$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft File: XmtaBob1a6DA93-zvzGzhWMiCCQ.mft (raw, json) Hash identifier: V7rbUzVizM14lqlciAq87hpS26BhOtwEsdTzhFEFVXQ= Subject key identifier: 8A:C5:02:E5:7B:0F:4A:E6:F8:25:6C:9A:FA:42:2C:97:0A:85:A6:06 Authority key identifier: 5E:6B:5A:06:86:F5:6B:A0:C0:F7:7F:B3:BF:31:B3:85:63:22:08:24 Certificate issuer: /CN=A91FE107/serialNumber=5E6B5A0686F56BA0C0F77FB3BF31B38563220824 Certificate serial: 232E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft Manifest number: 2314 Signing time: Sat 18 Oct 2025 16:05:42 +0000 Manifest this update: Sat 18 Oct 2025 16:05:42 +0000 Manifest next update: Sat 25 Oct 2025 16:05:42 +0000 Files and hashes: 1: XmtaBob1a6DA93-zvzGzhWMiCCQ.crl (hash: 1Ti9ISYlRENeYOdnoB1skCQ7MDz6B5pelqKy6sJi/QU=) 2: 44C007B0A0D611EDA2603C4EC4F9AE02.roa (hash: MAOIki/mm/t0sbRkALRqm8AR2/Jy8UBEI5Awsr4aYLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.crl rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:05:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9006 (0x232e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE107, serialNumber=5E6B5A0686F56BA0C0F77FB3BF31B38563220824 Validity Not Before: Oct 18 16:05:42 2025 GMT Not After : Oct 25 16:05:42 2025 GMT Subject: CN=68f3bad6-ad85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:cf:74:74:2f:30:66:8e:80:51:cc:4c:55:8c: 3e:97:f9:7d:fd:54:0b:f6:15:a7:0b:1c:21:49:39: 7f:d3:1c:17:b7:d2:ac:1e:b6:b9:9a:e7:16:0e:f8: 6b:32:30:b0:cc:73:a2:a1:69:b3:ea:d2:eb:07:9d: 5d:44:de:42:f5:38:f0:07:14:a1:fa:73:a8:4d:d8: 7c:96:33:c4:0a:92:7b:23:f5:dc:60:72:b9:ca:c5: 70:0e:3c:9c:c3:e5:74:fb:0e:68:1e:16:b5:32:6d: c1:31:06:90:e0:07:03:e9:c6:73:74:2d:94:45:72: 7a:61:83:e0:dd:0e:e7:23:c5:0f:48:8e:94:ab:24: 32:d5:b7:ba:5c:7f:95:26:23:ae:4b:29:b4:72:6a: 97:64:59:b8:95:41:31:98:9d:04:51:ab:78:39:a6: fb:1c:7f:98:84:32:fd:9a:1c:c5:5e:a2:75:b3:52: a5:ff:85:d0:f3:18:da:4a:1a:31:39:9a:b2:68:57: 60:47:d7:05:8b:aa:29:9f:cc:14:8e:15:b1:52:c9: 6f:48:2f:c1:ec:32:6d:26:5a:35:5c:4f:c3:7a:9e: d9:73:b8:22:50:0a:58:ab:cb:5b:ad:8f:d9:5f:b4: e6:89:2f:6a:74:e3:ca:21:fc:e4:9c:e3:68:8e:a6: 95:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:C5:02:E5:7B:0F:4A:E6:F8:25:6C:9A:FA:42:2C:97:0A:85:A6:06 X509v3 Authority Key Identifier: keyid:5E:6B:5A:06:86:F5:6B:A0:C0:F7:7F:B3:BF:31:B3:85:63:22:08:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:5c:36:4d:6a:18:0c:85:a3:54:97:3d:82:0b:b9:5d:22:5b: 4d:c8:c7:23:8d:ca:6c:b2:f9:62:ff:a3:2d:a1:fd:0b:7d:b7: df:36:a8:20:db:4d:43:57:39:5f:bf:1f:5a:dc:a5:9d:5f:63: fd:df:69:78:67:30:eb:6b:ee:23:93:ee:51:50:9a:4f:e3:df: d0:17:df:64:d2:84:29:33:f5:c4:db:20:d4:d3:ef:49:36:81: 62:42:27:a6:5b:4b:9b:f6:79:bb:2c:30:03:06:5c:3d:fc:a9: 96:7e:13:da:ca:51:5d:64:e2:3d:6e:07:52:f2:82:4d:74:06: 9b:a9:0e:7f:e5:07:80:66:1a:b8:0a:12:fa:81:c9:98:d0:ca: 4c:fc:b3:fb:23:7f:d9:af:db:91:37:68:86:44:6b:51:50:89: bb:37:f1:4a:dc:a2:c8:55:b2:2f:61:76:67:6d:bb:49:35:56: 36:fb:b4:b4:5f:66:0f:10:26:3c:e3:3a:ac:63:03:76:9d:21: 76:45:89:1e:65:b1:ba:f1:6b:75:99:c6:df:5e:79:9a:e2:89: b5:e8:fa:1c:06:a1:14:96:cb:8c:8d:90:d1:09:c0:f4:31:88: 0a:c4:95:97:a6:7b:fa:bb:52:53:6b:e3:fa:0f:24:a9:8d:6b: 80:a9:90:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIy4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkUxMDcxMTAvBgNVBAUTKDVFNkI1QTA2ODZGNTZCQTBDMEY3N0ZCM0JGMzFCMzg1 NjMyMjA4MjQwHhcNMjUxMDE4MTYwNTQyWhcNMjUxMDI1MTYwNTQyWjAYMRYwFAYD VQQDEw02OGYzYmFkNi1hZDg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqM90dC8wZo6AUcxMVYw+l/l9/VQL9hWnCxwhSTl/0xwXt9KsHra5mucWDvhr MjCwzHOioWmz6tLrB51dRN5C9TjwBxSh+nOoTdh8ljPECpJ7I/XcYHK5ysVwDjyc w+V0+w5oHha1Mm3BMQaQ4AcD6cZzdC2URXJ6YYPg3Q7nI8UPSI6UqyQy1be6XH+V JiOuSym0cmqXZFm4lUExmJ0EUat4Oab7HH+YhDL9mhzFXqJ1s1Kl/4XQ8xjaShox OZqyaFdgR9cFi6opn8wUjhWxUslvSC/B7DJtJlo1XE/Dep7Zc7giUApYq8tbrY/Z X7TmiS9qdOPKIfzknONojqaVlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIrFAuV7 D0rm+CVsmvpCLJcKhaYGMB8GA1UdIwQYMBaAFF5rWgaG9WugwPd/s78xs4VjIggk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTEwNy9FRTM1QzQ0NjlF NjQxMUU1OUQ0OEZCNjBDNEY5QUUwMi9YbXRhQm9iMWE2REE5My16dnpHemhXTWlD Q1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1htdGFCb2IxYTZEQTkzLXp2ekd6aFdNaUNDUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTEwNy9FRTM1QzQ0NjlFNjQxMUU1OUQ0OEZCNjBDNEY5QUUwMi9YbXRhQm9iMWE2 REE5My16dnpHemhXTWlDQ1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAXDZNahgMhaNUlz2CC7ldIltNyMcjjcpssvli/6Mtof0LfbffNqgg 201DVzlfvx9a3KWdX2P932l4ZzDra+4jk+5RUJpP49/QF99k0oQpM/XE2yDU0+9J NoFiQiemW0ub9nm7LDADBlw9/KmWfhPaylFdZOI9bgdS8oJNdAabqQ5/5QeAZhq4 ChL6gcmY0MpM/LP7I3/Zr9uRN2iGRGtRUIm7N/FK3KLIVbIvYXZnbbtJNVY2+7S0 X2YPECY84zqsYwN2nSF2RYkeZbG68Wt1mcbfXnma4om16PocBqEUlsuMjZDRCcD0 MYgKxJWXpnv6u1JTa+P6DySpjWuAqZD7 -----END CERTIFICATE-----Generated at Mon Oct 20 17:13:08 2025 by rpki-client