$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft File: xhVwDXyIi-a6dQrezZTYhkaC42E.mft (raw, json) Hash identifier: OTNAJG0UFh9lkztTAkrEZWn9BjL+V4WFZdkTSS2fdkM= Subject key identifier: 71:9F:4A:31:B1:E3:B8:21:0E:9D:18:C7:24:FD:F9:B9:21:B5:17:0C Authority key identifier: C6:15:70:0D:7C:88:8B:E6:BA:75:0A:DE:CD:94:D8:86:46:82:E3:61 Certificate issuer: /CN=A91D0C14/serialNumber=C615700D7C888BE6BA750ADECD94D8864682E361 Certificate serial: D7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xhVwDXyIi-a6dQrezZTYhkaC42E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft Manifest number: D6 Signing time: Sun 19 Oct 2025 04:07:19 +0000 Manifest this update: Sun 19 Oct 2025 04:07:18 +0000 Manifest next update: Sun 26 Oct 2025 04:07:18 +0000 Files and hashes: 1: xhVwDXyIi-a6dQrezZTYhkaC42E.crl (hash: 1SpmHmCorcK7j5YatZHORPo1tnSDuJv3bxQFbFyLqFY=) 2: 6C3911AC316A11F090B23283C4F9AE02.roa (hash: DgEucoR97Y9+a6MdEE8/uaZNnvtkSjr5/qYttwnSpcA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.crl rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xhVwDXyIi-a6dQrezZTYhkaC42E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:07:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 215 (0xd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0C14, serialNumber=C615700D7C888BE6BA750ADECD94D8864682E361 Validity Not Before: Oct 19 04:07:18 2025 GMT Not After : Oct 26 04:07:18 2025 GMT Subject: CN=68f463f6-088d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:cc:b7:c9:eb:f7:11:33:80:bf:29:84:7a:ab: 36:b5:97:60:14:5b:08:6f:02:9d:53:d0:54:98:77: 18:4e:c3:89:59:56:f7:84:1f:7b:5c:d9:7a:79:81: db:ad:04:fd:1a:68:3b:66:89:32:44:e5:a1:cd:26: 37:45:f9:ac:a2:b1:bb:9b:74:58:28:e0:84:ba:35: 6d:9f:01:62:8c:b7:f9:f1:03:fa:bc:ff:31:fe:67: f9:35:3f:c2:1a:03:68:b2:3e:c3:57:45:0a:1e:78: 96:b9:d0:2b:70:7b:af:fe:81:9e:e7:ef:5c:49:36: ca:cf:ee:45:39:9d:35:11:b1:40:7d:94:e2:3e:0c: 46:2c:18:36:14:d7:aa:85:54:30:4b:01:bb:83:99: f3:70:19:37:ed:89:90:c2:11:6d:15:ae:2e:77:23: 14:0f:a6:ee:9c:c3:13:a6:08:54:81:f4:3d:dd:a0: 2a:59:e2:5f:65:74:c8:50:84:0c:de:2a:fc:47:9f: 9d:f6:f9:6b:c8:90:da:29:b0:8b:cd:f8:40:5c:85: 0c:46:13:e0:ba:2a:fd:b7:48:b0:72:67:b9:fc:51: b7:22:04:45:48:37:8e:8f:37:90:db:d4:14:fb:ec: 89:0e:02:93:d4:c2:91:f3:29:ed:5a:9e:d9:2e:50: 84:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:9F:4A:31:B1:E3:B8:21:0E:9D:18:C7:24:FD:F9:B9:21:B5:17:0C X509v3 Authority Key Identifier: keyid:C6:15:70:0D:7C:88:8B:E6:BA:75:0A:DE:CD:94:D8:86:46:82:E3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xhVwDXyIi-a6dQrezZTYhkaC42E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:ee:23:57:52:c5:54:3a:76:a6:fe:ef:b3:a2:6d:0c:fa:bb: cd:9c:94:23:8e:63:72:6d:8a:9f:db:48:b9:25:20:fd:98:95: a9:70:75:11:d0:bd:cf:12:d2:cc:07:17:a7:77:49:c4:66:94: f1:0c:73:7b:fe:bc:67:5b:b9:c5:80:39:76:f6:ac:ea:db:ff: 5b:5b:01:bf:cc:42:15:80:24:0b:c3:82:6b:1c:e6:3c:a1:f4: 40:00:6e:a1:f3:2a:43:60:10:3c:a9:9b:ba:99:ff:57:22:8b: a3:d9:1a:f4:5a:19:63:71:fc:91:29:7f:7d:7e:8c:62:8f:78: 1d:29:bf:1c:75:17:ae:f2:f4:9c:04:d1:d9:97:33:0d:b0:c7: 24:12:e3:94:2d:1e:3b:00:f3:c0:aa:2d:da:16:32:15:0c:6c: ab:8a:05:29:77:2a:e7:02:73:22:5b:02:0c:24:05:83:f2:c9: 83:87:60:28:09:67:c5:6b:14:eb:fb:89:90:b9:d3:c6:26:35: c3:33:3d:69:51:45:13:e5:38:4c:a7:f3:85:a1:c3:c9:fc:08: df:47:44:22:4e:1a:be:24:88:2c:87:ce:0f:18:0e:d1:1f:88: cf:f4:af:fc:d9:ab:32:58:60:cf:a1:a7:f3:3a:6b:44:0d:07: fb:86:91:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBDMTQxMTAvBgNVBAUTKEM2MTU3MDBEN0M4ODhCRTZCQTc1MEFERUNEOTREODg2 NDY4MkUzNjEwHhcNMjUxMDE5MDQwNzE4WhcNMjUxMDI2MDQwNzE4WjAYMRYwFAYD VQQDEw02OGY0NjNmNi0wODhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqcy3yev3ETOAvymEeqs2tZdgFFsIbwKdU9BUmHcYTsOJWVb3hB97XNl6eYHb rQT9Gmg7ZokyROWhzSY3RfmsorG7m3RYKOCEujVtnwFijLf58QP6vP8x/mf5NT/C GgNosj7DV0UKHniWudArcHuv/oGe5+9cSTbKz+5FOZ01EbFAfZTiPgxGLBg2FNeq hVQwSwG7g5nzcBk37YmQwhFtFa4udyMUD6bunMMTpghUgfQ93aAqWeJfZXTIUIQM 3ir8R5+d9vlryJDaKbCLzfhAXIUMRhPguir9t0iwcme5/FG3IgRFSDeOjzeQ29QU ++yJDgKT1MKR8yntWp7ZLlCEuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHGfSjGx 47ghDp0YxyT9+bkhtRcMMB8GA1UdIwQYMBaAFMYVcA18iIvmunUK3s2U2IZGguNh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEMxNC84RjMzOTk5NjZC RkIxMUVGODQ2MzI2MzVDNEY5QUUwMi94aFZ3RFh5SWktYTZkUXJlelpUWWhrYUM0 MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hoVndEWHlJaS1hNmRRcmV6WlRZaGthQzQyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEMxNC84RjMzOTk5NjZCRkIxMUVGODQ2MzI2MzVDNEY5QUUwMi94aFZ3RFh5SWkt YTZkUXJlelpUWWhrYUM0MkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB07iNXUsVUOnam/u+zom0M+rvNnJQjjmNybYqf20i5JSD9mJWpcHUR 0L3PEtLMBxend0nEZpTxDHN7/rxnW7nFgDl29qzq2/9bWwG/zEIVgCQLw4JrHOY8 ofRAAG6h8ypDYBA8qZu6mf9XIouj2Rr0WhljcfyRKX99foxij3gdKb8cdReu8vSc BNHZlzMNsMckEuOULR47APPAqi3aFjIVDGyrigUpdyrnAnMiWwIMJAWD8smDh2Ao CWfFaxTr+4mQudPGJjXDMz1pUUUT5ThMp/OFocPJ/AjfR0QiThq+JIgsh84PGA7R H4jP9K/82asyWGDPoafzOmtEDQf7hpH3 -----END CERTIFICATE-----Generated at Tue Oct 21 08:09:41 2025 by rpki-client