$ rpki-client -vvf rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft File: XAq0JfK0I14cgVaDvWyOi3uAtyc.mft (raw, json) Hash identifier: FLuhIS0/K74+QEEao4yOX11GqgpaRGgRt6j/YWpNIaQ= Subject key identifier: B6:13:C9:01:A4:56:A7:C8:44:3E:D9:E9:FA:15:4F:22:48:88:50:7B Authority key identifier: 5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 Certificate issuer: /CN=A917F8A9/serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Certificate serial: 09CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft Manifest number: 09B5 Signing time: Sat 18 Oct 2025 21:04:49 +0000 Manifest this update: Sat 18 Oct 2025 21:04:48 +0000 Manifest next update: Sat 25 Oct 2025 21:04:48 +0000 Files and hashes: 1: XAq0JfK0I14cgVaDvWyOi3uAtyc.crl (hash: dxKC9Frt3br/brC5j1vRoP0spN1em+aHZP/WFb9bSk8=) 2: 83DC30E0D0DB11EA9336962FC4F9AE02.roa (hash: 1xpqucRPj2sGGfUlw/hjqGcWw2RAvQEPEvj1/o7DLww=) 3: 0774A2C894F211EAB30E7682C4F9AE02.roa (hash: Qe2k4Rmt8cYvrQ25NjhCj6HgTDQ2LTBczeZdX5NMi1Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:04:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2508 (0x9cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F8A9, serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Validity Not Before: Oct 18 21:04:48 2025 GMT Not After : Oct 25 21:04:48 2025 GMT Subject: CN=68f400f0-8857 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e6:5f:d9:09:90:68:54:47:e6:16:a1:ec:42: 47:ca:ec:99:89:43:9b:e9:2b:d1:7b:51:0f:1b:f5: 67:d2:8e:c0:f7:c4:c1:b7:94:3e:3b:51:3a:f3:88: 55:df:a2:18:d4:68:e8:d4:55:52:71:c9:c9:de:29: 38:eb:05:76:df:1c:54:f2:c7:7d:e8:78:f5:93:92: 38:8a:58:25:ba:6c:b2:e3:43:c1:be:c0:1b:85:b7: e7:43:24:47:8f:d7:43:8c:ff:94:97:9e:f8:08:c6: a7:24:73:9d:52:90:7e:76:62:84:55:a5:6a:b2:92: 22:8c:ab:15:23:d6:46:09:19:ff:d3:b8:ee:b0:80: 6b:8e:cc:ed:56:ca:02:81:f4:27:11:b4:40:d7:49: 64:da:c3:db:a7:c7:ec:f7:51:a9:cb:63:a0:bd:02: 19:4b:42:76:80:f4:36:47:4b:15:e7:34:c9:0e:19: 64:db:60:3f:97:03:1f:fb:0c:29:11:fe:33:5c:44: 7f:25:8e:fe:e1:bd:ce:50:56:5b:93:ff:bf:29:55: e3:ab:c9:d3:53:cd:f7:4e:72:bf:6c:d5:fa:c5:03: 30:fe:e1:41:81:e2:db:81:81:f4:50:a5:85:79:d7: 80:74:0f:29:21:c7:18:42:ae:22:56:7f:62:fe:a3: c5:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:13:C9:01:A4:56:A7:C8:44:3E:D9:E9:FA:15:4F:22:48:88:50:7B X509v3 Authority Key Identifier: keyid:5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:3c:a0:6c:61:9b:ae:7e:4d:50:d5:64:8a:d1:1d:77:10:f7: 22:04:13:b9:58:0c:71:73:87:52:91:6c:73:f0:aa:93:60:7d: f9:c1:d8:bb:7f:78:91:29:01:3b:a7:0c:33:18:aa:28:ac:60: 7e:fb:e0:52:01:9b:b7:f3:62:82:90:22:f5:e3:59:ee:d0:b8: 99:ad:46:c6:1e:8a:50:35:84:23:38:a1:a6:4f:18:88:dd:8a: 0d:c9:cb:11:cd:59:86:04:60:48:ea:61:91:d7:4a:51:d7:b4: e5:96:fa:17:61:b7:87:c7:f5:b4:03:7a:09:ab:35:60:6f:39: 55:e3:83:5e:47:9a:b0:7d:02:8a:6e:35:a0:98:81:02:73:5a: 2f:ae:2c:89:1d:e6:35:65:63:01:4b:f5:5a:36:ba:15:ec:b6: dd:90:23:b6:73:65:dd:80:27:6a:d6:39:17:93:ee:94:82:9f: fa:79:e8:6f:69:34:4d:8a:dd:a2:80:3c:07:37:08:84:5f:ea: 01:eb:2f:9e:51:d2:e7:85:d4:af:50:81:c2:30:f8:fb:73:5b: fb:d2:5e:77:9d:4a:9e:1c:15:dd:cd:0d:13:f4:5e:2d:e3:aa: d1:21:59:d6:a6:c3:24:75:cf:4b:95:5f:1b:5c:01:06:76:bc: 26:28:1a:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCcwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y4QTkxMTAvBgNVBAUTKDVDMEFCNDI1RjJCNDIzNUUxQzgxNTY4M0JENkM4RThC N0I4MEI3MjcwHhcNMjUxMDE4MjEwNDQ4WhcNMjUxMDI1MjEwNDQ4WjAYMRYwFAYD VQQDEw02OGY0MDBmMC04ODU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOZf2QmQaFRH5hah7EJHyuyZiUOb6SvRe1EPG/Vn0o7A98TBt5Q+O1E684hV 36IY1Gjo1FVSccnJ3ik46wV23xxU8sd96Hj1k5I4ilglumyy40PBvsAbhbfnQyRH j9dDjP+Ul574CManJHOdUpB+dmKEVaVqspIijKsVI9ZGCRn/07jusIBrjsztVsoC gfQnEbRA10lk2sPbp8fs91Gpy2OgvQIZS0J2gPQ2R0sV5zTJDhlk22A/lwMf+wwp Ef4zXER/JY7+4b3OUFZbk/+/KVXjq8nTU833TnK/bNX6xQMw/uFBgeLbgYH0UKWF edeAdA8pIccYQq4iVn9i/qPFBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLYTyQGk VqfIRD7Z6foVTyJIiFB7MB8GA1UdIwQYMBaAFFwKtCXytCNeHIFWg71sjot7gLcn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjhBOS8yQUEwNDMzMDk0 RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkxNGNnVmFEdld5T2kzdUF0 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hBcTBKZkswSTE0Y2dWYUR2V3lPaTN1QXR5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjhBOS8yQUEwNDMzMDk0RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkx NGNnVmFEdld5T2kzdUF0eWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSPKBsYZuufk1Q1WSK0R13EPciBBO5WAxxc4dSkWxz8KqTYH35wdi7 f3iRKQE7pwwzGKoorGB+++BSAZu382KCkCL141nu0LiZrUbGHopQNYQjOKGmTxiI 3YoNycsRzVmGBGBI6mGR10pR17TllvoXYbeHx/W0A3oJqzVgbzlV44NeR5qwfQKK bjWgmIECc1ovriyJHeY1ZWMBS/VaNroV7LbdkCO2c2XdgCdq1jkXk+6Ugp/6eehv aTRNit2igDwHNwiEX+oB6y+eUdLnhdSvUIHCMPj7c1v70l53nUqeHBXdzQ0T9F4t 46rRIVnWpsMkdc9LlV8bXAEGdrwmKBpf -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:06 2025 by rpki-client