$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft File: xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft (raw, json) Hash identifier: JUc/Yu7snVUlPhvenGCdn7ZixvIikUFJck2Adz12kx8= Subject key identifier: 6E:85:B3:17:F4:A4:94:9B:4E:7C:E1:79:09:47:13:5A:AF:A6:F4:D6 Authority key identifier: C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED Certificate issuer: /CN=A91EBFAE/serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Certificate serial: 2551 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft Manifest number: 2551 Signing time: Mon 20 Oct 2025 14:34:42 +0000 Manifest this update: Mon 20 Oct 2025 14:34:41 +0000 Manifest next update: Mon 27 Oct 2025 14:34:41 +0000 Files and hashes: 1: xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl (hash: MfQSTNxA1//4fFswfhV0nfx2z5kmgNbiWX52wOGmT6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:34:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9553 (0x2551) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFAE, serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Validity Not Before: Oct 20 14:34:41 2025 GMT Not After : Oct 27 14:34:41 2025 GMT Subject: CN=68f64882-8ec4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e5:22:6a:ba:12:9b:5e:41:bb:d1:43:1f:48: 92:c6:ae:9f:99:c3:78:22:95:9b:9e:83:1f:af:53: 23:c7:2f:76:e6:89:a9:e3:bb:f0:56:db:5e:3f:cf: d1:b8:99:8b:93:b5:a5:91:99:a2:5f:22:19:b5:ae: 5d:44:bb:b6:0a:06:e7:68:fa:96:f2:60:eb:76:ca: 73:66:21:35:0d:74:db:58:49:9b:8b:77:b1:7e:be: 37:5e:20:4a:9e:9e:c3:1d:3d:82:04:ba:ea:67:cc: 39:9c:58:23:b8:ec:8d:d9:8f:c9:80:ff:29:d5:71: a0:b5:c3:71:c0:d5:32:b9:34:30:36:4d:d2:4b:fa: c0:48:21:4a:f4:62:52:a4:65:e5:49:7b:f4:b4:d5: 07:fb:46:9f:c5:87:4c:b9:18:aa:dc:8b:63:f0:e7: c1:be:95:f5:b5:aa:8f:34:19:31:cb:c2:93:dd:bb: e1:d4:e3:de:d7:68:e3:0a:da:ee:92:0f:61:d7:22: 24:19:33:5d:d6:97:a4:41:30:d1:63:1c:18:e0:ef: 63:fd:04:c5:a1:24:1e:c6:93:8e:af:f2:93:8f:48: 84:db:52:2d:6b:ae:d8:ba:ea:59:f1:5e:83:1c:a1: 63:79:54:4b:4e:3c:8d:92:60:f5:1a:12:8e:e4:c6: 49:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:85:B3:17:F4:A4:94:9B:4E:7C:E1:79:09:47:13:5A:AF:A6:F4:D6 X509v3 Authority Key Identifier: keyid:C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:c1:8f:b4:a6:f5:9e:22:aa:f8:45:07:89:54:a4:95:c3:9a: 2c:04:32:2c:da:72:cd:d0:bb:7b:04:68:59:77:91:c5:5d:67: e0:c8:26:3f:09:57:c6:26:0d:8d:ab:76:11:4e:a9:20:a3:5f: 11:a9:90:f1:e7:53:1a:d2:f0:8e:0a:b7:e0:3e:c5:ff:1d:b1: 2e:6b:6f:14:54:37:ab:7f:b6:07:13:12:6e:01:f3:ed:a2:a0: 6a:93:3d:a3:85:d5:b2:a2:7c:80:66:e1:6a:1c:2e:18:59:10: 61:86:b9:d1:7e:aa:7b:45:44:38:7f:ac:78:a0:e3:e5:cc:c4: 96:85:af:e3:aa:bd:8e:1a:f7:5f:5e:ac:49:25:77:67:c9:bb: 80:cc:6c:64:fe:57:cf:82:db:ea:d3:1b:c0:3f:4f:48:56:81: c9:7e:74:46:ab:5f:bc:e2:b3:0e:59:b3:c9:f1:f7:14:d7:b7: 80:f3:15:15:2d:5f:8e:42:75:23:79:8d:db:29:de:32:6b:51: 41:1f:be:da:58:30:ae:98:89:a2:9f:39:49:9d:ea:38:5b:89: 98:67:d0:98:4a:55:f4:4b:66:b9:03:d9:82:72:d9:2e:2f:10: f6:94:04:ff:ea:d1:31:c3:66:e5:a8:3d:30:d6:fa:64:ab:12: 02:3a:1f:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQUUxMTAvBgNVBAUTKEM2NTNFRjc3QjE5RDEwOENGNUM1OUFFMTgwMUYwMjAw M0FCNTVFRUQwHhcNMjUxMDIwMTQzNDQxWhcNMjUxMDI3MTQzNDQxWjAYMRYwFAYD VQQDEw02OGY2NDg4Mi04ZWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzOUiaroSm15Bu9FDH0iSxq6fmcN4IpWbnoMfr1Mjxy925omp47vwVtteP8/R uJmLk7WlkZmiXyIZta5dRLu2CgbnaPqW8mDrdspzZiE1DXTbWEmbi3exfr43XiBK np7DHT2CBLrqZ8w5nFgjuOyN2Y/JgP8p1XGgtcNxwNUyuTQwNk3SS/rASCFK9GJS pGXlSXv0tNUH+0afxYdMuRiq3Itj8OfBvpX1taqPNBkxy8KT3bvh1OPe12jjCtru kg9h1yIkGTNd1pekQTDRYxwY4O9j/QTFoSQexpOOr/KTj0iE21Ita67YuupZ8V6D HKFjeVRLTjyNkmD1GhKO5MZJGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG6Fsxf0 pJSbTnzheQlHE1qvpvTWMB8GA1UdIwQYMBaAFMZT73exnRCM9cWa4YAfAgA6tV7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZBRS9FRDMyNDQwQTI5 MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJejF4WnJoZ0I4Q0FEcTFY dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hsUHZkN0dkRUl6MXhacmhnQjhDQURxMVh1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZBRS9FRDMyNDQwQTI5MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJ ejF4WnJoZ0I4Q0FEcTFYdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1wY+0pvWeIqr4RQeJVKSVw5osBDIs2nLN0Lt7BGhZd5HFXWfgyCY/ CVfGJg2Nq3YRTqkgo18RqZDx51Ma0vCOCrfgPsX/HbEua28UVDerf7YHExJuAfPt oqBqkz2jhdWyonyAZuFqHC4YWRBhhrnRfqp7RUQ4f6x4oOPlzMSWha/jqr2OGvdf XqxJJXdnybuAzGxk/lfPgtvq0xvAP09IVoHJfnRGq1+84rMOWbPJ8fcU17eA8xUV LV+OQnUjeY3bKd4ya1FBH77aWDCumIminzlJneo4W4mYZ9CYSlX0S2a5A9mCctku LxD2lAT/6tExw2blqD0w1vpkqxICOh9C -----END CERTIFICATE-----Generated at Tue Oct 21 02:10:35 2025 by rpki-client