$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft File: XerjhTD4FfvwubP472N1B4bIrAo.mft (raw, json) Hash identifier: rOlozvAAVQH59c2mKYqcVv0jARrZedBPxwgMw9j30EQ= Subject key identifier: B8:8B:88:05:EC:93:72:74:12:B2:09:B2:F6:87:B4:65:D9:C3:7B:59 Authority key identifier: 5D:EA:E3:85:30:F8:15:FB:F0:B9:B3:F8:EF:63:75:07:86:C8:AC:0A Certificate issuer: /CN=A91A4481/serialNumber=5DEAE38530F815FBF0B9B3F8EF63750786C8AC0A Certificate serial: 0117 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft Manifest number: 0115 Signing time: Sun 19 Oct 2025 07:43:31 +0000 Manifest this update: Sun 19 Oct 2025 07:43:31 +0000 Manifest next update: Sun 26 Oct 2025 07:43:31 +0000 Files and hashes: 1: XerjhTD4FfvwubP472N1B4bIrAo.crl (hash: nw/46NGl+Kf3n124PlWYVWwKPTK12/CuSISPKKPDMUo=) 2: 5B08B12602C211EF9A1E4567C4F9AE02.roa (hash: K+g6F2DggfqAEcFUFS+CObch7aX7JFtpiO+kkOJ8Xy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.crl rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:43:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 279 (0x117) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4481, serialNumber=5DEAE38530F815FBF0B9B3F8EF63750786C8AC0A Validity Not Before: Oct 19 07:43:31 2025 GMT Not After : Oct 26 07:43:31 2025 GMT Subject: CN=68f496a3-f2d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:23:fe:9c:a3:36:f7:a7:98:4e:f9:7b:a2:f6: 7a:4b:9c:15:0b:19:c5:0d:79:b6:5e:35:c2:d5:93: 31:92:bd:41:50:ac:31:f2:63:83:63:9c:4b:cd:87: f2:ea:79:13:d6:da:e0:1d:11:c1:69:ef:6b:01:c2: c7:fa:77:9c:8c:25:53:76:25:88:30:dc:53:ee:92: eb:eb:aa:4c:89:2b:c0:22:28:66:79:d5:17:80:df: 6f:19:d1:0b:b6:c7:1d:99:37:ee:98:a8:53:7d:a0: b8:cc:b8:60:bd:e4:c8:ab:91:86:fc:fb:fb:d4:46: 10:75:3a:9f:a9:6b:4b:ae:3d:75:6f:99:4e:0d:50: 7c:0d:21:c6:d4:4a:f0:40:a8:10:ed:6b:ed:2c:e5: cc:4a:6f:d2:d4:b7:90:d6:4a:66:2f:e2:87:16:6e: 1c:3f:86:95:2f:62:fb:d4:8b:1a:ac:bd:a6:98:24: d0:6c:a2:4b:04:a1:65:c9:3d:af:d2:32:8a:86:35: 6d:72:58:e1:c6:fa:90:a0:3b:a7:15:e0:69:86:f5: f1:a0:cf:4d:c0:bb:ca:a8:b8:a6:88:bb:2e:e0:c0: 40:ab:86:77:1c:bc:54:00:f3:52:10:c2:c6:1e:ea: b6:40:3a:43:44:53:a4:4d:ca:36:15:3a:51:f5:3f: 65:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:8B:88:05:EC:93:72:74:12:B2:09:B2:F6:87:B4:65:D9:C3:7B:59 X509v3 Authority Key Identifier: keyid:5D:EA:E3:85:30:F8:15:FB:F0:B9:B3:F8:EF:63:75:07:86:C8:AC:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:37:fa:51:86:9f:6a:e4:9c:0c:e6:f1:5d:38:8c:fd:ad:3e: ce:0d:49:9f:4c:ed:99:ba:59:28:53:a6:23:23:de:5b:c7:8e: 51:77:ab:4f:63:e6:a3:c5:c3:b2:30:d9:ff:42:70:c5:92:33: d5:1e:5a:ac:a6:2a:1b:12:b3:21:cc:80:50:bb:c3:66:d6:cc: 0e:16:bd:9a:ea:e5:2b:bf:a3:da:fa:a1:4a:94:51:5c:a8:96: 4f:94:1f:b9:b3:d0:a4:8e:ee:93:2c:4c:8c:37:59:65:e6:82: fa:b8:35:3b:be:66:10:99:a2:38:41:e7:b3:0b:17:0e:0e:88: b9:a8:c7:d6:21:78:f0:4e:bc:74:a9:bb:38:f3:90:97:ad:0f: f3:28:b5:43:1d:07:8b:ea:15:77:d8:3a:19:6a:87:fb:21:a2: 33:c1:42:a8:e9:9f:a4:b4:5c:65:33:dc:66:bb:d8:52:44:55: 93:95:4e:c4:43:af:0d:22:a0:f6:30:47:92:18:e8:d2:13:e9: 50:2f:75:3b:ca:ae:41:b1:15:7c:b8:7e:e9:52:82:68:20:24: d7:41:a3:a5:2e:4a:92:f6:11:39:6e:fd:73:90:9f:0c:62:d1: b5:5e:a9:ec:b5:a9:c2:6b:72:ef:10:59:1f:f2:db:fd:67:5b: 14:f9:49:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0ODExMTAvBgNVBAUTKDVERUFFMzg1MzBGODE1RkJGMEI5QjNGOEVGNjM3NTA3 ODZDOEFDMEEwHhcNMjUxMDE5MDc0MzMxWhcNMjUxMDI2MDc0MzMxWjAYMRYwFAYD VQQDEw02OGY0OTZhMy1mMmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2yP+nKM296eYTvl7ovZ6S5wVCxnFDXm2XjXC1ZMxkr1BUKwx8mODY5xLzYfy 6nkT1trgHRHBae9rAcLH+necjCVTdiWIMNxT7pLr66pMiSvAIihmedUXgN9vGdEL tscdmTfumKhTfaC4zLhgveTIq5GG/Pv71EYQdTqfqWtLrj11b5lODVB8DSHG1Erw QKgQ7WvtLOXMSm/S1LeQ1kpmL+KHFm4cP4aVL2L71IsarL2mmCTQbKJLBKFlyT2v 0jKKhjVtcljhxvqQoDunFeBphvXxoM9NwLvKqLimiLsu4MBAq4Z3HLxUAPNSEMLG Huq2QDpDRFOkTco2FTpR9T9lVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLiLiAXs k3J0ErIJsvaHtGXZw3tZMB8GA1UdIwQYMBaAFF3q44Uw+BX78Lmz+O9jdQeGyKwK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQ4MS9CQzg0MEY0NjAy QzExMUVGQUYzQ0I0NjVDNEY5QUUwMi9YZXJqaFRENEZmdnd1YlA0NzJOMUI0Ykly QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hlcmpoVEQ0RmZ2d3ViUDQ3Mk4xQjRiSXJBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDQ4MS9CQzg0MEY0NjAyQzExMUVGQUYzQ0I0NjVDNEY5QUUwMi9YZXJqaFRENEZm dnd1YlA0NzJOMUI0YklyQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHN/pRhp9q5JwM5vFdOIz9rT7ODUmfTO2ZulkoU6YjI95bx45Rd6tP Y+ajxcOyMNn/QnDFkjPVHlqspiobErMhzIBQu8Nm1swOFr2a6uUrv6Pa+qFKlFFc qJZPlB+5s9Ckju6TLEyMN1ll5oL6uDU7vmYQmaI4QeezCxcODoi5qMfWIXjwTrx0 qbs485CXrQ/zKLVDHQeL6hV32DoZaof7IaIzwUKo6Z+ktFxlM9xmu9hSRFWTlU7E Q68NIqD2MEeSGOjSE+lQL3U7yq5BsRV8uH7pUoJoICTXQaOlLkqS9hE5bv1zkJ8M YtG1XqnstanCa3LvEFkf8tv9Z1sU+UnD -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:23 2025 by rpki-client