$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft File: X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft (raw, json) Hash identifier: kdMjqGtZZlCz6DzuoptF1Accv3n1u2Pkq/2mMrACepA= Subject key identifier: 3F:79:DA:8D:5A:C5:39:A2:2C:D1:00:75:08:C9:04:1A:F0:C5:33:82 Authority key identifier: 5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D Certificate issuer: /CN=A91DF856/serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Certificate serial: 5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft Manifest number: 5E Signing time: Sun 19 Oct 2025 10:28:40 +0000 Manifest this update: Sun 19 Oct 2025 10:28:39 +0000 Manifest next update: Sun 26 Oct 2025 10:28:39 +0000 Files and hashes: 1: X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl (hash: OwzpjrViWVFE6rpQqCPu14us2yZW/w3EP/3koAOpezA=) 2: B245BA601C4311F08254DE40C4F9AE02.roa (hash: cR1hA1Kx4PPiBeW49KPuxZm4E1WoNdgwAMLfYPZP980=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:28:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF856, serialNumber=5F699186A2EBCD45B1FF6A0A4AF60606F3B3D08D Validity Not Before: Oct 19 10:28:39 2025 GMT Not After : Oct 26 10:28:39 2025 GMT Subject: CN=68f4bd58-fbde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:0e:ab:6c:d9:ed:c3:de:80:4c:04:ea:50:5b: 7a:bd:01:ee:1a:3c:79:55:4d:11:59:f2:f2:38:14: b4:b4:4c:f1:ca:d9:72:96:4e:0e:51:34:e9:02:7b: 70:cf:81:fd:21:f9:b5:bd:65:94:39:f2:88:00:7a: 1c:8b:10:5d:c0:36:ab:cc:29:f1:cb:cf:ae:b9:48: 02:df:d2:78:9a:34:5e:21:ad:06:a6:a4:f1:52:2c: 50:44:13:aa:78:ae:8a:01:67:cb:d3:be:14:db:ed: 9d:e7:bf:ab:00:fc:54:b2:ab:ed:4c:f9:c3:6a:87: 9d:09:2f:f4:a9:2a:34:fa:d1:83:74:4a:7a:83:69: fb:8e:c1:e7:8d:6d:09:94:0b:8b:bb:55:c5:db:0c: 35:82:89:bd:a0:0f:a1:04:0d:9c:c2:66:8e:c4:55: 51:53:6b:a1:77:0b:05:43:2f:c3:be:90:c0:c2:6f: 4f:5d:26:8f:a8:bb:53:ac:73:11:ea:80:85:32:36: ac:9c:3c:c8:bf:c3:61:b5:18:3f:bc:b7:00:ed:35: 39:10:7b:24:0a:f8:94:81:ff:2d:06:d8:09:29:6c: 80:31:15:f0:e9:3d:99:67:b2:0b:3c:fd:3e:5f:33: 60:67:e9:26:9f:f1:c6:01:e5:2c:f2:6e:16:f3:a7: 64:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:79:DA:8D:5A:C5:39:A2:2C:D1:00:75:08:C9:04:1A:F0:C5:33:82 X509v3 Authority Key Identifier: keyid:5F:69:91:86:A2:EB:CD:45:B1:FF:6A:0A:4A:F6:06:06:F3:B3:D0:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mRhqLrzUWx_2oKSvYGBvOz0I0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF856/EFF2A0A01C4111F0A9821F3EC4F9AE02/X2mRhqLrzUWx_2oKSvYGBvOz0I0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:a0:5e:96:2b:61:22:5c:34:a0:61:24:a4:f7:f8:70:94:47: 57:e4:e2:f9:0d:b1:11:6f:d5:39:f1:55:05:25:bc:f1:4b:75: 4d:0f:c9:e3:0b:3e:d3:02:e0:22:25:63:5f:11:7b:77:38:63: 4a:89:ca:66:c8:cf:16:c0:23:91:06:05:e8:6e:43:97:a8:aa: 00:7e:f2:c6:db:b6:6a:06:14:20:46:00:12:28:ed:fd:a2:32: ba:80:bd:63:49:98:29:6c:6e:03:f7:ea:99:ad:3d:b6:31:37: dc:76:44:97:30:3f:6c:f8:8e:6d:f7:b7:bd:74:b1:5d:dc:81: 49:ed:d4:22:17:35:38:7d:60:b1:91:b0:cf:ea:ac:80:31:a5: b2:17:1b:97:8d:4a:ed:b7:29:08:aa:2c:be:7b:ce:3e:c9:2b: 1f:80:0b:39:49:f1:53:65:34:c6:db:c8:ce:13:6f:de:e0:15: 2d:cf:a7:34:c9:11:5f:63:80:4c:54:68:db:23:5e:2a:1a:84: d5:98:99:53:8e:51:af:c0:32:b3:19:2b:97:d0:7a:56:91:39: 5b:dc:53:bc:c0:d2:e9:be:e6:54:49:0e:f8:db:00:81:31:8b: 20:e7:8c:8d:e6:4f:e1:61:22:0f:28:c1:9a:20:33:89:34:a0: 1a:d3:b8:0f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE Rjg1NjExMC8GA1UEBRMoNUY2OTkxODZBMkVCQ0Q0NUIxRkY2QTBBNEFGNjA2MDZG M0IzRDA4RDAeFw0yNTEwMTkxMDI4MzlaFw0yNTEwMjYxMDI4MzlaMBgxFjAUBgNV BAMTDTY4ZjRiZDU4LWZiZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8Dqts2e3D3oBMBOpQW3q9Ae4aPHlVTRFZ8vI4FLS0TPHK2XKWTg5RNOkCe3DP gf0h+bW9ZZQ58ogAehyLEF3ANqvMKfHLz665SALf0niaNF4hrQampPFSLFBEE6p4 rooBZ8vTvhTb7Z3nv6sA/FSyq+1M+cNqh50JL/SpKjT60YN0SnqDafuOweeNbQmU C4u7VcXbDDWCib2gD6EEDZzCZo7EVVFTa6F3CwVDL8O+kMDCb09dJo+ou1OscxHq gIUyNqycPMi/w2G1GD+8twDtNTkQeyQK+JSB/y0G2AkpbIAxFfDpPZlnsgs8/T5f M2Bn6Saf8cYB5Szybhbzp2R7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUP3najVrF OaIs0QB1CMkEGvDFM4IwHwYDVR0jBBgwFoAUX2mRhqLrzUWx/2oKSvYGBvOz0I0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURGODU2L0VGRjJBMEEwMUM0 MTExRjBBOTgyMUYzRUM0RjlBRTAyL1gybVJocUxyelVXeF8yb0tTdllHQnZPejBJ MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWDJtUmhxTHJ6VVd4XzJvS1N2WUdCdk96MEkwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURG ODU2L0VGRjJBMEEwMUM0MTExRjBBOTgyMUYzRUM0RjlBRTAyL1gybVJocUxyelVX eF8yb0tTdllHQnZPejBJMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFugXpYrYSJcNKBhJKT3+HCUR1fk4vkNsRFv1TnxVQUlvPFLdU0PyeML PtMC4CIlY18Re3c4Y0qJymbIzxbAI5EGBehuQ5eoqgB+8sbbtmoGFCBGABIo7f2i MrqAvWNJmClsbgP36pmtPbYxN9x2RJcwP2z4jm33t710sV3cgUnt1CIXNTh9YLGR sM/qrIAxpbIXG5eNSu23KQiqLL57zj7JKx+ACzlJ8VNlNMbbyM4Tb97gFS3PpzTJ EV9jgExUaNsjXioahNWYmVOOUa/AMrMZK5fQelaROVvcU7zA0um+5lRJDvjbAIEx iyDnjI3mT+FhIg8owZogM4k0oBrTuA8= -----END CERTIFICATE-----Generated at Mon Oct 20 14:00:41 2025 by rpki-client