$ rpki-client -vvf rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft File: XDlbosoKv2WIhyaHTHgktpt4mZU.mft (raw, json) Hash identifier: xyPZ4kFQ8v/Hy5JAxtOA5KCk0sIOvfIuZWnmNwGaU74= Subject key identifier: 48:C5:B7:02:3A:19:13:52:C1:A1:07:4A:99:54:6C:E3:06:24:C0:1E Authority key identifier: 5C:39:5B:A2:CA:0A:BF:65:88:87:26:87:4C:78:24:B6:9B:78:99:95 Certificate issuer: /CN=A91E66E5/serialNumber=5C395BA2CA0ABF65888726874C7824B69B789995 Certificate serial: 0E8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft Manifest number: 0E82 Signing time: Sat 18 Oct 2025 18:20:58 +0000 Manifest this update: Sat 18 Oct 2025 18:20:57 +0000 Manifest next update: Sat 25 Oct 2025 18:20:57 +0000 Files and hashes: 1: XDlbosoKv2WIhyaHTHgktpt4mZU.crl (hash: uTzXWFltJ0i56q8idpKmg/lX0cJ7F/LeEVLwqvmHLBU=) 2: AECDA1B0448F11EDACC30815C4F9AE02.roa (hash: xirIMjuaHIPZj6jpdJVKaFKfHlsVW3gI4qvEhU2Je88=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.crl rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:20:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3727 (0xe8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E66E5, serialNumber=5C395BA2CA0ABF65888726874C7824B69B789995 Validity Not Before: Oct 18 18:20:57 2025 GMT Not After : Oct 25 18:20:57 2025 GMT Subject: CN=68f3da8a-00be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:b1:1c:02:9b:b6:e4:b2:44:9d:eb:6b:97:31: bb:4b:65:16:ae:c3:0d:43:4a:a9:16:67:04:7a:bc: c6:2d:6c:a9:0b:6b:22:76:fd:b8:f9:d1:1c:6c:a9: 4a:97:18:86:fe:d6:9c:ab:e7:34:c1:d6:0c:16:90: ce:ae:74:54:02:9d:c1:8a:f4:d7:56:ec:d1:bc:21: a3:a7:78:70:b7:c5:c6:96:67:7a:9d:b5:03:d3:d2: b3:a0:4a:e3:b1:8b:7b:3c:10:dc:0a:3b:d2:9e:2f: b0:81:05:98:d3:3c:bf:2b:45:1d:61:97:b2:f4:ad: 54:ce:5a:99:63:4b:48:9f:47:de:24:df:73:cc:c6: 7a:b6:2b:85:7e:19:8f:54:57:34:00:25:ab:1e:e2: a8:3f:aa:2f:6f:1b:e1:99:d6:b8:6a:86:3e:b7:e1: 33:8e:a6:f0:d1:a8:39:1d:3c:50:f0:f3:6e:e8:d3: 1e:06:2e:fc:a1:d7:d8:0a:12:15:a7:ae:0e:7f:40: 9d:52:16:0f:05:e5:6a:b9:a6:fa:4b:d3:25:b4:99: 5d:1f:e2:6f:3e:4b:fb:7d:94:72:74:9b:72:1a:c0: 9c:44:0e:1c:c8:8d:26:36:c1:84:b2:7f:6e:7f:ac: 20:1e:79:68:6a:5c:e9:c4:b7:50:de:39:f8:32:3e: 06:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:C5:B7:02:3A:19:13:52:C1:A1:07:4A:99:54:6C:E3:06:24:C0:1E X509v3 Authority Key Identifier: keyid:5C:39:5B:A2:CA:0A:BF:65:88:87:26:87:4C:78:24:B6:9B:78:99:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:05:eb:d7:13:61:1a:01:76:9f:42:57:b0:f0:c7:c0:bd:c6: 21:42:9f:d0:13:3c:79:31:1e:43:36:44:3e:4b:c3:5d:fa:14: 30:00:c7:bf:4d:25:e3:6f:d7:ff:6a:a7:65:31:de:32:bf:fe: 21:9f:9f:ed:af:70:59:56:2b:38:59:d7:57:5b:a6:5c:dd:1b: 77:71:bf:ec:5a:69:3d:13:a2:a5:2e:0b:72:83:32:69:ed:d5: 56:15:d6:e1:5f:96:8a:bc:05:a6:a8:ca:02:9f:01:bb:2e:57: 3e:b5:e0:ff:ce:0c:e2:09:30:ee:be:91:2d:28:6d:48:2f:73: 56:c6:f6:ce:e0:5b:f1:b9:25:92:6a:91:5f:8b:8a:49:3e:e2: 62:6c:f3:dd:06:0f:d9:de:c8:6e:ac:07:d0:2b:d3:ca:91:08: 27:72:20:27:23:13:a9:45:8e:e6:8d:d8:5a:80:73:5a:d4:4a: 79:96:60:17:0b:c1:81:55:93:98:c5:80:cb:68:c2:1c:ab:36: f5:21:6c:03:93:e6:0c:33:20:7f:21:d1:8b:6f:ad:64:ae:dc: 44:f9:d4:36:19:dc:53:4f:78:99:f9:5e:09:36:40:4c:d3:e3: aa:6c:52:1c:3d:69:07:95:e2:26:00:af:89:08:e2:84:96:fd: ab:70:b3:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY2RTUxMTAvBgNVBAUTKDVDMzk1QkEyQ0EwQUJGNjU4ODg3MjY4NzRDNzgyNEI2 OUI3ODk5OTUwHhcNMjUxMDE4MTgyMDU3WhcNMjUxMDI1MTgyMDU3WjAYMRYwFAYD VQQDEw02OGYzZGE4YS0wMGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmrEcApu25LJEnetrlzG7S2UWrsMNQ0qpFmcEerzGLWypC2sidv24+dEcbKlK lxiG/tacq+c0wdYMFpDOrnRUAp3BivTXVuzRvCGjp3hwt8XGlmd6nbUD09KzoErj sYt7PBDcCjvSni+wgQWY0zy/K0UdYZey9K1UzlqZY0tIn0feJN9zzMZ6tiuFfhmP VFc0ACWrHuKoP6ovbxvhmda4aoY+t+Ezjqbw0ag5HTxQ8PNu6NMeBi78odfYChIV p64Of0CdUhYPBeVquab6S9MltJldH+JvPkv7fZRydJtyGsCcRA4cyI0mNsGEsn9u f6wgHnloalzpxLdQ3jn4Mj4GZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEjFtwI6 GRNSwaEHSplUbOMGJMAeMB8GA1UdIwQYMBaAFFw5W6LKCr9liIcmh0x4JLabeJmV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjZFNS81NjQzMDU4NkEy NzUxMUU5QTc0RDRFODJDNEY5QUUwMi9YRGxib3NvS3YyV0loeWFIVEhna3RwdDRt WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEbGJvc29LdjJXSWh5YUhUSGdrdHB0NG1aVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjZFNS81NjQzMDU4NkEyNzUxMUU5QTc0RDRFODJDNEY5QUUwMi9YRGxib3NvS3Yy V0loeWFIVEhna3RwdDRtWlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoBevXE2EaAXafQlew8MfAvcYhQp/QEzx5MR5DNkQ+S8Nd+hQwAMe/ TSXjb9f/aqdlMd4yv/4hn5/tr3BZVis4WddXW6Zc3Rt3cb/sWmk9E6KlLgtygzJp 7dVWFdbhX5aKvAWmqMoCnwG7Llc+teD/zgziCTDuvpEtKG1IL3NWxvbO4FvxuSWS apFfi4pJPuJibPPdBg/Z3shurAfQK9PKkQgnciAnIxOpRY7mjdhagHNa1Ep5lmAX C8GBVZOYxYDLaMIcqzb1IWwDk+YMMyB/IdGLb61krtxE+dQ2GdxTT3iZ+V4JNkBM 0+OqbFIcPWkHleImAK+JCOKElv2rcLM0 -----END CERTIFICATE-----Generated at Mon Oct 20 00:12:31 2025 by rpki-client