$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft File: XK9B9ks3Umh5jipdqgwUAADNdHM.mft (raw, json) Hash identifier: 2PDAvIK3EaUE1tIwh1OUeJW19/TRoUWvZHCEGUdsRN4= Subject key identifier: 7C:51:38:DA:AB:3B:AE:17:61:BB:D9:CF:93:03:91:B9:EE:54:D1:06 Authority key identifier: 5C:AF:41:F6:4B:37:52:68:79:8E:2A:5D:AA:0C:14:00:00:CD:74:73 Certificate issuer: /CN=A91ED73E/serialNumber=5CAF41F64B375268798E2A5DAA0C140000CD7473 Certificate serial: 142B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XK9B9ks3Umh5jipdqgwUAADNdHM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft Manifest number: 141F Signing time: Sat 18 Oct 2025 17:23:07 +0000 Manifest this update: Sat 18 Oct 2025 17:23:06 +0000 Manifest next update: Sat 25 Oct 2025 17:23:06 +0000 Files and hashes: 1: XK9B9ks3Umh5jipdqgwUAADNdHM.crl (hash: QrXlG4OZzAPc5luBeSqq9BsGHFYCCIJNuQKXPz+KhPA=) 2: 1983150A3BB911EEB0CA4809C4F9AE02.roa (hash: SmYPi2RSloxSaKTT7RKvc8hMxfYT7RAYE5IrJ7qdRzM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.crl rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XK9B9ks3Umh5jipdqgwUAADNdHM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:23:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5163 (0x142b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED73E, serialNumber=5CAF41F64B375268798E2A5DAA0C140000CD7473 Validity Not Before: Oct 18 17:23:06 2025 GMT Not After : Oct 25 17:23:06 2025 GMT Subject: CN=68f3ccfb-0bf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:24:c1:97:11:b5:11:7f:60:a0:d7:7f:4e:2d: 9a:5b:99:cf:0d:85:c2:24:b4:e7:2c:fb:75:a9:23: 4b:4f:11:5d:eb:53:ea:a5:32:e0:7e:a4:31:96:87: d2:bb:27:23:63:28:01:fa:a7:21:a6:fb:37:64:54: 0a:97:b2:6e:91:d0:4f:85:de:6b:f7:22:32:15:db: 88:99:23:0e:50:f5:24:3e:c1:44:56:1f:96:82:5d: d8:eb:63:9e:99:c2:69:53:23:28:2c:49:f7:43:42: 2d:d2:5c:25:f1:72:5d:97:a2:bd:93:8b:55:6b:56: a5:d1:43:f6:25:c7:42:27:9a:d6:fc:79:6c:c5:cd: 81:db:88:d9:9c:6c:bf:da:57:f6:00:41:9d:ed:04: 13:be:98:61:31:cb:18:e9:6a:48:4a:8d:c4:66:52: 77:e6:76:ea:67:c8:a2:52:3e:55:e7:c2:18:3a:65: c6:c1:d9:05:7b:1c:7c:5b:6a:5e:a7:9c:9e:f8:0b: 0b:8b:ec:33:e4:bd:a7:eb:76:26:d6:bf:cd:ac:71: 76:a5:5d:da:60:18:f1:92:c4:e6:45:7f:0d:09:1f: 55:e6:78:15:5a:b0:e2:57:76:f4:c4:6f:34:3c:43: ea:2e:d4:38:17:55:65:00:79:fa:36:29:d9:69:b9: 99:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:51:38:DA:AB:3B:AE:17:61:BB:D9:CF:93:03:91:B9:EE:54:D1:06 X509v3 Authority Key Identifier: keyid:5C:AF:41:F6:4B:37:52:68:79:8E:2A:5D:AA:0C:14:00:00:CD:74:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XK9B9ks3Umh5jipdqgwUAADNdHM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED73E/01B8210A898911E8B98BEC3AC4F9AE02/XK9B9ks3Umh5jipdqgwUAADNdHM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:b5:54:17:08:42:34:c4:cc:93:73:45:e7:25:1c:05:e1:60: 09:19:26:95:94:fe:15:4f:ca:c9:32:b1:64:35:f2:b7:3f:d9: 26:46:90:c1:fd:c2:d8:ca:c4:bb:e8:5a:cb:bf:46:83:78:3f: 4c:9e:bd:35:7f:64:c6:44:bd:07:2c:0f:bd:95:bd:02:15:14: 9b:5d:94:00:40:f7:a4:6b:e4:d1:a9:a4:50:b3:fd:32:cd:cb: 48:95:47:cc:2a:4c:71:1b:f7:f6:c7:d6:23:c0:3a:9f:98:d7: fd:91:b5:a0:07:5c:36:e2:a0:bb:d2:d5:29:7b:4a:79:1f:bb: 6c:fb:f3:9e:49:5e:13:92:c7:66:57:b0:96:0e:70:8a:70:e1: ae:58:a7:17:fb:42:8d:34:9d:bd:e9:79:3a:2e:66:ec:f7:b1: 5a:cb:57:3a:02:5c:2b:82:1b:96:cd:4f:29:a6:a0:ac:45:9f: 98:d2:0a:92:32:2f:1d:a6:bf:f5:ea:ef:91:4a:de:15:d3:96: a9:4e:e6:fb:d4:c2:2a:38:43:c6:7d:7f:41:26:3b:6a:7e:cd: c7:56:9f:66:f4:ac:66:42:c0:d1:20:24:f4:89:9c:85:02:5c: 9b:e5:70:75:4c:c6:80:53:e1:dc:97:ae:df:53:87:e3:eb:2a: 56:7c:dc:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFCswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ3M0UxMTAvBgNVBAUTKDVDQUY0MUY2NEIzNzUyNjg3OThFMkE1REFBMEMxNDAw MDBDRDc0NzMwHhcNMjUxMDE4MTcyMzA2WhcNMjUxMDI1MTcyMzA2WjAYMRYwFAYD VQQDEw02OGYzY2NmYi0wYmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApyTBlxG1EX9goNd/Ti2aW5nPDYXCJLTnLPt1qSNLTxFd61PqpTLgfqQxlofS uycjYygB+qchpvs3ZFQKl7JukdBPhd5r9yIyFduImSMOUPUkPsFEVh+Wgl3Y62Oe mcJpUyMoLEn3Q0It0lwl8XJdl6K9k4tVa1al0UP2JcdCJ5rW/Hlsxc2B24jZnGy/ 2lf2AEGd7QQTvphhMcsY6WpISo3EZlJ35nbqZ8iiUj5V58IYOmXGwdkFexx8W2pe p5ye+AsLi+wz5L2n63Ym1r/NrHF2pV3aYBjxksTmRX8NCR9V5ngVWrDiV3b0xG80 PEPqLtQ4F1VlAHn6NinZabmZGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHxRONqr O64XYbvZz5MDkbnuVNEGMB8GA1UdIwQYMBaAFFyvQfZLN1JoeY4qXaoMFAAAzXRz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDczRS8wMUI4MjEwQTg5 ODkxMUU4Qjk4QkVDM0FDNEY5QUUwMi9YSzlCOWtzM1VtaDVqaXBkcWd3VUFBRE5k SE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hLOUI5a3MzVW1oNWppcGRxZ3dVQUFETmRITS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDczRS8wMUI4MjEwQTg5ODkxMUU4Qjk4QkVDM0FDNEY5QUUwMi9YSzlCOWtzM1Vt aDVqaXBkcWd3VUFBRE5kSE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAutVQXCEI0xMyTc0XnJRwF4WAJGSaVlP4VT8rJMrFkNfK3P9kmRpDB /cLYysS76FrLv0aDeD9Mnr01f2TGRL0HLA+9lb0CFRSbXZQAQPeka+TRqaRQs/0y zctIlUfMKkxxG/f2x9YjwDqfmNf9kbWgB1w24qC70tUpe0p5H7ts+/OeSV4Tksdm V7CWDnCKcOGuWKcX+0KNNJ296Xk6Lmbs97Fay1c6AlwrghuWzU8ppqCsRZ+Y0gqS Mi8dpr/16u+RSt4V05apTub71MIqOEPGfX9BJjtqfs3HVp9m9KxmQsDRICT0iZyF Alyb5XB1TMaAU+Hcl67fU4fj6ypWfNyD -----END CERTIFICATE-----Generated at Mon Oct 20 16:13:23 2025 by rpki-client