$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft File: XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft (raw, json) Hash identifier: 81EW9WM5JO6DaRHb7NhdSl1bISA9KJT9rB2i27FHiCU= Subject key identifier: F6:B1:B9:2A:4B:0C:02:1E:E5:00:B8:5F:4C:C9:BB:AD:03:32:20:68 Authority key identifier: 5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F Certificate issuer: /CN=A91F0C73/serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F Certificate serial: 0313 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft Manifest number: 030D Signing time: Sun 19 Oct 2025 03:15:52 +0000 Manifest this update: Sun 19 Oct 2025 03:15:51 +0000 Manifest next update: Sun 26 Oct 2025 03:15:51 +0000 Files and hashes: 1: XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl (hash: 4fZkeYt3MKsUjcEKCdfKHDplDhgS3RgyyXh+mJuw0kU=) 2: FA3FF1D4F13D11EC9B673A2AC4F9AE02.roa (hash: nZ6WbCIcnJ/FBBpCbBgjvy3HpKuHRhBq1WSGZ+ZBH8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:15:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 787 (0x313) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0C73, serialNumber=5E709949BAA40A7D47D44D211690B377E051C45F Validity Not Before: Oct 19 03:15:51 2025 GMT Not After : Oct 26 03:15:51 2025 GMT Subject: CN=68f457e8-ae45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:7d:e0:50:8a:d2:8b:11:9f:a4:65:66:ee:cd: 6f:bb:2c:82:dd:1f:61:f5:24:b7:49:a7:19:fc:3e: 19:a3:62:9f:2c:e9:36:f9:79:15:27:98:03:26:87: 47:0f:a5:f2:ab:4e:41:ef:8d:6e:0c:f4:c4:d2:f8: d2:30:e7:f3:9f:fe:82:28:34:b1:18:2c:90:12:07: 65:ca:91:aa:95:df:95:38:99:6b:9a:1c:b7:08:e4: 1f:c9:47:5a:e4:c3:1a:50:42:0e:ec:82:50:1c:01: 8f:ad:8f:a4:6d:18:3e:2c:6e:08:ce:61:83:e1:dc: 3d:e5:a1:16:8d:3f:19:63:c9:08:0e:e8:b2:44:a3: 8c:07:0d:07:6a:7e:95:fb:9e:ff:96:93:d7:e8:93: 47:69:93:5c:03:39:f1:e1:ca:8c:c3:7d:02:dc:b4: 1b:1f:56:a2:b7:0b:de:ad:3b:b0:20:59:ea:d7:a3: e2:d3:d2:5d:8a:8e:97:e7:e7:46:eb:68:ed:83:ab: 0d:c6:3f:92:b4:7b:db:c7:eb:86:2e:32:b7:e3:01: 0e:27:ab:b7:67:b7:77:d0:8b:dc:26:30:59:b2:f4: eb:49:6c:fc:84:32:70:d2:3a:73:22:10:47:be:78: 81:b8:45:08:73:93:df:1a:c3:3b:5f:cb:06:48:da: 01:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:B1:B9:2A:4B:0C:02:1E:E5:00:B8:5F:4C:C9:BB:AD:03:32:20:68 X509v3 Authority Key Identifier: keyid:5E:70:99:49:BA:A4:0A:7D:47:D4:4D:21:16:90:B3:77:E0:51:C4:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnCZSbqkCn1H1E0hFpCzd-BRxF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0C73/821457D2F13711EC97F74F0CC4F9AE02/XnCZSbqkCn1H1E0hFpCzd-BRxF8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:f9:88:82:70:28:8a:4a:19:e1:41:a2:2e:04:6f:a1:5d:92: be:61:ad:e0:be:0f:db:ab:eb:1d:06:6f:ff:e4:49:3d:4a:6d: 3f:87:25:bd:67:14:80:2d:49:de:f5:d3:4d:58:6d:02:79:75: b0:e1:58:1d:a2:d3:45:49:49:1d:c4:44:d0:b1:c4:18:d3:1c: 0a:c9:22:fa:af:88:09:39:a8:94:d4:db:2c:4e:1e:24:b6:23: 2a:54:91:ba:05:80:7c:16:11:15:6f:20:ad:3d:0b:ec:97:aa: 53:99:6b:65:22:8c:99:51:ab:38:e8:f0:51:01:75:d6:62:1d: d4:8e:6d:ea:27:7f:4d:45:05:97:2d:35:e0:1a:15:fb:83:a0: b3:a4:27:4c:a7:01:9e:df:76:ca:f1:59:69:d8:e0:d0:0f:ed: c1:df:e8:b8:5a:0b:a0:fc:78:56:58:46:f8:77:bf:49:f3:11: bc:bc:d7:df:d0:8e:f6:5b:1b:49:10:0d:9c:70:50:a0:06:22: d3:d8:e3:3b:ce:12:b1:d0:37:e5:21:26:db:15:75:d5:a7:79: aa:07:97:0f:61:87:db:36:06:72:bf:0f:f3:56:95:c6:11:a6: 0b:73:20:92:d2:86:8a:63:18:c9:78:fb:07:5f:32:cb:5d:a2: 1b:79:1e:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBDNzMxMTAvBgNVBAUTKDVFNzA5OTQ5QkFBNDBBN0Q0N0Q0NEQyMTE2OTBCMzc3 RTA1MUM0NUYwHhcNMjUxMDE5MDMxNTUxWhcNMjUxMDI2MDMxNTUxWjAYMRYwFAYD VQQDEw02OGY0NTdlOC1hZTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqX3gUIrSixGfpGVm7s1vuyyC3R9h9SS3SacZ/D4Zo2KfLOk2+XkVJ5gDJodH D6Xyq05B741uDPTE0vjSMOfzn/6CKDSxGCyQEgdlypGqld+VOJlrmhy3COQfyUda 5MMaUEIO7IJQHAGPrY+kbRg+LG4IzmGD4dw95aEWjT8ZY8kIDuiyRKOMBw0Han6V +57/lpPX6JNHaZNcAznx4cqMw30C3LQbH1aitwverTuwIFnq16Pi09Jdio6X5+dG 62jtg6sNxj+StHvbx+uGLjK34wEOJ6u3Z7d30IvcJjBZsvTrSWz8hDJw0jpzIhBH vniBuEUIc5PfGsM7X8sGSNoBcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPaxuSpL DAIe5QC4X0zJu60DMiBoMB8GA1UdIwQYMBaAFF5wmUm6pAp9R9RNIRaQs3fgUcRf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEM3My84MjE0NTdEMkYx MzcxMUVDOTdGNzRGMENDNEY5QUUwMi9YbkNaU2Jxa0NuMUgxRTBoRnBDemQtQlJ4 RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huQ1pTYnFrQ24xSDFFMGhGcEN6ZC1CUnhGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEM3My84MjE0NTdEMkYxMzcxMUVDOTdGNzRGMENDNEY5QUUwMi9YbkNaU2Jxa0Nu MUgxRTBoRnBDemQtQlJ4RjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2+YiCcCiKShnhQaIuBG+hXZK+Ya3gvg/bq+sdBm//5Ek9Sm0/hyW9 ZxSALUne9dNNWG0CeXWw4VgdotNFSUkdxETQscQY0xwKySL6r4gJOaiU1NssTh4k tiMqVJG6BYB8FhEVbyCtPQvsl6pTmWtlIoyZUas46PBRAXXWYh3Ujm3qJ39NRQWX LTXgGhX7g6CzpCdMpwGe33bK8Vlp2ODQD+3B3+i4Wgug/HhWWEb4d79J8xG8vNff 0I72WxtJEA2ccFCgBiLT2OM7zhKx0DflISbbFXXVp3mqB5cPYYfbNgZyvw/zVpXG EaYLcyCS0oaKYxjJePsHXzLLXaIbeR64 -----END CERTIFICATE-----Generated at Tue Oct 21 00:11:25 2025 by rpki-client