$ rpki-client -vvf rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft File: XZRtT0edN7zhcAywut1RosPfYg8.mft (raw, json) Hash identifier: jEJjMUrIGvHnT3Yz0NbKPZ+1ZNrMfA7OEwk+6Wa7b4Y= Subject key identifier: AC:15:B2:ED:98:2C:C3:14:44:82:C7:39:A5:FD:AB:57:5C:9C:AD:33 Authority key identifier: 5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F Certificate issuer: /CN=A9152787/serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Certificate serial: C8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft Manifest number: C5 Signing time: Mon 03 Nov 2025 05:52:06 +0000 Manifest this update: Mon 03 Nov 2025 05:52:05 +0000 Manifest next update: Mon 10 Nov 2025 05:52:05 +0000 Files and hashes: 1: XZRtT0edN7zhcAywut1RosPfYg8.crl (hash: wxSAf70AKHVVFj/H3q3SnY6J9XQmkY9orEoMhuL2WBI=) 2: CB24F37C033711F0B76A8520C4F9AE02.roa (hash: 98s3ds+kGQSvl0ncwBjphBprg+/d5JhkpC63UpEc2Nk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:52:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 200 (0xc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152787, serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Validity Not Before: Nov 3 05:52:05 2025 GMT Not After : Nov 10 05:52:05 2025 GMT Subject: CN=69084306-51a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:6c:08:6d:a3:b1:92:63:0e:93:f5:ee:ec:79: 10:33:20:81:f3:74:bb:e5:ce:b9:3e:34:b7:3f:3c: 68:39:a6:99:46:68:d3:40:e7:f3:f6:3e:a9:06:6a: b8:c9:f9:df:a9:63:92:6a:f3:4e:5e:77:b7:a2:87: d4:a8:2e:03:e6:14:1d:30:34:1e:72:16:ff:18:eb: 25:36:c1:ec:2a:03:45:20:c2:74:f9:e6:5d:d4:43: 48:49:fa:47:9d:4f:d9:33:33:e1:b5:52:ed:0a:61: e6:10:fb:0c:89:b5:df:42:e7:e2:e1:11:ec:34:83: 1b:20:21:5e:2c:af:91:57:1d:13:22:a1:6e:b1:0b: cc:8a:63:d4:05:c5:3b:e2:60:c9:5c:d1:ae:be:f4: 83:06:40:3c:c0:9c:a5:ba:91:ce:47:21:d7:e4:c8: 43:d4:15:ef:c1:97:ab:b9:8c:ae:7e:db:94:ec:b0: cb:eb:87:df:65:9e:4a:e2:24:0c:e6:be:d7:67:cf: 4d:f6:b5:da:43:53:91:55:2c:b1:68:d4:f7:e7:e6: b9:e6:a8:36:09:fd:55:7a:7f:ac:74:70:02:41:4b: 14:7f:49:b9:bc:a7:d4:1c:20:6a:a5:c2:71:60:23: 9d:03:9e:e4:24:b8:14:da:15:17:c7:33:66:fd:db: 6d:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:15:B2:ED:98:2C:C3:14:44:82:C7:39:A5:FD:AB:57:5C:9C:AD:33 X509v3 Authority Key Identifier: keyid:5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:ae:6b:a2:bd:4e:9d:e6:35:a4:ec:51:f3:0a:eb:cb:36:6f: aa:44:08:69:47:0d:29:9c:0f:95:e0:ef:54:36:c9:40:3b:fb: 0d:e1:44:ad:b4:d6:b7:af:73:9f:60:90:72:9d:10:2a:de:56: ae:ee:b3:f2:86:f1:5f:52:a0:f9:e7:d1:3d:57:eb:d2:73:fa: f2:9f:1e:58:01:b4:8e:57:34:88:fd:2a:72:35:b7:09:45:b8: 46:09:73:7f:0f:54:da:c7:73:20:cf:2e:da:5a:5c:32:81:da: 60:0b:ca:ab:12:81:bc:1a:e9:ed:2f:c8:b2:d9:fb:16:ce:d0: bd:04:bc:02:3c:b6:08:5b:b2:64:e8:ef:33:fd:08:1c:4f:07: 78:66:8a:d2:97:7f:51:68:2c:67:07:43:39:f9:19:a4:f4:c1: 8b:25:27:b9:19:64:5c:d8:1f:5d:dd:9f:b7:77:c1:74:19:79: 29:63:de:db:cc:97:75:cf:44:64:7f:d0:36:ef:f3:c0:37:4b: d1:fd:72:b0:b7:4b:1d:eb:cc:0d:32:a5:22:20:4f:e5:40:f8: ff:a2:18:e7:c7:93:30:b6:b4:78:29:a5:33:a0:87:49:6f:73: 69:02:33:42:12:12:1f:20:b7:23:85:6e:62:d9:f2:73:c0:14: 6b:47:79:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI3ODcxMTAvBgNVBAUTKDVEOTQ2RDRGNDc5RDM3QkNFMTcwMENCMEJBREQ1MUEy QzNERjYyMEYwHhcNMjUxMTAzMDU1MjA1WhcNMjUxMTEwMDU1MjA1WjAYMRYwFAYD VQQDEw02OTA4NDMwNi01MWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2GwIbaOxkmMOk/Xu7HkQMyCB83S75c65PjS3PzxoOaaZRmjTQOfz9j6pBmq4 yfnfqWOSavNOXne3oofUqC4D5hQdMDQechb/GOslNsHsKgNFIMJ0+eZd1ENISfpH nU/ZMzPhtVLtCmHmEPsMibXfQufi4RHsNIMbICFeLK+RVx0TIqFusQvMimPUBcU7 4mDJXNGuvvSDBkA8wJylupHORyHX5MhD1BXvwZeruYyuftuU7LDL64ffZZ5K4iQM 5r7XZ89N9rXaQ1ORVSyxaNT35+a55qg2Cf1Ven+sdHACQUsUf0m5vKfUHCBqpcJx YCOdA57kJLgU2hUXxzNm/dttlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKwVsu2Y LMMURILHOaX9q1dcnK0zMB8GA1UdIwQYMBaAFF2UbU9HnTe84XAMsLrdUaLD32IP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Mjc4Ny8yMjg2NTYyQThG NzkxMUVGOTJBQzc4MUVDNEY5QUUwMi9YWlJ0VDBlZE43emhjQXl3dXQxUm9zUGZZ ZzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1haUnRUMGVkTjd6aGNBeXd1dDFSb3NQZllnOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Mjc4Ny8yMjg2NTYyQThGNzkxMUVGOTJBQzc4MUVDNEY5QUUwMi9YWlJ0VDBlZE43 emhjQXl3dXQxUm9zUGZZZzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgrmuivU6d5jWk7FHzCuvLNm+qRAhpRw0pnA+V4O9UNslAO/sN4USt tNa3r3OfYJBynRAq3lau7rPyhvFfUqD559E9V+vSc/rynx5YAbSOVzSI/SpyNbcJ RbhGCXN/D1Tax3Mgzy7aWlwygdpgC8qrEoG8GuntL8iy2fsWztC9BLwCPLYIW7Jk 6O8z/QgcTwd4ZorSl39RaCxnB0M5+Rmk9MGLJSe5GWRc2B9d3Z+3d8F0GXkpY97b zJd1z0Rkf9A27/PAN0vR/XKwt0sd68wNMqUiIE/lQPj/ohjnx5MwtrR4KaUzoIdJ b3NpAjNCEhIfILcjhW5i2fJzwBRrR3li -----END CERTIFICATE-----Generated at Wed Nov 5 04:49:48 2025 by rpki-client