$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft File: XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft (raw, json) Hash identifier: mtIaqTrn/KDA8l2GuJgQgv6Xl2Yq3mzpQROrK2nXCgw= Subject key identifier: D5:49:57:80:DB:38:C1:D6:65:36:77:C2:CA:DE:4C:56:46:B2:56:DA Authority key identifier: 5D:CA:45:28:B9:E4:0C:88:E4:67:A4:3F:DC:12:B7:8F:2B:35:45:E3 Certificate issuer: /CN=A91E4BD2/serialNumber=5DCA4528B9E40C88E467A43FDC12B78F2B3545E3 Certificate serial: 0944 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft Manifest number: 093D Signing time: Sat 18 Oct 2025 21:16:36 +0000 Manifest this update: Sat 18 Oct 2025 21:16:35 +0000 Manifest next update: Sat 25 Oct 2025 21:16:35 +0000 Files and hashes: 1: XcpFKLnkDIjkZ6Q_3BK3jys1ReM.crl (hash: wzDa/6Xk8dH3nnmGbDvv/N/KFT+8BB11XZ9qNI0AS7c=) 2: A862F866AA3111EA9E08C324C4F9AE02.roa (hash: OW41bUAPIGMrqZxgUYQ1U1pF1P2hht2Fk6aRcB2b9ic=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.crl rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:16:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2372 (0x944) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4BD2, serialNumber=5DCA4528B9E40C88E467A43FDC12B78F2B3545E3 Validity Not Before: Oct 18 21:16:35 2025 GMT Not After : Oct 25 21:16:35 2025 GMT Subject: CN=68f403b4-b42a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:72:0d:f5:35:22:63:80:37:0f:ba:ab:70:a6: 56:8c:ba:a2:fd:50:04:ef:57:14:48:d0:27:7b:06: 0a:a0:0e:e1:d0:de:c2:69:a4:34:e7:fd:4a:fa:47: 35:64:38:1c:40:f1:13:41:f8:92:92:be:a9:0b:7d: e0:65:96:9b:d8:b1:05:28:47:9d:c8:ac:b7:25:1d: 01:a6:30:fc:67:70:f8:2c:a6:a0:ce:f0:7c:e6:e4: 1e:a6:ed:2d:d5:74:30:57:c2:9c:f2:7c:f7:f8:fc: 87:ab:cb:74:c5:18:50:73:2e:ff:a9:cb:34:6b:77: fb:9c:ef:36:bd:f9:67:ed:5f:51:42:3b:02:ad:1e: 25:6e:b3:c1:9d:bc:82:51:2a:98:e8:8e:6e:f3:6a: 1b:62:88:18:94:9d:7d:88:bf:79:18:fe:2a:f0:da: 67:c4:dd:0c:46:7a:5b:8a:a2:a8:f6:7e:93:ea:4f: 43:0f:33:49:4b:fe:88:06:2f:73:5c:47:36:f3:c6: c5:9d:24:d6:81:7f:4f:75:4a:1a:69:7e:93:a3:b6: e3:50:86:ae:6d:60:e1:6a:86:3d:2e:a5:5a:24:3f: 39:fa:a1:99:8a:75:cb:e3:34:76:30:52:a7:3f:14: ed:7f:68:91:35:d9:f2:e4:52:1b:ca:ed:20:53:18: 94:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:49:57:80:DB:38:C1:D6:65:36:77:C2:CA:DE:4C:56:46:B2:56:DA X509v3 Authority Key Identifier: keyid:5D:CA:45:28:B9:E4:0C:88:E4:67:A4:3F:DC:12:B7:8F:2B:35:45:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:72:96:7c:57:67:cf:b4:eb:fb:87:79:d2:4d:23:04:b1:02: 9c:6b:1a:12:8f:bd:31:44:80:3b:e4:50:15:4e:99:9d:73:de: e0:97:08:d7:8a:9f:cc:bd:d9:54:72:e4:fe:b9:59:1a:0d:b0: 9f:6c:43:d0:23:88:a2:06:c5:f0:69:2a:03:b7:d2:ea:f2:77: 62:d2:e0:04:96:42:b7:3e:20:6e:42:aa:44:1f:a8:9f:e0:36: 1d:e1:ef:a6:0b:b1:dd:c0:40:8e:73:44:fc:c5:2a:eb:cd:8e: 88:f2:b7:4c:46:89:5f:fc:0d:af:94:e9:92:0d:09:67:bf:a9: 42:04:db:a4:a7:e4:c3:8e:ab:9e:dd:29:14:a9:c3:a1:37:0f: 2d:7c:b3:33:af:75:53:ac:1e:17:1c:67:2d:9c:16:e0:81:1c: ba:fd:13:7a:57:83:24:ab:14:67:72:aa:85:4b:46:8d:f4:c7: 25:da:eb:11:f3:71:04:84:ed:34:0b:bf:07:cd:97:16:d6:42: 07:75:47:6d:48:8f:01:09:e8:fb:d4:20:f9:fb:89:53:ec:ca: 6f:a9:9d:4b:31:f3:87:a3:ce:e8:53:66:af:8e:4a:28:08:d0: 9a:2d:f4:04:9c:c3:cd:34:9a:96:5f:f2:56:5f:58:dc:a8:c6: 3a:33:ac:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRCRDIxMTAvBgNVBAUTKDVEQ0E0NTI4QjlFNDBDODhFNDY3QTQzRkRDMTJCNzhG MkIzNTQ1RTMwHhcNMjUxMDE4MjExNjM1WhcNMjUxMDI1MjExNjM1WjAYMRYwFAYD VQQDEw02OGY0MDNiNC1iNDJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtnIN9TUiY4A3D7qrcKZWjLqi/VAE71cUSNAnewYKoA7h0N7CaaQ05/1K+kc1 ZDgcQPETQfiSkr6pC33gZZab2LEFKEedyKy3JR0BpjD8Z3D4LKagzvB85uQepu0t 1XQwV8Kc8nz3+PyHq8t0xRhQcy7/qcs0a3f7nO82vfln7V9RQjsCrR4lbrPBnbyC USqY6I5u82obYogYlJ19iL95GP4q8NpnxN0MRnpbiqKo9n6T6k9DDzNJS/6IBi9z XEc288bFnSTWgX9PdUoaaX6To7bjUIaubWDhaoY9LqVaJD85+qGZinXL4zR2MFKn PxTtf2iRNdny5FIbyu0gUxiUZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNVJV4Db OMHWZTZ3wsreTFZGslbaMB8GA1UdIwQYMBaAFF3KRSi55AyI5GekP9wSt48rNUXj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEJEMi9GNDBCMTE2QUFB MkYxMUVBOUMyOTU5MUVDNEY5QUUwMi9YY3BGS0xua0RJamtaNlFfM0JLM2p5czFS ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjcEZLTG5rRElqa1o2UV8zQkszanlzMVJlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEJEMi9GNDBCMTE2QUFBMkYxMUVBOUMyOTU5MUVDNEY5QUUwMi9YY3BGS0xua0RJ amtaNlFfM0JLM2p5czFSZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzcpZ8V2fPtOv7h3nSTSMEsQKcaxoSj70xRIA75FAVTpmdc97glwjX ip/MvdlUcuT+uVkaDbCfbEPQI4iiBsXwaSoDt9Lq8ndi0uAElkK3PiBuQqpEH6if 4DYd4e+mC7HdwECOc0T8xSrrzY6I8rdMRolf/A2vlOmSDQlnv6lCBNukp+TDjque 3SkUqcOhNw8tfLMzr3VTrB4XHGctnBbggRy6/RN6V4MkqxRncqqFS0aN9Mcl2usR 83EEhO00C78HzZcW1kIHdUdtSI8BCej71CD5+4lT7MpvqZ1LMfOHo87oU2avjkoo CNCaLfQEnMPNNJqWX/JWX1jcqMY6M6zz -----END CERTIFICATE-----Generated at Mon Oct 20 01:46:29 2025 by rpki-client