$ rpki-client -vvf rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.mft File: XAVrgGGoYiwsBruFeG6dxhNhS8o.mft (raw, json) Hash identifier: jg1D3a41KlNhJACAQoam+gbM5TJWeFQ0sGhClPtA9N8= Subject key identifier: 17:54:E9:F9:EC:F9:82:50:A6:55:F6:5E:89:FB:74:C9:62:B3:B7:B0 Authority key identifier: 5C:05:6B:80:61:A8:62:2C:2C:06:BB:85:78:6E:9D:C6:13:61:4B:CA Certificate issuer: /CN=A914A814/serialNumber=5C056B8061A8622C2C06BB85786E9DC613614BCA Certificate serial: 0262 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAVrgGGoYiwsBruFeG6dxhNhS8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.mft Manifest number: 023F Signing time: Thu 23 Oct 2025 03:37:19 +0000 Manifest this update: Thu 23 Oct 2025 03:37:18 +0000 Manifest next update: Thu 30 Oct 2025 03:37:18 +0000 Files and hashes: 1: XAVrgGGoYiwsBruFeG6dxhNhS8o.crl (hash: VksCv+pZdZcKPam7pMTdwCZuGs32GJu0tK1PHm5Uj2w=) 2: 8C1315A8060611EFB7EFA66CC4F9AE02.roa (hash: D+g5jzuWcvphD1ps8jnw5QvvfxsQjGFWKglonqcWSi0=) 3: 710A095EB62A11EF9D01E53DC4F9AE02.roa (hash: Kuncg/OKHO6KINevgnEgm8twmyohuTIV8xS8NsrR5Yw=) 4: 6121C23230AC11F08C150767C4F9AE02.roa (hash: fShyVa3rIna9iRvZNHAjyEZoQgutIuaEQEMpg+RXaTc=) 5: CD152404495B11EF93EA3757C4F9AE02.roa (hash: G7ZmL/GFUdvItC3mb/pIr2VOosfHx+vaBIP/nBv1gCo=) 6: 71DFDF18890111EEB3F2581FC4F9AE02.roa (hash: 4uRsfI3UTikSBwFuE1LkYP4yx1HQPN2T4+sSHop7B54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.crl rsync://rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAVrgGGoYiwsBruFeG6dxhNhS8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 03:37:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 610 (0x262) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A814, serialNumber=5C056B8061A8622C2C06BB85786E9DC613614BCA Validity Not Before: Oct 23 03:37:18 2025 GMT Not After : Oct 30 03:37:18 2025 GMT Subject: CN=68f9a2ef-46ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:48:c8:e3:e9:13:a8:1a:a1:56:54:70:31:da: 14:e7:48:f5:94:86:38:5a:f5:80:42:d9:15:8b:83: c2:a3:a4:27:f5:98:81:79:f0:dd:6f:a2:cd:74:2b: 00:0b:b3:02:b7:36:b3:d4:5b:96:cd:2a:b3:74:16: 5d:1e:84:13:cb:5d:d4:e3:97:44:e5:01:9b:b5:ad: a4:52:b9:25:82:a2:4f:af:42:15:2e:1b:6f:34:c3: 53:2b:08:c2:f5:7f:7d:cd:9e:b6:ff:86:50:aa:0c: af:d3:01:7a:bd:80:c6:85:81:57:be:17:42:e9:62: c2:5e:2d:d4:92:fb:17:d0:40:ba:9e:29:84:5e:bc: df:fb:b6:a1:a9:2d:50:53:86:52:3a:12:31:27:fe: c5:94:75:61:92:cb:0f:ae:db:22:55:4e:8b:74:68: 7c:7d:3b:fa:bb:c2:b4:88:a5:27:be:81:a8:4d:10: 07:08:1e:d8:2e:74:54:c7:2c:82:18:79:d1:f8:cf: f3:d1:fa:6d:fb:5c:89:8a:36:9d:43:22:a1:f3:a3: e3:0e:02:1a:30:a7:1d:20:e6:a1:4c:6e:3b:36:05: e8:dd:1b:3e:73:aa:fc:dd:84:b1:55:b2:b8:10:0c: d9:f5:64:bb:d5:a9:f6:a6:9d:5a:c8:0c:94:a3:51: 1e:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:54:E9:F9:EC:F9:82:50:A6:55:F6:5E:89:FB:74:C9:62:B3:B7:B0 X509v3 Authority Key Identifier: keyid:5C:05:6B:80:61:A8:62:2C:2C:06:BB:85:78:6E:9D:C6:13:61:4B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAVrgGGoYiwsBruFeG6dxhNhS8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A814/D38A1912745E11EDBA688514C4F9AE02/XAVrgGGoYiwsBruFeG6dxhNhS8o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:ee:1c:08:46:fc:35:cf:f9:8d:6c:8e:22:ec:7f:67:6c:f0: 0c:66:4e:12:0a:b8:50:99:e0:73:81:0a:a8:b6:72:ea:cf:36: 69:1d:c9:b3:79:70:04:0d:69:ae:b1:3a:6f:ce:ca:48:11:31: cb:47:aa:8e:cb:d6:1e:b2:02:1e:ed:47:f3:b0:b1:2f:11:8d: dd:ef:f3:e0:a1:98:a6:ee:20:9f:f8:41:c7:99:6a:af:e9:be: 26:15:32:6f:12:66:5c:05:61:dc:15:ac:94:a1:51:41:ca:fe: fe:82:f5:45:ca:b0:6c:80:5b:39:f1:5a:52:8d:99:ca:cf:62: ab:38:af:82:68:c9:77:03:59:3d:ec:e6:71:2d:f3:8e:af:15: a6:a4:31:d9:80:bd:ae:87:2b:77:e5:b5:a3:75:1a:ad:6d:a5: 2f:1a:04:1f:9f:bb:32:ee:18:7f:8b:bf:86:ae:0e:61:f0:64: 75:9b:89:f7:6c:f7:1f:8a:07:14:8b:cf:9f:3b:5c:7c:1e:07: 83:d9:29:ff:67:81:0b:d0:fc:08:2f:9b:24:13:95:17:57:54: de:84:b5:9a:a4:ef:c0:57:39:77:5d:a6:e7:20:b3:41:d2:99: 0c:3b:ac:06:57:2f:91:f6:f4:2b:e5:ce:11:d7:b3:e2:20:18: 2c:fd:12:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE4MTQxMTAvBgNVBAUTKDVDMDU2QjgwNjFBODYyMkMyQzA2QkI4NTc4NkU5REM2 MTM2MTRCQ0EwHhcNMjUxMDIzMDMzNzE4WhcNMjUxMDMwMDMzNzE4WjAYMRYwFAYD VQQDEw02OGY5YTJlZi00NmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr0jI4+kTqBqhVlRwMdoU50j1lIY4WvWAQtkVi4PCo6Qn9ZiBefDdb6LNdCsA C7MCtzaz1FuWzSqzdBZdHoQTy13U45dE5QGbta2kUrklgqJPr0IVLhtvNMNTKwjC 9X99zZ62/4ZQqgyv0wF6vYDGhYFXvhdC6WLCXi3UkvsX0EC6nimEXrzf+7ahqS1Q U4ZSOhIxJ/7FlHVhkssPrtsiVU6LdGh8fTv6u8K0iKUnvoGoTRAHCB7YLnRUxyyC GHnR+M/z0fpt+1yJijadQyKh86PjDgIaMKcdIOahTG47NgXo3Rs+c6r83YSxVbK4 EAzZ9WS71an2pp1ayAyUo1EeNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBdU6fns +YJQplX2Xon7dMlis7ewMB8GA1UdIwQYMBaAFFwFa4BhqGIsLAa7hXhuncYTYUvK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTgxNC9EMzhBMTkxMjc0 NUUxMUVEQkE2ODg1MTRDNEY5QUUwMi9YQVZyZ0dHb1lpd3NCcnVGZUc2ZHhoTmhT OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hBVnJnR0dvWWl3c0JydUZlRzZkeGhOaFM4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTgxNC9EMzhBMTkxMjc0NUUxMUVEQkE2ODg1MTRDNEY5QUUwMi9YQVZyZ0dHb1lp d3NCcnVGZUc2ZHhoTmhTOG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAD7hwIRvw1z/mNbI4i7H9nbPAMZk4SCrhQmeBzgQqotnLqzzZpHcmz eXAEDWmusTpvzspIETHLR6qOy9YesgIe7UfzsLEvEY3d7/PgoZim7iCf+EHHmWqv 6b4mFTJvEmZcBWHcFayUoVFByv7+gvVFyrBsgFs58VpSjZnKz2KrOK+CaMl3A1k9 7OZxLfOOrxWmpDHZgL2uhyt35bWjdRqtbaUvGgQfn7sy7hh/i7+Grg5h8GR1m4n3 bPcfigcUi8+fO1x8HgeD2Sn/Z4EL0PwIL5skE5UXV1TehLWapO/AVzl3XabnILNB 0pkMO6wGVy+R9vQr5c4R17PiIBgs/RI6 -----END CERTIFICATE-----Generated at Thu Oct 23 09:56:29 2025 by rpki-client