$ rpki-client -vvf rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft File: XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft (raw, json) Hash identifier: sQhovD9n2+Rzhf74gL6O4NJYKb1OKGKYeNxGXIcJ4DI= Subject key identifier: F8:29:62:82:0C:6C:E6:DD:B4:5A:4B:C0:1C:83:1C:94:3C:E2:32:5E Authority key identifier: 5C:5A:4F:AE:4A:F0:1F:FD:C9:27:53:55:CC:BA:B8:C8:10:18:9F:54 Certificate issuer: /CN=A918B0B9/serialNumber=5C5A4FAE4AF01FFDC9275355CCBAB8C810189F54 Certificate serial: 09EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft Manifest number: 09D4 Signing time: Sat 18 Oct 2025 21:01:08 +0000 Manifest this update: Sat 18 Oct 2025 21:01:07 +0000 Manifest next update: Sat 25 Oct 2025 21:01:07 +0000 Files and hashes: 1: XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl (hash: p8rfGiMm4aduya5IEOTd1Df1o9eSSlaj+/fcJuD4BRg=) 2: 52F955A89B1511EA9BEFA53BC4F9AE02.roa (hash: ULVz6gtv7Lj17GsbY0DraIvlqeAo9m+ryNVdzpRY8/w=) 3: BED54F1A9B1611EA939F5A3FC4F9AE02.roa (hash: vTD8xn0iYmYF0FCpYg76YMcwnWDZovAXcFL69UbAO9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2540 (0x9ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B0B9, serialNumber=5C5A4FAE4AF01FFDC9275355CCBAB8C810189F54 Validity Not Before: Oct 18 21:01:07 2025 GMT Not After : Oct 25 21:01:07 2025 GMT Subject: CN=68f40013-f151 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:fc:62:cc:60:72:f8:3d:58:e3:dd:90:c3:b0: de:44:86:f5:37:25:aa:ca:29:39:47:a1:54:9d:07: 66:4c:4a:ee:c2:72:17:a8:a7:c2:16:49:74:29:db: 20:f8:5c:11:b0:6d:c1:f8:80:92:3e:d9:44:8b:05: ad:c4:ba:98:91:02:41:b1:21:d9:16:0f:d7:80:29: fd:83:95:0c:cd:26:34:f0:b9:ba:30:81:4f:7d:a2: 7f:4a:bf:71:96:10:22:a4:28:9d:cf:86:f5:54:70: d0:ba:f8:51:15:81:95:28:f9:63:af:25:b9:a3:8b: be:ba:0e:51:c5:c0:8b:d6:3f:a6:73:5d:4c:60:83: ca:4a:68:fc:80:8a:3c:b2:34:98:1c:3c:3b:b9:d8: 2d:d3:95:c1:66:fb:89:17:60:62:72:33:95:de:99: 46:83:57:3e:c3:71:3f:f2:55:9a:09:4e:e5:84:11: 33:0e:a4:17:01:14:52:67:5c:0a:43:f5:e0:03:88: 68:ff:4c:1d:ed:a4:43:8a:f0:e0:2d:3d:e1:20:91: 42:ac:ff:1f:67:80:aa:72:fa:c0:3a:95:24:c6:d0: e2:6c:56:bf:ad:23:b0:91:67:aa:29:9b:66:5c:ac: 23:20:5a:e1:f4:9a:c8:59:ce:a0:c0:a4:99:33:9e: ee:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:29:62:82:0C:6C:E6:DD:B4:5A:4B:C0:1C:83:1C:94:3C:E2:32:5E X509v3 Authority Key Identifier: keyid:5C:5A:4F:AE:4A:F0:1F:FD:C9:27:53:55:CC:BA:B8:C8:10:18:9F:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:29:07:be:ba:af:46:ed:6a:55:61:2b:ce:e5:29:3e:d4:37: e6:11:3f:35:72:8b:a1:74:e8:08:b4:e1:10:39:b2:cd:00:99: d2:95:49:12:d8:4e:e9:2d:4d:b4:1e:ac:ab:06:cb:19:39:df: 19:c7:98:c6:56:35:ce:5d:e5:f8:33:47:3b:d5:c3:e5:94:da: df:b2:0c:2c:41:56:95:e8:6c:d0:80:d3:4c:10:47:de:bf:dc: b0:df:4a:2c:66:95:4f:6c:1b:00:75:b7:75:cc:6e:fd:29:3e: e5:09:1a:59:17:c5:c0:49:5f:cf:93:80:af:e6:6f:78:66:44: f6:17:ea:79:66:34:0a:c3:20:a2:bf:7f:17:23:82:ba:eb:27: 81:33:2c:6a:04:33:33:9a:81:18:37:df:34:4d:51:1e:5b:61: cd:e2:7b:00:fc:1c:b0:69:5e:b0:c9:a0:d9:7c:26:5a:d2:24: d0:bd:47:e5:56:15:b0:25:d1:84:7d:e4:16:07:15:20:ce:db: 0e:a5:6a:75:30:03:29:d3:dc:3c:53:d9:cd:5e:e3:92:33:10: 8a:a4:30:2c:07:c7:80:4b:7b:8d:b2:ae:1d:0e:d7:fa:d2:e4: 45:27:e3:4d:30:54:6a:fa:04:98:08:80:b3:b6:ac:cd:f1:ed: 66:39:a1:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEIwQjkxMTAvBgNVBAUTKDVDNUE0RkFFNEFGMDFGRkRDOTI3NTM1NUNDQkFCOEM4 MTAxODlGNTQwHhcNMjUxMDE4MjEwMTA3WhcNMjUxMDI1MjEwMTA3WjAYMRYwFAYD VQQDEw02OGY0MDAxMy1mMTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtfxizGBy+D1Y492Qw7DeRIb1NyWqyik5R6FUnQdmTEruwnIXqKfCFkl0Kdsg +FwRsG3B+ICSPtlEiwWtxLqYkQJBsSHZFg/XgCn9g5UMzSY08Lm6MIFPfaJ/Sr9x lhAipCidz4b1VHDQuvhRFYGVKPljryW5o4u+ug5RxcCL1j+mc11MYIPKSmj8gIo8 sjSYHDw7udgt05XBZvuJF2BicjOV3plGg1c+w3E/8lWaCU7lhBEzDqQXARRSZ1wK Q/XgA4ho/0wd7aRDivDgLT3hIJFCrP8fZ4CqcvrAOpUkxtDibFa/rSOwkWeqKZtm XKwjIFrh9JrIWc6gwKSZM57uqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPgpYoIM bObdtFpLwByDHJQ84jJeMB8GA1UdIwQYMBaAFFxaT65K8B/9ySdTVcy6uMgQGJ9U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjBCOS85Q0JGM0Q5MDhG QTAxMUVBQUE5QkJBMThDNEY5QUUwMi9YRnBQcmtyd0hfM0pKMU5WekxxNHlCQVlu MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hGcFBya3J3SF8zSkoxTlZ6THE0eUJBWW4xUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjBCOS85Q0JGM0Q5MDhGQTAxMUVBQUE5QkJBMThDNEY5QUUwMi9YRnBQcmtyd0hf M0pKMU5WekxxNHlCQVluMVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbKQe+uq9G7WpVYSvO5Sk+1DfmET81couhdOgItOEQObLNAJnSlUkS 2E7pLU20HqyrBssZOd8Zx5jGVjXOXeX4M0c71cPllNrfsgwsQVaV6GzQgNNMEEfe v9yw30osZpVPbBsAdbd1zG79KT7lCRpZF8XASV/Pk4Cv5m94ZkT2F+p5ZjQKwyCi v38XI4K66yeBMyxqBDMzmoEYN980TVEeW2HN4nsA/BywaV6wyaDZfCZa0iTQvUfl VhWwJdGEfeQWBxUgztsOpWp1MAMp09w8U9nNXuOSMxCKpDAsB8eAS3uNsq4dDtf6 0uRFJ+NNMFRq+gSYCICztqzN8e1mOaFc -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:36 2025 by rpki-client