$ rpki-client -vvf rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft File: XQ11AElW7cyrm4QnGnNA5jhV_4o.mft (raw, json) Hash identifier: Wk5ComsuDZ1ACAzpmxFKyu9LZqHZgpaSO5fEz5Fcykc= Subject key identifier: 53:DD:25:5C:13:71:46:AA:84:D2:96:D6:B5:B0:44:45:D8:71:6A:49 Authority key identifier: 5D:0D:75:00:49:56:ED:CC:AB:9B:84:27:1A:73:40:E6:38:55:FF:8A Certificate issuer: /CN=A912BC39/serialNumber=5D0D75004956EDCCAB9B84271A7340E63855FF8A Certificate serial: 076F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft Manifest number: 0761 Signing time: Tue 04 Nov 2025 21:45:20 +0000 Manifest this update: Tue 04 Nov 2025 21:45:20 +0000 Manifest next update: Tue 11 Nov 2025 21:45:20 +0000 Files and hashes: 1: XQ11AElW7cyrm4QnGnNA5jhV_4o.crl (hash: kjaMc+kW1Yw7nj0uvRg7Gq3jG+/65nLcL1+q1gOBE/k=) 2: 8EBA772E3F2B11EB87759716C4F9AE02.roa (hash: JhJ29hsZ9Nl8Kc5Vc5GMGK+cSOOJDZ3+fb8ZbDKNP/w=) 3: 688EAE1E8A1911EC94921D85C4F9AE02.roa (hash: +jUuW9+jw1JUgmOZj9N0BtBUU0s0p/K1kZNOedeoZQI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.crl rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:45:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1903 (0x76f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BC39, serialNumber=5D0D75004956EDCCAB9B84271A7340E63855FF8A Validity Not Before: Nov 4 21:45:20 2025 GMT Not After : Nov 11 21:45:20 2025 GMT Subject: CN=690a73f0-9a10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f3:b8:d5:17:f4:70:79:de:86:fc:b9:18:a7: 07:42:d6:e9:bb:d6:70:71:c4:bf:62:89:aa:48:5c: 95:21:2a:e1:fb:74:39:4c:36:ac:01:6e:89:99:c0: 32:ab:40:d4:a6:9e:47:9d:02:57:e1:1d:b1:aa:38: e2:88:23:3d:a1:56:14:75:36:52:7b:b9:fb:53:22: cc:79:5b:7f:e9:aa:d2:f0:31:03:7e:2d:70:36:ae: 0c:de:c1:77:5f:92:c9:4e:d8:a4:93:9a:62:70:c2: e7:77:a2:15:ea:3b:54:a1:7d:7c:d8:0a:70:65:eb: a3:0b:82:c3:bc:dd:2e:58:ba:fe:ed:e0:57:28:ee: 96:46:d4:76:ca:8d:c1:aa:6a:ca:9d:2c:a2:7a:42: f8:f1:42:65:c6:8c:97:43:db:46:1d:71:b5:37:6c: fc:a5:dc:c4:bb:02:cc:40:69:d0:16:6d:7f:a2:d8: 4b:7d:73:c9:f9:00:75:dd:f8:8b:a6:ad:ee:b8:a5: 7f:49:00:8f:cb:1e:8a:a4:be:7d:52:d4:28:69:52: eb:b9:09:8e:6e:86:43:13:4e:98:fc:04:4e:b4:17: 66:4b:57:bb:ba:a7:ae:53:52:a5:82:9f:29:37:6d: 3a:54:fb:9e:10:e5:b0:d1:39:b0:66:29:17:c2:3e: b4:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:DD:25:5C:13:71:46:AA:84:D2:96:D6:B5:B0:44:45:D8:71:6A:49 X509v3 Authority Key Identifier: keyid:5D:0D:75:00:49:56:ED:CC:AB:9B:84:27:1A:73:40:E6:38:55:FF:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:4d:2d:78:92:f5:ac:df:44:a7:8e:f0:7d:f5:94:42:14:a1: 43:88:dc:5e:2e:a1:f0:4e:d3:87:e5:49:02:2a:e5:70:01:7b: 97:84:25:5d:5a:64:f8:21:36:63:da:19:c6:d4:68:5b:6d:73: 94:51:5e:67:08:ea:a3:5d:3c:83:60:0b:53:32:6b:58:9d:b0: 1d:24:0c:49:77:0e:7b:29:51:d7:f9:f9:be:da:14:f3:d0:83: 74:fe:b2:f3:53:26:c8:9f:8f:44:ca:76:da:89:b8:f3:af:27: 82:d7:0f:82:b6:94:10:0b:a9:02:d7:13:4f:b9:96:0c:da:10: 10:c6:56:7a:4f:20:3d:6f:eb:e0:a0:9b:59:5a:fa:e3:f5:f4: 05:25:77:6a:ff:ff:0e:1a:e4:12:bc:1b:1f:00:98:42:69:68: 42:e3:cc:97:df:6c:a7:0a:8f:8d:66:20:11:a8:be:56:1d:ce: 0e:01:fc:f6:93:ff:11:1d:41:51:b8:75:a7:49:5b:54:1a:a3: a2:0c:d1:b8:85:d4:61:1c:f1:d4:27:27:de:3f:db:9f:39:bd: 31:e9:48:cc:63:76:85:72:cb:20:aa:85:da:06:d6:54:bf:2d: 7c:0c:eb:61:34:59:f8:b1:c4:d9:c6:c5:0a:68:c5:8f:df:bd: e8:ce:53:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB28wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJDMzkxMTAvBgNVBAUTKDVEMEQ3NTAwNDk1NkVEQ0NBQjlCODQyNzFBNzM0MEU2 Mzg1NUZGOEEwHhcNMjUxMTA0MjE0NTIwWhcNMjUxMTExMjE0NTIwWjAYMRYwFAYD VQQDEw02OTBhNzNmMC05YTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwfO41Rf0cHnehvy5GKcHQtbpu9ZwccS/YomqSFyVISrh+3Q5TDasAW6JmcAy q0DUpp5HnQJX4R2xqjjiiCM9oVYUdTZSe7n7UyLMeVt/6arS8DEDfi1wNq4M3sF3 X5LJTtikk5picMLnd6IV6jtUoX182ApwZeujC4LDvN0uWLr+7eBXKO6WRtR2yo3B qmrKnSyiekL48UJlxoyXQ9tGHXG1N2z8pdzEuwLMQGnQFm1/othLfXPJ+QB13fiL pq3uuKV/SQCPyx6KpL59UtQoaVLruQmOboZDE06Y/AROtBdmS1e7uqeuU1Klgp8p N206VPueEOWw0TmwZikXwj60fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFPdJVwT cUaqhNKW1rWwREXYcWpJMB8GA1UdIwQYMBaAFF0NdQBJVu3Mq5uEJxpzQOY4Vf+K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkMzOS9CMzdCMTU4RTNG MjkxMUVCOUI5QTIzMTRDNEY5QUUwMi9YUTExQUVsVzdjeXJtNFFuR25OQTVqaFZf NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hRMTFBRWxXN2N5cm00UW5Hbk5BNWpoVl80by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkMzOS9CMzdCMTU4RTNGMjkxMUVCOUI5QTIzMTRDNEY5QUUwMi9YUTExQUVsVzdj eXJtNFFuR25OQTVqaFZfNG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6TS14kvWs30SnjvB99ZRCFKFDiNxeLqHwTtOH5UkCKuVwAXuXhCVd WmT4ITZj2hnG1GhbbXOUUV5nCOqjXTyDYAtTMmtYnbAdJAxJdw57KVHX+fm+2hTz 0IN0/rLzUybIn49EynbaibjzryeC1w+CtpQQC6kC1xNPuZYM2hAQxlZ6TyA9b+vg oJtZWvrj9fQFJXdq//8OGuQSvBsfAJhCaWhC48yX32ynCo+NZiARqL5WHc4OAfz2 k/8RHUFRuHWnSVtUGqOiDNG4hdRhHPHUJyfeP9ufOb0x6UjMY3aFcssgqoXaBtZU vy18DOthNFn4scTZxsUKaMWP373ozlOn -----END CERTIFICATE-----Generated at Wed Nov 5 16:49:00 2025 by rpki-client