$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft File: xdQJ-106qXOpUMnDHMMBVfNJP2I.mft (raw, json) Hash identifier: z5zV6S1j/xYcALpEUoxgazLLzOpFFceHwktfFIXK8XM= Subject key identifier: 2A:00:31:C3:9A:E0:43:7C:D4:84:3B:F6:DB:FF:E7:52:8B:36:CF:DF Authority key identifier: C5:D4:09:FB:5D:3A:A9:73:A9:50:C9:C3:1C:C3:01:55:F3:49:3F:62 Certificate issuer: /CN=A91D6884/serialNumber=C5D409FB5D3AA973A950C9C31CC30155F3493F62 Certificate serial: 017F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft Manifest number: 017C Signing time: Sun 19 Oct 2025 06:21:35 +0000 Manifest this update: Sun 19 Oct 2025 06:21:34 +0000 Manifest next update: Sun 26 Oct 2025 06:21:34 +0000 Files and hashes: 1: xdQJ-106qXOpUMnDHMMBVfNJP2I.crl (hash: 0nA5pONRJpwphHG/6i5L4gjRTyCSeHuVetZkNCfdVQE=) 2: 5CF4C0D4FADD11EE8083D572C4F9AE02.roa (hash: tBK54wCyQ2wcX6ZNsRYGZb85q/LNuJrcbm5n2EF4GsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.crl rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:21:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 383 (0x17f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6884, serialNumber=C5D409FB5D3AA973A950C9C31CC30155F3493F62 Validity Not Before: Oct 19 06:21:34 2025 GMT Not After : Oct 26 06:21:34 2025 GMT Subject: CN=68f4836f-4437 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:5c:44:7f:fd:95:78:e5:7d:a7:dd:06:41:94: e6:4d:e3:ee:a2:36:68:5f:5f:22:66:86:3e:47:2b: 49:80:14:e7:06:18:3a:a3:71:4f:96:97:70:ff:18: ce:cb:1e:5e:98:ec:30:d9:51:d2:0b:60:b7:a3:27: 3b:7a:21:98:3e:e9:48:8d:dc:6d:45:45:16:82:46: ed:92:de:42:03:3a:e4:1e:8e:cb:7d:8f:eb:1c:a2: 4e:11:c3:00:9b:4e:a9:f7:9a:9c:64:8a:ef:11:e0: c9:97:59:47:01:4c:41:5f:2b:cb:77:61:e8:92:a6: 42:1f:8f:5f:71:83:d5:b7:f6:d7:86:12:4b:a6:26: 1c:b3:87:45:4a:64:61:18:e0:45:af:1f:a5:dd:3a: 64:06:4d:55:24:2c:65:fc:8e:7b:78:fe:7b:5b:be: a6:27:3a:d1:ea:b9:47:e6:5f:34:55:ff:22:c5:e3: c6:61:51:be:8e:64:41:09:a4:1e:dd:23:a9:0c:0e: c4:be:8e:f1:db:da:3c:26:94:93:de:22:92:1d:d5: cf:d4:11:ee:0c:9e:5e:d7:5e:6e:2a:dc:29:0d:d3: f9:18:58:7b:cf:59:70:c7:79:50:7d:88:32:8b:c4: 18:12:a3:8e:85:32:ea:3b:db:9b:44:28:01:08:f0: 72:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:00:31:C3:9A:E0:43:7C:D4:84:3B:F6:DB:FF:E7:52:8B:36:CF:DF X509v3 Authority Key Identifier: keyid:C5:D4:09:FB:5D:3A:A9:73:A9:50:C9:C3:1C:C3:01:55:F3:49:3F:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:41:a4:ae:cc:74:a4:b7:30:3e:64:de:b1:f7:ba:af:b5:63: af:32:f3:74:4e:bc:5c:e7:e8:11:08:24:00:75:f5:9d:20:a2: e2:b5:10:c6:71:86:a9:d8:37:0a:12:11:de:a7:78:40:e6:bc: 84:43:45:e6:45:1b:cd:eb:4e:cf:2a:eb:db:95:8e:75:6a:ce: f2:34:3c:28:6a:ef:35:71:93:e9:d6:a8:7e:d4:30:51:6f:45: ab:81:b6:9e:2b:79:69:54:70:3c:be:d0:09:27:ab:29:93:3c: d1:2d:87:9d:98:82:76:f2:3e:5f:1c:9e:d6:86:e3:eb:c3:ca: 6e:32:1e:72:e6:6c:1c:e4:59:72:37:fa:c4:21:4f:f4:c1:22: 5d:56:3d:05:17:67:0e:98:e0:99:cc:6a:10:27:4e:3e:45:f6: ba:d9:1c:39:98:fd:33:ae:33:f0:dc:b7:79:e3:44:05:03:c8: 8e:a4:24:e1:f6:f9:e5:c4:27:5b:a5:dc:82:13:81:2e:9e:45: b6:58:1c:b1:b5:34:f5:52:22:f7:73:8c:55:0f:bf:58:de:78: 51:ac:33:28:b0:35:fa:92:85:86:80:24:87:fa:9b:fe:2e:ef: 95:d7:7f:75:59:49:7e:60:bd:3d:c6:56:1b:4c:94:a1:08:3a: 6a:01:a9:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY4ODQxMTAvBgNVBAUTKEM1RDQwOUZCNUQzQUE5NzNBOTUwQzlDMzFDQzMwMTU1 RjM0OTNGNjIwHhcNMjUxMDE5MDYyMTM0WhcNMjUxMDI2MDYyMTM0WjAYMRYwFAYD VQQDEw02OGY0ODM2Zi00NDM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1xEf/2VeOV9p90GQZTmTePuojZoX18iZoY+RytJgBTnBhg6o3FPlpdw/xjO yx5emOww2VHSC2C3oyc7eiGYPulIjdxtRUUWgkbtkt5CAzrkHo7LfY/rHKJOEcMA m06p95qcZIrvEeDJl1lHAUxBXyvLd2HokqZCH49fcYPVt/bXhhJLpiYcs4dFSmRh GOBFrx+l3TpkBk1VJCxl/I57eP57W76mJzrR6rlH5l80Vf8ixePGYVG+jmRBCaQe 3SOpDA7Evo7x29o8JpST3iKSHdXP1BHuDJ5e115uKtwpDdP5GFh7z1lwx3lQfYgy i8QYEqOOhTLqO9ubRCgBCPByXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCoAMcOa 4EN81IQ79tv/51KLNs/fMB8GA1UdIwQYMBaAFMXUCftdOqlzqVDJwxzDAVXzST9i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjg4NC8yQTk1MDI1NjY5 NzUxMUVFQjcwQTU1MEVDNEY5QUUwMi94ZFFKLTEwNnFYT3BVTW5ESE1NQlZmTkpQ MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hkUUotMTA2cVhPcFVNbkRITU1CVmZOSlAySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Njg4NC8yQTk1MDI1NjY5NzUxMUVFQjcwQTU1MEVDNEY5QUUwMi94ZFFKLTEwNnFY T3BVTW5ESE1NQlZmTkpQMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaQaSuzHSktzA+ZN6x97qvtWOvMvN0Trxc5+gRCCQAdfWdIKLitRDG cYap2DcKEhHep3hA5ryEQ0XmRRvN607PKuvblY51as7yNDwoau81cZPp1qh+1DBR b0WrgbaeK3lpVHA8vtAJJ6spkzzRLYedmIJ28j5fHJ7WhuPrw8puMh5y5mwc5Fly N/rEIU/0wSJdVj0FF2cOmOCZzGoQJ04+Rfa62Rw5mP0zrjPw3Ld540QFA8iOpCTh 9vnlxCdbpdyCE4EunkW2WByxtTT1UiL3c4xVD79Y3nhRrDMosDX6koWGgCSH+pv+ Lu+V1391WUl+YL09xlYbTJShCDpqAam1 -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:12 2025 by rpki-client