$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft File: XSeFtU0WPtAepUGLz6NPG3RWtxM.mft (raw, json) Hash identifier: WKL4GkeEjrC+wm1i4f4UGhBPFCh/i6/fj1n5VUgGGYk= Subject key identifier: 0B:1C:F7:0E:99:B7:57:42:A0:87:06:B4:AD:46:97:A1:67:20:07:41 Authority key identifier: 5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 Certificate issuer: /CN=A9167CC5/serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Certificate serial: 04DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft Manifest number: 04C4 Signing time: Sun 19 Oct 2025 01:41:56 +0000 Manifest this update: Sun 19 Oct 2025 01:41:56 +0000 Manifest next update: Sun 26 Oct 2025 01:41:56 +0000 Files and hashes: 1: XSeFtU0WPtAepUGLz6NPG3RWtxM.crl (hash: Y3TmjmjaCVtWEFrr4YjjEPkg8pb8uw11Dskn18QoEz0=) 2: 6337963E4C3D11ECB5FF844FC4F9AE02.roa (hash: 3KTOI3tChJ1EuHHkZIxY0+a6WeVb+6nR6Jk3wwfwMHU=) 3: ACE844F047AA11ECA0F05026C4F9AE02.roa (hash: xweR0My4YSEWr28C8V1U/OMEuVwH/Ly7NJUba0hYsCg=) 4: 1F77EFA44C4011EC952D5A23C4F9AE02.roa (hash: c5WQ+yUKORBq8d/u8k3An8QJMDIFK4yVXiwWYWbL5qc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:41:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1244 (0x4dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CC5, serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Validity Not Before: Oct 19 01:41:56 2025 GMT Not After : Oct 26 01:41:56 2025 GMT Subject: CN=68f441e4-d91b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:3b:51:f9:54:69:fa:d9:da:24:26:42:a3:f7: f6:f8:4e:bd:9a:df:95:d6:83:5d:1e:8a:60:18:fb: 36:7e:03:18:2d:99:27:30:ed:bd:50:d7:49:10:0d: d3:7c:81:13:18:22:47:01:60:ce:22:a7:f6:31:01: 37:7d:0d:e9:75:d5:b7:21:8d:f6:1f:c3:5d:50:14: 15:a2:f1:0b:78:15:d8:e9:9f:39:35:e8:74:8b:6a: fd:a2:28:ad:3e:f4:f1:c6:6d:92:dc:16:8d:1e:08: 84:0a:1d:9c:f0:11:45:2b:0f:67:57:7f:18:79:b6: 2c:95:5c:45:1f:68:48:aa:22:3b:83:df:ba:18:ac: d4:20:68:8b:b0:6e:75:af:bb:4e:0b:47:2a:2c:a7: e5:c0:66:65:93:cb:f6:a8:93:ab:c8:4b:00:12:18: 79:37:e1:bb:69:c5:58:dd:7b:07:05:32:5d:ff:bc: 1c:84:d7:d3:1f:5b:84:3a:26:a6:ef:0b:53:a8:1c: c5:5c:f5:c3:5e:e0:16:66:51:32:ef:45:cc:e2:c8: 6a:73:ca:02:ab:c6:8f:ef:0e:21:99:f5:a1:ae:66: cd:c7:25:fe:37:81:b3:ec:e4:19:a1:ff:0b:c0:9b: ac:1b:aa:1e:4d:04:0e:29:b9:de:dd:2b:9b:1e:15: d1:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:1C:F7:0E:99:B7:57:42:A0:87:06:B4:AD:46:97:A1:67:20:07:41 X509v3 Authority Key Identifier: keyid:5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:4c:1a:91:fa:d2:a6:64:71:35:4b:21:ea:e5:d9:39:3e:a2: 02:aa:4f:f2:04:77:43:16:31:1c:a4:12:b3:5e:8d:e6:79:84: 28:38:93:da:ca:01:ea:7e:7f:bf:93:d5:2a:3b:1d:ab:13:4a: 7f:3b:66:b7:62:70:0d:b7:71:80:ec:d3:47:a8:9d:f6:36:6a: 03:04:9a:75:5e:c5:23:83:e3:e1:7c:0c:ed:30:c8:4f:46:2a: ec:38:96:5b:ee:6e:f5:7d:ba:6a:0e:e6:9e:07:40:de:00:67: 74:51:00:04:a5:3b:cf:7b:0b:5d:b1:72:f5:c2:ed:6a:6a:53: b5:d3:84:c6:1d:2b:1c:b4:24:46:9e:45:bf:aa:b5:e7:ca:7c: 9f:85:1b:d3:63:b6:f2:35:ac:6e:8d:56:27:65:5d:a8:0e:ad: 16:cf:76:07:6d:a0:d0:56:7c:6d:bd:5c:e7:ef:bc:62:04:46: c3:35:ac:fb:fe:3a:45:8a:a0:a2:6f:11:ce:b2:2d:32:46:8c: 6f:6f:0d:c3:77:b9:be:11:2f:12:26:d8:78:29:57:08:26:89: 0c:6a:e9:0d:c8:a3:29:ac:de:ce:1f:60:8f:c5:00:88:21:1d: a1:72:df:8d:70:df:a2:10:1a:3f:bd:f0:a6:7c:32:92:5d:2e: c4:68:a3:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQzUxMTAvBgNVBAUTKDVEMjc4NUI1NEQxNjNFRDAxRUE1NDE4QkNGQTM0RjFC NzQ1NkI3MTMwHhcNMjUxMDE5MDE0MTU2WhcNMjUxMDI2MDE0MTU2WjAYMRYwFAYD VQQDEw02OGY0NDFlNC1kOTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwztR+VRp+tnaJCZCo/f2+E69mt+V1oNdHopgGPs2fgMYLZknMO29UNdJEA3T fIETGCJHAWDOIqf2MQE3fQ3pddW3IY32H8NdUBQVovELeBXY6Z85Neh0i2r9oiit PvTxxm2S3BaNHgiECh2c8BFFKw9nV38YebYslVxFH2hIqiI7g9+6GKzUIGiLsG51 r7tOC0cqLKflwGZlk8v2qJOryEsAEhh5N+G7acVY3XsHBTJd/7wchNfTH1uEOiam 7wtTqBzFXPXDXuAWZlEy70XM4shqc8oCq8aP7w4hmfWhrmbNxyX+N4Gz7OQZof8L wJusG6oeTQQOKbne3SubHhXRlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAsc9w6Z t1dCoIcGtK1Gl6FnIAdBMB8GA1UdIwQYMBaAFF0nhbVNFj7QHqVBi8+jTxt0VrcT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NDNS8yQUM0RDMzRTQ2 QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0QWVwVUdMejZOUEczUld0 eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTZUZ0VTBXUHRBZXBVR0x6Nk5QRzNSV3R4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NDNS8yQUM0RDMzRTQ2QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0 QWVwVUdMejZOUEczUld0eE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVTBqR+tKmZHE1SyHq5dk5PqICqk/yBHdDFjEcpBKzXo3meYQoOJPa ygHqfn+/k9UqOx2rE0p/O2a3YnANt3GA7NNHqJ32NmoDBJp1XsUjg+PhfAztMMhP RirsOJZb7m71fbpqDuaeB0DeAGd0UQAEpTvPewtdsXL1wu1qalO104TGHSsctCRG nkW/qrXnynyfhRvTY7byNaxujVYnZV2oDq0Wz3YHbaDQVnxtvVzn77xiBEbDNaz7 /jpFiqCibxHOsi0yRoxvbw3Dd7m+ES8SJth4KVcIJokMaukNyKMprN7OH2CPxQCI IR2hct+NcN+iEBo/vfCmfDKSXS7EaKPU -----END CERTIFICATE-----Generated at Mon Oct 20 11:32:32 2025 by rpki-client