$ rpki-client -vvf rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft File: XpnXCH3VTqLn519cgIcHE4Posp4.mft (raw, json) Hash identifier: 4nd4oW6vNHnvHStf+31qPS2Ldr18FtUvS90AfOcOSYU= Subject key identifier: 96:C3:26:CA:24:D1:0E:04:92:66:F4:FD:C6:33:D8:9F:AC:71:B1:E6 Authority key identifier: 5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E Certificate issuer: /CN=A91F81D3/serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Certificate serial: 0B2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft Manifest number: 0B0E Signing time: Sat 18 Oct 2025 20:16:41 +0000 Manifest this update: Sat 18 Oct 2025 20:16:41 +0000 Manifest next update: Sat 25 Oct 2025 20:16:41 +0000 Files and hashes: 1: XpnXCH3VTqLn519cgIcHE4Posp4.crl (hash: hP8flRguj5br9pRNDu0v9hA5G9IqckzVa12nSZLXHDA=) 2: E4A8C1240A3611F08B9CFD4FC4F9AE02.roa (hash: pW6ZkmsKrYO4khbqPdFp+1VATISq0kaXo2DoENq+wFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:16:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2861 (0xb2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F81D3, serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Validity Not Before: Oct 18 20:16:41 2025 GMT Not After : Oct 25 20:16:41 2025 GMT Subject: CN=68f3f5a9-49f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ef:39:67:c4:7e:4b:69:d0:72:4a:48:bc:5c: 12:39:10:2b:80:de:38:a3:6e:05:bd:58:4e:de:77: f3:6c:6c:35:ab:fe:58:79:34:3b:b4:0d:59:4c:14: db:c8:56:a7:41:64:bd:e6:c6:a6:52:de:d7:76:45: 21:ba:14:98:8d:84:20:34:07:b3:86:0a:59:a8:79: 2c:7b:14:41:b6:0b:18:04:6a:8e:47:62:40:80:26: 7d:89:16:45:55:e0:de:00:ff:90:17:29:05:e0:38: 05:23:44:bd:4d:3d:56:84:9b:66:75:9b:db:00:fa: 57:4f:43:1b:e4:4d:80:4d:3b:ed:a4:17:74:6b:66: 6e:e7:5b:a1:a1:0e:53:60:5f:2c:ee:d9:d0:b3:e4: ad:39:84:c6:e2:89:5a:35:37:23:b4:65:c0:bb:b1: 9d:c8:af:23:cf:2f:ce:92:4b:ae:3c:77:76:c6:4c: 9f:94:04:ab:f9:45:9d:ab:2a:94:91:73:ad:1c:c2: b4:5b:aa:1e:0a:4f:91:dc:16:af:65:fe:77:31:78: 21:13:c5:61:8c:c7:e5:99:7a:56:d0:f6:d1:ce:72: 68:a8:57:bd:7b:71:f5:78:66:17:f3:41:e1:81:48: d1:12:17:f3:eb:41:56:79:71:e9:c7:bb:4b:1e:c1: 8b:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:C3:26:CA:24:D1:0E:04:92:66:F4:FD:C6:33:D8:9F:AC:71:B1:E6 X509v3 Authority Key Identifier: keyid:5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:fb:72:6d:5e:58:71:7f:3d:fa:e3:8e:c0:b8:df:fa:81:dd: c8:a2:30:94:f2:89:9a:41:d9:42:6d:6e:d0:0d:74:ff:6d:ff: 54:d0:70:75:4e:83:83:c9:e2:3d:42:20:e3:b5:97:eb:34:12: e0:ba:ea:86:52:4f:34:8d:d5:65:ea:f2:b2:4a:09:af:df:64: 19:db:20:e0:b5:1a:60:89:b9:d4:8d:8e:29:09:f1:6f:1d:78: 9d:b3:ae:26:53:27:e6:20:33:c9:6d:6c:2c:bd:1c:9d:41:82: c7:0e:c3:d5:36:67:90:89:2d:64:7b:cd:5d:cf:73:8a:5b:26: 22:54:0e:bb:8b:29:37:2b:14:1c:01:1e:59:3f:2b:a3:8c:32: 12:09:34:ca:98:00:4b:a8:4a:31:ae:a1:2a:df:88:d3:b0:96: a3:36:4b:7c:b8:54:f7:7f:81:23:ce:ac:c1:49:e2:a4:71:7f: 3e:e4:20:51:e3:f0:26:d4:69:2b:38:36:52:a0:5e:27:1b:18: fe:18:03:de:41:95:16:c4:b9:58:18:19:04:ee:4d:de:67:a0: ed:f3:bb:42:6a:b1:f4:26:19:76:8d:77:39:29:44:11:a3:4f: 86:4e:aa:91:fe:11:41:af:87:13:fe:6c:af:8f:e8:a3:4c:69: 1d:38:3e:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCy0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxRDMxMTAvBgNVBAUTKDVFOTlENzA4N0RENTRFQTJFN0U3NUY1QzgwODcwNzEz ODNFOEIyOUUwHhcNMjUxMDE4MjAxNjQxWhcNMjUxMDI1MjAxNjQxWjAYMRYwFAYD VQQDEw02OGYzZjVhOS00OWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs+85Z8R+S2nQckpIvFwSORArgN44o24FvVhO3nfzbGw1q/5YeTQ7tA1ZTBTb yFanQWS95samUt7XdkUhuhSYjYQgNAezhgpZqHksexRBtgsYBGqOR2JAgCZ9iRZF VeDeAP+QFykF4DgFI0S9TT1WhJtmdZvbAPpXT0Mb5E2ATTvtpBd0a2Zu51uhoQ5T YF8s7tnQs+StOYTG4olaNTcjtGXAu7GdyK8jzy/OkkuuPHd2xkyflASr+UWdqyqU kXOtHMK0W6oeCk+R3BavZf53MXghE8VhjMflmXpW0PbRznJoqFe9e3H1eGYX80Hh gUjREhfz60FWeXHpx7tLHsGLLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJbDJsok 0Q4Ekmb0/cYz2J+scbHmMB8GA1UdIwQYMBaAFF6Z1wh91U6i5+dfXICHBxOD6LKe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODFEMy8wQTg0NTlGNDUy MzUxMUVBOUEwQ0IyNzNDNEY5QUUwMi9YcG5YQ0gzVlRxTG41MTljZ0ljSEU0UG9z cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hwblhDSDNWVHFMbjUxOWNnSWNIRTRQb3NwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODFEMy8wQTg0NTlGNDUyMzUxMUVBOUEwQ0IyNzNDNEY5QUUwMi9YcG5YQ0gzVlRx TG41MTljZ0ljSEU0UG9zcDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAP+3JtXlhxfz36447AuN/6gd3IojCU8omaQdlCbW7QDXT/bf9U0HB1 ToODyeI9QiDjtZfrNBLguuqGUk80jdVl6vKySgmv32QZ2yDgtRpgibnUjY4pCfFv HXids64mUyfmIDPJbWwsvRydQYLHDsPVNmeQiS1ke81dz3OKWyYiVA67iyk3KxQc AR5ZPyujjDISCTTKmABLqEoxrqEq34jTsJajNkt8uFT3f4EjzqzBSeKkcX8+5CBR 4/Am1GkrODZSoF4nGxj+GAPeQZUWxLlYGBkE7k3eZ6Dt87tCarH0Jhl2jXc5KUQR o0+GTqqR/hFBr4cT/myvj+ijTGkdOD76 -----END CERTIFICATE-----Generated at Sun Oct 19 23:23:29 2025 by rpki-client