$ rpki-client -vvf rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.mft File: xLYlA-bWcCrCnQC_NQyLLBLnnwU.mft (raw, json) Hash identifier: Jmlmx6atMgMxhq0tUYjxXaudnXkmnV5nMSA0liE3iKU= Subject key identifier: BA:A7:F2:1F:92:8B:8A:C9:34:3A:D7:F2:A7:6B:EB:44:15:79:C5:C7 Authority key identifier: C4:B6:25:03:E6:D6:70:2A:C2:9D:00:BF:35:0C:8B:2C:12:E7:9F:05 Certificate issuer: /CN=A91A76AD/serialNumber=C4B62503E6D6702AC29D00BF350C8B2C12E79F05 Certificate serial: 0141 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xLYlA-bWcCrCnQC_NQyLLBLnnwU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.mft Manifest number: 0141 Signing time: Sun 19 Oct 2025 07:07:44 +0000 Manifest this update: Sun 19 Oct 2025 07:07:43 +0000 Manifest next update: Sun 26 Oct 2025 07:07:43 +0000 Files and hashes: 1: xLYlA-bWcCrCnQC_NQyLLBLnnwU.crl (hash: RE7TheXW1bzQ86+wEJtAjynLL0WE1vf6BVUE8nK3Lww=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.crl rsync://rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xLYlA-bWcCrCnQC_NQyLLBLnnwU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:07:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 321 (0x141) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A76AD, serialNumber=C4B62503E6D6702AC29D00BF350C8B2C12E79F05 Validity Not Before: Oct 19 07:07:43 2025 GMT Not After : Oct 26 07:07:43 2025 GMT Subject: CN=68f48e3f-c145 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:46:4c:87:49:fc:24:a6:de:c9:72:1d:66:61: 14:fb:7a:09:ac:d8:f5:20:4c:a3:4f:d6:98:3a:ef: de:19:11:74:7f:b2:03:9c:40:c8:81:79:33:4b:b1: ad:e1:cd:e1:a1:ef:b8:73:54:e2:6f:b9:3c:da:3c: 20:f4:71:99:fc:69:7c:57:a3:a8:53:c9:ac:dd:de: 29:9f:79:3e:7a:d5:bc:3d:a7:51:27:8d:77:9c:b8: d4:a1:49:53:a8:e2:a4:5b:4a:d8:3a:d9:fd:1d:93: 8c:e9:a6:26:86:50:7c:93:e1:9c:cb:60:06:34:ec: d3:96:56:6a:aa:ff:59:9a:ac:ad:38:26:fc:7a:1c: 81:90:14:5b:10:d9:02:9c:a5:23:ad:5d:3d:38:90: fd:94:0f:34:37:90:8c:0d:76:86:e3:e2:42:e8:ad: 65:33:cf:ef:1c:9c:a6:ac:07:3e:17:a6:b8:21:8b: 40:6f:e3:e7:83:12:67:dd:cb:4e:cb:37:8d:b3:56: 21:19:15:8c:6e:7a:2a:0e:d0:2d:7d:19:ba:0f:d6: 4a:06:71:73:25:91:53:7c:1e:36:bf:76:d3:2b:93: 52:c1:1d:24:18:40:8a:b7:f2:d5:77:57:43:82:fb: b8:61:13:35:8c:c9:b0:55:c0:05:90:0e:eb:ca:ae: 19:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:A7:F2:1F:92:8B:8A:C9:34:3A:D7:F2:A7:6B:EB:44:15:79:C5:C7 X509v3 Authority Key Identifier: keyid:C4:B6:25:03:E6:D6:70:2A:C2:9D:00:BF:35:0C:8B:2C:12:E7:9F:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xLYlA-bWcCrCnQC_NQyLLBLnnwU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A76AD/07F52E46BE8011EE96784D62C4F9AE02/xLYlA-bWcCrCnQC_NQyLLBLnnwU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:9c:e5:58:e3:54:58:f4:d4:21:58:53:af:df:88:9e:6f:72: 50:9c:f7:d8:2d:ad:32:04:18:38:1b:9f:76:a4:0a:e6:79:2f: e4:44:84:c6:28:b8:33:0b:38:dc:83:75:d0:fc:c1:cd:fd:6c: 18:09:f4:6b:be:0f:02:0f:a2:6f:f2:30:bf:fb:f7:8e:0c:d4: 0e:45:b9:d5:d6:bf:cb:0d:24:b9:61:09:3c:71:16:5b:0a:72: f9:31:01:6f:88:ca:4f:e1:f9:8d:1c:77:c2:c3:18:04:6d:02: 77:1d:b1:66:1b:4b:17:f8:f1:10:5d:6a:42:a6:ec:57:b1:dc: 0d:74:38:22:dc:46:c5:74:3e:fd:97:93:e8:fa:9b:38:ce:4a: c1:a5:6f:c9:4e:eb:b4:70:3a:d6:2f:25:6a:46:62:c5:59:d5: 17:d4:46:c9:f8:c5:e8:45:69:73:a0:73:90:44:a0:b9:ec:13: 88:df:2d:a7:a8:98:3e:2e:04:70:5f:79:d7:e3:83:fd:e8:b8: 0e:00:c6:55:8a:70:2e:ea:b1:3b:27:10:9e:a3:e8:48:4b:33: be:cb:cd:8a:18:1a:d3:5f:f6:86:3b:db:a1:c2:aa:33:90:bb: d2:d3:40:84:00:1b:3b:24:f9:c1:ae:12:ed:54:9d:38:f4:65: 7e:29:f9:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc2QUQxMTAvBgNVBAUTKEM0QjYyNTAzRTZENjcwMkFDMjlEMDBCRjM1MEM4QjJD MTJFNzlGMDUwHhcNMjUxMDE5MDcwNzQzWhcNMjUxMDI2MDcwNzQzWjAYMRYwFAYD VQQDEw02OGY0OGUzZi1jMTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvEZMh0n8JKbeyXIdZmEU+3oJrNj1IEyjT9aYOu/eGRF0f7IDnEDIgXkzS7Gt 4c3hoe+4c1Tib7k82jwg9HGZ/Gl8V6OoU8ms3d4pn3k+etW8PadRJ413nLjUoUlT qOKkW0rYOtn9HZOM6aYmhlB8k+Gcy2AGNOzTllZqqv9ZmqytOCb8ehyBkBRbENkC nKUjrV09OJD9lA80N5CMDXaG4+JC6K1lM8/vHJymrAc+F6a4IYtAb+PngxJn3ctO yzeNs1YhGRWMbnoqDtAtfRm6D9ZKBnFzJZFTfB42v3bTK5NSwR0kGECKt/LVd1dD gvu4YRM1jMmwVcAFkA7ryq4Z4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLqn8h+S i4rJNDrX8qdr60QVecXHMB8GA1UdIwQYMBaAFMS2JQPm1nAqwp0AvzUMiywS558F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzZBRC8wN0Y1MkU0NkJF ODAxMUVFOTY3ODRENjJDNEY5QUUwMi94TFlsQS1iV2NDckNuUUNfTlF5TExCTG5u d1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hMWWxBLWJXY0NyQ25RQ19OUXlMTEJMbm53VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzZBRC8wN0Y1MkU0NkJFODAxMUVFOTY3ODRENjJDNEY5QUUwMi94TFlsQS1iV2ND ckNuUUNfTlF5TExCTG5ud1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNnOVY41RY9NQhWFOv34ieb3JQnPfYLa0yBBg4G592pArmeS/kRITG KLgzCzjcg3XQ/MHN/WwYCfRrvg8CD6Jv8jC/+/eODNQORbnV1r/LDSS5YQk8cRZb CnL5MQFviMpP4fmNHHfCwxgEbQJ3HbFmG0sX+PEQXWpCpuxXsdwNdDgi3EbFdD79 l5Po+ps4zkrBpW/JTuu0cDrWLyVqRmLFWdUX1EbJ+MXoRWlzoHOQRKC57BOI3y2n qJg+LgRwX3nX44P96LgOAMZVinAu6rE7JxCeo+hISzO+y82KGBrTX/aGO9uhwqoz kLvS00CEABs7JPnBrhLtVJ049GV+Kfmd -----END CERTIFICATE-----Generated at Sun Oct 19 23:29:15 2025 by rpki-client