$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft File: XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft (raw, json) Hash identifier: W88/lD/shsTwrsYC12LSM5YCS5o+AiJKVA+8dvPL8ug= Subject key identifier: FC:B2:9D:4B:4A:BD:61:47:62:15:23:BD:B6:48:3B:29:7A:15:A5:FE Authority key identifier: 5E:E7:CF:43:9A:42:23:23:29:82:A2:CB:4D:E5:4F:37:C7:20:5A:A9 Certificate issuer: /CN=A913AE78/serialNumber=5EE7CF439A4223232982A2CB4DE54F37C7205AA9 Certificate serial: 079E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XufPQ5pCIyMpgqLLTeVPN8cgWqk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft Manifest number: 0797 Signing time: Sun 02 Nov 2025 21:25:56 +0000 Manifest this update: Sun 02 Nov 2025 21:25:55 +0000 Manifest next update: Sun 09 Nov 2025 21:25:55 +0000 Files and hashes: 1: XufPQ5pCIyMpgqLLTeVPN8cgWqk.crl (hash: IF7MErkhzHDaTg8+8Ghxb+Zh+Xq8lgR5309a5cytzIo=) 2: D6138A3C292A11EB9CEDCC26C4F9AE02.roa (hash: J8JdQshiJip721LPrJBgXIVa6Wu0FEEhzzbZ5GMATtY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.crl rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XufPQ5pCIyMpgqLLTeVPN8cgWqk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:25:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1950 (0x79e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE78, serialNumber=5EE7CF439A4223232982A2CB4DE54F37C7205AA9 Validity Not Before: Nov 2 21:25:55 2025 GMT Not After : Nov 9 21:25:55 2025 GMT Subject: CN=6907cc63-4996 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:09:3d:d5:a8:eb:bf:59:27:b0:9d:86:d7:96: 33:23:2d:1f:29:6c:89:05:5d:2e:28:92:4d:82:99: ff:1a:4c:f7:51:b1:8e:11:9e:e6:77:cd:fe:c8:34: b7:81:c4:73:b4:55:b0:84:62:7f:46:d4:9a:dd:75: e7:ce:2c:a5:a2:48:d2:f3:31:36:d2:af:22:65:ed: d0:64:9f:7b:f1:34:9d:81:7e:b3:f1:b1:44:e3:a5: 7a:60:b4:2f:82:05:91:c9:06:14:ba:ad:b8:74:e4: 80:41:ff:d0:19:a7:2e:9b:10:1d:e0:75:2d:85:77: c1:27:8b:24:6e:21:19:8d:c9:bf:05:16:4e:2f:fc: 30:00:83:2e:ef:94:3e:52:cd:cb:25:80:98:8b:fd: 31:39:5f:28:40:2d:44:fd:7a:59:b3:26:92:66:ce: 27:0f:0d:f7:1a:f1:79:60:0d:0b:e1:df:ea:6f:46: cb:c2:9e:7c:eb:19:fc:37:8d:20:53:90:de:cf:4f: d9:2e:ed:eb:f4:b5:60:f7:14:8e:96:00:29:57:69: 74:62:65:2a:3d:b3:90:bc:03:0a:e7:ee:01:57:22: 78:28:25:3f:58:09:a0:4c:f3:1a:fa:54:7b:e8:c1: c8:01:e0:ea:78:50:28:91:2a:93:6a:7b:f0:73:f3: c1:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:B2:9D:4B:4A:BD:61:47:62:15:23:BD:B6:48:3B:29:7A:15:A5:FE X509v3 Authority Key Identifier: keyid:5E:E7:CF:43:9A:42:23:23:29:82:A2:CB:4D:E5:4F:37:C7:20:5A:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XufPQ5pCIyMpgqLLTeVPN8cgWqk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:0a:e6:ea:84:5e:1e:e2:be:f3:35:31:3c:51:f8:29:23:4b: 66:37:35:fd:54:0d:b1:2e:21:39:35:35:91:7e:93:48:ba:22: 68:09:f3:0f:fb:98:e4:0f:43:74:6c:7d:a6:d8:42:8b:15:8d: 86:96:17:f8:b4:a4:6a:48:4d:38:6a:11:06:58:8d:30:de:a4: 47:8a:93:ee:a2:61:c6:5b:00:9c:82:66:cc:fe:cd:cf:07:19: d6:66:45:27:32:63:f4:61:cd:79:51:8e:b1:75:11:1f:5a:8c: 87:d1:5d:06:ec:f9:e7:3f:ae:71:53:a5:f0:23:0a:5e:6a:19: c7:db:07:c6:57:b7:b8:9b:ed:f4:c0:e2:bd:0e:c3:66:bc:62: 65:df:9e:f8:86:71:56:be:b8:28:33:77:53:04:b3:d1:a4:64: 5a:60:cb:8b:fb:de:e3:81:71:fc:e5:12:54:71:10:e9:42:88: 83:e6:57:50:f5:a6:72:ce:0a:ca:85:b1:e0:aa:9c:0d:bc:5a: 31:80:9d:e0:58:cb:57:85:15:0c:8b:c3:e6:30:6a:53:e5:dd: d4:cf:6c:96:27:ee:e9:bf:a0:30:89:8f:8d:6c:3a:f9:f0:69: 5a:6e:08:9f:99:29:e3:07:d7:8f:dd:b0:d5:60:ce:53:17:2e: f2:df:ae:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB54wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFNzgxMTAvBgNVBAUTKDVFRTdDRjQzOUE0MjIzMjMyOTgyQTJDQjRERTU0RjM3 QzcyMDVBQTkwHhcNMjUxMTAyMjEyNTU1WhcNMjUxMTA5MjEyNTU1WjAYMRYwFAYD VQQDEw02OTA3Y2M2My00OTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Ak91ajrv1knsJ2G15YzIy0fKWyJBV0uKJJNgpn/Gkz3UbGOEZ7md83+yDS3 gcRztFWwhGJ/RtSa3XXnziylokjS8zE20q8iZe3QZJ978TSdgX6z8bFE46V6YLQv ggWRyQYUuq24dOSAQf/QGacumxAd4HUthXfBJ4skbiEZjcm/BRZOL/wwAIMu75Q+ Us3LJYCYi/0xOV8oQC1E/XpZsyaSZs4nDw33GvF5YA0L4d/qb0bLwp586xn8N40g U5Dez0/ZLu3r9LVg9xSOlgApV2l0YmUqPbOQvAMK5+4BVyJ4KCU/WAmgTPMa+lR7 6MHIAeDqeFAokSqTanvwc/PBMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPyynUtK vWFHYhUjvbZIOyl6FaX+MB8GA1UdIwQYMBaAFF7nz0OaQiMjKYKiy03lTzfHIFqp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUU3OC9GMUY0RDNDRTI5 MjkxMUVCOTRFMzhEMjZDNEY5QUUwMi9YdWZQUTVwQ0l5TXBncUxMVGVWUE44Y2dX cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h1ZlBRNXBDSXlNcGdxTExUZVZQTjhjZ1dxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUU3OC9GMUY0RDNDRTI5MjkxMUVCOTRFMzhEMjZDNEY5QUUwMi9YdWZQUTVwQ0l5 TXBncUxMVGVWUE44Y2dXcWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/CubqhF4e4r7zNTE8UfgpI0tmNzX9VA2xLiE5NTWRfpNIuiJoCfMP +5jkD0N0bH2m2EKLFY2Glhf4tKRqSE04ahEGWI0w3qRHipPuomHGWwCcgmbM/s3P BxnWZkUnMmP0Yc15UY6xdREfWoyH0V0G7PnnP65xU6XwIwpeahnH2wfGV7e4m+30 wOK9DsNmvGJl3574hnFWvrgoM3dTBLPRpGRaYMuL+97jgXH85RJUcRDpQoiD5ldQ 9aZyzgrKhbHgqpwNvFoxgJ3gWMtXhRUMi8PmMGpT5d3Uz2yWJ+7pv6AwiY+NbDr5 8GlabgifmSnjB9eP3bDVYM5TFy7y364y -----END CERTIFICATE-----Generated at Tue Nov 4 01:10:36 2025 by rpki-client