$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft File: XwTABfKMKFbHu_R2uRxioC8vxRw.mft (raw, json) Hash identifier: ohz0cm4JXjDGjWRkwyPgxETH7p6ja0/NZji8aU7twcg= Subject key identifier: 83:CC:B5:A0:C3:AE:8E:8B:14:51:CC:41:D4:11:3C:BC:4D:E4:A2:26 Authority key identifier: 5F:04:C0:05:F2:8C:28:56:C7:BB:F4:76:B9:1C:62:A0:2F:2F:C5:1C Certificate issuer: /CN=A915A0FB/serialNumber=5F04C005F28C2856C7BBF476B91C62A02F2FC51C Certificate serial: F5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft Manifest number: F3 Signing time: Sun 19 Oct 2025 07:42:16 +0000 Manifest this update: Sun 19 Oct 2025 07:42:16 +0000 Manifest next update: Sun 26 Oct 2025 07:42:16 +0000 Files and hashes: 1: XwTABfKMKFbHu_R2uRxioC8vxRw.crl (hash: JNSEV011NBhywd+XKGeiwEg4myAfoSg3HewqRU3cbkA=) 2: 900F4ADA440611EF85166C30C4F9AE02.roa (hash: jYgy4yMQyKQf5VxNbJ2NKQFUgnsZsFyOqLwxVUIrb0I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.crl rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:42:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 245 (0xf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0FB, serialNumber=5F04C005F28C2856C7BBF476B91C62A02F2FC51C Validity Not Before: Oct 19 07:42:16 2025 GMT Not After : Oct 26 07:42:16 2025 GMT Subject: CN=68f49658-1997 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:75:19:f1:7d:dc:16:a1:22:44:c6:39:9d:b2: e8:63:d6:d0:77:2d:71:ab:af:3b:8a:0c:e5:b3:18: 06:52:8f:d7:0d:e2:28:90:f9:0d:d0:9f:4f:cc:cf: f7:23:5f:2c:aa:1f:70:d6:46:94:ad:77:f9:d3:9a: 5d:e8:cd:87:fc:72:75:33:ac:31:68:53:ca:7b:3f: af:62:da:a9:ab:44:98:1a:6c:f9:aa:76:41:e2:c2: 13:23:24:8c:54:82:8b:ab:bc:61:e8:04:61:fc:a4: 0d:20:41:d7:a5:1a:56:27:1c:dd:98:0a:fd:78:c2: 5c:86:af:f8:e5:29:50:63:df:68:7f:b8:5c:b7:b6: 53:ee:8b:ae:66:68:cc:a0:9f:d5:bb:de:6e:4c:5e: 63:e6:a9:ed:e6:13:d5:61:2a:a9:7e:b6:ed:53:61: ec:bf:f9:07:25:42:92:cf:a8:fb:a4:1e:ad:b5:9b: 8b:ef:05:b6:c4:7c:8a:d8:ca:34:89:fd:73:ab:f2: 7a:ef:c6:87:05:ba:aa:c6:06:b2:a6:4f:ca:af:3b: 55:65:be:c6:4e:7b:a4:5a:ab:e0:19:da:fb:ce:9c: 1b:5a:be:5d:ea:bc:f4:ce:1d:7c:9e:f6:53:91:df: d9:18:50:d2:6c:82:ba:06:52:55:35:47:9e:47:b1: 80:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:CC:B5:A0:C3:AE:8E:8B:14:51:CC:41:D4:11:3C:BC:4D:E4:A2:26 X509v3 Authority Key Identifier: keyid:5F:04:C0:05:F2:8C:28:56:C7:BB:F4:76:B9:1C:62:A0:2F:2F:C5:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:53:e2:a8:99:69:3b:0f:fe:89:12:13:06:3a:ec:c4:54:b8: 62:b9:ee:d2:07:0e:da:38:f9:e7:74:9c:88:a2:ad:c5:1b:e2: 36:a9:1c:0b:be:11:0f:5d:ce:ce:77:16:17:45:26:3c:9a:3e: 9d:38:78:fc:aa:5e:3f:4e:8c:c4:a4:b3:17:d4:f4:3d:62:71: 43:94:f6:f3:86:ef:9c:c4:2b:d6:c9:2f:03:66:e4:8c:a6:81: b9:a6:66:dd:d8:6b:0f:68:23:30:25:2b:20:00:fd:cb:27:0c: 41:31:ad:08:20:5f:91:e0:df:8f:fa:ac:53:1d:72:7a:ed:51: 04:6a:3c:80:99:15:7e:99:c7:11:2c:82:26:6c:28:c2:74:e6: 32:ca:dc:95:e6:12:3d:20:97:19:0c:26:64:d5:a5:5a:4f:c1: 79:67:3e:f5:01:4f:d6:07:f9:b9:56:6d:8d:0e:e3:14:f1:eb: 3b:3b:ca:aa:87:7f:78:de:ec:e4:2a:de:e9:9d:a5:f6:55:31: 29:72:5b:a7:1c:38:78:82:0a:59:d0:4b:36:97:a4:3e:28:d2: d4:82:ec:db:eb:f9:a3:19:85:5c:ca:71:1e:74:0c:34:d3:8f: 9e:96:97:d9:25:32:54:9e:f0:b1:5b:2a:59:df:43:02:f0:9f: dd:53:39:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwRkIxMTAvBgNVBAUTKDVGMDRDMDA1RjI4QzI4NTZDN0JCRjQ3NkI5MUM2MkEw MkYyRkM1MUMwHhcNMjUxMDE5MDc0MjE2WhcNMjUxMDI2MDc0MjE2WjAYMRYwFAYD VQQDEw02OGY0OTY1OC0xOTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHUZ8X3cFqEiRMY5nbLoY9bQdy1xq687igzlsxgGUo/XDeIokPkN0J9PzM/3 I18sqh9w1kaUrXf505pd6M2H/HJ1M6wxaFPKez+vYtqpq0SYGmz5qnZB4sITIySM VIKLq7xh6ARh/KQNIEHXpRpWJxzdmAr9eMJchq/45SlQY99of7hct7ZT7ouuZmjM oJ/Vu95uTF5j5qnt5hPVYSqpfrbtU2Hsv/kHJUKSz6j7pB6ttZuL7wW2xHyK2Mo0 if1zq/J678aHBbqqxgaypk/KrztVZb7GTnukWqvgGdr7zpwbWr5d6rz0zh18nvZT kd/ZGFDSbIK6BlJVNUeeR7GAYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIPMtaDD ro6LFFHMQdQRPLxN5KImMB8GA1UdIwQYMBaAFF8EwAXyjChWx7v0drkcYqAvL8Uc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBGQi9FMTcxOTM2MjNE OEQxMUVGODcwNTNCMEZDNEY5QUUwMi9Yd1RBQmZLTUtGYkh1X1IydVJ4aW9DOHZ4 UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1h3VEFCZktNS0ZiSHVfUjJ1Unhpb0M4dnhSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTBGQi9FMTcxOTM2MjNEOEQxMUVGODcwNTNCMEZDNEY5QUUwMi9Yd1RBQmZLTUtG Ykh1X1IydVJ4aW9DOHZ4UncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXU+KomWk7D/6JEhMGOuzEVLhiue7SBw7aOPnndJyIoq3FG+I2qRwL vhEPXc7OdxYXRSY8mj6dOHj8ql4/TozEpLMX1PQ9YnFDlPbzhu+cxCvWyS8DZuSM poG5pmbd2GsPaCMwJSsgAP3LJwxBMa0IIF+R4N+P+qxTHXJ67VEEajyAmRV+mccR LIImbCjCdOYyytyV5hI9IJcZDCZk1aVaT8F5Zz71AU/WB/m5Vm2NDuMU8es7O8qq h3943uzkKt7pnaX2VTEpclunHDh4ggpZ0Es2l6Q+KNLUguzb6/mjGYVcynEedAw0 04+elpfZJTJUnvCxWypZ30MC8J/dUzmu -----END CERTIFICATE-----Generated at Tue Oct 21 00:03:49 2025 by rpki-client