$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft File: XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft (raw, json) Hash identifier: oKjFx04liCcOju8D7t7IaXhAIES2d4On3IGB63a3ygk= Subject key identifier: CD:C5:1F:E1:AA:BA:E5:1B:3A:42:0E:83:00:B9:E8:2B:BC:F8:53:09 Authority key identifier: 5E:3C:F0:25:1D:8A:60:06:B8:28:5B:D0:94:9F:CD:9B:A3:F9:EB:B8 Certificate issuer: /CN=A91C9561/serialNumber=5E3CF0251D8A6006B8285BD0949FCD9BA3F9EBB8 Certificate serial: 033E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft Manifest number: 033D Signing time: Sun 19 Oct 2025 03:04:43 +0000 Manifest this update: Sun 19 Oct 2025 03:04:42 +0000 Manifest next update: Sun 26 Oct 2025 03:04:42 +0000 Files and hashes: 1: XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl (hash: oiOpnnQxmO+rhH19qupSzH6Yct4ICiV0mFKCmSke+/I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:04:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 830 (0x33e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9561, serialNumber=5E3CF0251D8A6006B8285BD0949FCD9BA3F9EBB8 Validity Not Before: Oct 19 03:04:42 2025 GMT Not After : Oct 26 03:04:42 2025 GMT Subject: CN=68f4554b-be91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:38:0d:95:d4:21:a8:98:f6:53:0c:bb:24:f9: a9:f2:40:cc:2d:16:6f:2e:de:cc:ba:e6:91:96:e9: f3:b2:0f:9c:50:09:57:1f:49:26:0e:f0:3a:fd:85: c8:7d:cc:e7:98:07:c6:61:4d:fe:85:61:06:49:9e: 59:52:79:5f:32:c3:71:ec:e0:d8:44:d0:6a:91:ac: e3:3a:41:9c:6a:cb:f3:45:49:c8:e1:b5:63:5f:b0: 83:66:95:58:64:44:df:ac:d9:a2:f9:14:a9:bc:a4: 1b:5e:48:f6:a5:c8:73:33:31:a5:3a:12:98:04:ff: f7:8b:b9:5c:d5:93:83:40:ee:d8:c4:27:01:2a:76: a0:a5:01:5b:66:d7:4b:62:7a:fc:3e:1a:36:5a:96: e3:7a:df:33:ea:02:1b:f3:eb:40:ab:de:88:d6:77: 53:4d:ac:e9:bc:4c:10:d3:45:cd:25:db:66:d2:ed: c3:51:32:d3:15:1f:00:1f:3a:f7:02:63:88:f7:9d: b0:47:11:55:5d:66:01:4e:2c:99:57:96:12:b2:e4: 02:c6:04:07:80:ea:b0:f8:95:19:35:fa:29:b5:ca: fb:6a:96:74:55:9e:23:96:6c:2f:66:ca:2e:f0:ed: a1:97:b2:b9:3d:55:19:cd:dc:c4:f9:c3:e8:a6:36: 39:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:C5:1F:E1:AA:BA:E5:1B:3A:42:0E:83:00:B9:E8:2B:BC:F8:53:09 X509v3 Authority Key Identifier: keyid:5E:3C:F0:25:1D:8A:60:06:B8:28:5B:D0:94:9F:CD:9B:A3:F9:EB:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:c2:ed:68:6a:e0:bb:2e:7e:7a:88:e8:3c:35:9f:c2:7e:60: 71:79:eb:d9:6d:1d:ad:bc:fc:df:4c:cb:9b:ed:1f:d1:8e:a3: ed:26:d4:56:de:94:c6:5c:5f:81:01:dc:bc:eb:bb:fe:b7:0c: 9b:a5:42:1d:ee:ac:94:13:0d:ae:09:cf:2d:8e:ed:bb:83:b9: 58:af:bd:04:b3:9c:84:fc:66:e5:bb:68:ca:a1:31:ef:43:ef: dc:39:cd:37:9f:c4:39:01:81:10:55:55:75:0d:a8:f4:6d:6f: f4:27:bc:bf:f8:f8:03:a4:9f:ba:14:61:81:50:89:7a:a9:89: 30:4d:41:a2:4c:f8:69:b1:07:97:a8:5d:a7:13:b5:97:19:f5: c5:27:11:94:77:5e:16:56:20:f1:22:c0:b1:66:9b:e7:d9:ee: 89:ba:7d:fa:bc:6c:c2:86:91:77:af:b2:cb:69:7d:e1:ba:12: c9:10:c9:3c:06:17:34:5f:be:06:b7:55:0d:8d:f0:a9:0e:65: 6b:3f:10:ba:3f:cb:00:73:dc:7e:d8:b3:ca:72:16:02:ac:de: 24:6e:dc:6d:0a:77:5b:d5:24:76:ad:0e:00:25:3a:37:8c:6d: 9c:76:6a:c3:9d:7b:34:d3:98:49:f4:37:1f:81:7e:05:25:89: 4a:a7:7d:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAz4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk1NjExMTAvBgNVBAUTKDVFM0NGMDI1MUQ4QTYwMDZCODI4NUJEMDk0OUZDRDlC QTNGOUVCQjgwHhcNMjUxMDE5MDMwNDQyWhcNMjUxMDI2MDMwNDQyWjAYMRYwFAYD VQQDEw02OGY0NTU0Yi1iZTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6TgNldQhqJj2Uwy7JPmp8kDMLRZvLt7MuuaRlunzsg+cUAlXH0kmDvA6/YXI fcznmAfGYU3+hWEGSZ5ZUnlfMsNx7ODYRNBqkazjOkGcasvzRUnI4bVjX7CDZpVY ZETfrNmi+RSpvKQbXkj2pchzMzGlOhKYBP/3i7lc1ZODQO7YxCcBKnagpQFbZtdL Ynr8Pho2Wpbjet8z6gIb8+tAq96I1ndTTazpvEwQ00XNJdtm0u3DUTLTFR8AHzr3 AmOI952wRxFVXWYBTiyZV5YSsuQCxgQHgOqw+JUZNfoptcr7apZ0VZ4jlmwvZsou 8O2hl7K5PVUZzdzE+cPopjY5FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM3FH+Gq uuUbOkIOgwC56Cu8+FMJMB8GA1UdIwQYMBaAFF488CUdimAGuChb0JSfzZuj+eu4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTU2MS9DOUE4REZEQURB NjkxMUVDOUM4MTUzNThDNEY5QUUwMi9Yanp3SlIyS1lBYTRLRnZRbEpfTm02UDU2 N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hqendKUjJLWUFhNEtGdlFsSl9ObTZQNTY3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTU2MS9DOUE4REZEQURBNjkxMUVDOUM4MTUzNThDNEY5QUUwMi9Yanp3SlIyS1lB YTRLRnZRbEpfTm02UDU2N2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/wu1oauC7Ln56iOg8NZ/CfmBxeevZbR2tvPzfTMub7R/RjqPtJtRW 3pTGXF+BAdy867v+twybpUId7qyUEw2uCc8tju27g7lYr70Es5yE/Gblu2jKoTHv Q+/cOc03n8Q5AYEQVVV1Daj0bW/0J7y/+PgDpJ+6FGGBUIl6qYkwTUGiTPhpsQeX qF2nE7WXGfXFJxGUd14WViDxIsCxZpvn2e6Jun36vGzChpF3r7LLaX3huhLJEMk8 Bhc0X74Gt1UNjfCpDmVrPxC6P8sAc9x+2LPKchYCrN4kbtxtCndb1SR2rQ4AJTo3 jG2cdmrDnXs005hJ9DcfgX4FJYlKp33e -----END CERTIFICATE-----Generated at Mon Oct 20 01:54:53 2025 by rpki-client