$ rpki-client -vvf rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft File: XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft (raw, json) Hash identifier: q4FoNmIZVsvziwiJrnaCIPn42ztlL/I1gkoid5cee2U= Subject key identifier: 33:A2:A1:09:1F:D0:DC:AE:EC:09:FB:43:B0:62:22:D1:F6:9E:8E:83 Authority key identifier: 5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A Certificate issuer: /CN=A91524AF/serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Certificate serial: 04D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft Manifest number: 04BF Signing time: Tue 28 Oct 2025 23:44:05 +0000 Manifest this update: Tue 28 Oct 2025 23:44:04 +0000 Manifest next update: Tue 04 Nov 2025 23:44:04 +0000 Files and hashes: 1: XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl (hash: lRP5FX5M3X2KIOjKFB6AJc4xToGvO5eluV4nCirlciI=) 2: BEB34436FE3211EFAA1D9A4EC4F9AE02.roa (hash: yFDpBLHsX38bp2JcWh75H9eK/2yaSCGu63FKHuPPshA=) 3: 87840F3AFBD111EFB4804F27C4F9AE02.roa (hash: 4ehbMo37a6ch/Exe1ear/YvsEg7kjNmAG4ZYn9dhULQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Nov 2025 23:44:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1238 (0x4d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91524AF, serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Validity Not Before: Oct 28 23:44:04 2025 GMT Not After : Nov 4 23:44:04 2025 GMT Subject: CN=69015544-3891 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:cd:a2:40:3f:24:5a:0e:f7:b9:75:0a:86:d7: db:68:28:6a:f2:bb:21:7c:ce:02:ed:32:e8:0e:88: 73:45:8f:37:e0:c7:c9:41:92:d4:f8:c9:88:47:6e: af:5c:05:96:2a:89:f4:0a:52:f6:9e:f5:a1:05:d4: 0c:c7:3e:62:75:22:ec:72:32:74:05:5e:e6:f2:30: ad:ad:76:0a:df:32:40:6c:c7:3b:74:75:1e:5c:37: 32:e8:0a:59:30:33:ff:7b:29:85:57:7d:5f:e4:69: de:34:f0:04:69:8c:d3:0f:5e:78:77:e6:03:76:f6: 04:3b:bd:04:6b:9d:52:ab:3e:51:7b:9d:3f:6a:6a: d2:db:63:3a:ee:5f:a4:eb:27:d2:e8:a3:dc:49:89: b6:5a:52:e3:54:3e:50:2f:dd:76:a5:29:30:9d:c6: 5f:29:6e:e6:b4:d3:20:c8:c5:9d:f8:99:ef:f4:aa: a4:11:0e:5b:b8:36:38:5e:12:ba:6f:0e:b5:c2:45: 75:31:ba:37:13:cd:cd:26:a2:a3:f4:1c:1e:88:23: 23:a8:72:2c:d1:5f:a7:a4:20:80:1d:ee:49:40:72: 81:66:f9:13:3b:84:43:62:e0:cf:ff:26:ca:91:b7: 8a:4e:b0:6c:83:f7:4c:c9:1f:9a:5d:28:6c:5f:27: 5a:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:A2:A1:09:1F:D0:DC:AE:EC:09:FB:43:B0:62:22:D1:F6:9E:8E:83 X509v3 Authority Key Identifier: keyid:5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:e3:6e:8b:f4:be:14:14:4f:d6:2e:e2:f8:c4:86:02:d8:e8: bd:82:69:ea:b3:8c:cc:e2:1f:94:d1:46:42:82:54:07:5b:31: 0a:3f:58:52:3f:4a:4b:9d:72:16:82:fe:91:a1:d1:67:3e:f4: 7d:d0:f8:80:c3:b4:25:5d:6c:ac:aa:02:a6:27:f3:c6:8d:08: 36:ee:fd:83:59:2b:f3:ce:f5:ce:d0:1e:da:1d:d3:a1:5e:cd: 2f:8b:3a:a8:fb:8d:9d:48:07:0b:6e:98:a3:b9:84:4d:81:d2: 24:b7:a7:b0:a8:80:40:36:52:0f:ab:db:94:ae:d6:be:92:bd: ff:b1:43:8d:2f:75:47:b0:08:4f:92:0d:ea:6e:26:36:11:c3: 62:f5:d9:cf:58:5a:88:00:54:60:22:e4:a4:56:76:b7:70:49: 32:bb:f5:4f:d6:ad:b1:66:cd:ba:08:27:d8:fb:35:17:8c:30: dd:73:74:b4:6e:80:ad:97:b5:c7:3e:c5:7f:34:8d:9a:66:66: 9a:de:54:59:36:07:ad:41:07:09:d2:30:0c:eb:19:44:d7:08: bc:2e:dd:62:d8:38:76:ef:3d:34:00:0b:c8:72:06:58:77:ea: 56:6c:21:16:77:cd:b2:fb:92:8c:07:6f:cf:1b:8c:c6:47:8d: 24:44:2e:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI0QUYxMTAvBgNVBAUTKDVDMzE1REFGQzUzQTgyRkRENjJDNzIwMDVDNzY0NDMz M0JDMDI5N0EwHhcNMjUxMDI4MjM0NDA0WhcNMjUxMTA0MjM0NDA0WjAYMRYwFAYD VQQDEw02OTAxNTU0NC0zODkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5c2iQD8kWg73uXUKhtfbaChq8rshfM4C7TLoDohzRY834MfJQZLU+MmIR26v XAWWKon0ClL2nvWhBdQMxz5idSLscjJ0BV7m8jCtrXYK3zJAbMc7dHUeXDcy6ApZ MDP/eymFV31f5GneNPAEaYzTD154d+YDdvYEO70Ea51Sqz5Re50/amrS22M67l+k 6yfS6KPcSYm2WlLjVD5QL912pSkwncZfKW7mtNMgyMWd+Jnv9KqkEQ5buDY4XhK6 bw61wkV1Mbo3E83NJqKj9BweiCMjqHIs0V+npCCAHe5JQHKBZvkTO4RDYuDP/ybK kbeKTrBsg/dMyR+aXShsXyda7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDOioQkf 0Nyu7An7Q7BiItH2no6DMB8GA1UdIwQYMBaAFFwxXa/FOoL91ixyAFx2RDM7wCl6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjRBRi83NkM3RjBGNDUx RjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2M1dMSElBWEhaRU16dkFL WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hERmRyOFU2Z3YzV0xISUFYSFpFTXp2QUtYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjRBRi83NkM3RjBGNDUxRjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2 M1dMSElBWEhaRU16dkFLWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBW426L9L4UFE/WLuL4xIYC2Oi9gmnqs4zM4h+U0UZCglQHWzEKP1hS P0pLnXIWgv6RodFnPvR90PiAw7QlXWysqgKmJ/PGjQg27v2DWSvzzvXO0B7aHdOh Xs0vizqo+42dSAcLbpijuYRNgdIkt6ewqIBANlIPq9uUrta+kr3/sUONL3VHsAhP kg3qbiY2EcNi9dnPWFqIAFRgIuSkVna3cEkyu/VP1q2xZs26CCfY+zUXjDDdc3S0 boCtl7XHPsV/NI2aZmaa3lRZNgetQQcJ0jAM6xlE1wi8Lt1i2Dh27z00AAvIcgZY d+pWbCEWd82y+5KMB2/PG4zGR40kRC6X -----END CERTIFICATE-----Generated at Wed Oct 29 11:12:27 2025 by rpki-client