4FBIbGblGcCm0iD3IQUODYMUtdQRJmF7iSm0riolplxOd6J MInKYh6R8vcRVZH3TErysUXGOrNrS+qCv4WEo9uPA6AozTqxkivFuKbfGPaM/x3O qPv2aUBihrvFJJYhla1KkfY4kYI1nlmv29BhxypTiL7LbX+RH4J5kmr/F4tjjOGL g1OMuMjZDXRrIYqldUBV3vlCC+/AWtzhBfDBxmIRwUBqrFHRZ40BRyGz3NgZkySY JelXbo4qzQeNB1Dy01uyMyBcr473ZTPOHrT5h/rz+z/AAHPo47bjPhQCgkDMAeQZ 9XOJOfOtvED0ZauJJEI74XRMRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAi6Lpu/ PnuWg1t2ZfRT44hDNxEMMB8GA1UdIwQYMBaAFF9wNkjXP2BpRQEY26JvlmgtWubK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDhCQi81QTBEOTU4ODFE OEQxMUUyQTlENjA3RUIwOEIwMkNEMi9YM0EyU05jX1lHbEZBUmpib20tV2FDMWE1 c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gzQTJTTmNfWUdsRkFSamJvbS1XYUMxYTVzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDhCQi81QTBEOTU4ODFEOEQxMUUyQTlENjA3RUIwOEIwMkNEMi9YM0EyU05jX1lH bEZBUmpib20tV2FDMWE1c28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzq+RKT95CAZ8kjYfJxTFZWP2RnGbUqKgzOHdPmrtm0Fm8dy8s92Tq k92pmN+b3GLe5dXq7MyhndZI/OlonGiFjzwE/VjwVe818uSl7clhkrOMf+Sz2SfM sEnnXRKlybqy1++C5qFH+VWWA1Ke3G4NQHOdSZhODjTSUfkZ53BUhG1vZbrthTsn CFPVulcMQr3HWTSIfC0tnoU93Kn6X7F9WcCQ4wfwnEgPNvbVMPu+7SvQzzAZP7Cz dVjbFtE0uQg0UKvahHZqgT75TJ/STKs5i1AOA2jkyiQQl3uO1t8kICFnedS3E+hO Laxcw36XS55o2vAfMTdM9X/KYntggsiO -----END CERTIFICATE-----Generated at Mon Oct 20 07:46:25 2025 by rpki-client