$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft File: XEzzdpk9EYUoJw3ZUvMCztV18dw.mft (raw, json) Hash identifier: kooNFGFwVXYPRhlYtb+/0VBh5H8mjsl/pCBt3w97fZM= Subject key identifier: 22:2C:96:26:C2:69:BD:F6:3C:B6:1C:79:E7:85:CA:CA:1E:C5:B8:4A Authority key identifier: 5C:4C:F3:76:99:3D:11:85:28:27:0D:D9:52:F3:02:CE:D5:75:F1:DC Certificate issuer: /CN=A91FBD89/serialNumber=5C4CF376993D118528270DD952F302CED575F1DC Certificate serial: 0552 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEzzdpk9EYUoJw3ZUvMCztV18dw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft Manifest number: 0552 Signing time: Sun 19 Oct 2025 01:09:05 +0000 Manifest this update: Sun 19 Oct 2025 01:09:04 +0000 Manifest next update: Sun 26 Oct 2025 01:09:04 +0000 Files and hashes: 1: XEzzdpk9EYUoJw3ZUvMCztV18dw.crl (hash: xIHmlBZ20qOpRdJawhd74NvaMnYI1HydbKihbrGJbxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.crl rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEzzdpk9EYUoJw3ZUvMCztV18dw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1362 (0x552) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBD89, serialNumber=5C4CF376993D118528270DD952F302CED575F1DC Validity Not Before: Oct 19 01:09:04 2025 GMT Not After : Oct 26 01:09:04 2025 GMT Subject: CN=68f43a31-210d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:22:91:f2:1f:0b:7c:4d:d9:cc:f8:72:26:7c: 2d:22:9b:4c:18:c0:25:8d:54:81:d3:df:a4:3c:81: df:cc:cc:4b:92:ff:64:f3:e4:b1:a0:26:ee:ad:8c: 8c:a7:55:6c:f3:b3:9a:d5:0c:ed:2c:5d:b6:24:14: 93:52:3d:e0:20:ff:5e:09:7d:c8:d8:08:fa:d4:eb: 8e:7b:c7:6d:cd:c1:53:0e:de:2e:be:ce:cc:a5:15: 76:d3:91:fc:c4:4a:cf:95:57:76:0f:cb:35:cf:7e: e3:29:4c:e9:76:38:0f:bf:18:77:28:04:53:ec:a6: 6c:1d:46:b6:09:e8:1e:ea:87:53:26:ce:48:65:bb: ec:23:0e:dd:82:f3:53:d3:b8:0b:53:cf:9c:19:d6: 2d:e3:46:24:2e:1e:eb:2b:10:66:20:1b:55:b0:09: 52:37:4b:78:b6:39:f8:c4:e8:45:95:77:3c:54:17: d0:11:3f:c0:1a:0c:eb:4f:20:d7:11:d5:eb:1b:6b: a5:ac:81:d2:fc:4b:c4:2d:6a:8e:84:ae:5b:ae:49: e3:c8:e8:45:28:a6:23:2c:52:bc:51:37:a1:49:fe: d4:be:0b:85:64:04:8a:80:c1:f4:24:f0:1b:84:a9: bc:f7:ae:b6:e1:ad:75:0d:e9:6f:62:98:2b:7e:19: 44:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:2C:96:26:C2:69:BD:F6:3C:B6:1C:79:E7:85:CA:CA:1E:C5:B8:4A X509v3 Authority Key Identifier: keyid:5C:4C:F3:76:99:3D:11:85:28:27:0D:D9:52:F3:02:CE:D5:75:F1:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEzzdpk9EYUoJw3ZUvMCztV18dw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBD89/F37C88EE0B7E11EC83129648C4F9AE02/XEzzdpk9EYUoJw3ZUvMCztV18dw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:39:cf:3a:9c:2d:bd:11:d1:c0:a4:a8:7a:ba:b9:89:49:07: f0:39:96:5a:ec:5a:ae:22:39:60:ac:78:68:ab:85:10:e7:5f: f7:8d:45:f0:90:17:21:af:a8:4c:63:73:d9:32:a7:ce:90:71: e9:00:36:9a:0b:94:12:f4:1d:59:90:fa:1c:7a:98:86:84:a5: 42:c8:b1:8f:6d:75:4f:b7:00:55:53:b6:90:3b:c4:e4:fe:d6: 58:9c:97:71:3c:2a:1d:59:27:29:44:9c:09:94:69:b0:c7:ca: e9:32:3f:70:37:19:81:81:5b:20:31:b0:07:45:a7:5f:8b:57: fa:c9:24:8a:a1:0d:b8:38:8a:88:43:ed:64:0c:69:52:d9:6d: 29:5a:86:09:e8:80:7c:1b:c9:fb:b2:af:67:00:ee:c9:09:a3: d7:24:f8:57:f5:57:39:ff:f0:bd:c3:04:9f:14:29:c5:9f:97: 11:d6:67:a1:d5:90:f2:81:00:ee:6e:97:6c:bc:30:c5:7e:76: f4:fa:ec:ea:b0:ce:f0:b5:c8:2d:c1:ea:7a:f4:62:45:2f:51: f4:49:3e:cf:de:05:78:aa:14:a2:b8:6c:fa:ee:0b:30:bf:b7: e1:a3:4b:85:0d:67:e1:ae:02:48:60:69:4f:bb:68:ee:2a:9a: 51:52:43:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJEODkxMTAvBgNVBAUTKDVDNENGMzc2OTkzRDExODUyODI3MEREOTUyRjMwMkNF RDU3NUYxREMwHhcNMjUxMDE5MDEwOTA0WhcNMjUxMDI2MDEwOTA0WjAYMRYwFAYD VQQDEw02OGY0M2EzMS0yMTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwiKR8h8LfE3ZzPhyJnwtIptMGMAljVSB09+kPIHfzMxLkv9k8+SxoCburYyM p1Vs87Oa1QztLF22JBSTUj3gIP9eCX3I2Aj61OuOe8dtzcFTDt4uvs7MpRV205H8 xErPlVd2D8s1z37jKUzpdjgPvxh3KART7KZsHUa2Cege6odTJs5IZbvsIw7dgvNT 07gLU8+cGdYt40YkLh7rKxBmIBtVsAlSN0t4tjn4xOhFlXc8VBfQET/AGgzrTyDX EdXrG2ulrIHS/EvELWqOhK5brknjyOhFKKYjLFK8UTehSf7UvguFZASKgMH0JPAb hKm896624a11DelvYpgrfhlEUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCIslibC ab32PLYceeeFysoexbhKMB8GA1UdIwQYMBaAFFxM83aZPRGFKCcN2VLzAs7VdfHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkQ4OS9GMzdDODhFRTBC N0UxMUVDODMxMjk2NDhDNEY5QUUwMi9YRXp6ZHBrOUVZVW9KdzNaVXZNQ3p0VjE4 ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hFenpkcGs5RVlVb0p3M1pVdk1DenRWMThkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkQ4OS9GMzdDODhFRTBCN0UxMUVDODMxMjk2NDhDNEY5QUUwMi9YRXp6ZHBrOUVZ VW9KdzNaVXZNQ3p0VjE4ZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoOc86nC29EdHApKh6urmJSQfwOZZa7FquIjlgrHhoq4UQ51/3jUXw kBchr6hMY3PZMqfOkHHpADaaC5QS9B1ZkPocepiGhKVCyLGPbXVPtwBVU7aQO8Tk /tZYnJdxPCodWScpRJwJlGmwx8rpMj9wNxmBgVsgMbAHRadfi1f6ySSKoQ24OIqI Q+1kDGlS2W0pWoYJ6IB8G8n7sq9nAO7JCaPXJPhX9Vc5//C9wwSfFCnFn5cR1meh 1ZDygQDubpdsvDDFfnb0+uzqsM7wtcgtwep69GJFL1H0ST7P3gV4qhSiuGz67gsw v7fho0uFDWfhrgJIYGlPu2juKppRUkNo -----END CERTIFICATE-----Generated at Sun Oct 19 23:28:55 2025 by rpki-client