$ rpki-client -vvf rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft File: XJzBFCqQdWDNmfBuXdAt5OIulEU.mft (raw, json) Hash identifier: ZfYQyjcchdGWjybZrP+IjpOaFpAu9wxLAI1TfWOgNqc= Subject key identifier: F8:CE:42:2C:FA:F2:B1:BC:2F:38:04:D5:04:6D:60:F7:94:AE:66:A0 Authority key identifier: 5C:9C:C1:14:2A:90:75:60:CD:99:F0:6E:5D:D0:2D:E4:E2:2E:94:45 Certificate issuer: /CN=A911636A/serialNumber=5C9CC1142A907560CD99F06E5DD02DE4E22E9445 Certificate serial: 024B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJzBFCqQdWDNmfBuXdAt5OIulEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft Manifest number: 023E Signing time: Wed 05 Nov 2025 02:05:37 +0000 Manifest this update: Wed 05 Nov 2025 02:05:36 +0000 Manifest next update: Wed 12 Nov 2025 02:05:36 +0000 Files and hashes: 1: XJzBFCqQdWDNmfBuXdAt5OIulEU.crl (hash: WxJsoHH9cMfdKWe6I7Dbnv5WNP6TA6iDLIB3/940w8s=) 2: D98071A44F4411F0AF01D40FC4F9AE02.roa (hash: jPpBuj/csuD+KDzy/QfN9S3fduIPNOyEYRQiDC1LErw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.crl rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJzBFCqQdWDNmfBuXdAt5OIulEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:05:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 587 (0x24b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911636A, serialNumber=5C9CC1142A907560CD99F06E5DD02DE4E22E9445 Validity Not Before: Nov 5 02:05:36 2025 GMT Not After : Nov 12 02:05:36 2025 GMT Subject: CN=690ab0f0-496e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:58:af:af:73:11:a6:e6:b6:6d:83:87:3d:2f: 37:26:62:99:0b:9b:2c:db:17:2a:aa:04:71:59:c1: 34:46:4a:27:69:ed:f7:7b:af:e4:78:ef:18:dc:c0: 62:c3:9b:b8:b9:71:ad:f5:aa:0b:60:7a:63:2a:c8: 61:fd:68:ed:7c:43:73:f4:a6:34:65:8b:10:da:55: 1d:90:7a:d2:05:3f:75:45:64:67:d7:76:80:1f:3f: 66:f5:c2:c2:2b:ce:58:99:49:19:d6:f5:44:c0:4b: 31:48:7c:3c:4f:80:45:3c:0a:ba:af:91:ae:ba:ab: d7:50:2a:90:e2:d4:4f:d2:fc:6b:56:d4:39:08:a3: 76:c2:95:ee:33:a3:66:fe:57:ba:f6:2e:e7:aa:11: 6e:25:f6:f6:20:49:d9:d6:fb:5d:8f:30:b5:5c:bc: 15:39:72:c5:d5:df:5d:08:05:93:d1:8c:cf:c6:44: 26:7f:dd:e7:a1:2e:68:ec:8c:4f:cc:64:68:6a:38: cc:25:6d:ac:9a:28:4e:5e:94:2a:88:52:98:7b:43: 88:ae:a9:dc:b3:83:0b:d0:49:22:c3:d1:50:09:32: 3f:e7:e3:e3:94:f9:57:97:e8:0f:e5:2d:a5:4d:08: 2d:0e:99:f2:dd:d0:5e:8a:b8:9c:78:9a:25:aa:63: 3f:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:CE:42:2C:FA:F2:B1:BC:2F:38:04:D5:04:6D:60:F7:94:AE:66:A0 X509v3 Authority Key Identifier: keyid:5C:9C:C1:14:2A:90:75:60:CD:99:F0:6E:5D:D0:2D:E4:E2:2E:94:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJzBFCqQdWDNmfBuXdAt5OIulEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:29:b0:89:a3:5b:46:a1:7f:56:e0:22:fe:aa:82:5d:b5:00: e1:87:4e:1d:e3:ea:5c:78:f3:f8:36:54:4c:bf:75:e9:2c:0b: ce:81:79:73:07:22:f7:41:d2:dc:40:09:5b:2d:86:81:ff:24: 33:a2:f7:ba:32:31:07:0c:57:18:46:5a:e3:aa:bb:e9:fd:e7: ed:7d:e6:e8:53:27:25:69:82:bd:30:01:86:50:33:15:f3:73: 70:bd:15:aa:8f:22:54:72:b0:a1:de:1e:50:49:b0:9c:cc:7d: 48:23:45:89:f2:c9:7a:6b:47:89:8d:31:cd:00:d0:30:57:19: 92:7d:c7:43:2b:e8:47:8c:ac:32:2b:35:89:06:74:0e:22:82: 6e:f6:9e:62:fa:3a:a0:bd:ea:b9:74:01:6f:24:f8:09:a3:ee: e9:39:d5:33:65:24:81:bf:63:d1:ec:ef:18:12:70:b3:14:46: 3c:b1:43:6e:55:47:53:0d:df:1d:94:dd:c2:d6:f5:0d:cf:8a: e3:ed:c8:4a:86:c0:e8:88:08:b9:93:81:7e:9d:1f:fa:c9:3f: b9:21:c0:02:0f:30:aa:bd:d5:b7:e4:9d:6a:57:1f:d7:54:bd: 2f:08:d8:8d:a6:69:81:35:ea:ab:74:fd:0a:b8:88:a3:a1:a4: ee:35:3d:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTYzNkExMTAvBgNVBAUTKDVDOUNDMTE0MkE5MDc1NjBDRDk5RjA2RTVERDAyREU0 RTIyRTk0NDUwHhcNMjUxMTA1MDIwNTM2WhcNMjUxMTEyMDIwNTM2WjAYMRYwFAYD VQQDEw02OTBhYjBmMC00OTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAslivr3MRpua2bYOHPS83JmKZC5ss2xcqqgRxWcE0Rkonae33e6/keO8Y3MBi w5u4uXGt9aoLYHpjKshh/WjtfENz9KY0ZYsQ2lUdkHrSBT91RWRn13aAHz9m9cLC K85YmUkZ1vVEwEsxSHw8T4BFPAq6r5GuuqvXUCqQ4tRP0vxrVtQ5CKN2wpXuM6Nm /le69i7nqhFuJfb2IEnZ1vtdjzC1XLwVOXLF1d9dCAWT0YzPxkQmf93noS5o7IxP zGRoajjMJW2smihOXpQqiFKYe0OIrqncs4ML0Ekiw9FQCTI/5+PjlPlXl+gP5S2l TQgtDpny3dBeiriceJolqmM/wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPjOQiz6 8rG8LzgE1QRtYPeUrmagMB8GA1UdIwQYMBaAFFycwRQqkHVgzZnwbl3QLeTiLpRF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjM2QS9CMEYzM0QyQTY2 RUUxMUVEQjNCNDFBNURDNEY5QUUwMi9YSnpCRkNxUWRXRE5tZkJ1WGRBdDVPSXVs RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hKekJGQ3FRZFdETm1mQnVYZEF0NU9JdWxFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjM2QS9CMEYzM0QyQTY2RUUxMUVEQjNCNDFBNURDNEY5QUUwMi9YSnpCRkNxUWRX RE5tZkJ1WGRBdDVPSXVsRVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAKbCJo1tGoX9W4CL+qoJdtQDhh04d4+pcePP4NlRMv3XpLAvOgXlz ByL3QdLcQAlbLYaB/yQzove6MjEHDFcYRlrjqrvp/eftfeboUyclaYK9MAGGUDMV 83NwvRWqjyJUcrCh3h5QSbCczH1II0WJ8sl6a0eJjTHNANAwVxmSfcdDK+hHjKwy KzWJBnQOIoJu9p5i+jqgveq5dAFvJPgJo+7pOdUzZSSBv2PR7O8YEnCzFEY8sUNu VUdTDd8dlN3C1vUNz4rj7chKhsDoiAi5k4F+nR/6yT+5IcACDzCqvdW35J1qVx/X VL0vCNiNpmmBNeqrdP0KuIijoaTuNT10 -----END CERTIFICATE-----Generated at Wed Nov 5 11:37:50 2025 by rpki-client