$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.mft File: XOe82cbkE4HMCvkJkN2gNpOF5lU.mft (raw, json) Hash identifier: FR+Am8jRdzO2QOb2JdTtRgFCCMshFH222Xe/4EvRYGs= Subject key identifier: 81:C2:01:C5:E3:8E:47:31:3A:B2:44:B3:55:B5:4A:0C:4E:FF:23:0C Authority key identifier: 5C:E7:BC:D9:C6:E4:13:81:CC:0A:F9:09:90:DD:A0:36:93:85:E6:55 Certificate issuer: /CN=A91EC3A8/serialNumber=5CE7BCD9C6E41381CC0AF90990DDA0369385E655 Certificate serial: 04BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOe82cbkE4HMCvkJkN2gNpOF5lU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.mft Manifest number: 04AE Signing time: Sun 19 Oct 2025 01:44:46 +0000 Manifest this update: Sun 19 Oct 2025 01:44:45 +0000 Manifest next update: Sun 26 Oct 2025 01:44:45 +0000 Files and hashes: 1: XOe82cbkE4HMCvkJkN2gNpOF5lU.crl (hash: LKVeylKpfrzfZFw40z5PhreymEXccjq6AWbOAqBgJbk=) 2: 11330A4663F611ECB344F979C4F9AE02.roa (hash: EUhD1CogfYx019LqOHk5ZADPXKjO2pURWvfLLk3fqG8=) 3: 10A8D0E263F611ECB344F979C4F9AE02.roa (hash: 0C7V986gHLfF3RPO5trmAPFLdLtlvzlCJ3+47YeVJHU=) 4: C71919900BEE11EDBB84E711C4F9AE02.roa (hash: CMOccFw4JW9T0ieBo3En9p6kBriebw6aKjGeEamJ19Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.crl rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOe82cbkE4HMCvkJkN2gNpOF5lU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:44:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1210 (0x4ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC3A8, serialNumber=5CE7BCD9C6E41381CC0AF90990DDA0369385E655 Validity Not Before: Oct 19 01:44:45 2025 GMT Not After : Oct 26 01:44:45 2025 GMT Subject: CN=68f4428e-0c8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:56:73:44:77:16:86:f3:fe:84:41:32:2f:77: 1b:26:20:70:01:cd:f1:97:48:1f:c7:cc:cb:36:7a: 16:1c:45:3f:7b:6c:81:f3:eb:a3:77:53:68:d7:cb: c5:a4:75:b5:c1:ed:54:18:1b:0f:7f:b2:52:15:14: 30:69:b0:3b:c2:a8:06:dd:3d:79:16:ba:22:83:cc: 23:df:8e:52:ae:c4:92:a4:4b:4f:c2:9e:a0:46:70: 33:f7:28:dd:50:7a:47:e2:6e:40:a6:7f:94:7e:7f: 1c:b5:b2:80:a7:7a:0d:50:34:9b:c0:0b:31:ae:01: c2:e1:d6:40:18:f6:c5:7f:16:c7:c6:26:0b:8f:de: 13:8d:15:62:c3:10:fc:40:92:3b:a5:fc:1b:08:80: 9a:11:ab:bc:81:3d:41:66:3d:bf:15:3f:ee:24:db: 46:1b:9d:b4:13:92:b5:39:6b:44:bd:6f:f9:f3:f8: 80:c6:6c:d9:f3:aa:1a:b7:ba:3b:0a:00:f9:37:cd: 32:52:5a:2b:1d:8f:06:8f:91:92:23:97:19:14:4b: 16:72:77:3b:9c:ef:df:07:c2:1e:82:8d:eb:4b:c7: 90:93:f1:21:d0:8d:64:05:ee:2a:1e:97:32:c2:2c: ba:cb:b9:22:83:5e:7e:5f:7f:ab:a5:3c:3b:ca:b6: a2:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:C2:01:C5:E3:8E:47:31:3A:B2:44:B3:55:B5:4A:0C:4E:FF:23:0C X509v3 Authority Key Identifier: keyid:5C:E7:BC:D9:C6:E4:13:81:CC:0A:F9:09:90:DD:A0:36:93:85:E6:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOe82cbkE4HMCvkJkN2gNpOF5lU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC3A8/21FA02724C6C11ECBBCFAD26C4F9AE02/XOe82cbkE4HMCvkJkN2gNpOF5lU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:af:ff:44:67:a2:7c:b0:41:05:9c:ef:a1:77:34:0d:f1:e2: ed:64:a1:70:cc:dc:1a:bc:2e:c2:94:2a:e5:eb:df:fe:a2:3d: 79:b1:c3:76:f4:ae:ab:96:6e:56:ba:90:8a:33:9c:16:0c:08: 30:b5:99:56:30:f1:2a:62:ef:66:08:ff:84:f2:63:b8:a5:d6: 66:f4:68:2d:92:45:d6:fc:6c:bc:e6:5b:ee:54:c4:19:fa:5c: 62:7a:30:b1:09:23:33:05:67:fd:b6:f5:a6:89:71:7d:1b:1d: 37:d3:4f:31:35:92:aa:88:fe:1a:b8:d3:7b:74:f6:65:ef:f0: 32:7f:7b:ba:cb:a7:7c:1f:e9:27:4c:ab:2f:32:28:4a:42:c9: 04:85:bc:86:2f:3e:5b:80:11:0c:29:f9:83:97:13:6d:50:07: cc:f4:06:45:0a:2d:41:dc:3d:1c:de:2f:cc:01:1b:37:c3:51: eb:58:65:ca:da:d7:43:8c:12:af:d2:54:7d:21:2a:a8:b4:1f: bb:12:8e:9b:d4:67:46:1d:6d:0a:d5:5e:c1:36:e5:df:22:fe: 13:a8:be:d2:10:85:21:b4:42:bb:30:6d:3b:58:e2:68:be:4e: c1:5a:a9:11:6e:0f:99:36:45:7f:1a:ae:32:3b:f5:2e:6d:38: 77:f4:77:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUMzQTgxMTAvBgNVBAUTKDVDRTdCQ0Q5QzZFNDEzODFDQzBBRjkwOTkwRERBMDM2 OTM4NUU2NTUwHhcNMjUxMDE5MDE0NDQ1WhcNMjUxMDI2MDE0NDQ1WjAYMRYwFAYD VQQDEw02OGY0NDI4ZS0wYzhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVZzRHcWhvP+hEEyL3cbJiBwAc3xl0gfx8zLNnoWHEU/e2yB8+ujd1No18vF pHW1we1UGBsPf7JSFRQwabA7wqgG3T15Froig8wj345SrsSSpEtPwp6gRnAz9yjd UHpH4m5Apn+Ufn8ctbKAp3oNUDSbwAsxrgHC4dZAGPbFfxbHxiYLj94TjRViwxD8 QJI7pfwbCICaEau8gT1BZj2/FT/uJNtGG520E5K1OWtEvW/58/iAxmzZ86oat7o7 CgD5N80yUlorHY8Gj5GSI5cZFEsWcnc7nO/fB8Iego3rS8eQk/Eh0I1kBe4qHpcy wiy6y7kig15+X3+rpTw7yrai3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIHCAcXj jkcxOrJEs1W1SgxO/yMMMB8GA1UdIwQYMBaAFFznvNnG5BOBzAr5CZDdoDaTheZV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzNBOC8yMUZBMDI3MjRD NkMxMUVDQkJDRkFEMjZDNEY5QUUwMi9YT2U4MmNia0U0SE1DdmtKa04yZ05wT0Y1 bFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hPZTgyY2JrRTRITUN2a0prTjJnTnBPRjVsVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzNBOC8yMUZBMDI3MjRDNkMxMUVDQkJDRkFEMjZDNEY5QUUwMi9YT2U4MmNia0U0 SE1DdmtKa04yZ05wT0Y1bFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvr/9EZ6J8sEEFnO+hdzQN8eLtZKFwzNwavC7ClCrl69/+oj15scN2 9K6rlm5WupCKM5wWDAgwtZlWMPEqYu9mCP+E8mO4pdZm9GgtkkXW/Gy85lvuVMQZ +lxiejCxCSMzBWf9tvWmiXF9Gx03008xNZKqiP4auNN7dPZl7/Ayf3u6y6d8H+kn TKsvMihKQskEhbyGLz5bgBEMKfmDlxNtUAfM9AZFCi1B3D0c3i/MARs3w1HrWGXK 2tdDjBKv0lR9ISqotB+7Eo6b1GdGHW0K1V7BNuXfIv4TqL7SEIUhtEK7MG07WOJo vk7BWqkRbg+ZNkV/Gq4yO/UubTh39Hei -----END CERTIFICATE-----Generated at Mon Oct 20 04:04:38 2025 by rpki-client