$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft File: XcAwMzGJiu_bheTZFABriTdr7-E.mft (raw, json) Hash identifier: IbDe2d0fXRu9pZqKZXfAL1XfQwAYoJzJTu2mlaWs37s= Subject key identifier: 87:45:10:58:77:A5:11:CF:BE:F2:25:A3:EC:63:D4:1D:DA:FE:C9:3D Authority key identifier: 5D:C0:30:33:31:89:8A:EF:DB:85:E4:D9:14:00:6B:89:37:6B:EF:E1 Certificate issuer: /CN=A91E7BD4/serialNumber=5DC0303331898AEFDB85E4D914006B89376BEFE1 Certificate serial: 06AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft Manifest number: 06A5 Signing time: Sat 18 Oct 2025 23:47:43 +0000 Manifest this update: Sat 18 Oct 2025 23:47:43 +0000 Manifest next update: Sat 25 Oct 2025 23:47:43 +0000 Files and hashes: 1: XcAwMzGJiu_bheTZFABriTdr7-E.crl (hash: 5u6t9TMbJQ4GMP6UQnYtlx1YZTIg9QXKf/t594cEsKM=) 2: 81E3F4ACBBDA11ED8FDB4E45C4F9AE02.roa (hash: 7yUDpuvZHp5QBz3hhy/vTUHq3B8un1JwIKUsswRBXgQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.crl rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1711 (0x6af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BD4, serialNumber=5DC0303331898AEFDB85E4D914006B89376BEFE1 Validity Not Before: Oct 18 23:47:43 2025 GMT Not After : Oct 25 23:47:43 2025 GMT Subject: CN=68f4271f-a328 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:af:a2:e2:7c:06:f2:21:f2:44:19:30:09:3d: 9b:e2:f2:00:dc:a7:0a:10:a4:0f:46:3b:05:f1:0b: d2:1d:c9:0f:6f:7c:e8:82:c6:83:cc:87:ad:9b:5f: 07:68:e0:69:d3:72:d6:7f:3b:f2:87:4a:75:d2:e5: 05:94:bd:81:80:30:12:8f:8e:88:f2:55:69:69:f7: 2a:2a:84:23:6a:04:1e:3c:86:d3:6c:80:65:45:13: dd:c8:87:8d:bd:17:0f:ce:a9:d4:b3:e0:c0:a6:ab: 60:24:00:62:a3:19:d7:89:dd:83:5c:4a:1c:6b:b0: 76:0c:8d:ee:06:ca:1e:3b:19:47:bf:3e:57:f6:aa: 0c:eb:19:d8:b9:7b:96:46:9c:68:cf:01:92:6b:8a: 87:0e:6d:b0:96:48:c8:97:14:56:97:49:10:a5:d5: 42:39:85:e6:9f:da:0a:5c:8c:3e:d3:d0:e0:21:a6: 28:37:93:16:67:c0:c7:27:e0:75:ce:38:63:3d:ff: 83:dd:22:9a:60:40:8d:53:12:dd:a4:13:7b:a9:9e: 32:f5:84:b5:2e:89:8a:cb:76:26:ee:8f:8a:03:e1: f0:45:ec:87:7b:cc:09:3d:5b:6d:94:78:29:ba:77: 25:e0:59:68:6c:c1:4e:0d:09:53:7b:ef:be:f6:d4: 6b:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:45:10:58:77:A5:11:CF:BE:F2:25:A3:EC:63:D4:1D:DA:FE:C9:3D X509v3 Authority Key Identifier: keyid:5D:C0:30:33:31:89:8A:EF:DB:85:E4:D9:14:00:6B:89:37:6B:EF:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:0c:ff:d8:fe:b7:75:8f:9a:13:5c:00:e5:2f:6f:7e:65:8f: c5:c2:d6:b5:e1:0e:59:dc:3f:d4:f9:63:56:b1:0c:7d:53:26: 68:be:8b:fb:29:90:3d:aa:0b:66:7f:78:82:0d:79:1e:88:f7: 39:f7:47:22:1e:98:70:7c:00:2a:07:a9:01:7e:d7:6d:16:d8: 20:43:77:90:59:4f:ab:bb:f3:f9:f5:0c:08:28:e5:0a:05:43: 57:2d:df:20:e7:23:6f:d4:f9:e2:6e:2b:70:7e:4e:f6:4b:d8: dd:eb:3a:4f:74:5a:00:54:4a:33:83:b4:a1:16:50:16:e0:30: cb:e2:f6:89:d0:39:03:01:25:5c:13:a3:32:b8:c9:86:dd:fc: 38:99:d7:0b:71:a6:55:19:6c:2e:94:a7:ba:aa:83:f0:71:61: f4:79:4f:72:a3:7c:33:8d:45:e1:f2:84:88:8a:d4:31:61:fb: b8:e8:32:e0:39:ac:f7:ec:9e:9c:3e:f1:40:c8:72:68:28:e3: 64:69:4d:bb:33:eb:7b:a8:15:7c:7c:e4:32:47:c6:73:15:79: 77:e8:46:4d:f2:fa:3e:e1:de:ce:57:f7:d4:0f:a8:7e:7f:41: 2c:3e:1e:0e:fd:a2:24:da:d0:7b:a0:12:88:1f:f0:96:3d:b2: cf:5c:a2:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBq8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCRDQxMTAvBgNVBAUTKDVEQzAzMDMzMzE4OThBRUZEQjg1RTREOTE0MDA2Qjg5 Mzc2QkVGRTEwHhcNMjUxMDE4MjM0NzQzWhcNMjUxMDI1MjM0NzQzWjAYMRYwFAYD VQQDEw02OGY0MjcxZi1hMzI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA26+i4nwG8iHyRBkwCT2b4vIA3KcKEKQPRjsF8QvSHckPb3zogsaDzIetm18H aOBp03LWfzvyh0p10uUFlL2BgDASj46I8lVpafcqKoQjagQePIbTbIBlRRPdyIeN vRcPzqnUs+DApqtgJABioxnXid2DXEoca7B2DI3uBsoeOxlHvz5X9qoM6xnYuXuW RpxozwGSa4qHDm2wlkjIlxRWl0kQpdVCOYXmn9oKXIw+09DgIaYoN5MWZ8DHJ+B1 zjhjPf+D3SKaYECNUxLdpBN7qZ4y9YS1LomKy3Ym7o+KA+HwReyHe8wJPVttlHgp uncl4FlobMFODQlTe+++9tRrYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIdFEFh3 pRHPvvIlo+xj1B3a/sk9MB8GA1UdIwQYMBaAFF3AMDMxiYrv24Xk2RQAa4k3a+/h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JENC80RTg3QTQ2QTg2 QjExMUVCQjhCRTIxN0NDNEY5QUUwMi9YY0F3TXpHSml1X2JoZVRaRkFCcmlUZHI3 LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjQXdNekdKaXVfYmhlVFpGQUJyaVRkcjctRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JENC80RTg3QTQ2QTg2QjExMUVCQjhCRTIxN0NDNEY5QUUwMi9YY0F3TXpHSml1 X2JoZVRaRkFCcmlUZHI3LUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzDP/Y/rd1j5oTXADlL29+ZY/Fwta14Q5Z3D/U+WNWsQx9UyZovov7 KZA9qgtmf3iCDXkeiPc590ciHphwfAAqB6kBftdtFtggQ3eQWU+ru/P59QwIKOUK BUNXLd8g5yNv1Pnibitwfk72S9jd6zpPdFoAVEozg7ShFlAW4DDL4vaJ0DkDASVc E6MyuMmG3fw4mdcLcaZVGWwulKe6qoPwcWH0eU9yo3wzjUXh8oSIitQxYfu46DLg Oaz37J6cPvFAyHJoKONkaU27M+t7qBV8fOQyR8ZzFXl36EZN8vo+4d7OV/fUD6h+ f0EsPh4O/aIk2tB7oBKIH/CWPbLPXKId -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:39 2025 by rpki-client