$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft File: XYnzqvmxOgelsmTy3rpk1cUAZRw.mft (raw, json) Hash identifier: +yKfVUbuS8nWgd2lAGnSKtNa7PEIOUAUWMkLHvu0Xi8= Subject key identifier: D6:2D:EE:7F:3A:16:6D:9A:21:FA:A9:24:27:FA:BB:58:2A:76:8A:DE Authority key identifier: 5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C Certificate issuer: /CN=A91D5240/serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Certificate serial: 0210 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft Manifest number: 0205 Signing time: Sun 19 Oct 2025 04:43:26 +0000 Manifest this update: Sun 19 Oct 2025 04:43:25 +0000 Manifest next update: Sun 26 Oct 2025 04:43:25 +0000 Files and hashes: 1: XYnzqvmxOgelsmTy3rpk1cUAZRw.crl (hash: YO/Gk2p2j9wE9plqKCkLgLlLlvcRLWkRrZ7fWOwUIeI=) 2: 9EA7B7D8A63911ED874E6630C4F9AE02.roa (hash: 6o0EUZvJBerht1y6bzh1g89SRPPeQ5cLEU5AQhJzOAU=) 3: 5DCE1A1AA63C11ED9306165AC4F9AE02.roa (hash: QPGj0eJqXgnGukiRaT/QHSiAaiIAXjZCnZKqvteNQAI=) 4: 9FBA5FCCA63911ED874E6630C4F9AE02.roa (hash: lCV4Wc/C2vG49K6yvqo7KO+pzcjtBqjnxvlmY9cM+oI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:43:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 528 (0x210) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5240, serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Validity Not Before: Oct 19 04:43:25 2025 GMT Not After : Oct 26 04:43:25 2025 GMT Subject: CN=68f46c6d-218f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d0:cc:3b:bf:1f:05:b5:91:4c:f7:f7:72:88: df:2e:65:9a:3e:ae:54:1e:a7:db:b7:19:15:59:e2: af:52:38:e3:2f:04:50:e2:df:9e:a3:6b:7e:b1:ec: be:f6:d1:8b:a8:18:be:7f:1b:19:6e:f4:07:0f:f9: 84:9a:60:d0:f3:9c:0c:68:09:f8:89:ba:87:96:c9: 91:a6:61:84:3d:72:ae:71:24:88:65:76:15:67:a1: a9:fb:b5:da:5f:cd:ca:0d:40:18:33:13:79:8b:4a: 23:10:57:6e:ab:f9:59:93:e3:59:3e:7c:62:e2:0e: df:46:18:92:67:5c:1a:10:cb:8e:92:6c:49:6b:3f: c5:88:1f:2e:cc:cf:91:6e:a8:8d:7b:2d:24:d6:64: 5a:bb:92:b1:a9:bc:54:6e:4c:70:d6:93:25:c0:37: 08:ee:f4:06:77:ab:a2:dd:6c:28:16:aa:33:01:c1: 15:12:35:c1:73:62:8b:18:6a:42:4e:2f:54:c0:b8: d1:f8:09:f5:50:b9:67:b1:72:7a:1c:38:e8:7f:da: 04:48:82:03:9a:2a:f9:1c:7c:e7:37:02:d9:34:08: 83:31:4c:89:af:b1:f0:c2:45:cd:39:7b:d1:8a:e5: 7a:74:44:ee:31:cf:90:40:89:16:a4:ec:11:8b:5f: e1:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:2D:EE:7F:3A:16:6D:9A:21:FA:A9:24:27:FA:BB:58:2A:76:8A:DE X509v3 Authority Key Identifier: keyid:5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:7f:4f:4c:27:06:24:47:b4:c5:2e:97:f5:ec:06:22:df:02: b3:1e:ec:db:f3:91:ba:49:f7:2a:cf:5d:b2:8a:70:44:9e:1d: 25:df:22:7a:7a:89:58:b4:c7:e5:96:6e:1d:1d:92:c4:98:a2: c9:36:c9:0d:9a:ec:bf:08:f1:b2:93:0d:da:d1:af:77:40:e2: 33:59:58:08:d9:5a:63:ce:26:f5:d5:27:35:41:30:eb:ba:ad: b6:9c:a4:f5:f2:94:81:35:10:42:f6:e8:72:1d:2f:bc:89:3b: e1:9c:c7:ad:3b:9d:b3:70:c3:0e:a9:bf:7c:ee:d2:5d:f8:70: 0f:4b:a8:a3:8a:ca:03:b9:bc:53:2e:53:72:78:cd:dd:8e:03: 7f:cc:99:33:b7:3d:00:a1:e9:1a:f0:1a:1d:cf:ef:91:a2:f7: ec:27:96:c0:f2:bc:79:b5:45:f7:87:8a:05:1c:6d:9c:13:40: 2d:a4:d4:2c:d9:a2:01:dd:d5:3b:35:11:95:b2:e6:38:6c:52: 5a:b0:5b:61:8e:da:08:5b:cf:92:7c:59:86:34:b0:b2:13:5a: b5:13:18:51:74:96:83:a2:35:e1:80:d4:6e:87:a2:c3:76:44: 47:a7:93:db:2f:05:06:c7:1f:04:e2:0c:27:e0:56:1c:6e:92: e5:7f:32:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUyNDAxMTAvBgNVBAUTKDVEODlGM0FBRjlCMTNBMDdBNUIyNjRGMkRFQkE2NEQ1 QzUwMDY1MUMwHhcNMjUxMDE5MDQ0MzI1WhcNMjUxMDI2MDQ0MzI1WjAYMRYwFAYD VQQDEw02OGY0NmM2ZC0yMThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwNDMO78fBbWRTPf3cojfLmWaPq5UHqfbtxkVWeKvUjjjLwRQ4t+eo2t+sey+ 9tGLqBi+fxsZbvQHD/mEmmDQ85wMaAn4ibqHlsmRpmGEPXKucSSIZXYVZ6Gp+7Xa X83KDUAYMxN5i0ojEFduq/lZk+NZPnxi4g7fRhiSZ1waEMuOkmxJaz/FiB8uzM+R bqiNey0k1mRau5KxqbxUbkxw1pMlwDcI7vQGd6ui3WwoFqozAcEVEjXBc2KLGGpC Ti9UwLjR+An1ULlnsXJ6HDjof9oESIIDmir5HHznNwLZNAiDMUyJr7HwwkXNOXvR iuV6dETuMc+QQIkWpOwRi1/hRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNYt7n86 Fm2aIfqpJCf6u1gqdoreMB8GA1UdIwQYMBaAFF2J86r5sToHpbJk8t66ZNXFAGUc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTI0MC8yN0RERTdEODlC N0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9nZWxzbVR5M3JwazFjVUFa UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hZbnpxdm14T2dlbHNtVHkzcnBrMWNVQVpSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTI0MC8yN0RERTdEODlCN0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9n ZWxzbVR5M3JwazFjVUFaUncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3f09MJwYkR7TFLpf17AYi3wKzHuzb85G6Sfcqz12yinBEnh0l3yJ6 eolYtMfllm4dHZLEmKLJNskNmuy/CPGykw3a0a93QOIzWVgI2Vpjzib11Sc1QTDr uq22nKT18pSBNRBC9uhyHS+8iTvhnMetO52zcMMOqb987tJd+HAPS6ijisoDubxT LlNyeM3djgN/zJkztz0Aoeka8Bodz++RovfsJ5bA8rx5tUX3h4oFHG2cE0AtpNQs 2aIB3dU7NRGVsuY4bFJasFthjtoIW8+SfFmGNLCyE1q1ExhRdJaDojXhgNRuh6LD dkRHp5PbLwUGxx8E4gwn4FYcbpLlfzIZ -----END CERTIFICATE-----Generated at Tue Oct 21 03:10:14 2025 by rpki-client