$ rpki-client -vvf rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft File: XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft (raw, json) Hash identifier: iv5/WCwjCl4Ahxgvxb+DZ6uO3Jh6Re1XzCq5BK1F9/s= Subject key identifier: CA:8C:86:BA:D9:39:39:52:53:0F:5D:85:23:46:B8:03:BC:51:EB:77 Authority key identifier: 5C:17:AF:2E:0A:AF:49:0C:EA:A8:4E:2A:AA:71:48:3D:03:95:F1:E4 Certificate issuer: /CN=A91923A9/serialNumber=5C17AF2E0AAF490CEAA84E2AAA71483D0395F1E4 Certificate serial: 01CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBevLgqvSQzqqE4qqnFIPQOV8eQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft Manifest number: 01C5 Signing time: Sun 19 Oct 2025 05:25:42 +0000 Manifest this update: Sun 19 Oct 2025 05:25:42 +0000 Manifest next update: Sun 26 Oct 2025 05:25:42 +0000 Files and hashes: 1: XBevLgqvSQzqqE4qqnFIPQOV8eQ.crl (hash: rF2sVdeBEjEOZQKpGn1D2W3+hnrMljuKBiegbt0JkoU=) 2: 80F75824FAAD11EDB0C98683C4F9AE02.roa (hash: SO9SbWUjXyJ9Yb5w7Q+6mTlLwT6ktJsJ2PGUdf4nf50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.crl rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBevLgqvSQzqqE4qqnFIPQOV8eQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:25:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 458 (0x1ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91923A9, serialNumber=5C17AF2E0AAF490CEAA84E2AAA71483D0395F1E4 Validity Not Before: Oct 19 05:25:42 2025 GMT Not After : Oct 26 05:25:42 2025 GMT Subject: CN=68f47656-b18a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:75:7a:92:7e:42:f7:ef:3b:59:12:c1:ba:b6: 6b:e2:93:f6:52:f0:2b:82:ff:09:71:8f:f9:e1:78: c3:ef:82:f3:14:5c:d5:07:0a:86:35:1d:a9:15:9c: a7:b3:45:ec:96:83:de:9e:39:41:5a:2f:81:58:96: 4f:3f:54:83:47:cc:3e:14:67:8e:a1:4c:60:df:81: 23:7a:bc:05:bc:bb:d7:3b:d4:57:f8:69:36:a6:9c: b2:ff:f0:b3:71:8b:57:da:c7:16:9f:4d:9f:79:fc: d7:a6:dd:85:e0:a9:9b:c8:da:d7:ba:ac:00:ca:de: 2d:8f:fd:23:04:77:0c:d9:ce:f4:43:63:db:bb:10: 99:1b:0e:23:a7:a2:9a:52:0c:3a:93:0f:fe:2c:98: 28:8e:1f:62:16:9b:20:7e:c6:4d:6e:a3:4c:55:c9: c6:6c:b5:ec:5c:88:40:c2:a1:d0:41:13:95:89:52: be:32:16:f4:f0:98:81:95:0a:04:d3:1f:d0:c6:be: 67:26:55:3d:de:17:44:bd:a4:d4:88:97:c2:ae:58: 60:38:6b:47:ea:95:4d:ab:9e:98:39:9a:d5:4f:2c: e8:41:4b:84:07:e9:bb:23:b6:8d:83:a4:5f:de:15: 11:a3:cd:d6:d5:f9:e4:83:49:6b:c4:b0:2f:93:1f: 34:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:8C:86:BA:D9:39:39:52:53:0F:5D:85:23:46:B8:03:BC:51:EB:77 X509v3 Authority Key Identifier: keyid:5C:17:AF:2E:0A:AF:49:0C:EA:A8:4E:2A:AA:71:48:3D:03:95:F1:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBevLgqvSQzqqE4qqnFIPQOV8eQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:56:5a:9c:09:d4:d0:ec:d2:70:0a:6f:b4:0b:28:04:2d:20: 89:41:30:37:6f:5d:0a:bb:d6:6a:88:8f:70:0c:ce:bf:5d:4d: 5f:4b:fd:cf:e4:c0:4e:a4:cb:e0:ee:ae:2e:84:6e:b7:74:b4: 79:c0:e3:ff:bf:75:ca:b7:4e:ce:11:81:51:ee:eb:a4:61:54: 42:1d:22:11:a7:19:66:33:39:6c:23:76:9b:44:a2:fe:c2:63: 28:80:f3:0d:94:81:7d:1d:7a:96:7d:e8:b1:3b:4a:96:47:2d: b5:c7:2d:66:ab:85:45:8f:a1:91:cf:b7:ad:b0:5a:e6:dd:e2: 7b:7e:de:22:fc:2f:e6:63:85:82:f4:0f:ce:28:ff:ae:98:e5: b7:4b:bd:82:27:7f:8a:34:e8:cd:77:b5:41:00:fe:c4:94:31: 6f:bc:07:05:ab:f2:b5:f5:d0:32:32:5c:23:28:c1:6d:c5:af: 20:3b:f7:da:8c:a7:d7:e4:e0:a8:c9:14:bf:d3:b8:59:d9:4b: 2c:ca:ef:5d:8e:fc:01:f9:8f:42:87:9d:59:20:da:57:4a:8b: 00:5e:1c:f0:63:12:27:88:a5:00:03:b7:af:32:86:5e:8b:31: cb:29:f5:af:c3:23:fb:a4:a3:51:ca:9b:ec:a0:e7:b0:b3:e8: 5d:8d:05:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTIzQTkxMTAvBgNVBAUTKDVDMTdBRjJFMEFBRjQ5MENFQUE4NEUyQUFBNzE0ODNE MDM5NUYxRTQwHhcNMjUxMDE5MDUyNTQyWhcNMjUxMDI2MDUyNTQyWjAYMRYwFAYD VQQDEw02OGY0NzY1Ni1iMThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6nV6kn5C9+87WRLBurZr4pP2UvArgv8JcY/54XjD74LzFFzVBwqGNR2pFZyn s0XsloPenjlBWi+BWJZPP1SDR8w+FGeOoUxg34EjerwFvLvXO9RX+Gk2ppyy//Cz cYtX2scWn02fefzXpt2F4KmbyNrXuqwAyt4tj/0jBHcM2c70Q2PbuxCZGw4jp6Ka Ugw6kw/+LJgojh9iFpsgfsZNbqNMVcnGbLXsXIhAwqHQQROViVK+Mhb08JiBlQoE 0x/Qxr5nJlU93hdEvaTUiJfCrlhgOGtH6pVNq56YOZrVTyzoQUuEB+m7I7aNg6Rf 3hURo83W1fnkg0lrxLAvkx80LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMqMhrrZ OTlSUw9dhSNGuAO8Uet3MB8GA1UdIwQYMBaAFFwXry4Kr0kM6qhOKqpxSD0DlfHk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MjNBOS9BNjM4NzY4NEZB QTUxMUVEQjJCMjk1N0ZDNEY5QUUwMi9YQmV2TGdxdlNRenFxRTRxcW5GSVBRT1Y4 ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hCZXZMZ3F2U1F6cXFFNHFxbkZJUFFPVjhlUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MjNBOS9BNjM4NzY4NEZBQTUxMUVEQjJCMjk1N0ZDNEY5QUUwMi9YQmV2TGdxdlNR enFxRTRxcW5GSVBRT1Y4ZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtVlqcCdTQ7NJwCm+0CygELSCJQTA3b10Ku9ZqiI9wDM6/XU1fS/3P 5MBOpMvg7q4uhG63dLR5wOP/v3XKt07OEYFR7uukYVRCHSIRpxlmMzlsI3abRKL+ wmMogPMNlIF9HXqWfeixO0qWRy21xy1mq4VFj6GRz7etsFrm3eJ7ft4i/C/mY4WC 9A/OKP+umOW3S72CJ3+KNOjNd7VBAP7ElDFvvAcFq/K19dAyMlwjKMFtxa8gO/fa jKfX5OCoyRS/07hZ2Ussyu9djvwB+Y9Ch51ZINpXSosAXhzwYxIniKUAA7evMoZe izHLKfWvwyP7pKNRypvsoOews+hdjQUI -----END CERTIFICATE-----Generated at Mon Oct 20 16:32:43 2025 by rpki-client