$ rpki-client -vvf rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft File: XUXapVj_ZfZmNblniAm4rPBAc9I.mft (raw, json) Hash identifier: oYNyLc0vQ/9aRIGHl5H6oiPs9Bvm8D4amaYWltL9AH8= Subject key identifier: F4:0D:D6:4E:61:3F:25:D0:22:1D:6F:A6:77:28:06:07:B7:6F:3C:1A Authority key identifier: 5D:45:DA:A5:58:FF:65:F6:66:35:B9:67:88:09:B8:AC:F0:40:73:D2 Certificate issuer: /CN=A91F52FD/serialNumber=5D45DAA558FF65F66635B9678809B8ACF04073D2 Certificate serial: 062A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft Manifest number: 0621 Signing time: Sun 19 Oct 2025 00:24:31 +0000 Manifest this update: Sun 19 Oct 2025 00:24:30 +0000 Manifest next update: Sun 26 Oct 2025 00:24:30 +0000 Files and hashes: 1: XUXapVj_ZfZmNblniAm4rPBAc9I.crl (hash: kkRQVF+u73CKO8hARMkgDbpIAUwDAOv4lNUoLsvcZNI=) 2: 48459AB0BACF11EBAA321370C4F9AE02.roa (hash: pnHmUa0U0xz9JsAjeRh4Irw7X+bt9zrhkQQo7Oiu4oA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.crl rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:24:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1578 (0x62a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F52FD, serialNumber=5D45DAA558FF65F66635B9678809B8ACF04073D2 Validity Not Before: Oct 19 00:24:30 2025 GMT Not After : Oct 26 00:24:30 2025 GMT Subject: CN=68f42fbe-bcd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:4c:79:f1:7a:ba:a4:84:67:9f:3e:e6:43:55: f5:58:8f:dc:56:9c:83:2d:f2:13:d5:15:0e:18:12: 35:3b:44:50:05:52:89:46:a1:f7:46:32:2e:6e:29: c3:98:d0:6e:47:1b:6d:f9:93:00:3c:cc:03:b6:b1: a6:5f:5e:a5:a2:f5:3c:e4:79:37:0b:7e:df:57:3e: 5f:8e:06:c7:eb:50:0e:9d:49:14:4c:35:e6:0e:c9: 10:8f:31:33:73:c5:07:f2:f1:b1:7e:f4:22:31:1b: da:5d:7c:75:e7:6d:66:b2:c4:b6:09:95:5f:5b:82: fe:c1:63:b7:e5:c6:e4:f0:62:a9:5f:14:93:6a:c0: 2d:7f:0a:88:b1:42:f9:c2:60:fc:db:c5:dd:78:0a: d4:a1:2d:cc:66:71:f2:9d:fb:e9:3e:0a:c6:d3:b6: 87:08:1c:9a:84:2e:da:a6:c8:76:d8:c2:c6:6c:39: 27:32:8c:35:56:d7:49:df:3d:d9:57:96:0e:54:36: 5d:2b:57:74:15:d0:75:57:dc:ee:15:20:36:f4:93: 15:a4:be:5a:03:e1:77:83:97:63:d8:cb:19:74:54: 98:73:f4:d2:8e:b0:2d:59:16:a3:53:44:87:6f:1e: 4f:c2:8b:2c:c3:a0:cf:1b:14:37:e8:e2:c6:51:b0: 80:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:0D:D6:4E:61:3F:25:D0:22:1D:6F:A6:77:28:06:07:B7:6F:3C:1A X509v3 Authority Key Identifier: keyid:5D:45:DA:A5:58:FF:65:F6:66:35:B9:67:88:09:B8:AC:F0:40:73:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUXapVj_ZfZmNblniAm4rPBAc9I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F52FD/625F0F0ABACD11EBAA23976DC4F9AE02/XUXapVj_ZfZmNblniAm4rPBAc9I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:27:b0:86:8e:20:6b:ef:39:37:0c:f8:70:a5:54:6c:9a:ba: a6:0a:dc:71:d0:c0:d4:c6:07:16:0e:c8:8c:eb:08:80:ed:10: e8:b7:36:6c:2b:b8:6a:0b:b9:9f:13:65:13:f0:94:6b:92:7f: 2d:5b:82:96:e5:b1:56:25:95:c9:71:06:52:75:b4:1c:51:44: 48:1c:56:05:76:0a:e4:76:00:62:a0:18:18:e9:59:2e:28:2b: f1:2c:f0:8e:7e:06:c7:03:ba:1b:fb:0e:85:16:64:eb:51:df: ea:6e:c9:b3:b3:27:1a:a5:f7:98:eb:54:bf:6b:07:b9:2f:5e: 86:13:fd:31:b6:0d:57:0c:22:40:dd:99:6c:ba:2b:31:84:c2: 74:61:00:57:4c:da:ef:7c:a6:8e:4f:51:70:4e:3a:33:49:b3: 8c:ad:68:dd:2f:17:6a:8d:8e:b9:25:54:03:1f:78:2c:3a:96: 36:28:35:fa:02:17:4b:ad:a5:ac:69:13:7c:1d:6c:05:19:e3: 23:1f:43:d0:f5:c7:8e:98:f7:04:a3:6c:7f:96:7c:6a:b6:93: f7:f4:2c:39:92:43:86:d3:d8:5d:57:8d:bc:1c:92:00:d9:c9: c1:44:b7:62:44:a1:c0:01:44:90:8e:2b:62:2e:f4:68:e2:d2: 3a:23:55:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyRkQxMTAvBgNVBAUTKDVENDVEQUE1NThGRjY1RjY2NjM1Qjk2Nzg4MDlCOEFD RjA0MDczRDIwHhcNMjUxMDE5MDAyNDMwWhcNMjUxMDI2MDAyNDMwWjAYMRYwFAYD VQQDEw02OGY0MmZiZS1iY2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw0x58Xq6pIRnnz7mQ1X1WI/cVpyDLfIT1RUOGBI1O0RQBVKJRqH3RjIubinD mNBuRxtt+ZMAPMwDtrGmX16lovU85Hk3C37fVz5fjgbH61AOnUkUTDXmDskQjzEz c8UH8vGxfvQiMRvaXXx1521mssS2CZVfW4L+wWO35cbk8GKpXxSTasAtfwqIsUL5 wmD828XdeArUoS3MZnHynfvpPgrG07aHCByahC7apsh22MLGbDknMow1VtdJ3z3Z V5YOVDZdK1d0FdB1V9zuFSA29JMVpL5aA+F3g5dj2MsZdFSYc/TSjrAtWRajU0SH bx5Pwossw6DPGxQ36OLGUbCAiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPQN1k5h PyXQIh1vpncoBge3bzwaMB8GA1UdIwQYMBaAFF1F2qVY/2X2ZjW5Z4gJuKzwQHPS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTJGRC82MjVGMEYwQUJB Q0QxMUVCQUEyMzk3NkRDNEY5QUUwMi9YVVhhcFZqX1pmWm1OYmxuaUFtNHJQQkFj OUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hVWGFwVmpfWmZabU5ibG5pQW00clBCQWM5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTJGRC82MjVGMEYwQUJBQ0QxMUVCQUEyMzk3NkRDNEY5QUUwMi9YVVhhcFZqX1pm Wm1OYmxuaUFtNHJQQkFjOUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0J7CGjiBr7zk3DPhwpVRsmrqmCtxx0MDUxgcWDsiM6wiA7RDotzZs K7hqC7mfE2UT8JRrkn8tW4KW5bFWJZXJcQZSdbQcUURIHFYFdgrkdgBioBgY6Vku KCvxLPCOfgbHA7ob+w6FFmTrUd/qbsmzsycapfeY61S/awe5L16GE/0xtg1XDCJA 3ZlsuisxhMJ0YQBXTNrvfKaOT1FwTjozSbOMrWjdLxdqjY65JVQDH3gsOpY2KDX6 AhdLraWsaRN8HWwFGeMjH0PQ9ceOmPcEo2x/lnxqtpP39Cw5kkOG09hdV428HJIA 2cnBRLdiRKHAAUSQjitiLvRo4tI6I1UL -----END CERTIFICATE-----Generated at Mon Oct 20 04:19:36 2025 by rpki-client