$ rpki-client -vvf rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft File: XHIqJhQciPfNQPObN0raf7wfmx8.mft (raw, json) Hash identifier: FhzkKd+7lXMxvOgIW4uC6UHRMMSfEcoZs6IkOk7pcNY= Subject key identifier: 30:39:7B:30:C7:22:7B:28:4D:C0:4C:0A:53:D5:22:B2:08:93:D9:9D Authority key identifier: 5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F Certificate issuer: /CN=A91D824A/serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Certificate serial: EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft Manifest number: E5 Signing time: Sun 19 Oct 2025 08:31:20 +0000 Manifest this update: Sun 19 Oct 2025 08:31:19 +0000 Manifest next update: Sun 26 Oct 2025 08:31:19 +0000 Files and hashes: 1: XHIqJhQciPfNQPObN0raf7wfmx8.crl (hash: d/1sckFo34CLA5u9FvOTxY2RptjilmjbYNA2s5eEl6M=) 2: D956F03AAB0211F083CD7E11C4F9AE02.roa (hash: qeoKnKi/L1qnb3FQ608yL9sJPnPOyw3KIsMI+MrC40Y=) 3: F0FCC9ECABF411F0B9E4F837C4F9AE02.roa (hash: kBaQGDaRm957tvzLCzGaAnm3IbVtZ/CNyACT06yHE1Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:31:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 236 (0xec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D824A, serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Validity Not Before: Oct 19 08:31:19 2025 GMT Not After : Oct 26 08:31:19 2025 GMT Subject: CN=68f4a1d8-3150 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e4:a5:fb:10:e7:e2:71:18:8e:c6:02:65:e6: b4:ce:7f:b7:ba:b9:e5:aa:af:64:b9:e6:a2:32:12: b1:19:40:7f:9f:64:ba:89:b1:cc:0f:d1:bf:88:de: 01:41:59:df:10:ac:53:8c:2b:ec:67:25:19:ee:1a: ad:8e:20:01:85:5e:90:be:59:43:5d:6c:e2:ff:45: f0:36:36:61:cb:8a:3c:ed:4c:72:bd:7f:6f:15:b2: 75:36:90:b3:99:60:69:92:25:81:8e:ee:86:2b:b0: 60:4d:7f:51:ec:87:c0:21:0c:84:fb:21:2e:ae:20: 40:9e:f4:e9:ae:a9:9f:2f:1e:49:eb:a5:00:0d:db: 0a:65:94:18:22:72:17:66:3e:3d:4f:d6:4a:12:7a: 86:1f:ce:3a:63:92:6c:23:55:8d:e7:cc:9f:d0:fe: df:07:2d:78:e3:cf:ee:19:b3:6c:17:66:7b:7c:0c: 77:9c:e1:ad:5b:23:a7:f1:4b:9c:d2:40:bd:92:76: 38:65:da:b7:0d:d7:d3:54:10:fc:ae:8e:da:02:63: db:bd:bb:33:58:94:8a:06:be:cf:8b:e3:26:0b:8c: 1c:e2:be:4b:08:93:62:d6:f1:63:f5:f2:44:0b:59: eb:a5:fa:13:4b:8a:2b:53:ae:31:bf:a8:2b:eb:90: 53:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:39:7B:30:C7:22:7B:28:4D:C0:4C:0A:53:D5:22:B2:08:93:D9:9D X509v3 Authority Key Identifier: keyid:5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:f7:bb:06:14:a1:ca:bf:05:8d:43:25:3f:cc:2a:5f:e6:e2: 13:43:85:2f:74:53:f7:8f:bc:0e:ba:9b:ab:b4:16:60:38:69: 37:76:d0:89:90:bd:d8:68:32:b8:3e:99:3d:d5:30:c8:c7:01: 5a:d9:5b:80:bc:73:06:c4:a8:fd:e7:2d:0e:bc:b6:50:77:61: d7:7a:03:08:03:28:ce:67:f7:55:42:fd:91:5f:47:c1:da:74: 51:61:74:0b:5e:d1:ee:fd:3f:ec:d0:f3:8c:77:5c:12:f1:44: 8f:4d:66:c7:5d:29:4e:b8:77:b8:ea:10:a8:9b:83:ef:50:87: 44:62:5c:5b:c3:3d:d1:c2:aa:bf:29:c2:a9:67:b4:84:f2:bd: 23:96:4e:68:f8:10:a2:c8:84:8e:0c:da:4d:9b:f4:e0:71:5c: 02:62:81:9b:c4:cd:84:30:3d:ec:89:72:f2:40:44:5b:34:90: e0:d2:90:de:54:05:c2:d5:94:a7:c4:86:e3:49:94:9f:b9:9e: c0:0b:c8:bb:6f:a0:76:9c:e8:3e:40:0f:0b:d0:b0:0f:18:65: d3:b0:74:b4:bd:8d:d3:ec:7b:33:85:3e:18:43:14:03:e5:27: 74:9e:55:c1:a1:5a:12:62:b1:87:b5:5f:59:30:ae:37:1e:22: f8:3c:1a:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgyNEExMTAvBgNVBAUTKDVDNzIyQTI2MTQxQzg4RjdDRDQwRjM5QjM3NEFEQTdG QkMxRjlCMUYwHhcNMjUxMDE5MDgzMTE5WhcNMjUxMDI2MDgzMTE5WjAYMRYwFAYD VQQDEw02OGY0YTFkOC0zMTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzeSl+xDn4nEYjsYCZea0zn+3urnlqq9kueaiMhKxGUB/n2S6ibHMD9G/iN4B QVnfEKxTjCvsZyUZ7hqtjiABhV6QvllDXWzi/0XwNjZhy4o87UxyvX9vFbJ1NpCz mWBpkiWBju6GK7BgTX9R7IfAIQyE+yEuriBAnvTprqmfLx5J66UADdsKZZQYInIX Zj49T9ZKEnqGH846Y5JsI1WN58yf0P7fBy1448/uGbNsF2Z7fAx3nOGtWyOn8Uuc 0kC9knY4Zdq3DdfTVBD8ro7aAmPbvbszWJSKBr7Pi+MmC4wc4r5LCJNi1vFj9fJE C1nrpfoTS4orU64xv6gr65BTiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDA5ezDH InsoTcBMClPVIrIIk9mdMB8GA1UdIwQYMBaAFFxyKiYUHIj3zUDzmzdK2n+8H5sf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODI0QS80QURGMzNGQzVC OUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQZk5RUE9iTjByYWY3d2Zt eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hISXFKaFFjaVBmTlFQT2JOMHJhZjd3Zm14OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODI0QS80QURGMzNGQzVCOUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQ Zk5RUE9iTjByYWY3d2ZteDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBs97sGFKHKvwWNQyU/zCpf5uITQ4UvdFP3j7wOupurtBZgOGk3dtCJ kL3YaDK4Ppk91TDIxwFa2VuAvHMGxKj95y0OvLZQd2HXegMIAyjOZ/dVQv2RX0fB 2nRRYXQLXtHu/T/s0POMd1wS8USPTWbHXSlOuHe46hCom4PvUIdEYlxbwz3Rwqq/ KcKpZ7SE8r0jlk5o+BCiyISODNpNm/TgcVwCYoGbxM2EMD3siXLyQERbNJDg0pDe VAXC1ZSnxIbjSZSfuZ7AC8i7b6B2nOg+QA8L0LAPGGXTsHS0vY3T7HszhT4YQxQD 5Sd0nlXBoVoSYrGHtV9ZMK43HiL4PBrr -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:56 2025 by rpki-client