$ rpki-client -vvf rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft File: xPuRgT57oJnZHpxIFyCUuZBcDxE.mft (raw, json) Hash identifier: 3TqVrNBDSFVlNUygKKLPE1McfnSNf61pDdmQvgXDut0= Subject key identifier: 82:89:35:10:59:F0:EB:08:CB:8F:8B:F0:EC:B3:FB:6D:F7:FD:03:FD Authority key identifier: C4:FB:91:81:3E:7B:A0:99:D9:1E:9C:48:17:20:94:B9:90:5C:0F:11 Certificate issuer: /CN=A919B3BC/serialNumber=C4FB91813E7BA099D91E9C48172094B9905C0F11 Certificate serial: 1E75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPuRgT57oJnZHpxIFyCUuZBcDxE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft Manifest number: 1E57 Signing time: Sat 18 Oct 2025 16:22:58 +0000 Manifest this update: Sat 18 Oct 2025 16:22:57 +0000 Manifest next update: Sat 25 Oct 2025 16:22:57 +0000 Files and hashes: 1: xPuRgT57oJnZHpxIFyCUuZBcDxE.crl (hash: BZdamiFtN3tqSHi3/NCj/qQTv3gCDbOHDnd7Mybpf5g=) 2: 6553E9461A0611F08E7AD42AC4F9AE02.roa (hash: f1rUI1t3KqdGMKeqiBAUTM/laLwJwP3gycWHTBm/djM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.crl rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPuRgT57oJnZHpxIFyCUuZBcDxE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:22:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7797 (0x1e75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B3BC, serialNumber=C4FB91813E7BA099D91E9C48172094B9905C0F11 Validity Not Before: Oct 18 16:22:57 2025 GMT Not After : Oct 25 16:22:57 2025 GMT Subject: CN=68f3bee2-a89d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:aa:ba:5b:1c:eb:8f:50:a2:cc:d9:14:52:3f: 00:d1:59:fd:5f:0c:ad:aa:a0:21:7e:a2:d7:c1:bd: 6e:23:8f:c9:ae:91:c0:8e:a4:47:e4:88:b9:4c:91: 1d:70:ef:f3:dc:8f:f0:a7:36:5b:58:71:8d:fa:e5: 31:64:02:cd:41:2f:3f:58:19:b2:74:08:68:cc:a1: 89:86:b8:a0:2a:3b:9b:35:aa:85:f0:60:6f:7e:9a: 35:1d:48:9f:86:02:29:98:f7:de:08:6c:82:0b:32: 31:7c:c7:5d:01:0b:f6:da:54:c6:e3:68:77:43:db: f7:10:4e:94:0d:08:9a:a8:9a:e7:93:c5:97:4b:49: 2e:70:fe:9c:ea:cc:a3:ba:57:f9:78:b3:21:ae:07: f3:63:4d:66:93:3e:52:35:d5:ef:5d:a5:ad:78:fc: 03:df:bc:41:46:fe:c7:4a:6b:49:85:cf:ca:cf:c3: b4:14:f8:08:89:4f:db:e0:83:af:eb:bc:a6:cc:e8: 20:71:a6:4d:93:19:27:fd:af:f9:65:d5:17:86:b1: 88:42:30:eb:4c:72:9f:2e:7e:0d:58:8b:7a:92:bd: ac:05:a9:ab:2a:44:ed:c1:94:30:ea:15:e0:e1:71: 06:09:c6:5a:90:5f:93:54:31:d4:0a:52:05:86:93: 2e:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:89:35:10:59:F0:EB:08:CB:8F:8B:F0:EC:B3:FB:6D:F7:FD:03:FD X509v3 Authority Key Identifier: keyid:C4:FB:91:81:3E:7B:A0:99:D9:1E:9C:48:17:20:94:B9:90:5C:0F:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPuRgT57oJnZHpxIFyCUuZBcDxE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:56:13:f1:34:87:20:cf:af:a7:0f:d4:cc:a5:18:86:47:8f: ae:3c:18:16:0b:d6:22:28:26:fd:e7:a5:f2:9a:3a:97:0f:e7: 45:d5:2a:4e:ae:2a:17:dd:34:24:c4:ff:59:5b:87:2a:54:d1: 55:ae:3e:d7:68:21:0c:d2:f8:70:0e:f3:0c:97:5a:0d:2e:d3: bf:04:ad:cc:1d:78:86:74:23:70:07:35:b0:27:35:21:84:e8: 79:86:42:02:61:58:de:79:7b:eb:46:53:66:b0:cd:00:f7:3d: 08:79:da:64:1c:0d:8b:92:04:24:68:36:0b:aa:f0:06:7a:2c: 92:0a:ff:3c:1b:5c:3c:73:72:61:93:28:3b:d1:13:61:f4:33: e9:37:25:51:c3:9d:74:66:70:62:25:ca:2a:71:79:e9:0b:dd: 8c:8a:84:a3:45:fc:09:57:32:17:bb:ef:78:a3:c6:c7:6b:3e: 21:d9:3e:e7:72:cb:ca:71:ba:13:e7:4d:f6:ea:e8:11:36:72: 3d:e4:51:1a:dc:b4:da:56:7a:92:13:1f:06:60:82:17:13:0f: 33:7f:ef:61:04:c3:89:78:d5:2d:74:52:db:6f:0d:f0:e8:d9: 22:f5:c6:a9:9a:98:6c:f4:5f:92:2a:08:90:7c:92:78:ce:a0: 62:98:29:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHnUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUIzQkMxMTAvBgNVBAUTKEM0RkI5MTgxM0U3QkEwOTlEOTFFOUM0ODE3MjA5NEI5 OTA1QzBGMTEwHhcNMjUxMDE4MTYyMjU3WhcNMjUxMDI1MTYyMjU3WjAYMRYwFAYD VQQDEw02OGYzYmVlMi1hODlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyaq6Wxzrj1CizNkUUj8A0Vn9XwytqqAhfqLXwb1uI4/JrpHAjqRH5Ii5TJEd cO/z3I/wpzZbWHGN+uUxZALNQS8/WBmydAhozKGJhrigKjubNaqF8GBvfpo1HUif hgIpmPfeCGyCCzIxfMddAQv22lTG42h3Q9v3EE6UDQiaqJrnk8WXS0kucP6c6syj ulf5eLMhrgfzY01mkz5SNdXvXaWtePwD37xBRv7HSmtJhc/Kz8O0FPgIiU/b4IOv 67ymzOggcaZNkxkn/a/5ZdUXhrGIQjDrTHKfLn4NWIt6kr2sBamrKkTtwZQw6hXg 4XEGCcZakF+TVDHUClIFhpMuKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIKJNRBZ 8OsIy4+L8Oyz+233/QP9MB8GA1UdIwQYMBaAFMT7kYE+e6CZ2R6cSBcglLmQXA8R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjNCQy8zODEyNDRGRThG OUIxMUU2QkVDNUNCMjVDNEY5QUUwMi94UHVSZ1Q1N29KblpIcHhJRnlDVXVaQmNE eEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hQdVJnVDU3b0puWkhweElGeUNVdVpCY0R4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjNCQy8zODEyNDRGRThGOUIxMUU2QkVDNUNCMjVDNEY5QUUwMi94UHVSZ1Q1N29K blpIcHhJRnlDVXVaQmNEeEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5VhPxNIcgz6+nD9TMpRiGR4+uPBgWC9YiKCb956XymjqXD+dF1SpO rioX3TQkxP9ZW4cqVNFVrj7XaCEM0vhwDvMMl1oNLtO/BK3MHXiGdCNwBzWwJzUh hOh5hkICYVjeeXvrRlNmsM0A9z0IedpkHA2LkgQkaDYLqvAGeiySCv88G1w8c3Jh kyg70RNh9DPpNyVRw510ZnBiJcoqcXnpC92MioSjRfwJVzIXu+94o8bHaz4h2T7n csvKcboT50326ugRNnI95FEa3LTaVnqSEx8GYIIXEw8zf+9hBMOJeNUtdFLbbw3w 6Nki9capmphs9F+SKgiQfJJ4zqBimCmQ -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:14 2025 by rpki-client