$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFE4E/D165E4A27BE311EF88D9C753C4F9AE02/xyACdnoQ7C_xRRWiqrhuYUCXp1w.mft File: xyACdnoQ7C_xRRWiqrhuYUCXp1w.mft (raw, json) Hash identifier: Rw24+TlkvQKFb8jedkLa41fT2pZQdVJM+b16A6KnaG8= Subject key identifier: FE:ED:2D:0D:F4:F5:C6:CA:E0:42:2D:73:7C:A3:DB:88:4D:C4:5B:DC Authority key identifier: C7:20:02:76:7A:10:EC:2F:F1:45:15:A2:AA:B8:6E:61:40:97:A7:5C Certificate issuer: /CN=A91BFE4E/serialNumber=C72002767A10EC2FF14515A2AAB86E614097A75C Certificate serial: CB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xyACdnoQ7C_xRRWiqrhuYUCXp1w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFE4E/D165E4A27BE311EF88D9C753C4F9AE02/xyACdnoQ7C_xRRWiqrhuYUCXp1w.mft Manifest number: C9 Signing time: Sun 19 Oct 2025 08:52:30 +0000 Manifest this update: Sun 19 Oct 2025 08:52:30 +0000 Manifest next update: Sun 26 Oct 2025 08:52:30 +0000 Files and hashes: 1: xyACdnoQ7C_xRRWiqrhuYUCXp1w.crl (hash: hVVJcAsb1CMD0FzEoZJx70LsDNhssuqMe55jIRatZlk=) 2: CB31DFEA7BE411EFB6955155C4F9AE02.roa (hash: /MZsQd7r1AUngKpTxxkCkkNWLr5PAUrY0B8gx8HXfWY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFE4E/D165E4A27BE311EF88D9C753C4F9AE02/xyACdnoQ7C_xRRWiqrhuYUCXp1w.crl rsync://rpki.apnic.net/member_repository/A91BFE4E/D165E4A27BE311EF88D9C753C4F9AE02/xyACdnoQ7C_xRRWiqrhuYUCXp1w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xyACdnoQ7C_xRRWiqrhuYUCXp1w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:52:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFE4E, serialNumber=C72002767A10EC2FF14515A2AAB86E614097A75C Validity Not Before: Oct 19 08:52:30 2025 GMT Not After : Oct 26 08:52:30 2025 GMT Subject: CN=68f4a6ce-e9c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:98:24:29:0d:79:b3:3f:f6:b0:a9:15:5a:c9: 27:aa:69:22:c7:6c:96:d0:34:7e:ed:50:34:c2:91: 27:1b:e8:46:3a:da:75:99:08:df:68:ff:e4:e3:f1: 4a:f0:9a:be:db:17:94:25:f1:dc:a1:f6:9e:ce:13: b7:95:3f:8c:98:96:f8:0a:c6:eb:da:b8:ff:ad:26: 90:63:a9:25:04:a0:45:37:93:f4:72:44:4f:d9:9e: c1:c7:0d:8c:dd:c0:f7:4a:cb:e1:49:b4:24:09:4a: e4:61:a9:00:79:7a:d5:53:8d:d5:96:69:f1:23:f0: f4:3a:c3:f2:95:1a:a0:b6:e7:4c:2b:b8:ea:fb:5a: 37:2d:e4:a6:5f:43:a4:93:57:6d:b8:13:0f:74:45: 8a:44:24:71:a1:4b:dc:91:6a:ce:e4:13:61:01:f6: c0:79:5a:78:7d:23:7a:a6:f4:96:42:2f:56:f0:fb: 40:e7:ba:31:bc:79:75:81:a7:c4:1c:98:8d:1e:07: 5b:c5:b0:7e:7d:87:24:54:32:8a:49:09:d7:9a:c0: b6:ba:85:b7:0c:a6:7a:40:2f:3e:55:aa:88:3f:99: e1:30:77:f6:a3:57:19:a3:fd:a2:90:a0:dd:e9:be: b3:99:9a:b1:de:a8:3e:ec:a1:7d:ff:3d:16:bc:61: ed:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:ED:2D:0D:F4:F5:C6:CA:E0:42:2D:73:7C:A3:DB:88:4D:C4:5B:DC X509v3 Authority Key Identifier: keyid:C7:20:02:76:7A:10:EC:2F:F1:45:15:A2:AA:B8:6E:61:40:97:A7:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/D165E4A27BE311EF88D9C753C4F9AE02/xyACdnoQ7C_xRRWiqrhuYUCXp1w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xyACdnoQ7C_xRRWiqrhuYUCXp1w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/D165E4A27BE311EF88D9C753C4F9AE02/xyACdnoQ7C_xRRWiqrhuYUCXp1w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:2f:b8:d4:b2:8f:4f:0d:bc:43:d9:22:e2:e9:68:4b:b3:7c: a2:b6:da:64:74:58:95:a4:00:fb:b8:c9:2c:91:ce:66:e3:36: fe:07:06:48:9d:73:44:07:52:c2:b4:7e:3f:63:0d:9b:2b:c2: fd:c1:3e:c2:39:8b:3a:c6:11:29:2d:dc:13:5c:3b:8f:4a:3d: cd:69:1e:b1:42:8d:e5:83:68:22:04:3e:b7:8d:a8:95:4b:d4: b9:60:61:f1:e5:38:7d:02:93:87:3b:dc:f4:b3:23:71:6c:9e: e9:74:90:98:53:e6:d4:86:b4:52:71:2b:be:96:f3:ce:dc:fc: 64:6e:25:62:cb:f5:d0:0b:05:78:4c:57:57:5d:6d:00:d5:56: f1:bb:00:e4:bf:99:41:19:79:5f:8f:bc:73:4c:f8:40:f0:2d: ec:dd:9c:0d:a2:cf:f3:40:bb:aa:c3:68:88:49:20:79:28:ca: 33:e7:20:52:88:8c:00:54:dc:aa:9b:2e:6c:0a:46:cb:56:e9: 3f:06:74:5d:9e:ff:c7:39:aa:81:d4:fd:d4:81:5d:63:95:db: f9:8b:3d:0d:ee:ff:0d:d7:bc:31:cb:20:52:20:6a:b8:bf:88: 7f:6b:6b:da:f8:45:dc:87:89:84:82:18:cb:aa:34:fc:53:d5: d6:a2:33:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZFNEUxMTAvBgNVBAUTKEM3MjAwMjc2N0ExMEVDMkZGMTQ1MTVBMkFBQjg2RTYx NDA5N0E3NUMwHhcNMjUxMDE5MDg1MjMwWhcNMjUxMDI2MDg1MjMwWjAYMRYwFAYD VQQDEw02OGY0YTZjZS1lOWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAupgkKQ15sz/2sKkVWsknqmkix2yW0DR+7VA0wpEnG+hGOtp1mQjfaP/k4/FK 8Jq+2xeUJfHcofaezhO3lT+MmJb4Csbr2rj/rSaQY6klBKBFN5P0ckRP2Z7Bxw2M 3cD3SsvhSbQkCUrkYakAeXrVU43VlmnxI/D0OsPylRqgtudMK7jq+1o3LeSmX0Ok k1dtuBMPdEWKRCRxoUvckWrO5BNhAfbAeVp4fSN6pvSWQi9W8PtA57oxvHl1gafE HJiNHgdbxbB+fYckVDKKSQnXmsC2uoW3DKZ6QC8+VaqIP5nhMHf2o1cZo/2ikKDd 6b6zmZqx3qg+7KF9/z0WvGHtnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP7tLQ30 9cbK4EItc3yj24hNxFvcMB8GA1UdIwQYMBaAFMcgAnZ6EOwv8UUVoqq4bmFAl6dc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkU0RS9EMTY1RTRBMjdC RTMxMUVGODhEOUM3NTNDNEY5QUUwMi94eUFDZG5vUTdDX3hSUldpcXJodVlVQ1hw MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3h5QUNkbm9RN0NfeFJSV2lxcmh1WVVDWHAxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RkU0RS9EMTY1RTRBMjdCRTMxMUVGODhEOUM3NTNDNEY5QUUwMi94eUFDZG5vUTdD X3hSUldpcXJodVlVQ1hwMXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEL7jUso9PDbxD2SLi6WhLs3yittpkdFiVpAD7uMkskc5m4zb+BwZI nXNEB1LCtH4/Yw2bK8L9wT7COYs6xhEpLdwTXDuPSj3NaR6xQo3lg2giBD63jaiV S9S5YGHx5Th9ApOHO9z0syNxbJ7pdJCYU+bUhrRScSu+lvPO3PxkbiViy/XQCwV4 TFdXXW0A1VbxuwDkv5lBGXlfj7xzTPhA8C3s3ZwNos/zQLuqw2iISSB5KMoz5yBS iIwAVNyqmy5sCkbLVuk/BnRdnv/HOaqB1P3UgV1jldv5iz0N7v8N17wxyyBSIGq4 v4h/a2va+EXch4mEghjLqjT8U9XWojNW -----END CERTIFICATE-----Generated at Tue Oct 21 02:15:02 2025 by rpki-client