$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.mft File: xgie68VWt39k5EJJpouV1b2UHkA.mft (raw, json) Hash identifier: syFceWnEnJQElB+BGJezKM8H20N24bNJG3zW0wije5U= Subject key identifier: B8:20:8A:FF:91:3D:BC:D7:84:F7:17:47:BC:8E:A5:03:AD:DD:B1:EC Authority key identifier: C6:08:9E:EB:C5:56:B7:7F:64:E4:42:49:A6:8B:95:D5:BD:94:1E:40 Certificate issuer: /CN=A91ADFD3/serialNumber=C6089EEBC556B77F64E44249A68B95D5BD941E40 Certificate serial: 237A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgie68VWt39k5EJJpouV1b2UHkA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.mft Manifest number: 234C Signing time: Sat 18 Oct 2025 16:05:10 +0000 Manifest this update: Sat 18 Oct 2025 16:05:09 +0000 Manifest next update: Sat 25 Oct 2025 16:05:09 +0000 Files and hashes: 1: xgie68VWt39k5EJJpouV1b2UHkA.crl (hash: ddhY7MtQ7u9EjgKbmYwfm4rKjgm47j5qXIMWlcOr5os=) 2: 6880FA2C59D211EAB77C8C13C4F9AE02.roa (hash: lXOFb0YJQZdFFX90oDPgUqBGFkT5p8wJoFtkhJ/Uo9A=) 3: 678DA8FE59D211EAB77C8C13C4F9AE02.roa (hash: p5KqoJW3tDR/PENRBzb6MlrbIycp47ssNfWx91ehau4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.crl rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgie68VWt39k5EJJpouV1b2UHkA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:05:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9082 (0x237a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADFD3, serialNumber=C6089EEBC556B77F64E44249A68B95D5BD941E40 Validity Not Before: Oct 18 16:05:09 2025 GMT Not After : Oct 25 16:05:09 2025 GMT Subject: CN=68f3bab5-2ccf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:be:7f:7d:45:df:92:67:8e:c2:c5:30:1a:66: cc:84:5e:23:bf:d8:67:d3:69:63:1a:6d:6e:f8:27: a5:70:dc:76:26:e5:e0:c4:56:f4:db:96:46:ce:87: 3f:0f:a7:bc:bf:77:c5:22:56:f9:9c:fa:c9:85:c1: 22:00:10:77:4c:7e:1c:3f:23:8c:00:91:8f:6f:fb: 35:11:69:b4:68:37:a5:45:b4:83:36:ad:9d:9d:70: 0c:45:46:07:36:af:cc:8e:58:33:02:74:57:42:68: cd:1e:ce:3a:af:e1:34:b3:c7:a3:1c:e4:f5:82:2c: ca:81:a9:6d:cd:95:96:e8:50:2a:6a:67:d8:24:2b: 1a:78:21:1b:24:70:fa:f1:d7:05:ac:94:e6:7e:d3: dd:d9:89:00:33:d4:75:9c:45:79:84:aa:67:75:ab: b0:5b:b7:d0:4f:70:bf:06:0f:1c:45:ea:d8:f2:2a: 93:02:1e:5a:00:80:72:a7:6d:13:81:1e:66:48:1e: 8c:02:a6:01:fa:65:50:d6:d4:69:74:ab:55:0a:31: ac:e2:4d:4e:a5:19:dd:db:ea:c3:80:52:cd:99:a3: b3:b5:ce:24:3d:8b:d4:91:b2:c1:e3:64:88:97:01: fb:99:f2:bc:39:9b:91:e8:99:2e:ac:55:8d:35:18: 9e:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:20:8A:FF:91:3D:BC:D7:84:F7:17:47:BC:8E:A5:03:AD:DD:B1:EC X509v3 Authority Key Identifier: keyid:C6:08:9E:EB:C5:56:B7:7F:64:E4:42:49:A6:8B:95:D5:BD:94:1E:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgie68VWt39k5EJJpouV1b2UHkA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:3c:c2:b3:64:0a:81:7c:b6:6a:d3:ce:96:04:b5:9e:01:99: 0b:3e:74:bb:ef:49:f2:be:71:2c:d9:df:2f:a5:db:45:6a:b3: 63:93:ae:f2:4e:a0:9c:e8:7b:37:87:ed:aa:b8:d2:2c:93:f0: fb:c3:6b:dc:35:20:c8:81:14:5d:57:b5:e2:35:a1:0b:cb:12: ec:a8:58:b1:9c:b7:e9:8b:87:f5:0a:98:81:69:e6:fb:51:ca: 54:dc:47:59:4a:55:c2:2d:bb:e9:cd:10:e6:dd:a4:cb:06:96: b2:90:4d:a9:74:62:13:5c:da:8b:5b:d7:40:f5:6f:fb:42:51: 47:a0:03:80:c2:5e:bc:57:7a:2b:6e:05:cf:77:a7:bf:5d:00: 2c:44:3f:67:12:ee:09:29:e4:b1:58:5c:6d:07:c1:f9:78:be: 7c:33:5b:be:e3:1f:1f:de:3c:bb:b7:4e:3c:56:d1:8b:e5:45: 8b:21:30:3d:0a:5d:ce:a6:f7:c6:7d:cb:1a:f3:52:81:1b:a6: b0:42:bc:8d:fa:71:ce:46:75:11:9c:af:3a:38:fc:91:36:af: 51:98:0c:c8:0a:fa:51:1e:3e:18:20:95:0c:75:cf:1d:e9:ba: d1:ba:46:23:76:6b:8f:da:50:5d:43:6b:68:43:fa:5c:f8:1d: 70:81:bb:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICI3owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURGRDMxMTAvBgNVBAUTKEM2MDg5RUVCQzU1NkI3N0Y2NEU0NDI0OUE2OEI5NUQ1 QkQ5NDFFNDAwHhcNMjUxMDE4MTYwNTA5WhcNMjUxMDI1MTYwNTA5WjAYMRYwFAYD VQQDEw02OGYzYmFiNS0yY2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3b5/fUXfkmeOwsUwGmbMhF4jv9hn02ljGm1u+CelcNx2JuXgxFb025ZGzoc/ D6e8v3fFIlb5nPrJhcEiABB3TH4cPyOMAJGPb/s1EWm0aDelRbSDNq2dnXAMRUYH Nq/MjlgzAnRXQmjNHs46r+E0s8ejHOT1gizKgaltzZWW6FAqamfYJCsaeCEbJHD6 8dcFrJTmftPd2YkAM9R1nEV5hKpndauwW7fQT3C/Bg8cRerY8iqTAh5aAIByp20T gR5mSB6MAqYB+mVQ1tRpdKtVCjGs4k1OpRnd2+rDgFLNmaOztc4kPYvUkbLB42SI lwH7mfK8OZuR6JkurFWNNRie5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLggiv+R PbzXhPcXR7yOpQOt3bHsMB8GA1UdIwQYMBaAFMYInuvFVrd/ZORCSaaLldW9lB5A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREZEMy8xRkQxQThCRTk0 ODYxMUU1QUUwQzhCNzJDNEY5QUUwMi94Z2llNjhWV3QzOWs1RUpKcG91VjFiMlVI a0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hnaWU2OFZXdDM5azVFSkpwb3VWMWIyVUhrQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB REZEMy8xRkQxQThCRTk0ODYxMUU1QUUwQzhCNzJDNEY5QUUwMi94Z2llNjhWV3Qz OWs1RUpKcG91VjFiMlVIa0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjPMKzZAqBfLZq086WBLWeAZkLPnS770nyvnEs2d8vpdtFarNjk67y TqCc6Hs3h+2quNIsk/D7w2vcNSDIgRRdV7XiNaELyxLsqFixnLfpi4f1CpiBaeb7 UcpU3EdZSlXCLbvpzRDm3aTLBpaykE2pdGITXNqLW9dA9W/7QlFHoAOAwl68V3or bgXPd6e/XQAsRD9nEu4JKeSxWFxtB8H5eL58M1u+4x8f3jy7t048VtGL5UWLITA9 Cl3OpvfGfcsa81KBG6awQryN+nHORnURnK86OPyRNq9RmAzICvpRHj4YIJUMdc8d 6brRukYjdmuP2lBdQ2toQ/pc+B1wgbvv -----END CERTIFICATE-----Generated at Mon Oct 20 09:26:24 2025 by rpki-client