$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft File: xOTw2gEK9YY3zFlihHHpmLckPFI.mft (raw, json) Hash identifier: HCFVa1Do45+yRnIkWkfzpoo8JGZ43z2B7Plud6UHAt4= Subject key identifier: B1:EE:D1:56:27:44:88:A8:AE:42:51:3A:94:FF:9E:49:AD:26:95:CC Authority key identifier: C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 Certificate issuer: /CN=A91D83D0/serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52 Certificate serial: 094A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft Manifest number: 0930 Signing time: Sat 18 Oct 2025 21:21:02 +0000 Manifest this update: Sat 18 Oct 2025 21:21:01 +0000 Manifest next update: Sat 25 Oct 2025 21:21:01 +0000 Files and hashes: 1: xOTw2gEK9YY3zFlihHHpmLckPFI.crl (hash: ujoxgxVWweV/XMf696Ok0u2RAcr8ynC0hqgIvjvgwdc=) 2: 5353EA28781F11EEBA05B17FC4F9AE02.roa (hash: Del+9YrkACA6yrhYJeSPVVuh01l/16gJ82iy69S9BRo=) 3: 863670328FD011EEB6FFC636C4F9AE02.roa (hash: PnqDvM4vjQdsVy80UhznbWoKhp/dlqh33E+GG+RU+dk=) 4: 03706138786411EC8624EB12C4F9AE02.roa (hash: qKXv165pzdK/WBxXfxqKy/V+953i+G1rFbe37yvanHk=) 5: F4E74AA8B99911EF9A0C3B63C4F9AE02.roa (hash: Ci305f1V47fRIRqmqjLy+EIi8DLnLoGCGpVVZ48v10E=) 6: 6A6E4770A10F11EF840C2548C4F9AE02.roa (hash: lvX9qWs0U9FJpaiKhdFBFudNcs3mWD37dbOmEs33Njk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:21:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2378 (0x94a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0, serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52 Validity Not Before: Oct 18 21:21:01 2025 GMT Not After : Oct 25 21:21:01 2025 GMT Subject: CN=68f404be-a5a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:01:08:9d:39:39:a0:2b:9f:fd:a9:99:61:57: 8b:0e:2b:3d:93:a1:ba:ff:aa:b1:c3:5f:7a:84:55: 4c:cf:1f:1d:ea:27:ea:ee:e5:4d:0d:30:77:6a:cd: 3c:f7:f7:28:89:04:83:9e:11:4a:0f:e6:ee:0c:6e: 91:16:e7:b7:76:cc:4a:2c:71:0a:e9:e4:06:56:c2: 50:6f:c5:29:ac:de:27:a1:eb:76:ae:d7:36:e0:25: 63:a9:cc:78:9f:dc:73:20:4f:a5:77:b3:78:57:69: c9:70:93:bf:27:b1:ad:d0:6b:da:05:77:16:2c:55: 47:c1:28:c0:30:29:63:7a:68:f6:ec:65:9b:f4:54: 3c:2b:1d:6d:c0:00:a1:d5:58:be:df:0a:9a:92:5b: 3e:0a:83:25:12:90:51:be:fc:0f:2d:d0:83:9a:16: f4:79:48:64:9e:f3:fe:15:1f:ca:32:29:fa:d1:aa: 38:e9:0d:3b:84:64:b6:a9:b9:87:17:23:b6:f6:37: 3d:fc:1b:06:a4:f4:62:fd:13:e8:ff:fc:05:01:97: fd:5f:16:f3:7c:c6:c0:29:68:c3:e3:fc:5a:cc:08: 95:96:eb:2a:0a:3b:85:ed:16:79:8e:ce:0b:35:e4: 14:ff:bd:71:0f:86:3c:50:9a:c4:c7:78:e4:f8:8d: ef:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:EE:D1:56:27:44:88:A8:AE:42:51:3A:94:FF:9E:49:AD:26:95:CC X509v3 Authority Key Identifier: keyid:C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:68:42:cd:e9:d1:c9:92:c8:91:d9:fc:34:a8:79:89:f1:68: a9:9a:84:b5:98:29:73:d9:1b:ab:84:a3:e0:86:78:08:67:15: f8:fb:ff:09:9c:dd:2b:84:0e:ed:c3:cb:a0:7a:5d:13:9a:75: 84:20:46:db:c5:40:59:8e:1f:0b:05:3b:0b:d2:5e:48:74:0e: 45:0d:52:df:1d:35:73:2f:27:29:12:25:d1:57:42:3e:6f:d6: ea:e7:e8:e3:7c:ef:03:f4:1e:57:89:a6:fb:6e:25:3b:7b:65: dc:cd:52:35:ff:ac:b6:05:cc:e2:7e:0d:e7:b2:cc:7a:c6:b9: b2:ae:3c:75:5b:b1:4f:3c:44:b3:18:7f:11:7d:83:3f:c1:ab: db:8a:e2:c8:7e:e1:e4:9d:d6:2a:29:f6:6b:b6:6c:d7:c8:9d: 54:5a:8d:53:55:7d:80:2f:5e:b5:eb:eb:2b:6a:c7:72:72:7a: 7f:75:53:f8:b7:a9:3d:22:1d:e5:47:eb:e5:4a:ea:a3:5a:60: 03:11:be:e6:4e:d8:80:ab:2b:b2:0c:0b:8c:3c:8e:0b:a2:8d: 93:84:db:8f:a3:75:ee:b6:98:c8:08:70:f5:8e:fd:ba:00:58: 52:b8:c3:46:a3:f7:28:4a:fe:a9:bd:8d:c8:ad:2d:2c:8b:cb: 39:d6:7c:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKEM0RTRGMERBMDEwQUY1ODYzN0NDNTk2Mjg0NzFFOTk4 QjcyNDNDNTIwHhcNMjUxMDE4MjEyMTAxWhcNMjUxMDI1MjEyMTAxWjAYMRYwFAYD VQQDEw02OGY0MDRiZS1hNWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzQEInTk5oCuf/amZYVeLDis9k6G6/6qxw196hFVMzx8d6ifq7uVNDTB3as08 9/coiQSDnhFKD+buDG6RFue3dsxKLHEK6eQGVsJQb8UprN4noet2rtc24CVjqcx4 n9xzIE+ld7N4V2nJcJO/J7Gt0GvaBXcWLFVHwSjAMCljemj27GWb9FQ8Kx1twACh 1Vi+3wqakls+CoMlEpBRvvwPLdCDmhb0eUhknvP+FR/KMin60ao46Q07hGS2qbmH FyO29jc9/BsGpPRi/RPo//wFAZf9XxbzfMbAKWjD4/xazAiVlusqCjuF7RZ5js4L NeQU/71xD4Y8UJrEx3jk+I3vmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLHu0VYn RIiorkJROpT/nkmtJpXMMB8GA1UdIwQYMBaAFMTk8NoBCvWGN8xZYoRx6Zi3JDxS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wQTE2MjA4QUFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi94T1R3MmdFSzlZWTN6RmxpaEhIcG1MY2tQ RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hPVHcyZ0VLOVlZM3pGbGloSEhwbUxja1BGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODNEMC8wQTE2MjA4QUFGQkMxMUVBQTk2MUNCODZDNEY5QUUwMi94T1R3MmdFSzlZ WTN6RmxpaEhIcG1MY2tQRkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmaELN6dHJksiR2fw0qHmJ8WipmoS1mClz2RurhKPghngIZxX4+/8J nN0rhA7tw8ugel0TmnWEIEbbxUBZjh8LBTsL0l5IdA5FDVLfHTVzLycpEiXRV0I+ b9bq5+jjfO8D9B5Xiab7biU7e2XczVI1/6y2Bczifg3nssx6xrmyrjx1W7FPPESz GH8RfYM/wavbiuLIfuHkndYqKfZrtmzXyJ1UWo1TVX2AL1616+srasdycnp/dVP4 t6k9Ih3lR+vlSuqjWmADEb7mTtiAqyuyDAuMPI4Loo2ThNuPo3XutpjICHD1jv26 AFhSuMNGo/coSv6pvY3IrS0si8s51nwH -----END CERTIFICATE-----Generated at Mon Oct 20 04:23:21 2025 by rpki-client