$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft File: XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft (raw, json) Hash identifier: T6nvjEyEs9PQyv8MKwpXOEKspqhMNe/Nn+MGcjMvk9Q= Subject key identifier: 58:68:23:F4:AC:34:FF:10:FD:41:60:88:20:02:BD:6E:DB:81:88:CF Authority key identifier: 5F:30:7E:62:74:AC:39:E5:4E:99:86:6D:AB:B8:5C:2C:9E:FD:16:B1 Certificate issuer: /CN=A91E9F89/serialNumber=5F307E6274AC39E54E99866DABB85C2C9EFD16B1 Certificate serial: 08B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XzB-YnSsOeVOmYZtq7hcLJ79FrE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft Manifest number: 08AB Signing time: Sat 18 Oct 2025 21:39:17 +0000 Manifest this update: Sat 18 Oct 2025 21:39:16 +0000 Manifest next update: Sat 25 Oct 2025 21:39:16 +0000 Files and hashes: 1: XzB-YnSsOeVOmYZtq7hcLJ79FrE.crl (hash: 9LyTrW8N5cL3rfGk0ak4aOOgTcQy2jd5keRV9qe7nLY=) 2: 05B67AF8C6A011EAA70D183FC4F9AE02.roa (hash: uyDMO7ckw/0z5jl/cntcgb/65TbIdBVdA1r68qbPTT8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.crl rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XzB-YnSsOeVOmYZtq7hcLJ79FrE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:39:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2226 (0x8b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9F89, serialNumber=5F307E6274AC39E54E99866DABB85C2C9EFD16B1 Validity Not Before: Oct 18 21:39:16 2025 GMT Not After : Oct 25 21:39:16 2025 GMT Subject: CN=68f40904-08d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:0b:2b:f0:6d:c1:1a:5a:e4:dc:89:9a:c0:a4: b5:57:39:cd:09:a6:cd:5e:92:60:7a:cd:48:18:5e: 4d:29:07:f2:05:cc:8a:e7:6f:e8:18:be:b0:f2:59: f9:e5:fb:ea:55:17:6e:42:87:db:82:7c:c3:17:99: ba:9b:40:ba:df:b0:b7:62:c1:c8:60:ad:1a:5f:1f: 9c:34:66:38:1e:33:8a:0f:a4:3c:15:c8:ad:2f:17: 99:71:2e:bf:8a:84:ea:dc:cd:a8:7c:30:ca:99:37: f0:dc:a9:54:5f:69:94:53:4e:22:8f:83:09:bd:9d: c1:f7:f7:cd:27:74:d8:8c:83:7c:43:63:49:45:dd: d8:57:7d:c7:32:ea:d8:f7:64:78:a5:ae:98:c2:87: 67:d7:5c:d4:42:ab:7a:84:f4:ec:ef:95:a6:53:37: 3f:e5:67:75:cd:c7:13:e3:fe:c5:dc:de:4c:cb:ac: 36:1d:76:3a:55:dd:22:d7:ca:cd:e9:d6:02:a9:95: 29:39:94:1e:e0:29:4c:47:0f:91:7b:6d:6e:5e:aa: 54:7e:2f:b2:85:13:a3:ea:b4:c3:90:f6:15:53:b3: e3:36:fe:85:4b:23:36:da:8d:71:8d:e9:8a:b5:08: b7:78:ae:da:e8:28:c0:59:fa:ca:c3:0e:fa:5e:65: 06:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:68:23:F4:AC:34:FF:10:FD:41:60:88:20:02:BD:6E:DB:81:88:CF X509v3 Authority Key Identifier: keyid:5F:30:7E:62:74:AC:39:E5:4E:99:86:6D:AB:B8:5C:2C:9E:FD:16:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XzB-YnSsOeVOmYZtq7hcLJ79FrE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:62:5b:cd:9a:16:c5:de:4d:a4:20:7a:33:c5:ed:c3:ba:21: 03:49:e7:96:7b:6b:8d:0b:2a:5b:9a:29:21:ad:87:0f:df:42: b5:d6:33:68:0b:97:32:84:ad:5b:f8:22:f5:79:4c:13:03:01: 6c:16:4a:99:29:41:45:75:02:d0:f8:b6:18:be:6d:0c:ca:6a: 33:9b:41:4e:f9:fa:88:8c:54:49:07:2c:b7:87:0a:0a:54:60: 94:2e:36:04:82:00:78:21:f4:d0:f0:1b:ce:be:dd:f3:2e:fa: af:88:06:7d:12:e7:9c:3f:6e:27:2d:d5:50:53:0a:73:cc:3b: df:20:77:c2:8c:b6:98:41:90:51:84:90:f1:e9:57:02:db:92: 0e:07:8f:f6:c3:80:5b:31:fe:49:22:d1:0c:0f:32:e8:2c:01: 31:87:48:c7:21:1c:5a:12:e7:2c:62:52:a6:31:54:75:d7:c9: 5d:9a:26:f4:a1:7d:2f:36:cc:b4:90:cd:37:12:91:a2:7f:3d: 9e:9d:09:3a:cb:8f:81:cd:76:ca:46:88:d5:77:cf:26:7a:e8: 24:dc:a5:64:d4:a9:ae:6c:ab:40:8c:39:cb:2a:20:2e:3c:cc: 38:01:b8:3a:75:ea:44:98:3c:9a:5c:73:f3:07:6c:23:50:88: e3:a1:fe:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlGODkxMTAvBgNVBAUTKDVGMzA3RTYyNzRBQzM5RTU0RTk5ODY2REFCQjg1QzJD OUVGRDE2QjEwHhcNMjUxMDE4MjEzOTE2WhcNMjUxMDI1MjEzOTE2WjAYMRYwFAYD VQQDEw02OGY0MDkwNC0wOGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnwsr8G3BGlrk3ImawKS1VznNCabNXpJges1IGF5NKQfyBcyK52/oGL6w8ln5 5fvqVRduQofbgnzDF5m6m0C637C3YsHIYK0aXx+cNGY4HjOKD6Q8FcitLxeZcS6/ ioTq3M2ofDDKmTfw3KlUX2mUU04ij4MJvZ3B9/fNJ3TYjIN8Q2NJRd3YV33HMurY 92R4pa6Ywodn11zUQqt6hPTs75WmUzc/5Wd1zccT4/7F3N5My6w2HXY6Vd0i18rN 6dYCqZUpOZQe4ClMRw+Re21uXqpUfi+yhROj6rTDkPYVU7PjNv6FSyM22o1xjemK tQi3eK7a6CjAWfrKww76XmUG2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFhoI/Ss NP8Q/UFgiCACvW7bgYjPMB8GA1UdIwQYMBaAFF8wfmJ0rDnlTpmGbau4XCye/Rax MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUY4OS81QkU3NDg3OEM2 OUUxMUVBOUJGOEEzM0NDNEY5QUUwMi9YekItWW5Tc09lVk9tWVp0cTdoY0xKNzlG ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h6Qi1ZblNzT2VWT21ZWnRxN2hjTEo3OUZyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUY4OS81QkU3NDg3OEM2OUUxMUVBOUJGOEEzM0NDNEY5QUUwMi9YekItWW5Tc09l Vk9tWVp0cTdoY0xKNzlGckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2YlvNmhbF3k2kIHozxe3DuiEDSeeWe2uNCypbmikhrYcP30K11jNo C5cyhK1b+CL1eUwTAwFsFkqZKUFFdQLQ+LYYvm0Mymozm0FO+fqIjFRJByy3hwoK VGCULjYEggB4IfTQ8BvOvt3zLvqviAZ9EuecP24nLdVQUwpzzDvfIHfCjLaYQZBR hJDx6VcC25IOB4/2w4BbMf5JItEMDzLoLAExh0jHIRxaEucsYlKmMVR118ldmib0 oX0vNsy0kM03EpGifz2enQk6y4+BzXbKRojVd88meugk3KVk1KmubKtAjDnLKiAu PMw4Abg6depEmDyaXHPzB2wjUIjjof5+ -----END CERTIFICATE-----Generated at Mon Oct 20 14:46:33 2025 by rpki-client