$ rpki-client -vvf rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.mft File: XCJQF8zJYrDnOQswzwpWIvfN-u0.mft (raw, json) Hash identifier: MRicCsmwNkkhDugNeEBv/BH1ThTzcaQJPH3WrGiYcck= Subject key identifier: 21:21:70:0D:FB:6C:11:5E:DD:07:4D:B4:E6:6F:93:6B:67:BC:67:56 Authority key identifier: 5C:22:50:17:CC:C9:62:B0:E7:39:0B:30:CF:0A:56:22:F7:CD:FA:ED Certificate issuer: /CN=A9154330/serialNumber=5C225017CCC962B0E7390B30CF0A5622F7CDFAED Certificate serial: 1303 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCJQF8zJYrDnOQswzwpWIvfN-u0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.mft Manifest number: 1301 Signing time: Sun 02 Nov 2025 17:01:30 +0000 Manifest this update: Sun 02 Nov 2025 17:01:30 +0000 Manifest next update: Sun 09 Nov 2025 17:01:30 +0000 Files and hashes: 1: XCJQF8zJYrDnOQswzwpWIvfN-u0.crl (hash: oY9AdsVb+SdgRJ19i2rjjGtFQiZ9IZMhhw28PnR6Avo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.crl rsync://rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCJQF8zJYrDnOQswzwpWIvfN-u0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4867 (0x1303) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154330, serialNumber=5C225017CCC962B0E7390B30CF0A5622F7CDFAED Validity Not Before: Nov 2 17:01:30 2025 GMT Not After : Nov 9 17:01:30 2025 GMT Subject: CN=69078e6a-e750 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:04:2e:62:f3:e0:0c:12:06:6a:77:c1:97:63: 27:73:df:8c:4b:a3:ce:da:18:31:1d:1b:ad:bc:a1: 80:6e:08:b9:6e:d1:99:85:fb:1e:01:1c:e0:61:6b: d1:d1:24:ad:22:05:4b:f0:1d:08:ec:c8:97:54:5c: 65:9b:aa:c8:49:7e:f9:bc:f5:23:b3:cc:0c:db:22: 5a:5c:69:51:64:7b:4a:dc:30:9e:b0:c5:77:07:5e: 2f:40:22:c9:80:31:a6:9b:fb:b8:be:df:f6:e6:45: 68:65:20:55:62:7d:01:66:8c:20:ac:09:7a:21:a1: f8:28:a7:ee:78:b5:66:ee:f0:f8:f6:1e:57:8e:38: be:23:79:e9:99:ab:d4:f6:b6:d2:48:f0:ee:fe:a3: ac:6a:1e:a6:7a:77:cc:75:b1:fa:d6:14:8a:82:af: 7b:1c:39:b3:43:79:02:e6:cc:2f:f9:e9:ce:cd:85: 0f:21:0f:2e:b6:c9:87:7a:c4:03:b1:1e:75:d6:7a: ef:56:08:a0:a0:75:f2:00:b3:d6:db:b7:21:f8:28: 5a:88:96:ae:34:cf:5b:e7:b3:99:66:f0:d4:b4:38: 61:b6:5b:6c:67:63:ff:b6:56:43:00:ac:f3:95:ee: 27:76:87:56:dd:a4:e0:74:da:e7:01:5a:50:7d:f6: 4a:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:21:70:0D:FB:6C:11:5E:DD:07:4D:B4:E6:6F:93:6B:67:BC:67:56 X509v3 Authority Key Identifier: keyid:5C:22:50:17:CC:C9:62:B0:E7:39:0B:30:CF:0A:56:22:F7:CD:FA:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCJQF8zJYrDnOQswzwpWIvfN-u0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:16:23:49:da:64:e5:50:b0:b0:f1:27:3a:af:9e:30:8e:a6: e5:94:ac:cc:51:cf:05:f8:2b:5d:44:cf:3c:f7:04:8d:df:c7: e9:bd:1f:9c:51:12:4d:b9:4d:d3:bf:e4:74:af:bb:b2:14:ab: 50:d4:9a:09:f3:68:64:c4:5a:9b:55:21:d9:f9:5f:04:4b:fa: 87:2c:b6:48:fd:bf:57:69:b4:24:90:ba:1e:0c:2e:f1:58:53: d6:13:69:fc:1b:ca:28:da:69:81:fa:e7:5b:2c:6a:8c:3f:e9: f5:ee:eb:8e:25:fb:2d:06:2d:5f:32:3e:9e:5b:4e:1e:64:80: ed:d1:60:57:79:ac:af:c8:70:63:15:5c:64:44:38:c4:6f:5e: 39:58:12:e6:2e:ae:50:5f:08:60:d6:dd:c2:bb:85:67:e5:25: cd:b2:7e:6a:29:1d:65:86:ae:51:16:5c:e4:9f:1a:5f:f2:33: 82:b8:e3:59:d1:db:ab:d5:03:a2:c0:8d:3a:14:ae:f2:99:b0: 2a:5e:80:46:25:0e:30:f3:19:eb:d4:e7:e7:32:4f:1a:f2:df: 43:4d:9d:4c:37:11:b4:7e:ea:5a:a5:13:7c:7b:9e:e1:b5:04: 8d:a3:72:61:15:87:bd:26:29:37:4e:78:cf:f1:6b:39:75:1b: 17:89:9c:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEwMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQzMzAxMTAvBgNVBAUTKDVDMjI1MDE3Q0NDOTYyQjBFNzM5MEIzMENGMEE1NjIy RjdDREZBRUQwHhcNMjUxMTAyMTcwMTMwWhcNMjUxMTA5MTcwMTMwWjAYMRYwFAYD VQQDEw02OTA3OGU2YS1lNzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzAQuYvPgDBIGanfBl2Mnc9+MS6PO2hgxHRutvKGAbgi5btGZhfseARzgYWvR 0SStIgVL8B0I7MiXVFxlm6rISX75vPUjs8wM2yJaXGlRZHtK3DCesMV3B14vQCLJ gDGmm/u4vt/25kVoZSBVYn0BZowgrAl6IaH4KKfueLVm7vD49h5Xjji+I3npmavU 9rbSSPDu/qOsah6menfMdbH61hSKgq97HDmzQ3kC5swv+enOzYUPIQ8utsmHesQD sR511nrvVgigoHXyALPW27ch+ChaiJauNM9b57OZZvDUtDhhtltsZ2P/tlZDAKzz le4ndodW3aTgdNrnAVpQffZKCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCEhcA37 bBFe3QdNtOZvk2tnvGdWMB8GA1UdIwQYMBaAFFwiUBfMyWKw5zkLMM8KViL3zfrt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDMzMC9FQUQ4NzYzQ0Mw OTMxMUU4ODBFNTJEMjNDNEY5QUUwMi9YQ0pRRjh6SllyRG5PUXN3endwV0l2Zk4t dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hDSlFGOHpKWXJEbk9Rc3d6d3BXSXZmTi11MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDMzMC9FQUQ4NzYzQ0MwOTMxMUU4ODBFNTJEMjNDNEY5QUUwMi9YQ0pRRjh6Slly RG5PUXN3endwV0l2Zk4tdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJFiNJ2mTlULCw8Sc6r54wjqbllKzMUc8F+CtdRM889wSN38fpvR+c URJNuU3Tv+R0r7uyFKtQ1JoJ82hkxFqbVSHZ+V8ES/qHLLZI/b9XabQkkLoeDC7x WFPWE2n8G8oo2mmB+udbLGqMP+n17uuOJfstBi1fMj6eW04eZIDt0WBXeayvyHBj FVxkRDjEb145WBLmLq5QXwhg1t3Cu4Vn5SXNsn5qKR1lhq5RFlzknxpf8jOCuONZ 0dur1QOiwI06FK7ymbAqXoBGJQ4w8xnr1OfnMk8a8t9DTZ1MNxG0fupapRN8e57h tQSNo3JhFYe9Jik3TnjP8Ws5dRsXiZxm -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:36 2025 by rpki-client