$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft File: Xx7oK_cJomzAAJlbR0geVPbzgG4.mft (raw, json) Hash identifier: WhDBFYZIKjda1d3N4JCF5X1ey98LEUslbGicL21IIYA= Subject key identifier: 0A:1E:35:84:E0:1B:3C:59:BC:41:3F:B1:D4:D6:89:23:2E:1B:C7:18 Authority key identifier: 5F:1E:E8:2B:F7:09:A2:6C:C0:00:99:5B:47:48:1E:54:F6:F3:80:6E Certificate issuer: /CN=A91F9E0A/serialNumber=5F1EE82BF709A26CC000995B47481E54F6F3806E Certificate serial: FC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xx7oK_cJomzAAJlbR0geVPbzgG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft Manifest number: F8 Signing time: Sun 19 Oct 2025 08:14:45 +0000 Manifest this update: Sun 19 Oct 2025 08:14:43 +0000 Manifest next update: Sun 26 Oct 2025 08:14:43 +0000 Files and hashes: 1: Xx7oK_cJomzAAJlbR0geVPbzgG4.crl (hash: pDm97UjLwz29piv9pwrOyVQ1hVr5ouEWiHoCy1A198Q=) 2: 9F4A37143EA511EF882FE276C4F9AE02.roa (hash: n1rSG6+YrBdrpyC7jAy4PT81hFwvfJMiF3pinZ5UvAs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.crl rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xx7oK_cJomzAAJlbR0geVPbzgG4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:14:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 252 (0xfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9E0A, serialNumber=5F1EE82BF709A26CC000995B47481E54F6F3806E Validity Not Before: Oct 19 08:14:43 2025 GMT Not After : Oct 26 08:14:43 2025 GMT Subject: CN=68f49df4-a714 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:9d:1a:d0:1e:5f:8e:4d:68:e7:40:d1:d3:fb: c7:38:8e:92:cc:ab:91:57:cb:62:e0:34:71:54:29: 10:88:83:b4:6b:b8:6c:f2:7b:5c:fe:f5:81:8c:97: 7a:78:15:33:c2:95:b4:d7:c5:a3:b0:90:e4:50:33: 0c:58:ac:1e:a5:ab:07:2c:3f:3e:d8:f1:d3:92:8a: a3:fd:cc:af:17:cb:6b:04:53:27:4e:c7:d4:21:bf: ce:39:66:96:5c:8f:54:9e:5a:bc:bb:2f:f1:ed:8d: 8e:06:d2:43:c3:34:88:46:4c:f9:cb:d0:35:65:29: a7:c8:fa:d4:2b:7d:ce:ed:80:8b:8e:f1:fe:e3:77: 8c:3d:ae:4a:e7:7a:03:5e:45:57:93:ba:c8:71:05: e6:fc:76:cb:e1:0d:bd:25:25:f7:e7:93:31:17:82: a1:5d:dd:38:a6:aa:fb:77:be:6b:be:09:b3:5d:34: 2d:5d:62:59:4e:52:9c:ef:f5:83:fe:d8:63:e8:62: 23:b4:6e:e1:53:04:23:ac:a9:7c:a0:ad:e5:56:c0: 1a:ae:86:99:d0:08:20:d5:ef:12:1e:36:ae:ed:b6: e0:98:19:3f:60:ef:71:b3:72:0f:de:0f:b7:47:30: b8:a7:3e:6f:b8:32:a3:c9:93:22:f3:d3:46:18:97: 01:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:1E:35:84:E0:1B:3C:59:BC:41:3F:B1:D4:D6:89:23:2E:1B:C7:18 X509v3 Authority Key Identifier: keyid:5F:1E:E8:2B:F7:09:A2:6C:C0:00:99:5B:47:48:1E:54:F6:F3:80:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xx7oK_cJomzAAJlbR0geVPbzgG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9E0A/03B052D43E6911EFA2CE676AC4F9AE02/Xx7oK_cJomzAAJlbR0geVPbzgG4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:67:dd:58:10:22:15:3e:38:54:62:44:15:df:be:d4:cc:80: 91:8b:aa:52:a2:d6:56:d6:2a:03:fb:0c:42:9e:a6:94:62:88: 52:8e:dc:e6:c1:1a:93:9d:17:28:99:70:f5:b8:94:ec:b3:a6: 65:28:0f:74:01:1d:2d:0a:6c:ba:c3:78:0a:a4:2d:8b:b3:9f: c7:3b:37:d3:0e:da:8f:d1:06:e8:36:f6:3f:09:7b:f5:df:0e: b1:88:db:04:28:52:ef:5b:e8:1a:12:96:22:1e:0a:b0:80:9b: 3d:fc:c5:a9:6d:fd:b2:2e:b7:d2:d0:00:92:ec:92:ea:95:14: 97:c7:b4:42:5b:2c:f7:57:f4:58:bd:cb:a2:36:66:32:f6:54: 88:fa:6d:e3:a8:28:a7:dc:ac:13:28:2a:8d:c6:6b:42:13:37: 43:19:92:41:24:a0:80:4c:28:b2:ed:ad:aa:68:1e:c0:02:89: 46:45:5d:ad:b5:d9:cc:b5:53:93:89:fa:0e:42:cb:d7:b0:df: 4a:8f:c7:02:8f:b7:7e:70:66:e8:d6:7b:a5:5d:ca:49:45:e9: f3:ec:99:d8:83:6b:f4:91:5a:b6:44:71:b3:b7:69:87:68:6b: f9:56:76:fb:66:fb:b7:37:d3:7c:53:a2:98:be:9a:14:90:dd: b1:dd:e9:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlFMEExMTAvBgNVBAUTKDVGMUVFODJCRjcwOUEyNkNDMDAwOTk1QjQ3NDgxRTU0 RjZGMzgwNkUwHhcNMjUxMDE5MDgxNDQzWhcNMjUxMDI2MDgxNDQzWjAYMRYwFAYD VQQDEw02OGY0OWRmNC1hNzE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqZ0a0B5fjk1o50DR0/vHOI6SzKuRV8ti4DRxVCkQiIO0a7hs8ntc/vWBjJd6 eBUzwpW018WjsJDkUDMMWKwepasHLD8+2PHTkoqj/cyvF8trBFMnTsfUIb/OOWaW XI9Unlq8uy/x7Y2OBtJDwzSIRkz5y9A1ZSmnyPrUK33O7YCLjvH+43eMPa5K53oD XkVXk7rIcQXm/HbL4Q29JSX355MxF4KhXd04pqr7d75rvgmzXTQtXWJZTlKc7/WD /thj6GIjtG7hUwQjrKl8oK3lVsAaroaZ0Agg1e8SHjau7bbgmBk/YO9xs3IP3g+3 RzC4pz5vuDKjyZMi89NGGJcBiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAoeNYTg GzxZvEE/sdTWiSMuG8cYMB8GA1UdIwQYMBaAFF8e6Cv3CaJswACZW0dIHlT284Bu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUUwQS8wM0IwNTJENDNF NjkxMUVGQTJDRTY3NkFDNEY5QUUwMi9YeDdvS19jSm9tekFBSmxiUjBnZVZQYnpn RzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1h4N29LX2NKb216QUFKbGJSMGdlVlBiemdHNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUUwQS8wM0IwNTJENDNFNjkxMUVGQTJDRTY3NkFDNEY5QUUwMi9YeDdvS19jSm9t ekFBSmxiUjBnZVZQYnpnRzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsZ91YECIVPjhUYkQV377UzICRi6pSotZW1ioD+wxCnqaUYohSjtzm wRqTnRcomXD1uJTss6ZlKA90AR0tCmy6w3gKpC2Ls5/HOzfTDtqP0QboNvY/CXv1 3w6xiNsEKFLvW+gaEpYiHgqwgJs9/MWpbf2yLrfS0ACS7JLqlRSXx7RCWyz3V/RY vcuiNmYy9lSI+m3jqCin3KwTKCqNxmtCEzdDGZJBJKCATCiy7a2qaB7AAolGRV2t tdnMtVOTifoOQsvXsN9Kj8cCj7d+cGbo1nulXcpJRenz7JnYg2v0kVq2RHGzt2mH aGv5Vnb7Zvu3N9N8U6KYvpoUkN2x3ekZ -----END CERTIFICATE-----Generated at Tue Oct 21 00:03:53 2025 by rpki-client