$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft File: xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft (raw, json) Hash identifier: ALOtNtS9x5NESUe2CvrtTwLG0UZ4+AEydxs5sFtyHU4= Subject key identifier: 55:65:63:AF:84:15:5E:8E:F1:76:E4:09:0B:73:B9:63:5C:9A:F3:F9 Authority key identifier: C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 Certificate issuer: /CN=A91E3BF2/serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Certificate serial: 02FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft Manifest number: 02F8 Signing time: Sun 19 Oct 2025 03:18:18 +0000 Manifest this update: Sun 19 Oct 2025 03:18:18 +0000 Manifest next update: Sun 26 Oct 2025 03:18:18 +0000 Files and hashes: 1: xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl (hash: KJ5Zyn71AMHgq4mFffBzbpVj8TmMbrq8wsDnTHvHs6E=) 2: 6B7C33C8F6C811ECBDF7DD40C4F9AE02.roa (hash: iVRqxqRDbn6K8sleGw8ykyX5wSW8dSg7Li1MPpVmJsY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:18:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 766 (0x2fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3BF2, serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Validity Not Before: Oct 19 03:18:18 2025 GMT Not After : Oct 26 03:18:18 2025 GMT Subject: CN=68f4587a-3be6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0e:b9:fe:42:99:06:87:e5:c2:57:ce:c3:92: 28:69:eb:d7:72:e2:35:5e:dd:5f:b9:10:8e:12:fb: be:3d:a8:6f:ba:f4:b6:14:66:3e:da:25:3c:b6:d5: 33:d1:25:9e:36:f4:ef:ea:e9:6a:1c:a3:f9:dd:a8: 5c:93:ca:df:6a:ee:20:6f:ba:9e:29:61:42:7f:be: db:b8:66:44:fe:e6:bf:7d:e4:74:7b:6b:3f:d8:5a: 69:52:4f:94:fc:92:2f:24:d0:27:33:d7:d9:5c:89: ef:0e:52:eb:e4:e1:33:2b:32:02:a8:19:18:a1:8f: 63:40:6b:3a:85:51:ac:8d:6e:db:c4:d4:f3:7a:5f: 0c:a4:f4:7f:70:27:e3:be:87:f2:b4:81:90:6c:05: 8c:4d:82:1e:b6:f6:b9:f3:56:a2:13:12:45:3b:f0: fc:9f:b5:66:96:58:10:7e:c5:32:47:13:5d:ff:75: c7:be:ca:90:2f:7e:07:ca:bb:ad:c9:1a:4c:4a:2f: 1c:1c:97:4c:4c:23:44:d4:4a:f6:5b:7f:04:97:54: 02:b1:b3:ab:86:f8:2e:f3:1d:d9:2d:9b:3c:51:34: 0b:a1:3a:2a:94:04:e3:7e:97:03:06:85:15:d8:9a: 06:e1:22:01:b7:3d:fc:e3:0e:7e:f8:c7:78:81:3a: 94:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:65:63:AF:84:15:5E:8E:F1:76:E4:09:0B:73:B9:63:5C:9A:F3:F9 X509v3 Authority Key Identifier: keyid:C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:d1:65:c3:97:0f:e0:da:e1:22:4f:91:70:8c:35:cf:a6:f0: ac:d3:21:b0:ef:26:d1:6b:2c:f6:91:1b:8f:74:ba:d4:93:0a: 02:02:42:4a:6e:8a:92:21:bd:b4:14:9f:94:27:61:05:55:1a: e1:b5:0a:b5:c0:2f:1c:fb:62:3f:02:ee:1a:7d:e5:09:da:83: b3:b9:6e:d0:b6:d6:8d:19:11:80:ea:0c:94:69:03:c4:c5:f2: ff:9a:2e:72:52:81:a7:f7:2d:35:df:30:b8:fe:ac:ca:b1:f9: 61:6d:d8:46:29:8e:21:ee:dc:99:20:91:32:7c:01:c0:55:0f: 87:d6:81:97:74:31:78:f7:24:59:14:8e:dc:d8:39:3a:be:d9: 0b:8f:08:3e:70:3d:6e:db:80:5b:03:82:26:5b:3d:93:a2:9a: 9c:e1:2d:b5:ad:d6:1c:d7:b7:6f:85:34:49:c6:0d:4d:b9:8b: c1:63:06:42:67:ba:d9:6c:fc:11:7e:51:79:eb:15:f8:96:24: 09:69:47:df:5b:b6:60:b8:24:96:c5:db:e1:7f:1e:60:ae:80: 22:6c:61:0f:4c:de:b2:ec:09:5b:de:77:cf:f6:b3:5a:19:47: 7d:86:61:19:17:41:32:5b:3c:21:35:1b:42:53:04:c2:d3:43: 9c:11:9a:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAv4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCRjIxMTAvBgNVBAUTKEM0NzFBNTZFRTk0RjA1QjQzN0MwOUVFRTBGNDQyMDNG QTQ1OTI3MzYwHhcNMjUxMDE5MDMxODE4WhcNMjUxMDI2MDMxODE4WjAYMRYwFAYD VQQDEw02OGY0NTg3YS0zYmU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtw65/kKZBoflwlfOw5IoaevXcuI1Xt1fuRCOEvu+PahvuvS2FGY+2iU8ttUz 0SWeNvTv6ulqHKP53ahck8rfau4gb7qeKWFCf77buGZE/ua/feR0e2s/2FppUk+U /JIvJNAnM9fZXInvDlLr5OEzKzICqBkYoY9jQGs6hVGsjW7bxNTzel8MpPR/cCfj vofytIGQbAWMTYIetva581aiExJFO/D8n7VmllgQfsUyRxNd/3XHvsqQL34Hyrut yRpMSi8cHJdMTCNE1Er2W38El1QCsbOrhvgu8x3ZLZs8UTQLoToqlATjfpcDBoUV 2JoG4SIBtz384w5++Md4gTqUlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFVlY6+E FV6O8XbkCQtzuWNcmvP5MB8GA1UdIwQYMBaAFMRxpW7pTwW0N8Ce7g9EID+kWSc2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0JGMi81MDkwOTZBOEY2 QzMxMUVDODMzQUVGMzlDNEY5QUUwMi94SEdsYnVsUEJiUTN3Sjd1RDBRZ1A2UlpK elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hIR2xidWxQQmJRM3dKN3VEMFFnUDZSWkp6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0JGMi81MDkwOTZBOEY2QzMxMUVDODMzQUVGMzlDNEY5QUUwMi94SEdsYnVsUEJi UTN3Sjd1RDBRZ1A2UlpKelkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB30WXDlw/g2uEiT5FwjDXPpvCs0yGw7ybRayz2kRuPdLrUkwoCAkJK boqSIb20FJ+UJ2EFVRrhtQq1wC8c+2I/Au4afeUJ2oOzuW7QttaNGRGA6gyUaQPE xfL/mi5yUoGn9y013zC4/qzKsflhbdhGKY4h7tyZIJEyfAHAVQ+H1oGXdDF49yRZ FI7c2Dk6vtkLjwg+cD1u24BbA4ImWz2Topqc4S21rdYc17dvhTRJxg1NuYvBYwZC Z7rZbPwRflF56xX4liQJaUffW7ZguCSWxdvhfx5groAibGEPTN6y7Alb3nfP9rNa GUd9hmEZF0EyWzwhNRtCUwTC00OcEZrw -----END CERTIFICATE-----Generated at Mon Oct 20 21:35:56 2025 by rpki-client