$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft File: xbajYOSK75Kf3CcpbR1S9b9umRY.mft (raw, json) Hash identifier: 8wMuhCTMOEgp2eLmeYj4kbUFcUY+EsCCrR9PQB8I+BU= Subject key identifier: 1C:F7:33:ED:4E:43:CC:EF:92:64:B3:52:F5:DF:3A:1E:DA:5C:BF:72 Authority key identifier: C5:B6:A3:60:E4:8A:EF:92:9F:DC:27:29:6D:1D:52:F5:BF:6E:99:16 Certificate issuer: /CN=A91FD088/serialNumber=C5B6A360E48AEF929FDC27296D1D52F5BF6E9916 Certificate serial: 0803 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft Manifest number: 07FC Signing time: Sat 18 Oct 2025 22:13:01 +0000 Manifest this update: Sat 18 Oct 2025 22:13:01 +0000 Manifest next update: Sat 25 Oct 2025 22:13:01 +0000 Files and hashes: 1: xbajYOSK75Kf3CcpbR1S9b9umRY.crl (hash: F7EvZzpCTycYumFsq+Nco9zEbwqBWRFRql1+Ivhakk0=) 2: 423EA4CC039B11EBB3C1465CC4F9AE02.roa (hash: LsVQKkTp9V5mDiVUJekj0bvUgPf5aQfKDpRqhhkjvWs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.crl rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:13:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2051 (0x803) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD088, serialNumber=C5B6A360E48AEF929FDC27296D1D52F5BF6E9916 Validity Not Before: Oct 18 22:13:01 2025 GMT Not After : Oct 25 22:13:01 2025 GMT Subject: CN=68f410ed-aada Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:25:9c:6c:1f:45:73:8a:4d:72:92:e5:c2:3c: 80:98:ab:8a:e4:8d:aa:0f:ad:08:0f:c7:5e:86:48: 12:66:63:dc:c0:c9:88:3f:2b:a4:1a:4c:ff:4c:6f: f6:56:2c:cc:e2:37:ac:fc:11:92:53:0b:39:d0:b7: 36:65:29:fa:19:a8:db:6f:04:ee:90:64:fc:77:5d: 43:e3:9f:bf:1e:b2:db:32:06:c8:58:ec:45:64:15: 40:9c:bb:2c:9e:b9:fb:a2:80:46:3d:9f:b2:00:e9: c7:08:a4:1f:07:1d:ef:3c:f3:ee:8f:33:e8:eb:3e: 5a:0e:57:c4:b6:34:d2:1e:71:93:39:a8:72:ff:0f: 7a:35:7e:95:de:ac:43:c4:74:3f:26:4e:15:ca:e1: 30:37:60:92:a5:8a:c6:28:e2:ae:4d:0d:c4:95:b5: 30:56:76:12:e5:9d:4b:ac:d8:a4:97:cb:77:80:3c: e3:85:0e:9a:77:a0:5e:6f:6b:d4:0c:c9:bc:b6:56: 22:65:80:f7:1a:67:21:51:5b:40:13:6e:dd:01:cb: 46:92:c8:3f:24:ee:db:df:0c:d7:d1:e2:bb:e3:83: 8a:94:9b:dc:54:5b:78:63:6a:9c:32:80:8d:b2:ef: 39:b7:10:e3:99:02:f0:28:fc:e0:32:df:5d:3b:24: 32:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:F7:33:ED:4E:43:CC:EF:92:64:B3:52:F5:DF:3A:1E:DA:5C:BF:72 X509v3 Authority Key Identifier: keyid:C5:B6:A3:60:E4:8A:EF:92:9F:DC:27:29:6D:1D:52:F5:BF:6E:99:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:04:c3:ae:c5:67:bd:cd:a6:5a:af:2c:59:f0:f9:6b:f1:b8: 1f:c5:0a:47:65:a6:38:05:43:b4:66:96:ce:4d:58:80:23:75: bf:5a:81:c1:3c:a8:86:84:69:87:c4:54:78:4d:5c:ba:f4:cf: f9:c3:b2:68:b9:e8:da:96:32:4b:99:35:37:5b:30:32:08:32: f2:78:0a:b1:02:8f:e4:13:e6:26:c7:e6:d0:58:7a:e9:64:da: f5:be:2a:14:3f:6d:c8:0d:fb:e7:52:4c:b0:b4:52:af:9d:dd: 72:d9:ac:5a:2f:28:e9:90:2c:de:8a:47:3f:b1:5d:86:38:48: 0e:15:3f:82:c8:52:05:4b:98:74:e6:2b:0e:4b:b5:1d:de:ed: a4:09:1c:31:c1:a8:d2:bf:3e:06:c6:ef:72:5a:6a:c7:2c:a8: 59:0e:8c:4f:e4:06:37:c1:4c:40:d5:3b:05:b8:30:40:fa:de: ce:d7:6f:21:b2:66:ce:66:0a:1c:d4:33:33:1e:bd:b3:ff:78: 99:65:d1:3a:59:0e:67:a5:c5:c3:93:9a:e7:f6:88:ea:5c:81: b9:3c:bc:77:fb:e1:1e:3d:bf:5f:16:8d:bf:62:3a:9b:d9:35: 02:6e:e0:d6:ee:f9:03:3d:a5:11:71:f3:75:82:9f:32:b9:9c: 3f:cf:00:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQwODgxMTAvBgNVBAUTKEM1QjZBMzYwRTQ4QUVGOTI5RkRDMjcyOTZEMUQ1MkY1 QkY2RTk5MTYwHhcNMjUxMDE4MjIxMzAxWhcNMjUxMDI1MjIxMzAxWjAYMRYwFAYD VQQDEw02OGY0MTBlZC1hYWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqSWcbB9Fc4pNcpLlwjyAmKuK5I2qD60ID8dehkgSZmPcwMmIPyukGkz/TG/2 VizM4jes/BGSUws50Lc2ZSn6GajbbwTukGT8d11D45+/HrLbMgbIWOxFZBVAnLss nrn7ooBGPZ+yAOnHCKQfBx3vPPPujzPo6z5aDlfEtjTSHnGTOahy/w96NX6V3qxD xHQ/Jk4VyuEwN2CSpYrGKOKuTQ3ElbUwVnYS5Z1LrNikl8t3gDzjhQ6ad6Beb2vU DMm8tlYiZYD3GmchUVtAE27dActGksg/JO7b3wzX0eK744OKlJvcVFt4Y2qcMoCN su85txDjmQLwKPzgMt9dOyQyKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBz3M+1O Q8zvkmSzUvXfOh7aXL9yMB8GA1UdIwQYMBaAFMW2o2Dkiu+Sn9wnKW0dUvW/bpkW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDA4OC80NEJBN0NBMkZE OUQxMUVBQTA0RUI4N0RDNEY5QUUwMi94YmFqWU9TSzc1S2YzQ2NwYlIxUzliOXVt UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hiYWpZT1NLNzVLZjNDY3BiUjFTOWI5dW1SWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDA4OC80NEJBN0NBMkZEOUQxMUVBQTA0RUI4N0RDNEY5QUUwMi94YmFqWU9TSzc1 S2YzQ2NwYlIxUzliOXVtUlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXBMOuxWe9zaZaryxZ8Plr8bgfxQpHZaY4BUO0ZpbOTViAI3W/WoHB PKiGhGmHxFR4TVy69M/5w7JouejaljJLmTU3WzAyCDLyeAqxAo/kE+Ymx+bQWHrp ZNr1vioUP23IDfvnUkywtFKvnd1y2axaLyjpkCzeikc/sV2GOEgOFT+CyFIFS5h0 5isOS7Ud3u2kCRwxwajSvz4Gxu9yWmrHLKhZDoxP5AY3wUxA1TsFuDBA+t7O128h smbOZgoc1DMzHr2z/3iZZdE6WQ5npcXDk5rn9ojqXIG5PLx3++EePb9fFo2/Yjqb 2TUCbuDW7vkDPaURcfN1gp8yuZw/zwDn -----END CERTIFICATE-----Generated at Mon Oct 20 04:06:13 2025 by rpki-client