$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft File: XwBNV-s29CZy5m8wBfZGm2KJFxs.mft (raw, json) Hash identifier: YBbjho8+q1ookArY7yjgjRS/2gNlC2blDBpsqFF0dJ4= Subject key identifier: 40:19:EA:FF:26:96:6B:05:71:5A:14:61:90:31:7B:94:13:52:4B:3D Authority key identifier: 5F:00:4D:57:EB:36:F4:26:72:E6:6F:30:05:F6:46:9B:62:89:17:1B Certificate issuer: /CN=A91C1025/serialNumber=5F004D57EB36F42672E66F3005F6469B6289171B Certificate serial: B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft Manifest number: B6 Signing time: Sun 19 Oct 2025 09:14:13 +0000 Manifest this update: Sun 19 Oct 2025 09:14:12 +0000 Manifest next update: Sun 26 Oct 2025 09:14:12 +0000 Files and hashes: 1: XwBNV-s29CZy5m8wBfZGm2KJFxs.crl (hash: 19lWU9GjeXQBxaOP8tKLx/WtTZKNUjLUTaLyIFu2T8Q=) 2: 3D04EA589D9211EF8083B245C4F9AE02.roa (hash: Iqqm3XnZxAwHyLfxm5fiQ2PL3nIt3cAVFXF23TPN80A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.crl rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:14:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1025, serialNumber=5F004D57EB36F42672E66F3005F6469B6289171B Validity Not Before: Oct 19 09:14:12 2025 GMT Not After : Oct 26 09:14:12 2025 GMT Subject: CN=68f4abe4-f3b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:2e:ed:03:6b:07:ed:5c:d9:2d:12:34:9f:d0: b4:b9:7e:9f:79:8d:09:3d:9b:16:c5:cd:fd:d9:40: 96:f1:ef:53:0c:0e:91:7c:69:63:c9:a8:ef:f9:a5: d0:46:94:83:e6:18:70:04:7e:db:18:5e:d0:3c:91: 77:92:68:ae:30:b1:f6:92:32:95:04:b6:8e:fc:95: f7:1a:66:7c:2e:25:30:ed:a8:85:e6:7c:02:9a:87: 1c:c7:6b:fe:1c:71:20:df:72:cd:77:63:5d:be:29: b2:d3:f1:12:fc:4c:6e:e3:ed:0b:b4:fa:8e:7d:f9: 74:89:a0:f6:38:96:91:d4:ca:09:88:25:e1:2d:ce: 40:88:28:e5:7d:5a:7a:9d:ac:a6:96:b0:91:f2:54: de:57:d5:d0:81:e5:45:64:8a:f8:6b:f3:30:c9:4c: 80:fb:9a:4e:66:e1:a5:45:26:34:37:49:83:37:18: 72:b7:8b:8d:ca:57:73:e3:00:c8:6f:ef:46:5f:61: e4:39:38:c1:91:b5:11:fd:fd:08:01:64:68:c2:d1: 66:c2:73:28:45:01:25:31:e3:4e:3e:a0:56:16:11: 06:0e:07:4e:f1:aa:78:64:bb:23:62:95:38:1c:a7: 54:39:15:fc:5e:cf:93:d7:31:49:58:44:87:8f:4b: 0c:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:19:EA:FF:26:96:6B:05:71:5A:14:61:90:31:7B:94:13:52:4B:3D X509v3 Authority Key Identifier: keyid:5F:00:4D:57:EB:36:F4:26:72:E6:6F:30:05:F6:46:9B:62:89:17:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwBNV-s29CZy5m8wBfZGm2KJFxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1025/956F662C9D8411EF817E1420C4F9AE02/XwBNV-s29CZy5m8wBfZGm2KJFxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:6b:b9:fa:2c:05:d1:22:1b:1a:04:64:c6:c4:60:20:1b:fa: 3b:a1:37:8e:17:ff:1e:f1:e4:29:39:2c:7c:a6:a5:b0:65:21: 2c:18:9f:38:b4:e8:a2:a0:52:42:11:3b:79:a8:47:64:d4:0d: 16:8f:83:d1:2a:ce:20:27:93:ef:3b:c5:bf:19:0d:1c:69:44: 3d:f9:ed:35:94:94:00:9b:62:ff:7c:1c:34:1a:55:36:42:83: 25:6c:bb:66:6b:f2:c2:f1:fb:a1:62:cb:31:76:44:13:d4:ed: 95:e6:b5:69:5e:57:d8:24:2d:79:39:d7:3c:12:a2:25:fa:16: f2:30:95:66:9d:a0:36:ce:37:4c:8b:8c:f6:a1:08:24:06:ea: c2:cc:5a:39:63:0a:b6:b3:cd:89:3e:01:10:9d:cc:b9:4b:8b: a4:06:72:05:a3:4c:60:0c:9d:47:75:02:ef:cb:e3:29:50:fe: 56:eb:7e:ee:06:a5:a0:69:5e:6d:91:41:11:a6:34:83:68:99: f8:b9:03:4b:98:60:74:92:56:30:99:c0:33:2c:aa:f0:53:a1: 5d:9e:7f:31:e6:ba:81:2a:30:74:76:fc:15:01:e3:21:e3:d6: d0:8e:66:60:41:a3:58:66:f9:59:a2:c7:4d:32:39:2e:20:61: 17:ba:56:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEwMjUxMTAvBgNVBAUTKDVGMDA0RDU3RUIzNkY0MjY3MkU2NkYzMDA1RjY0NjlC NjI4OTE3MUIwHhcNMjUxMDE5MDkxNDEyWhcNMjUxMDI2MDkxNDEyWjAYMRYwFAYD VQQDEw02OGY0YWJlNC1mM2I4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoC7tA2sH7VzZLRI0n9C0uX6feY0JPZsWxc392UCW8e9TDA6RfGljyajv+aXQ RpSD5hhwBH7bGF7QPJF3kmiuMLH2kjKVBLaO/JX3GmZ8LiUw7aiF5nwCmoccx2v+ HHEg33LNd2Ndvimy0/ES/Exu4+0LtPqOffl0iaD2OJaR1MoJiCXhLc5AiCjlfVp6 naymlrCR8lTeV9XQgeVFZIr4a/MwyUyA+5pOZuGlRSY0N0mDNxhyt4uNyldz4wDI b+9GX2HkOTjBkbUR/f0IAWRowtFmwnMoRQElMeNOPqBWFhEGDgdO8ap4ZLsjYpU4 HKdUORX8Xs+T1zFJWESHj0sMCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEAZ6v8m lmsFcVoUYZAxe5QTUks9MB8GA1UdIwQYMBaAFF8ATVfrNvQmcuZvMAX2RptiiRcb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTAyNS85NTZGNjYyQzlE ODQxMUVGODE3RTE0MjBDNEY5QUUwMi9Yd0JOVi1zMjlDWnk1bTh3QmZaR20yS0pG eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h3Qk5WLXMyOUNaeTVtOHdCZlpHbTJLSkZ4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTAyNS85NTZGNjYyQzlEODQxMUVGODE3RTE0MjBDNEY5QUUwMi9Yd0JOVi1zMjlD Wnk1bTh3QmZaR20yS0pGeHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRa7n6LAXRIhsaBGTGxGAgG/o7oTeOF/8e8eQpOSx8pqWwZSEsGJ84 tOiioFJCETt5qEdk1A0Wj4PRKs4gJ5PvO8W/GQ0caUQ9+e01lJQAm2L/fBw0GlU2 QoMlbLtma/LC8fuhYssxdkQT1O2V5rVpXlfYJC15Odc8EqIl+hbyMJVmnaA2zjdM i4z2oQgkBurCzFo5Ywq2s82JPgEQncy5S4ukBnIFo0xgDJ1HdQLvy+MpUP5W637u BqWgaV5tkUERpjSDaJn4uQNLmGB0klYwmcAzLKrwU6Fdnn8x5rqBKjB0dvwVAeMh 49bQjmZgQaNYZvlZosdNMjkuIGEXulaf -----END CERTIFICATE-----Generated at Mon Oct 20 05:42:43 2025 by rpki-client