$ rpki-client -vvf rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.mft File: XTwWiWSSv8hwyKALZou_6VlF-No.mft (raw, json) Hash identifier: zidRRntL8z9yxFLFXB/fdaH/IET659pfvkGUWXbO3ag= Subject key identifier: B9:8C:9D:D5:30:65:50:BF:80:C0:4E:F0:15:F6:94:A1:3C:F6:0A:4B Authority key identifier: 5D:3C:16:89:64:92:BF:C8:70:C8:A0:0B:66:8B:BF:E9:59:45:F8:DA Certificate issuer: /CN=A9136C7C/serialNumber=5D3C16896492BFC870C8A00B668BBFE95945F8DA Certificate serial: 018D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTwWiWSSv8hwyKALZou_6VlF-No.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.mft Manifest number: 017F Signing time: Sun 19 Oct 2025 06:21:52 +0000 Manifest this update: Sun 19 Oct 2025 06:21:51 +0000 Manifest next update: Sun 26 Oct 2025 06:21:51 +0000 Files and hashes: 1: XTwWiWSSv8hwyKALZou_6VlF-No.crl (hash: OYWSe6R+6QW++7x5r09KmXjzirjPljosrYa8nD2Sv3c=) 2: DFE29CB669E511EE92E9E35AC4F9AE02.roa (hash: 1ZszVXnu+oof2agkcsw2N+1e9S9zcssyc5TigB7H1/w=) 3: 6821BAB4450C11F0A7A54A80C4F9AE02.roa (hash: cK+N9izYWqB7nJ2gb9CD89n2r86dl3xekNBy66q5a0Q=) 4: DF0BED1069E511EE92E9E35AC4F9AE02.roa (hash: e26WrvOpcLVtFLCEGQEyLqc/kWvK3maBfU7Yb9x41Mg=) 5: 6911C6C6450C11F0A7A54A80C4F9AE02.roa (hash: XM9Bx/2dvSebxGit5XsfhdOhtq9u4/gFe4PEE8p0hU0=) 6: 688DF576450C11F0A7A54A80C4F9AE02.roa (hash: 4F6WXMQnkc6O0hYawZzx3De82Qtz5srkx6WGHHAwdQk=) 7: 065143FAB71C11EF9C368D66C4F9AE02.roa (hash: ejDPctxuPr+08V8pahIdV3zpYnFneVGtkqcwrd8I5VM=) 8: DF7C0A6E69E511EE92E9E35AC4F9AE02.roa (hash: NbEb3oWP2ceJtb7zrqoj41m3/pXeHDptDVhijrcSdOE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.crl rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTwWiWSSv8hwyKALZou_6VlF-No.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:21:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 397 (0x18d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136C7C, serialNumber=5D3C16896492BFC870C8A00B668BBFE95945F8DA Validity Not Before: Oct 19 06:21:51 2025 GMT Not After : Oct 26 06:21:51 2025 GMT Subject: CN=68f4837f-0235 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:84:c5:77:62:7a:e2:fb:5d:78:16:a1:9c:8b: 3b:c2:45:7d:ac:fd:08:f3:a8:ac:b3:df:2a:8d:b9: f2:46:9c:a6:26:c2:4a:00:59:a5:8e:52:a9:a9:53: 38:ec:46:c8:c7:0d:35:de:70:40:b4:58:24:95:b3: 19:96:1f:92:5d:c9:75:95:eb:fb:4e:99:44:1e:9f: aa:bf:2a:51:9c:fe:63:1b:29:f1:d4:ae:ea:a8:29: 89:bf:c2:b3:7e:63:f8:21:2b:fd:d4:d9:a2:cc:ec: 27:6c:c6:76:43:e8:bd:1f:aa:28:ff:02:4e:cf:da: f0:8d:89:91:6b:b1:40:56:6e:14:89:40:4f:80:a4: ac:bc:ce:c6:69:a7:af:33:95:c8:9a:f5:3c:e0:56: d6:3f:aa:62:c9:06:8f:11:93:d3:70:0a:33:da:68: 15:59:94:44:3a:96:e5:30:35:9a:ab:b1:53:0e:79: 44:0e:c6:89:e0:46:a3:a0:12:fc:69:b5:2d:69:ec: c7:fe:4a:18:c7:5c:b6:ee:02:fe:43:8c:7c:a3:d4: de:4c:65:14:1b:c1:02:5a:77:28:a5:a5:2f:65:77: 69:1a:ec:92:e4:bf:d7:df:aa:3f:ed:fe:db:86:6e: 54:6f:38:45:1c:d0:5b:4c:c2:56:72:6f:a4:ea:29: 74:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:8C:9D:D5:30:65:50:BF:80:C0:4E:F0:15:F6:94:A1:3C:F6:0A:4B X509v3 Authority Key Identifier: keyid:5D:3C:16:89:64:92:BF:C8:70:C8:A0:0B:66:8B:BF:E9:59:45:F8:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTwWiWSSv8hwyKALZou_6VlF-No.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:4a:ee:2e:50:f5:0b:b2:50:b6:e0:95:a1:ba:e2:da:92:ec: 4b:93:9e:ce:f6:14:cd:91:a6:84:07:b6:d5:0d:0d:51:55:25: 96:2b:47:7c:6c:3e:f9:23:90:e4:49:c9:4b:12:f8:c0:09:81: de:35:a8:ff:4b:c5:76:cd:9b:9f:7b:88:cd:87:c2:32:d9:69: 26:ab:a8:f1:2d:c9:51:3e:02:9f:2b:21:b4:fc:0d:74:52:36: 23:b5:88:50:77:67:9f:08:eb:b1:34:77:37:bf:fc:0b:9e:a4: 69:a8:94:53:af:c3:1a:f7:a8:8c:0d:97:2a:ef:fc:7d:61:47: 7d:bd:69:b3:27:07:50:28:af:17:15:27:f8:ed:68:48:6f:0e: c9:55:7c:e4:36:56:cb:47:d3:1a:f2:19:44:a5:e4:27:ca:d9: d1:7a:22:03:56:6f:a4:2c:a7:bd:d6:7f:8c:15:c6:bb:39:1c: 6a:31:fc:45:38:ea:52:22:60:89:95:56:dc:82:13:db:aa:a6: f1:6d:ad:02:c7:d9:fa:3e:e5:e7:9e:2d:5c:ab:50:5c:8e:77: 3e:1b:fe:bd:4c:35:67:53:ea:17:9d:96:78:b2:82:83:a8:5d: 9d:ab:b4:a0:4a:d9:06:36:b7:fe:52:38:d4:05:b5:4d:90:0d: 9c:d7:eb:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZDN0MxMTAvBgNVBAUTKDVEM0MxNjg5NjQ5MkJGQzg3MEM4QTAwQjY2OEJCRkU5 NTk0NUY4REEwHhcNMjUxMDE5MDYyMTUxWhcNMjUxMDI2MDYyMTUxWjAYMRYwFAYD VQQDEw02OGY0ODM3Zi0wMjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6YTFd2J64vtdeBahnIs7wkV9rP0I86iss98qjbnyRpymJsJKAFmljlKpqVM4 7EbIxw013nBAtFgklbMZlh+SXcl1lev7TplEHp+qvypRnP5jGynx1K7qqCmJv8Kz fmP4ISv91NmizOwnbMZ2Q+i9H6oo/wJOz9rwjYmRa7FAVm4UiUBPgKSsvM7Gaaev M5XImvU84FbWP6piyQaPEZPTcAoz2mgVWZREOpblMDWaq7FTDnlEDsaJ4EajoBL8 abUtaezH/koYx1y27gL+Q4x8o9TeTGUUG8ECWncopaUvZXdpGuyS5L/X36o/7f7b hm5UbzhFHNBbTMJWcm+k6il0rwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLmMndUw ZVC/gMBO8BX2lKE89gpLMB8GA1UdIwQYMBaAFF08Folkkr/IcMigC2aLv+lZRfja MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkM3Qy8yQjVDQUFFODY5 RTUxMUVFQkI2NjgyNDZDNEY5QUUwMi9YVHdXaVdTU3Y4aHd5S0FMWm91XzZWbEYt Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hUd1dpV1NTdjhod3lLQUxab3VfNlZsRi1Oby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkM3Qy8yQjVDQUFFODY5RTUxMUVFQkI2NjgyNDZDNEY5QUUwMi9YVHdXaVdTU3Y4 aHd5S0FMWm91XzZWbEYtTm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACSu4uUPULslC24JWhuuLakuxLk57O9hTNkaaEB7bVDQ1RVSWWK0d8 bD75I5DkSclLEvjACYHeNaj/S8V2zZufe4jNh8Iy2Wkmq6jxLclRPgKfKyG0/A10 UjYjtYhQd2efCOuxNHc3v/wLnqRpqJRTr8Ma96iMDZcq7/x9YUd9vWmzJwdQKK8X FSf47WhIbw7JVXzkNlbLR9Ma8hlEpeQnytnReiIDVm+kLKe91n+MFca7ORxqMfxF OOpSImCJlVbcghPbqqbxba0Cx9n6PuXnni1cq1Bcjnc+G/69TDVnU+oXnZZ4soKD qF2dq7SgStkGNrf+UjjUBbVNkA2c1+sB -----END CERTIFICATE-----Generated at Sun Oct 19 19:10:29 2025 by rpki-client