$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft File: xIKbbAf9gE3wklz_wWHGcCgHoCY.mft (raw, json) Hash identifier: KB2HyfM5m4D/pp+Np1hbducfQ1MOsHsKRlNRQlEmIps= Subject key identifier: 42:1A:85:AC:BF:C6:60:EB:BB:9A:B2:8C:93:72:12:6C:DE:50:5B:3F Authority key identifier: C4:82:9B:6C:07:FD:80:4D:F0:92:5C:FF:C1:61:C6:70:28:07:A0:26 Certificate issuer: /CN=A91E7E45/serialNumber=C4829B6C07FD804DF0925CFFC161C6702807A026 Certificate serial: 0A53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft Manifest number: 0A1D Signing time: Sat 18 Oct 2025 20:52:12 +0000 Manifest this update: Sat 18 Oct 2025 20:52:11 +0000 Manifest next update: Sat 25 Oct 2025 20:52:11 +0000 Files and hashes: 1: xIKbbAf9gE3wklz_wWHGcCgHoCY.crl (hash: Axe6oVNDp4nAPEqwUWbEhmqtQU6NNenpCUy8qMMyWs0=) 2: 7A976A4E0A7011F0AA901820C4F9AE02.roa (hash: fT5I6I+PgWW4dacN3a4Ms0RKDB8N3MNCREMj8FDesrg=) 3: 0FD437CAC11811EE8328EF7AC4F9AE02.roa (hash: 2Dd7cd8I4OSARGKZ0mccoyZW6iVZIc9ObRTGe4O/Dcc=) 4: 9406C1209FDB11EDB88C5662C4F9AE02.roa (hash: NOfiYVkjVgVKJdndF7rjEsZWLBXmxcXaA+rDg1JFfcI=) 5: E8137EDEA29011EAA7A47878C4F9AE02.roa (hash: eb8Dxmgs1pJ56B+p/g4fWelI2bfJeXR9VvaW0O1EVCY=) 6: FBA017C0B26F11EF9B327759C4F9AE02.roa (hash: Fh5T2BpUHXj8z7zvCSIDzf9GCkAnUEieH5BE04K3ZeI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.crl rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:52:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2643 (0xa53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7E45, serialNumber=C4829B6C07FD804DF0925CFFC161C6702807A026 Validity Not Before: Oct 18 20:52:11 2025 GMT Not After : Oct 25 20:52:11 2025 GMT Subject: CN=68f3fdfb-6efa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:07:9a:a9:de:35:ca:30:c4:8d:c8:dd:11:e7: 36:94:0c:4b:65:b5:0f:b6:aa:70:a4:66:21:3f:12: 01:3d:1a:6c:11:e0:82:80:46:5e:36:51:8f:c3:d7: b5:5d:d5:32:da:21:b7:0e:c3:2c:ca:ef:a9:ce:db: 8e:f3:f6:b1:6f:b4:6e:80:8c:85:cf:91:6d:fc:61: 19:d6:fa:4a:72:1e:fa:65:a6:f7:b2:4a:f2:5c:d8: ff:24:eb:e0:19:37:a3:21:80:9a:cb:e9:08:54:17: 8a:b6:1d:57:26:49:44:fd:73:5d:09:ff:c5:97:40: 73:90:ed:a7:ca:89:cd:63:38:b9:08:c7:0b:44:02: 75:3d:b7:9b:40:d1:f5:0e:73:9e:bd:0f:94:c1:d0: d2:ef:e2:50:a4:cd:6e:3a:ee:89:b5:ca:8b:06:04: 0a:f2:89:68:82:cc:c7:e8:47:b9:13:a0:6f:bd:c1: 72:6a:ad:c9:07:58:a6:38:ce:0c:73:fd:75:05:1f: ac:07:ee:b7:42:f1:4f:98:ab:79:ad:3f:ad:79:ee: e1:32:50:b6:84:6b:aa:e0:a7:4d:df:1f:ea:a5:aa: db:2f:77:46:f6:b7:42:8f:ca:b5:76:ec:e3:b5:10: 40:cf:e8:8b:5c:9a:62:87:6e:3b:7d:0e:9c:7c:69: b1:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:1A:85:AC:BF:C6:60:EB:BB:9A:B2:8C:93:72:12:6C:DE:50:5B:3F X509v3 Authority Key Identifier: keyid:C4:82:9B:6C:07:FD:80:4D:F0:92:5C:FF:C1:61:C6:70:28:07:A0:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:fc:ac:a6:33:cf:d6:be:fe:e3:36:65:4b:66:6a:0c:68:fe: 8e:00:15:d0:a4:04:2e:53:d7:7d:99:01:10:fd:0d:f2:65:c7: 2d:da:db:a6:26:d9:8b:4b:5a:d5:5c:76:14:50:98:d8:1f:e1: fe:7d:0b:f3:0b:ed:7d:8b:d0:e6:c8:01:2c:1a:2d:07:2f:10: 81:47:bb:4c:db:a8:be:a6:31:d8:45:44:19:32:a9:2f:6a:f9: 01:4c:63:27:9d:dc:68:a4:87:3d:50:af:fc:4c:9b:7a:30:27: 5f:d9:2f:0e:e7:e4:49:ce:43:46:2b:f1:39:f4:e4:e3:93:55: 06:27:3c:34:ee:76:db:59:99:ec:ab:76:fa:21:c5:2b:8a:22: 40:32:e6:b7:41:bf:1c:a5:f4:ee:e7:c0:9a:76:3c:db:2c:77: 4a:54:41:43:fb:8a:75:76:24:9e:fb:50:f6:de:b2:bd:02:38: ed:a8:cb:06:7d:d6:52:b5:4a:a3:28:03:f4:bd:8d:bc:97:28: 3f:73:c8:08:35:ca:1f:8d:2b:03:97:be:c9:30:b1:16:dc:c7: b9:5f:9f:d5:e0:5e:1e:e4:45:a5:6e:0d:82:72:68:b2:63:1f: 4e:46:3e:94:92:12:7c:f0:f2:23:1d:53:83:ee:e4:11:98:36: b7:80:ad:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdFNDUxMTAvBgNVBAUTKEM0ODI5QjZDMDdGRDgwNERGMDkyNUNGRkMxNjFDNjcw MjgwN0EwMjYwHhcNMjUxMDE4MjA1MjExWhcNMjUxMDI1MjA1MjExWjAYMRYwFAYD VQQDEw02OGYzZmRmYi02ZWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Qeaqd41yjDEjcjdEec2lAxLZbUPtqpwpGYhPxIBPRpsEeCCgEZeNlGPw9e1 XdUy2iG3DsMsyu+pztuO8/axb7RugIyFz5Ft/GEZ1vpKch76Zab3skryXNj/JOvg GTejIYCay+kIVBeKth1XJklE/XNdCf/Fl0BzkO2nyonNYzi5CMcLRAJ1PbebQNH1 DnOevQ+UwdDS7+JQpM1uOu6JtcqLBgQK8ologszH6Ee5E6BvvcFyaq3JB1imOM4M c/11BR+sB+63QvFPmKt5rT+tee7hMlC2hGuq4KdN3x/qparbL3dG9rdCj8q1duzj tRBAz+iLXJpih247fQ6cfGmxmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEIahay/ xmDru5qyjJNyEmzeUFs/MB8GA1UdIwQYMBaAFMSCm2wH/YBN8JJc/8FhxnAoB6Am MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0U0NS8wNkM4NTYzQzgz RDkxMUVBQTMxMjRGNUNDNEY5QUUwMi94SUtiYkFmOWdFM3drbHpfd1dIR2NDZ0hv Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hJS2JiQWY5Z0Uzd2tsel93V0hHY0NnSG9DWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0U0NS8wNkM4NTYzQzgzRDkxMUVBQTMxMjRGNUNDNEY5QUUwMi94SUtiYkFmOWdF M3drbHpfd1dIR2NDZ0hvQ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8/KymM8/Wvv7jNmVLZmoMaP6OABXQpAQuU9d9mQEQ/Q3yZcct2tum JtmLS1rVXHYUUJjYH+H+fQvzC+19i9DmyAEsGi0HLxCBR7tM26i+pjHYRUQZMqkv avkBTGMnndxopIc9UK/8TJt6MCdf2S8O5+RJzkNGK/E59OTjk1UGJzw07nbbWZns q3b6IcUriiJAMua3Qb8cpfTu58CadjzbLHdKVEFD+4p1diSe+1D23rK9AjjtqMsG fdZStUqjKAP0vY28lyg/c8gINcofjSsDl77JMLEW3Me5X5/V4F4e5EWlbg2Ccmiy Yx9ORj6UkhJ88PIjHVOD7uQRmDa3gK0N -----END CERTIFICATE-----Generated at Mon Oct 20 21:40:28 2025 by rpki-client