$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6E96/7B9D3DEA385C11EC9C258778C4F9AE02/xVznjEX0hWCLgkNgYAPYCooWzNY.mft File: xVznjEX0hWCLgkNgYAPYCooWzNY.mft (raw, json) Hash identifier: J5WxSY9Am1yhdl++Ax7c0h/j4YTk7cAZtvWEhgqoPuI= Subject key identifier: 60:6A:84:D8:21:20:5E:32:0D:84:94:B7:24:0B:57:AF:77:80:49:09 Authority key identifier: C5:5C:E7:8C:45:F4:85:60:8B:82:43:60:60:03:D8:0A:8A:16:CC:D6 Certificate issuer: /CN=A91E6E96/serialNumber=C55CE78C45F485608B8243606003D80A8A16CCD6 Certificate serial: 04E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVznjEX0hWCLgkNgYAPYCooWzNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6E96/7B9D3DEA385C11EC9C258778C4F9AE02/xVznjEX0hWCLgkNgYAPYCooWzNY.mft Manifest number: 04E1 Signing time: Sun 19 Oct 2025 01:33:56 +0000 Manifest this update: Sun 19 Oct 2025 01:33:56 +0000 Manifest next update: Sun 26 Oct 2025 01:33:56 +0000 Files and hashes: 1: xVznjEX0hWCLgkNgYAPYCooWzNY.crl (hash: C+dnR9vpgsjJdzwI0l3OuraX4CSK830akBBEsYfxVe8=) 2: 64DE26F6386011EC83DC2E23C4F9AE02.roa (hash: DMlimdEM70tJoVk9wmrJUFu8IwTQ/ffrCAdf/ZcjEXY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6E96/7B9D3DEA385C11EC9C258778C4F9AE02/xVznjEX0hWCLgkNgYAPYCooWzNY.crl rsync://rpki.apnic.net/member_repository/A91E6E96/7B9D3DEA385C11EC9C258778C4F9AE02/xVznjEX0hWCLgkNgYAPYCooWzNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVznjEX0hWCLgkNgYAPYCooWzNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:33:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1254 (0x4e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6E96, serialNumber=C55CE78C45F485608B8243606003D80A8A16CCD6 Validity Not Before: Oct 19 01:33:56 2025 GMT Not After : Oct 26 01:33:56 2025 GMT Subject: CN=68f44004-6bf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:45:cc:55:cf:6c:14:70:9e:cf:bf:dd:b1:a5: 65:37:e2:29:d0:ab:f5:99:2d:11:bf:2e:3a:8c:49: 1e:61:41:9e:8e:30:e1:1b:8d:b9:55:20:d5:c1:9e: f8:3a:05:32:8d:d7:28:70:3f:bf:4f:49:35:62:79: b9:57:dd:6a:5a:87:fb:d8:88:be:da:47:93:93:ad: 3d:57:5a:e5:0f:af:df:3a:d0:07:fd:46:b8:df:b1: 29:28:dc:ac:6f:40:a0:3f:e6:08:94:90:f4:2f:c6: 7e:38:f4:25:50:1d:38:c9:12:85:30:07:0f:f5:94: fb:ec:fd:44:00:52:cd:e7:44:ff:9c:32:61:d0:e9: 97:9d:07:0e:8c:a7:89:fd:61:55:ba:2e:d5:e5:43: 88:e3:36:5e:6d:4b:ce:66:f2:f9:d1:e4:f1:75:8d: 88:ee:ea:52:31:e7:1f:90:9f:1b:23:e6:19:76:ca: 1b:51:bf:8f:d6:80:05:be:fb:25:0d:42:b7:b2:2d: 9c:04:b3:80:90:8d:3d:13:81:1a:cf:d9:34:bd:4a: e2:2f:17:d2:55:82:95:bf:df:56:00:98:1f:36:14: 85:31:e5:43:58:d1:e1:0b:d1:3b:9f:2b:60:5e:d6: ca:6a:94:0a:5f:24:c0:c1:64:fb:77:ad:f7:72:1c: 72:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:6A:84:D8:21:20:5E:32:0D:84:94:B7:24:0B:57:AF:77:80:49:09 X509v3 Authority Key Identifier: keyid:C5:5C:E7:8C:45:F4:85:60:8B:82:43:60:60:03:D8:0A:8A:16:CC:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6E96/7B9D3DEA385C11EC9C258778C4F9AE02/xVznjEX0hWCLgkNgYAPYCooWzNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVznjEX0hWCLgkNgYAPYCooWzNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6E96/7B9D3DEA385C11EC9C258778C4F9AE02/xVznjEX0hWCLgkNgYAPYCooWzNY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:41:5f:0a:05:25:16:8b:dd:e4:43:7d:08:e5:1b:27:c2:ef: e1:61:42:92:c5:a5:38:b6:d3:06:e4:7f:83:16:29:72:ce:f6: e1:4c:c3:90:4f:20:71:32:24:e5:27:be:bf:29:7e:25:68:a0: 28:30:f1:b6:6e:f7:84:c6:04:54:a6:09:83:86:ba:97:67:16: 87:66:fd:c0:6c:d7:4c:66:79:ef:54:0f:4f:59:c1:17:21:83: d5:70:d5:64:a3:07:51:3a:7d:cb:43:31:3a:a1:9a:4f:e2:41: 2a:9e:5b:be:2b:de:b8:f2:a1:18:ec:50:63:1c:c3:4d:fa:ae: ef:c4:9f:10:01:d2:38:7b:2b:eb:0e:80:22:2c:5d:2d:0b:d0: 8e:9f:0a:69:4e:08:d0:ff:86:b4:89:5d:48:f7:41:19:ae:d6: 23:79:44:71:7c:62:4f:45:85:d3:34:e3:85:82:14:d2:a6:23: 22:9f:a3:57:f9:bb:4e:b5:7c:a6:60:f9:39:25:9a:0d:72:17: 02:45:db:ec:43:8d:3e:cc:cf:28:c8:45:15:36:88:de:4b:9d: 24:10:7c:e1:9c:ac:07:e7:8a:cb:ba:78:35:1f:42:c5:bd:67: 6c:6e:e0:d4:ce:aa:9a:9e:3d:f2:70:96:73:9e:ac:9d:fc:9a: 89:fb:93:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZFOTYxMTAvBgNVBAUTKEM1NUNFNzhDNDVGNDg1NjA4QjgyNDM2MDYwMDNEODBB OEExNkNDRDYwHhcNMjUxMDE5MDEzMzU2WhcNMjUxMDI2MDEzMzU2WjAYMRYwFAYD VQQDEw02OGY0NDAwNC02YmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt0XMVc9sFHCez7/dsaVlN+Ip0Kv1mS0Rvy46jEkeYUGejjDhG425VSDVwZ74 OgUyjdcocD+/T0k1Ynm5V91qWof72Ii+2keTk609V1rlD6/fOtAH/Ua437EpKNys b0CgP+YIlJD0L8Z+OPQlUB04yRKFMAcP9ZT77P1EAFLN50T/nDJh0OmXnQcOjKeJ /WFVui7V5UOI4zZebUvOZvL50eTxdY2I7upSMecfkJ8bI+YZdsobUb+P1oAFvvsl DUK3si2cBLOAkI09E4Eaz9k0vUriLxfSVYKVv99WAJgfNhSFMeVDWNHhC9E7nytg XtbKapQKXyTAwWT7d633chxy8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGBqhNgh IF4yDYSUtyQLV693gEkJMB8GA1UdIwQYMBaAFMVc54xF9IVgi4JDYGAD2AqKFszW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkU5Ni83QjlEM0RFQTM4 NUMxMUVDOUMyNTg3NzhDNEY5QUUwMi94VnpuakVYMGhXQ0xna05nWUFQWUNvb1d6 TlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hWem5qRVgwaFdDTGdrTmdZQVBZQ29vV3pOWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkU5Ni83QjlEM0RFQTM4NUMxMUVDOUMyNTg3NzhDNEY5QUUwMi94VnpuakVYMGhX Q0xna05nWUFQWUNvb1d6TlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAQV8KBSUWi93kQ30I5Rsnwu/hYUKSxaU4ttMG5H+DFilyzvbhTMOQ TyBxMiTlJ76/KX4laKAoMPG2bveExgRUpgmDhrqXZxaHZv3AbNdMZnnvVA9PWcEX IYPVcNVkowdROn3LQzE6oZpP4kEqnlu+K9648qEY7FBjHMNN+q7vxJ8QAdI4eyvr DoAiLF0tC9COnwppTgjQ/4a0iV1I90EZrtYjeURxfGJPRYXTNOOFghTSpiMin6NX +btOtXymYPk5JZoNchcCRdvsQ40+zM8oyEUVNojeS50kEHzhnKwH54rLung1H0LF vWdsbuDUzqqanj3ycJZznqyd/JqJ+5OY -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:29 2025 by rpki-client