$ rpki-client -vvf rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft File: XDZbFzHKfOfbgd1XEwvU1kMBm14.mft (raw, json) Hash identifier: vLkuJRHS0+NRtzG4xm35jSptPp2G/WrsUsbM4vStJd4= Subject key identifier: 2D:BC:7F:A9:DD:F5:EF:48:1B:F9:2A:07:FB:BE:44:F7:AA:06:7C:62 Authority key identifier: 5C:36:5B:17:31:CA:7C:E7:DB:81:DD:57:13:0B:D4:D6:43:01:9B:5E Certificate issuer: /CN=A91D28EB/serialNumber=5C365B1731CA7CE7DB81DD57130BD4D643019B5E Certificate serial: 05AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft Manifest number: 05A4 Signing time: Sun 19 Oct 2025 00:50:49 +0000 Manifest this update: Sun 19 Oct 2025 00:50:49 +0000 Manifest next update: Sun 26 Oct 2025 00:50:49 +0000 Files and hashes: 1: XDZbFzHKfOfbgd1XEwvU1kMBm14.crl (hash: 7q7WFy5iVbQ29qGoKG5a5qncn0vE8IxYrSROYL1+tL0=) 2: 8E90AA02EB0B11EBA0B6DD84C4F9AE02.roa (hash: WoeJPfBlNid7RydzbYK1jVf1zbozvuQMQ+6wRuDKrQE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.crl rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1452 (0x5ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D28EB, serialNumber=5C365B1731CA7CE7DB81DD57130BD4D643019B5E Validity Not Before: Oct 19 00:50:49 2025 GMT Not After : Oct 26 00:50:49 2025 GMT Subject: CN=68f435e9-4fa2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:fb:12:76:66:38:07:ca:a8:ee:e9:4c:53:21: d4:86:40:00:c9:93:d7:ef:c9:5c:00:8b:2d:66:a8: bc:f0:5a:86:9d:f6:ba:c6:88:75:9c:50:ac:fc:0e: 04:e6:a1:f2:27:4f:7d:13:81:df:f2:f6:de:4f:16: 1b:30:e7:f2:96:d1:7b:72:40:4a:4b:a7:f1:5b:94: 70:14:35:28:b1:dc:b1:0c:56:3d:eb:fc:7c:8a:58: 5a:c2:31:b9:2f:ac:a9:4e:c6:54:e2:7c:33:8d:47: 2c:da:1d:fc:82:ca:88:80:8f:cb:1e:73:02:f8:df: 2c:e2:1f:cd:f7:a6:24:bb:37:8c:a8:c1:ae:e1:72: 7f:0c:d4:ec:5e:63:37:14:8d:3d:af:8d:16:02:c8: 60:95:6c:0e:68:cf:cc:eb:06:a6:1e:6e:b3:c1:a2: ce:8e:93:7e:76:f4:c0:5e:2a:38:05:23:c8:3d:7c: dc:05:55:6c:fb:b5:6f:04:92:56:07:89:e5:10:17: 8e:4f:c6:48:05:fd:36:98:9d:dc:3e:db:f3:d1:9a: c9:67:6f:9b:fd:7a:d7:cc:b9:77:22:61:26:a2:2a: a3:25:28:24:48:67:fe:c3:73:d9:3e:d1:c1:1b:a4: 48:9f:7e:09:31:4c:20:aa:de:a5:64:47:fc:57:f6: f3:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:BC:7F:A9:DD:F5:EF:48:1B:F9:2A:07:FB:BE:44:F7:AA:06:7C:62 X509v3 Authority Key Identifier: keyid:5C:36:5B:17:31:CA:7C:E7:DB:81:DD:57:13:0B:D4:D6:43:01:9B:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:16:c3:28:b2:67:8d:b1:0e:b7:6b:cc:46:8a:a8:3a:33:c9: 25:9c:f1:cf:cf:5f:4d:7f:70:84:8e:52:61:fc:76:18:a3:4f: 23:ae:a1:f6:fa:bf:8b:cc:56:d0:2e:02:ff:08:d2:26:99:bb: c5:04:51:04:12:e3:30:f6:31:34:b1:da:c2:e0:9a:e2:f5:b3: 4f:93:a5:b9:45:35:f0:87:55:34:21:c7:de:04:19:45:d3:9d: d0:23:57:ff:28:a8:eb:31:c3:93:4a:c5:b4:91:b3:f7:f3:04: b0:98:63:41:68:b6:da:72:06:3e:ba:1d:d8:91:ee:e7:cd:2c: 15:ae:7b:12:e7:f2:64:e1:ee:58:d0:9f:46:f5:a9:77:de:0d: 36:8a:c4:2c:6a:10:22:ce:56:b5:3e:76:25:89:5c:91:63:df: 1e:cd:48:19:dc:9b:83:d5:66:a8:50:34:48:d0:87:e9:6f:74: a0:40:01:99:ac:69:53:22:aa:fe:ce:42:ae:c1:c1:fe:ce:c0: 92:8c:cb:64:26:43:97:a1:20:45:a6:08:6b:cf:00:fb:a2:4a: 47:cb:48:da:2a:91:16:04:d7:6d:23:0a:0d:b1:d0:29:87:5a: ab:74:ad:2b:87:b5:81:61:18:bd:c2:a6:a0:aa:b7:84:7b:34: 8a:4f:f5:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBawwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI4RUIxMTAvBgNVBAUTKDVDMzY1QjE3MzFDQTdDRTdEQjgxREQ1NzEzMEJENEQ2 NDMwMTlCNUUwHhcNMjUxMDE5MDA1MDQ5WhcNMjUxMDI2MDA1MDQ5WjAYMRYwFAYD VQQDEw02OGY0MzVlOS00ZmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApPsSdmY4B8qo7ulMUyHUhkAAyZPX78lcAIstZqi88FqGnfa6xoh1nFCs/A4E 5qHyJ099E4Hf8vbeTxYbMOfyltF7ckBKS6fxW5RwFDUosdyxDFY96/x8ilhawjG5 L6ypTsZU4nwzjUcs2h38gsqIgI/LHnMC+N8s4h/N96YkuzeMqMGu4XJ/DNTsXmM3 FI09r40WAshglWwOaM/M6wamHm6zwaLOjpN+dvTAXio4BSPIPXzcBVVs+7VvBJJW B4nlEBeOT8ZIBf02mJ3cPtvz0ZrJZ2+b/XrXzLl3ImEmoiqjJSgkSGf+w3PZPtHB G6RIn34JMUwgqt6lZEf8V/bzZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC28f6nd 9e9IG/kqB/u+RPeqBnxiMB8GA1UdIwQYMBaAFFw2Wxcxynzn24HdVxML1NZDAZte MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjhFQi83NzE0OEFDNkVC MDkxMUVCOUM3NTkxODBDNEY5QUUwMi9YRFpiRnpIS2ZPZmJnZDFYRXd2VTFrTUJt MTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEWmJGekhLZk9mYmdkMVhFd3ZVMWtNQm0xNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjhFQi83NzE0OEFDNkVCMDkxMUVCOUM3NTkxODBDNEY5QUUwMi9YRFpiRnpIS2ZP ZmJnZDFYRXd2VTFrTUJtMTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZFsMosmeNsQ63a8xGiqg6M8klnPHPz19Nf3CEjlJh/HYYo08jrqH2 +r+LzFbQLgL/CNImmbvFBFEEEuMw9jE0sdrC4Jri9bNPk6W5RTXwh1U0IcfeBBlF 053QI1f/KKjrMcOTSsW0kbP38wSwmGNBaLbacgY+uh3Yke7nzSwVrnsS5/Jk4e5Y 0J9G9al33g02isQsahAizla1PnYliVyRY98ezUgZ3JuD1WaoUDRI0Ifpb3SgQAGZ rGlTIqr+zkKuwcH+zsCSjMtkJkOXoSBFpghrzwD7okpHy0jaKpEWBNdtIwoNsdAp h1qrdK0rh7WBYRi9wqagqreEezSKT/Ue -----END CERTIFICATE-----Generated at Mon Oct 20 02:54:02 2025 by rpki-client