$ rpki-client -vvf rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft File: xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft (raw, json) Hash identifier: xrUBYDwFtG2Gix5t527hUIcoPbXPpIPCr3y1iAT/Xn8= Subject key identifier: 3E:E9:D2:94:E6:A0:C0:DF:CA:89:25:A9:AF:C9:BF:B4:7A:6C:57:76 Authority key identifier: C7:15:31:D2:5F:80:54:8F:5B:65:1F:86:49:32:5F:3C:8F:D8:59:39 Certificate issuer: /CN=A915786A/serialNumber=C71531D25F80548F5B651F8649325F3C8FD85939 Certificate serial: 0C30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xxUx0l-AVI9bZR-GSTJfPI_YWTk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft Manifest number: 0C25 Signing time: Sat 18 Oct 2025 19:28:06 +0000 Manifest this update: Sat 18 Oct 2025 19:28:06 +0000 Manifest next update: Sat 25 Oct 2025 19:28:06 +0000 Files and hashes: 1: xxUx0l-AVI9bZR-GSTJfPI_YWTk.crl (hash: OCGTPOSTNE97syrLugzKuX9idTE7NN7NEeiVdNHep3U=) 2: 7A7B776A1F0E11EA92AA6824C4F9AE02.roa (hash: vuAfqS+oupAqLtbWHhdz3OsiJgWg5sczosdrHd8kXwo=) 3: FBFF89FC3AC611EEB790D485C4F9AE02.roa (hash: DQuIcDvil4xhDWRcyNWiHmLcTyjG0SYLvwiCuCDmI90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.crl rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xxUx0l-AVI9bZR-GSTJfPI_YWTk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:28:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3120 (0xc30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915786A, serialNumber=C71531D25F80548F5B651F8649325F3C8FD85939 Validity Not Before: Oct 18 19:28:06 2025 GMT Not After : Oct 25 19:28:06 2025 GMT Subject: CN=68f3ea46-790c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d1:0a:ca:47:cb:64:a1:08:c5:4a:a9:12:c2: 3a:46:dc:b9:39:8a:d2:e3:35:3e:f4:7a:02:28:3b: 20:d5:77:e1:6c:da:83:d9:f9:73:26:35:7e:29:e7: 32:72:01:3a:14:56:ca:ec:12:c4:25:69:68:59:1d: 0f:9e:c1:54:eb:96:be:01:4f:08:fe:3b:16:c1:da: 47:5f:8f:a7:5f:43:17:8c:e9:da:da:9d:d7:60:22: 52:2f:5e:1f:41:f1:7a:73:b3:0e:79:2b:25:68:fc: a6:1c:5e:7f:50:e0:02:72:2e:2e:6e:16:cb:99:ed: f0:e6:5a:09:46:8b:08:82:31:7b:23:26:f3:41:59: e1:c2:a0:c7:43:48:78:0a:9b:6f:ac:73:62:24:1f: fb:2b:b9:b3:6f:da:d6:07:a1:80:d1:24:5a:f6:40: cc:46:81:14:a4:2e:58:90:2a:d6:7d:7f:72:9a:3f: 60:72:bd:a2:05:20:b7:eb:51:cf:aa:02:3b:44:d1: cc:04:d7:3a:84:c7:22:e5:4f:58:51:23:97:2a:aa: 57:9f:bb:97:94:e4:8b:dd:fb:8e:ae:3c:01:ae:59: b1:9c:e2:a8:25:b0:c5:21:f4:7d:89:6a:0b:28:c0: f9:71:9c:26:7e:4d:ae:36:32:f9:7a:74:8f:42:49: 64:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:E9:D2:94:E6:A0:C0:DF:CA:89:25:A9:AF:C9:BF:B4:7A:6C:57:76 X509v3 Authority Key Identifier: keyid:C7:15:31:D2:5F:80:54:8F:5B:65:1F:86:49:32:5F:3C:8F:D8:59:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xxUx0l-AVI9bZR-GSTJfPI_YWTk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915786A/126DFC961A5511EA88042211C4F9AE02/xxUx0l-AVI9bZR-GSTJfPI_YWTk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:13:f9:28:b2:c3:84:25:68:53:9b:b9:aa:6c:3c:be:a4:b5: d9:2e:dc:cd:2f:71:31:c5:79:d5:6d:8d:20:7d:02:57:b9:08: b9:50:6c:22:18:f6:ad:27:c4:3a:63:42:28:88:de:45:e3:62: 0c:80:77:d0:e6:6b:68:6b:61:67:40:c2:5d:ca:1e:b6:3e:17: 8e:a9:05:96:06:26:01:df:a1:f6:ac:71:c2:2a:aa:3e:a0:eb: 7a:d1:b8:10:ef:93:49:17:ed:cf:d6:84:16:40:2b:d9:e1:30: f1:a3:dc:2e:c2:f9:72:8b:aa:9d:d1:f9:9b:73:9d:5d:96:60: 16:5d:c2:c1:6a:c5:eb:44:f3:c3:5a:e8:e6:a5:5e:99:66:ed: 3f:5c:2d:60:fd:98:91:fd:03:e6:95:b9:4e:6d:64:ac:00:f2: b1:69:a0:a0:d6:03:7e:53:a8:50:73:fd:83:8c:84:b5:27:e3: 16:02:63:db:79:00:f3:3a:0b:4e:66:de:6b:51:41:2b:37:52: 18:73:cd:a6:6f:b1:77:5f:b6:d8:92:6f:1f:a0:15:41:21:16: 9d:97:fe:bc:ae:f7:65:c2:31:5a:1d:95:3b:b9:ca:0a:0c:9f: 40:8e:c0:7c:b8:57:de:42:ce:2d:6d:f0:59:05:50:ec:25:c5: 9e:45:4b:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDDAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc4NkExMTAvBgNVBAUTKEM3MTUzMUQyNUY4MDU0OEY1QjY1MUY4NjQ5MzI1RjND OEZEODU5MzkwHhcNMjUxMDE4MTkyODA2WhcNMjUxMDI1MTkyODA2WjAYMRYwFAYD VQQDEw02OGYzZWE0Ni03OTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsdEKykfLZKEIxUqpEsI6Rty5OYrS4zU+9HoCKDsg1XfhbNqD2flzJjV+Kecy cgE6FFbK7BLEJWloWR0PnsFU65a+AU8I/jsWwdpHX4+nX0MXjOna2p3XYCJSL14f QfF6c7MOeSslaPymHF5/UOACci4ubhbLme3w5loJRosIgjF7IybzQVnhwqDHQ0h4 CptvrHNiJB/7K7mzb9rWB6GA0SRa9kDMRoEUpC5YkCrWfX9ymj9gcr2iBSC361HP qgI7RNHMBNc6hMci5U9YUSOXKqpXn7uXlOSL3fuOrjwBrlmxnOKoJbDFIfR9iWoL KMD5cZwmfk2uNjL5enSPQklkKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD7p0pTm oMDfyoklqa/Jv7R6bFd2MB8GA1UdIwQYMBaAFMcVMdJfgFSPW2UfhkkyXzyP2Fk5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Nzg2QS8xMjZERkM5NjFB NTUxMUVBODgwNDIyMTFDNEY5QUUwMi94eFV4MGwtQVZJOWJaUi1HU1RKZlBJX1lX VGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h4VXgwbC1BVkk5YlpSLUdTVEpmUElfWVdUay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Nzg2QS8xMjZERkM5NjFBNTUxMUVBODgwNDIyMTFDNEY5QUUwMi94eFV4MGwtQVZJ OWJaUi1HU1RKZlBJX1lXVGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiE/kossOEJWhTm7mqbDy+pLXZLtzNL3ExxXnVbY0gfQJXuQi5UGwi GPatJ8Q6Y0IoiN5F42IMgHfQ5mtoa2FnQMJdyh62PheOqQWWBiYB36H2rHHCKqo+ oOt60bgQ75NJF+3P1oQWQCvZ4TDxo9wuwvlyi6qd0fmbc51dlmAWXcLBasXrRPPD WujmpV6ZZu0/XC1g/ZiR/QPmlblObWSsAPKxaaCg1gN+U6hQc/2DjIS1J+MWAmPb eQDzOgtOZt5rUUErN1IYc82mb7F3X7bYkm8foBVBIRadl/68rvdlwjFaHZU7ucoK DJ9AjsB8uFfeQs4tbfBZBVDsJcWeRUuj -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:41 2025 by rpki-client