$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft File: X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft (raw, json) Hash identifier: Hk3c1vbaaeZ71ijnty8cEd3DcdVvF8wT4NqTPcyhUOA= Subject key identifier: 5B:04:74:F4:1C:F7:34:17:4D:5C:D8:8D:93:3D:79:FB:99:AE:74:2D Authority key identifier: 5F:8A:F3:59:73:FD:4F:A5:63:F3:3B:73:76:53:46:82:10:7B:C8:F9 Certificate issuer: /CN=A91CE285/serialNumber=5F8AF35973FD4FA563F33B7376534682107BC8F9 Certificate serial: 0A04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft Manifest number: 09FD Signing time: Mon 20 Oct 2025 20:40:42 +0000 Manifest this update: Mon 20 Oct 2025 20:40:41 +0000 Manifest next update: Mon 27 Oct 2025 20:40:41 +0000 Files and hashes: 1: X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl (hash: FsTpQnNMKveIUl/ak/JStEAqnBDCOneHG+iQXJ58pmQ=) 2: E5C4974689CF11EAA39AF441C4F9AE02.roa (hash: S/+GQ9LaNR6oJzl2BIn9qWcVDZWjqUHkpie5l4NiGuc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 20:40:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2564 (0xa04) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE285, serialNumber=5F8AF35973FD4FA563F33B7376534682107BC8F9 Validity Not Before: Oct 20 20:40:41 2025 GMT Not After : Oct 27 20:40:41 2025 GMT Subject: CN=68f69e4a-dd69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:ef:b9:d0:2a:6b:b8:ca:7c:71:ec:01:45:fb: f9:0b:f3:aa:ad:31:69:8f:70:57:cf:5e:c1:f9:9b: b8:96:31:f9:da:54:f5:52:d1:d8:2a:01:6e:4a:f4: 69:79:24:d1:9e:8f:25:86:70:9b:83:bb:65:00:ac: 4d:89:aa:3b:49:28:2c:4a:f5:5f:21:16:79:83:93: af:44:3d:1d:af:64:8a:82:68:1d:94:52:21:b8:41: 27:56:47:20:68:1e:05:86:e9:84:8f:a3:be:81:3d: 92:a8:c8:2b:d2:80:d4:49:aa:db:ae:d8:f2:4e:03: 4e:b6:f8:25:8c:19:9a:85:ae:a1:21:09:de:60:9a: f4:29:90:c0:7c:f6:a9:23:bb:cc:7c:ea:f5:73:67: c0:38:09:8e:59:9e:db:c2:a7:2a:da:e9:e8:d2:ad: 76:0a:54:9d:20:55:78:e1:53:54:e7:c3:5a:63:11: b1:8d:13:8a:4a:f4:9e:52:be:de:f2:c4:45:c5:64: 6c:c8:2d:0c:97:a1:cd:ee:13:e6:f3:10:bc:95:8a: ac:25:fa:b3:d3:e8:16:11:b2:da:44:45:45:89:0e: f0:44:5b:30:b3:7a:54:21:cc:d7:34:43:9f:b6:46: 67:96:ad:87:08:a0:71:3e:b3:31:7f:1d:ed:9c:0c: fb:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:04:74:F4:1C:F7:34:17:4D:5C:D8:8D:93:3D:79:FB:99:AE:74:2D X509v3 Authority Key Identifier: keyid:5F:8A:F3:59:73:FD:4F:A5:63:F3:3B:73:76:53:46:82:10:7B:C8:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:d5:3b:ec:90:86:83:3b:f9:80:64:63:0f:cf:a1:9a:fc:bb: 49:04:66:55:b7:5d:9c:d7:64:cf:9d:6c:d1:4c:86:9c:81:a2: 01:12:3d:5e:45:a2:a1:e4:fb:d1:9c:3f:77:4d:82:67:6e:96: 43:f7:85:58:84:98:da:b5:eb:3a:38:02:44:6f:09:9a:4f:1f: a8:d0:35:e5:6e:08:34:a7:77:77:13:e0:83:30:52:34:96:b8: d3:56:40:b5:fd:7c:89:25:28:b6:51:13:e5:e8:2a:f8:b2:ab: 97:9a:c5:b5:b1:4f:03:77:9c:86:b1:01:8d:cd:2e:2a:d8:67: eb:08:c8:bd:cc:5d:13:91:02:44:08:7b:ea:00:65:d2:c5:8b: 35:d4:72:59:58:0a:f6:ea:bf:fa:e6:c7:f6:31:6c:9a:d6:f7: c0:de:74:7a:1f:1a:9c:34:7c:25:af:81:a1:3f:35:64:6c:51: 41:7e:71:bd:a3:1d:26:d1:43:42:f6:2c:52:15:09:09:0b:9e: e6:b2:bd:d7:0b:35:24:b4:ff:99:8e:c0:ff:2b:6f:1a:26:17: 34:96:1b:84:f8:54:b7:c8:3e:36:c4:53:59:53:e4:01:b2:1c: d3:95:60:40:8e:3f:56:d6:d1:f8:de:1f:85:90:2c:1f:14:ea: 10:f6:a9:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyODUxMTAvBgNVBAUTKDVGOEFGMzU5NzNGRDRGQTU2M0YzM0I3Mzc2NTM0Njgy MTA3QkM4RjkwHhcNMjUxMDIwMjA0MDQxWhcNMjUxMDI3MjA0MDQxWjAYMRYwFAYD VQQDEw02OGY2OWU0YS1kZDY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoO+50CpruMp8cewBRfv5C/OqrTFpj3BXz17B+Zu4ljH52lT1UtHYKgFuSvRp eSTRno8lhnCbg7tlAKxNiao7SSgsSvVfIRZ5g5OvRD0dr2SKgmgdlFIhuEEnVkcg aB4FhumEj6O+gT2SqMgr0oDUSarbrtjyTgNOtvgljBmaha6hIQneYJr0KZDAfPap I7vMfOr1c2fAOAmOWZ7bwqcq2uno0q12ClSdIFV44VNU58NaYxGxjROKSvSeUr7e 8sRFxWRsyC0Ml6HN7hPm8xC8lYqsJfqz0+gWEbLaREVFiQ7wRFsws3pUIczXNEOf tkZnlq2HCKBxPrMxfx3tnAz7VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFsEdPQc 9zQXTVzYjZM9efuZrnQtMB8GA1UdIwQYMBaAFF+K81lz/U+lY/M7c3ZTRoIQe8j5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTI4NS81RTE2NDhCNjg0 QkMxMUVBQTUyNjIyNjNDNEY5QUUwMi9YNHJ6V1hQOVQ2Vmo4enR6ZGxOR2doQjd5 UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0cnpXWFA5VDZWajh6dHpkbE5HZ2hCN3lQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTI4NS81RTE2NDhCNjg0QkMxMUVBQTUyNjIyNjNDNEY5QUUwMi9YNHJ6V1hQOVQ2 Vmo4enR6ZGxOR2doQjd5UGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCg1TvskIaDO/mAZGMPz6Ga/LtJBGZVt12c12TPnWzRTIacgaIBEj1e RaKh5PvRnD93TYJnbpZD94VYhJjates6OAJEbwmaTx+o0DXlbgg0p3d3E+CDMFI0 lrjTVkC1/XyJJSi2URPl6Cr4squXmsW1sU8Dd5yGsQGNzS4q2GfrCMi9zF0TkQJE CHvqAGXSxYs11HJZWAr26r/65sf2MWya1vfA3nR6HxqcNHwlr4GhPzVkbFFBfnG9 ox0m0UNC9ixSFQkJC57msr3XCzUktP+ZjsD/K28aJhc0lhuE+FS3yD42xFNZU+QB shzTlWBAjj9W1tH43h+FkCwfFOoQ9qng -----END CERTIFICATE-----Generated at Tue Oct 21 01:38:19 2025 by rpki-client