$ rpki-client -vvf rpki.apnic.net/member_repository/A91423FF/D85A0B7C4DF811EE88687B65C4F9AE02/xqV28IzUpz6p3ZdQO8nSiwWRG5w.mft File: xqV28IzUpz6p3ZdQO8nSiwWRG5w.mft (raw, json) Hash identifier: V2VdXQyE7KPIk/OTEBZxYqGc6qPybPpHpJv4n/rOXJI= Subject key identifier: 9A:E7:AE:AD:25:B3:8F:F1:D7:CB:89:85:FA:BF:F1:DE:C7:D2:DE:58 Authority key identifier: C6:A5:76:F0:8C:D4:A7:3E:A9:DD:97:50:3B:C9:D2:8B:05:91:1B:9C Certificate issuer: /CN=A91423FF/serialNumber=C6A576F08CD4A73EA9DD97503BC9D28B05911B9C Certificate serial: 0199 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xqV28IzUpz6p3ZdQO8nSiwWRG5w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91423FF/D85A0B7C4DF811EE88687B65C4F9AE02/xqV28IzUpz6p3ZdQO8nSiwWRG5w.mft Manifest number: 0195 Signing time: Mon 03 Nov 2025 03:25:08 +0000 Manifest this update: Mon 03 Nov 2025 03:25:07 +0000 Manifest next update: Mon 10 Nov 2025 03:25:07 +0000 Files and hashes: 1: xqV28IzUpz6p3ZdQO8nSiwWRG5w.crl (hash: 8HjTMeEuOY/I6DTNXEcUH9S7IGxdaSA7dxY3otORbhc=) 2: 278C467E4DF911EE8927F265C4F9AE02.roa (hash: yfGsvyhYqLz0xE6IXfI7E9U3FSonAVaSuKA3zKUE4Zo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91423FF/D85A0B7C4DF811EE88687B65C4F9AE02/xqV28IzUpz6p3ZdQO8nSiwWRG5w.crl rsync://rpki.apnic.net/member_repository/A91423FF/D85A0B7C4DF811EE88687B65C4F9AE02/xqV28IzUpz6p3ZdQO8nSiwWRG5w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xqV28IzUpz6p3ZdQO8nSiwWRG5w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:25:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 409 (0x199) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91423FF, serialNumber=C6A576F08CD4A73EA9DD97503BC9D28B05911B9C Validity Not Before: Nov 3 03:25:07 2025 GMT Not After : Nov 10 03:25:07 2025 GMT Subject: CN=69082094-a891 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:4f:21:91:eb:26:58:2f:1c:50:f5:3e:c4:a0: 8f:eb:a3:b4:7b:31:76:3c:96:e6:fe:d1:39:05:2d: bf:39:ec:11:f4:60:42:96:65:77:a9:e3:5b:2a:5b: 5e:04:3b:a7:e0:98:f3:1b:a5:2d:65:54:62:f6:d7: ec:89:fa:da:63:6c:b7:8e:23:f1:a0:63:b0:79:e9: 42:15:59:14:58:b0:b2:c7:af:19:6b:48:e6:bc:4d: bc:b9:5d:5c:ab:58:3e:13:41:fc:34:d4:75:ef:18: 5e:d8:10:9b:d4:3a:c9:b4:b6:53:f9:34:5d:ad:c8: 1b:df:cc:5d:cb:c5:95:68:0f:95:da:f8:51:73:ef: 75:06:36:4c:aa:83:ed:f3:71:f7:35:63:51:1c:1f: 4b:cb:72:57:df:7a:6e:52:ab:ff:22:8c:91:73:eb: 2e:d4:9e:99:91:49:0f:18:35:a1:69:7a:24:1f:4b: 7a:69:22:d3:fc:c9:bc:5c:9c:cb:e3:59:b2:cb:11: 4c:b6:a9:1a:fc:04:1e:f4:8e:10:83:9c:26:42:72: b7:a5:f2:78:7d:f7:52:cd:12:80:2a:1c:f9:9f:73: b1:7a:d2:4a:c0:54:d2:34:10:d6:92:84:57:74:a6: 03:5e:b7:2b:9f:e0:23:0b:06:5c:aa:9b:16:22:0b: 38:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:E7:AE:AD:25:B3:8F:F1:D7:CB:89:85:FA:BF:F1:DE:C7:D2:DE:58 X509v3 Authority Key Identifier: keyid:C6:A5:76:F0:8C:D4:A7:3E:A9:DD:97:50:3B:C9:D2:8B:05:91:1B:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91423FF/D85A0B7C4DF811EE88687B65C4F9AE02/xqV28IzUpz6p3ZdQO8nSiwWRG5w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xqV28IzUpz6p3ZdQO8nSiwWRG5w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91423FF/D85A0B7C4DF811EE88687B65C4F9AE02/xqV28IzUpz6p3ZdQO8nSiwWRG5w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:37:8c:87:3d:9b:c0:25:19:8c:60:20:2b:e2:78:57:c1:e4: e5:2c:29:c3:4c:15:43:c7:64:70:83:c2:80:61:7e:d3:c0:6d: 28:44:85:16:91:37:d7:77:13:b0:13:14:05:f3:91:1e:37:2c: c3:4c:eb:69:b4:41:27:60:ef:58:66:35:be:8f:a9:da:92:60: c3:c8:8c:a2:91:e9:59:44:8e:77:70:0a:1e:66:76:18:51:f6: 75:19:30:59:e0:64:76:9e:6b:d1:24:30:9b:db:29:cd:52:7b: 6b:86:83:26:59:8b:46:5f:f2:2b:23:fe:ee:7c:20:f8:ff:65: 4b:82:85:9a:f9:50:97:f3:6b:96:03:e7:16:71:9a:b9:31:05: 5f:6c:fe:eb:d2:5a:8b:de:8d:46:2a:31:3f:4b:dd:f8:ad:8a: 1d:dc:b7:5f:8a:38:ff:6f:98:34:7e:8c:74:72:0f:0b:05:c7: 9e:eb:81:08:80:ac:18:64:3b:1e:99:6c:10:da:3e:af:f7:06: 13:ad:7c:6e:d0:f0:e0:9d:60:26:24:ee:54:29:6a:b9:20:e0: 0d:95:77:17:66:79:4a:a2:84:4f:7c:58:fb:01:78:97:d6:cd: 8e:65:ac:3b:06:86:f0:1b:b2:f1:e1:5f:18:8d:49:c6:1d:52: 3f:42:ac:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIzRkYxMTAvBgNVBAUTKEM2QTU3NkYwOENENEE3M0VBOUREOTc1MDNCQzlEMjhC MDU5MTFCOUMwHhcNMjUxMTAzMDMyNTA3WhcNMjUxMTEwMDMyNTA3WjAYMRYwFAYD VQQDEw02OTA4MjA5NC1hODkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwE8hkesmWC8cUPU+xKCP66O0ezF2PJbm/tE5BS2/OewR9GBClmV3qeNbKlte BDun4JjzG6UtZVRi9tfsifraY2y3jiPxoGOweelCFVkUWLCyx68Za0jmvE28uV1c q1g+E0H8NNR17xhe2BCb1DrJtLZT+TRdrcgb38xdy8WVaA+V2vhRc+91BjZMqoPt 83H3NWNRHB9Ly3JX33puUqv/IoyRc+su1J6ZkUkPGDWhaXokH0t6aSLT/Mm8XJzL 41myyxFMtqka/AQe9I4Qg5wmQnK3pfJ4ffdSzRKAKhz5n3OxetJKwFTSNBDWkoRX dKYDXrcrn+AjCwZcqpsWIgs4KQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJrnrq0l s4/x18uJhfq/8d7H0t5YMB8GA1UdIwQYMBaAFMaldvCM1Kc+qd2XUDvJ0osFkRuc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjNGRi9EODVBMEI3QzRE RjgxMUVFODg2ODdCNjVDNEY5QUUwMi94cVYyOEl6VXB6NnAzWmRRTzhuU2l3V1JH NXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hxVjI4SXpVcHo2cDNaZFFPOG5TaXdXUkc1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjNGRi9EODVBMEI3QzRERjgxMUVFODg2ODdCNjVDNEY5QUUwMi94cVYyOEl6VXB6 NnAzWmRRTzhuU2l3V1JHNXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiN4yHPZvAJRmMYCAr4nhXweTlLCnDTBVDx2Rwg8KAYX7TwG0oRIUW kTfXdxOwExQF85EeNyzDTOtptEEnYO9YZjW+j6nakmDDyIyikelZRI53cAoeZnYY UfZ1GTBZ4GR2nmvRJDCb2ynNUntrhoMmWYtGX/IrI/7ufCD4/2VLgoWa+VCX82uW A+cWcZq5MQVfbP7r0lqL3o1GKjE/S934rYod3Ldfijj/b5g0fox0cg8LBcee64EI gKwYZDsemWwQ2j6v9wYTrXxu0PDgnWAmJO5UKWq5IOANlXcXZnlKooRPfFj7AXiX 1s2OZaw7BobwG7Lx4V8YjUnGHVI/QqxN -----END CERTIFICATE-----Generated at Mon Nov 3 18:11:07 2025 by rpki-client