$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft File: -XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft (raw, json) Hash identifier: nvWwdFj9xJjpE0aM7yDx+T7LeuG3B7BJRgzdMHLO1qo= Subject key identifier: D3:51:27:A6:46:7F:92:EA:20:98:54:C9:6E:E4:B5:35:74:0A:5F:C9 Authority key identifier: F9:72:E7:5E:3D:03:E5:CE:19:01:93:0C:43:D1:6D:C4:A8:9C:47:92 Certificate issuer: /CN=A91C9484/serialNumber=F972E75E3D03E5CE1901930C43D16DC4A89C4792 Certificate serial: 3509 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft Manifest number: 34F0 Signing time: Sat 18 Oct 2025 14:52:35 +0000 Manifest this update: Sat 18 Oct 2025 14:52:35 +0000 Manifest next update: Sat 25 Oct 2025 14:52:35 +0000 Files and hashes: 1: -XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl (hash: jM7IeXTmuEkBXwrIv95qfX+WJoVhiAWOQpLmcKn4Y8I=) 2: 49036D2CB0D711E58B185E0FC4F9AE02.roa (hash: AsLmLNpdLhba6hfcYMLpd0sVqrUh2auGXL+sqK0hCjo=) 3: FFC89DF8CECD11EEA4AA6D44C4F9AE02.roa (hash: Ia/j0/zm2+DZmW6lBQa66nn1YakkPhVuWJjGJSOQHIU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:52:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13577 (0x3509) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9484, serialNumber=F972E75E3D03E5CE1901930C43D16DC4A89C4792 Validity Not Before: Oct 18 14:52:35 2025 GMT Not After : Oct 25 14:52:35 2025 GMT Subject: CN=68f3a9b3-3b9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:9b:95:5a:57:73:f1:82:1a:77:3f:b4:f9:6a: 75:f3:81:ff:ef:e3:05:46:f7:9f:84:4c:38:4c:a5: a1:f9:b5:39:a3:2b:87:21:c4:9a:8b:c2:53:9c:08: 95:3e:e6:09:24:99:8e:cd:e1:7d:3f:17:ab:69:53: 43:4c:82:7e:9d:e3:08:8e:35:47:f6:78:3c:13:9d: 05:92:4e:24:c7:8e:4f:70:3d:78:a9:96:33:76:f6: 06:16:de:8d:be:1f:7c:fd:87:38:74:40:05:ab:97: 33:76:50:1f:5f:a8:69:b5:4f:87:87:da:13:07:b0: e2:d8:e5:5a:65:b1:7b:9b:25:60:c6:52:05:e9:f3: 44:1c:f5:5e:d0:b9:41:8a:7e:5c:6d:00:2c:db:3a: f4:33:18:d1:cb:9f:29:44:ed:8c:8e:91:54:dd:d0: 0a:20:10:fc:ca:16:bd:44:4f:45:9f:1a:3a:46:44: 0b:76:7d:2f:93:bb:58:9f:f2:c3:79:fe:7e:59:79: 18:e4:f4:44:73:32:2b:14:7d:9f:ef:5d:68:b9:8f: f1:20:cf:e6:c8:fd:d3:b3:aa:dc:c6:7a:83:a7:1a: aa:67:8a:ec:e7:d8:fd:4a:05:49:c0:01:22:2f:7e: c5:3b:5c:5b:af:50:63:77:2a:36:f4:df:9b:07:79: ac:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:51:27:A6:46:7F:92:EA:20:98:54:C9:6E:E4:B5:35:74:0A:5F:C9 X509v3 Authority Key Identifier: keyid:F9:72:E7:5E:3D:03:E5:CE:19:01:93:0C:43:D1:6D:C4:A8:9C:47:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9484/6FF0DDE01D9411E29DECB5F808B02CD2/-XLnXj0D5c4ZAZMMQ9FtxKicR5I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:05:11:a9:6a:8b:46:a9:e6:9d:70:5f:a8:53:19:18:41:08: 59:27:0a:52:10:9e:73:2b:4e:68:1d:43:fe:a5:44:94:f7:a3: 2d:08:9c:96:92:cc:9f:dc:df:8f:ab:ca:69:69:3d:75:ed:dc: 90:7f:a3:7b:37:79:99:33:60:e3:1c:09:d8:7a:6a:cf:ab:db: 33:21:21:83:c0:64:b6:01:33:98:43:ff:cc:d1:0b:85:d6:c5: e0:29:76:ac:ef:5f:03:22:53:29:63:8f:4a:49:45:03:1d:4f: 77:8e:ff:bf:96:2b:0a:f8:e8:32:08:9e:9a:35:5b:32:9e:ae: 3c:f4:32:df:7f:f9:87:10:12:70:2a:77:e6:13:6e:35:7a:1d: 1d:72:59:81:fc:44:65:4f:6f:ac:68:5c:56:37:fc:f8:88:0a: 86:dd:76:af:57:06:34:7b:f9:20:92:58:8f:33:f6:df:c5:89: 99:ab:df:28:44:ec:80:4a:3b:10:e1:74:e0:f5:d7:8f:d7:cc: 5b:4c:89:32:e1:03:d8:43:98:1c:a0:b6:10:17:20:e5:f7:ad: 39:1f:d9:5e:55:63:75:1c:fe:b0:5f:09:7b:97:c8:13:d1:d7: 80:64:2f:49:cd:d1:57:05:48:0c:51:b5:89:c2:0c:f0:39:bf: 5e:2a:50:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk0ODQxMTAvBgNVBAUTKEY5NzJFNzVFM0QwM0U1Q0UxOTAxOTMwQzQzRDE2REM0 QTg5QzQ3OTIwHhcNMjUxMDE4MTQ1MjM1WhcNMjUxMDI1MTQ1MjM1WjAYMRYwFAYD VQQDEw02OGYzYTliMy0zYjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvpuVWldz8YIadz+0+Wp184H/7+MFRvefhEw4TKWh+bU5oyuHIcSai8JTnAiV PuYJJJmOzeF9PxeraVNDTIJ+neMIjjVH9ng8E50Fkk4kx45PcD14qZYzdvYGFt6N vh98/Yc4dEAFq5czdlAfX6hptU+Hh9oTB7Di2OVaZbF7myVgxlIF6fNEHPVe0LlB in5cbQAs2zr0MxjRy58pRO2MjpFU3dAKIBD8yha9RE9Fnxo6RkQLdn0vk7tYn/LD ef5+WXkY5PREczIrFH2f711ouY/xIM/myP3Ts6rcxnqDpxqqZ4rs59j9SgVJwAEi L37FO1xbr1Bjdyo29N+bB3msMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNNRJ6ZG f5LqIJhUyW7ktTV0Cl/JMB8GA1UdIwQYMBaAFPly5149A+XOGQGTDEPRbcSonEeS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTQ4NC82RkYwRERFMDFE OTQxMUUyOURFQ0I1RjgwOEIwMkNEMi8tWExuWGowRDVjNFpBWk1NUTlGdHhLaWNS NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1YTG5YajBENWM0WkFaTU1ROUZ0eEtpY1I1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTQ4NC82RkYwRERFMDFEOTQxMUUyOURFQ0I1RjgwOEIwMkNEMi8tWExuWGowRDVj NFpBWk1NUTlGdHhLaWNSNUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANBRGpaotGqeadcF+oUxkYQQhZJwpSEJ5zK05oHUP+pUSU96MtCJyW ksyf3N+Pq8ppaT117dyQf6N7N3mZM2DjHAnYemrPq9szISGDwGS2ATOYQ//M0QuF 1sXgKXas718DIlMpY49KSUUDHU93jv+/lisK+OgyCJ6aNVsynq489DLff/mHEBJw KnfmE241eh0dclmB/ERlT2+saFxWN/z4iAqG3XavVwY0e/kgkliPM/bfxYmZq98o ROyASjsQ4XTg9deP18xbTIky4QPYQ5gcoLYQFyDl9605H9leVWN1HP6wXwl7l8gT 0deAZC9JzdFXBUgMUbWJwgzwOb9eKlCg -----END CERTIFICATE-----Generated at Mon Oct 20 01:49:21 2025 by rpki-client