$ rpki-client -vvf rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft File: XrCY701WVcxmtq-Bw83kBi2ALzs.mft (raw, json) Hash identifier: 4ILBCe4HZ8dsNIdTzEcuJjVp2PaQDgarOfwseLgnlX0= Subject key identifier: EA:F7:A9:46:02:E3:01:4B:99:14:1D:D1:F9:A9:F9:A8:26:A7:60:E9 Authority key identifier: 5E:B0:98:EF:4D:56:55:CC:66:B6:AF:81:C3:CD:E4:06:2D:80:2F:3B Certificate issuer: /CN=A919E3FB/serialNumber=5EB098EF4D5655CC66B6AF81C3CDE4062D802F3B Certificate serial: 0515 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft Manifest number: 050F Signing time: Sun 19 Oct 2025 01:22:16 +0000 Manifest this update: Sun 19 Oct 2025 01:22:15 +0000 Manifest next update: Sun 26 Oct 2025 01:22:15 +0000 Files and hashes: 1: XrCY701WVcxmtq-Bw83kBi2ALzs.crl (hash: MQMheFyJaBI3YRBe7iaOsJNfYBiqRtCRjswjZ9vemzQ=) 2: B4D8E692267111ECA0546981C4F9AE02.roa (hash: 5Q4guNeQaB31WqKdHmdzuqJlgTxkvhYKs90qMoibdec=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.crl rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:22:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1301 (0x515) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E3FB, serialNumber=5EB098EF4D5655CC66B6AF81C3CDE4062D802F3B Validity Not Before: Oct 19 01:22:15 2025 GMT Not After : Oct 26 01:22:15 2025 GMT Subject: CN=68f43d47-76e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:43:24:be:d9:4f:72:32:ee:54:71:30:55:b2: 1a:e0:4d:a8:ba:da:5d:70:4f:f3:ff:4a:b0:01:f0: 9a:fd:5c:5b:93:52:ec:d5:d6:79:95:e0:3a:e7:ca: 7e:a1:5e:43:24:c1:3f:97:74:36:4a:ab:af:1d:11: ba:21:95:57:2d:71:e6:06:51:67:3a:80:a2:75:75: 18:c1:71:d1:32:33:16:32:a2:a6:e3:91:85:86:c8: e4:c6:20:ad:de:10:70:48:77:6d:a0:84:88:06:59: df:17:b7:aa:a8:b9:ae:1d:6f:ae:33:cd:a6:13:01: cb:4d:87:83:a1:36:23:91:2a:18:9e:c5:89:5f:72: ff:2c:dd:f5:7e:9f:c4:4a:c0:48:44:64:db:29:38: 5b:fb:82:b2:4f:10:b3:f7:d7:85:8d:63:f6:3e:1d: 53:b3:2d:87:46:1e:1a:5f:d5:db:82:10:2d:e2:b2: d0:2b:99:c5:a4:6e:dd:06:c1:18:c0:52:fe:43:96: 0b:12:76:56:9f:eb:d3:01:20:db:3f:4e:6f:c3:ee: c7:d9:93:61:58:4d:13:07:fc:39:1e:68:12:9b:d3: a4:f7:b0:09:89:36:5a:0f:aa:7d:52:f8:48:2e:c3: 34:e8:dc:b3:52:36:ca:bd:e9:01:d5:29:98:0c:cb: 48:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:F7:A9:46:02:E3:01:4B:99:14:1D:D1:F9:A9:F9:A8:26:A7:60:E9 X509v3 Authority Key Identifier: keyid:5E:B0:98:EF:4D:56:55:CC:66:B6:AF:81:C3:CD:E4:06:2D:80:2F:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:c9:ab:7b:c2:7b:75:e4:23:70:df:01:5d:fa:20:9b:43:9d: 52:70:c2:37:98:4a:ec:ab:4a:28:d1:0f:e4:16:57:98:ed:71: e6:1d:ac:90:a4:15:b4:9f:28:0e:e5:7c:71:f9:22:70:11:8b: 8f:b9:92:a2:13:28:1c:0b:b5:ef:1f:db:9d:25:0b:c4:06:3c: c7:76:39:d7:8b:e3:e2:ed:da:42:36:f9:2c:40:45:18:a8:1a: e3:06:8b:c1:d0:11:8a:38:3c:6d:db:e5:97:fe:88:90:ff:e3: 5c:c6:c9:8d:a6:4d:94:fd:fd:27:e4:74:18:57:15:2d:7c:6e: 10:fc:27:cb:59:ce:19:31:f5:f2:1d:4a:af:4b:f6:6a:7c:28: 5a:7a:56:e8:6b:bc:e8:ea:d1:3c:1a:c3:ca:21:60:45:ea:c3: 3e:df:e2:39:93:fa:c0:0e:6e:e4:d2:e9:74:89:4e:1c:35:8b: f0:62:6c:0f:64:b8:a9:e7:2a:7d:34:fa:25:8d:da:39:5a:1d: a4:bb:94:d2:93:5c:49:d3:0a:74:b7:94:eb:38:99:4f:43:0b: 4b:e4:76:60:08:8b:47:d9:53:09:bc:02:7b:c6:7c:0d:5c:9d: 8f:6f:ce:fb:5c:49:d3:69:a3:0e:19:33:f4:17:9b:35:59:1d: 2b:0c:79:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUUzRkIxMTAvBgNVBAUTKDVFQjA5OEVGNEQ1NjU1Q0M2NkI2QUY4MUMzQ0RFNDA2 MkQ4MDJGM0IwHhcNMjUxMDE5MDEyMjE1WhcNMjUxMDI2MDEyMjE1WjAYMRYwFAYD VQQDEw02OGY0M2Q0Ny03NmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoEMkvtlPcjLuVHEwVbIa4E2outpdcE/z/0qwAfCa/Vxbk1Ls1dZ5leA658p+ oV5DJME/l3Q2SquvHRG6IZVXLXHmBlFnOoCidXUYwXHRMjMWMqKm45GFhsjkxiCt 3hBwSHdtoISIBlnfF7eqqLmuHW+uM82mEwHLTYeDoTYjkSoYnsWJX3L/LN31fp/E SsBIRGTbKThb+4KyTxCz99eFjWP2Ph1Tsy2HRh4aX9XbghAt4rLQK5nFpG7dBsEY wFL+Q5YLEnZWn+vTASDbP05vw+7H2ZNhWE0TB/w5HmgSm9Ok97AJiTZaD6p9UvhI LsM06NyzUjbKvekB1SmYDMtImwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOr3qUYC 4wFLmRQd0fmp+agmp2DpMB8GA1UdIwQYMBaAFF6wmO9NVlXMZravgcPN5AYtgC87 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTNGQi9GREQ0NEMyMjI2 NkUxMUVDQUMwOTdDN0JDNEY5QUUwMi9YckNZNzAxV1ZjeG10cS1Cdzgza0JpMkFM enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hyQ1k3MDFXVmN4bXRxLUJ3ODNrQmkyQUx6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTNGQi9GREQ0NEMyMjI2NkUxMUVDQUMwOTdDN0JDNEY5QUUwMi9YckNZNzAxV1Zj eG10cS1Cdzgza0JpMkFMenMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8yat7wnt15CNw3wFd+iCbQ51ScMI3mErsq0oo0Q/kFleY7XHmHayQ pBW0nygO5Xxx+SJwEYuPuZKiEygcC7XvH9udJQvEBjzHdjnXi+Pi7dpCNvksQEUY qBrjBovB0BGKODxt2+WX/oiQ/+NcxsmNpk2U/f0n5HQYVxUtfG4Q/CfLWc4ZMfXy HUqvS/ZqfChaelboa7zo6tE8GsPKIWBF6sM+3+I5k/rADm7k0ul0iU4cNYvwYmwP ZLip5yp9NPoljdo5Wh2ku5TSk1xJ0wp0t5TrOJlPQwtL5HZgCItH2VMJvAJ7xnwN XJ2Pb877XEnTaaMOGTP0F5s1WR0rDHnS -----END CERTIFICATE-----Generated at Mon Oct 20 17:08:32 2025 by rpki-client