$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft File: xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft (raw, json) Hash identifier: UlwUYW1XAnwG8FHkMVLgowVMq6VVROzzoI5eTmtAj04= Subject key identifier: 1E:88:47:BB:BE:0D:EC:F0:05:88:FB:46:13:98:A4:2E:46:79:F5:57 Authority key identifier: C4:55:B0:86:BA:B8:64:7C:D2:51:0C:A8:32:41:E7:00:14:CD:8A:44 Certificate issuer: /CN=A9157B66/serialNumber=C455B086BAB8647CD2510CA83241E70014CD8A44 Certificate serial: 0691 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xFWwhrq4ZHzSUQyoMkHnABTNikQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft Manifest number: 068C Signing time: Sun 02 Nov 2025 22:21:55 +0000 Manifest this update: Sun 02 Nov 2025 22:21:55 +0000 Manifest next update: Sun 09 Nov 2025 22:21:55 +0000 Files and hashes: 1: xFWwhrq4ZHzSUQyoMkHnABTNikQ.crl (hash: mKnQ9BLclE1VnvjADHeWORXY10r8QWSdv77IQ9WVozg=) 2: 807CB298903A11EBA9783756C4F9AE02.roa (hash: HcRkeL0L46StqN8XUYCiDhZBU5a1szFT/RluEKL79UI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.crl rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xFWwhrq4ZHzSUQyoMkHnABTNikQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:21:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1681 (0x691) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B66, serialNumber=C455B086BAB8647CD2510CA83241E70014CD8A44 Validity Not Before: Nov 2 22:21:55 2025 GMT Not After : Nov 9 22:21:55 2025 GMT Subject: CN=6907d983-6a8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:49:d1:b8:40:cb:2e:89:1b:bd:7b:0c:e4:7f: fc:ae:60:08:04:58:26:e9:cf:01:be:2e:16:6c:c8: e6:f1:aa:b7:20:ec:5b:10:a0:69:cb:6e:59:e1:c8: df:ce:25:1c:b7:43:c4:82:8f:fb:6f:17:81:05:86: 1e:fb:5e:d5:b6:5b:a5:08:da:4b:04:d0:93:50:fc: b3:47:5b:29:c7:d8:15:35:78:2c:05:74:5e:86:5d: 9e:0c:5c:97:1d:76:4a:7f:a2:59:9b:65:76:aa:02: fb:66:89:6c:bf:4c:12:ea:26:c1:9c:a2:00:53:84: 6a:49:33:13:ee:3c:18:b4:f2:fb:21:46:46:7a:88: aa:35:f3:3d:f9:76:64:46:86:7a:23:65:29:fe:73: 3f:e0:a5:ec:e4:e8:84:40:ef:4c:e7:bb:b1:a0:ab: 9d:45:fe:93:dc:67:fd:75:e6:21:5e:71:42:6f:c2: b7:14:09:65:d1:5d:1d:e1:d4:aa:78:af:ec:31:03: c4:35:f9:84:45:d8:0a:a2:4e:46:10:c2:72:e1:2d: 9f:da:96:7d:4d:d1:1a:0c:6c:d6:d2:04:b0:23:0b: 61:ab:e4:c0:7b:f2:11:90:08:ea:7d:0d:3b:83:34: 58:01:66:9c:1b:f1:79:ad:2a:77:4d:3e:aa:49:ae: 9b:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:88:47:BB:BE:0D:EC:F0:05:88:FB:46:13:98:A4:2E:46:79:F5:57 X509v3 Authority Key Identifier: keyid:C4:55:B0:86:BA:B8:64:7C:D2:51:0C:A8:32:41:E7:00:14:CD:8A:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xFWwhrq4ZHzSUQyoMkHnABTNikQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:b5:ab:ee:f3:45:25:e1:75:96:44:43:16:a6:e9:00:eb:51: 35:a4:3b:1c:38:78:a0:9c:e2:5f:e3:70:0c:ee:6b:e9:07:0a: 3a:4d:0c:4d:ff:64:32:26:0e:52:c3:53:d7:f5:6d:c0:5d:30: 26:06:92:e9:22:84:74:a7:a1:0f:f1:59:8f:0b:c4:35:9f:fe: 97:e2:19:26:cc:5a:1b:e0:23:12:8c:d6:51:21:63:d5:7b:cd: 6d:f5:26:9f:e1:1a:70:bc:46:98:f2:88:4b:50:9a:d0:f0:ef: 15:c0:1e:a0:29:5c:37:ca:e2:6f:1c:ba:53:9e:4d:19:7e:3a: be:51:2b:a0:f5:7d:08:06:80:c0:39:ca:64:d2:fc:52:7c:32: 29:0f:ec:6e:99:26:ea:84:9e:3f:1f:ba:00:90:8f:e1:13:65: 29:69:20:f2:22:2b:59:dd:74:a9:be:d6:c9:33:22:35:d7:6e: 62:2d:50:29:5b:e0:e0:5b:51:e7:48:b8:42:59:dd:03:fd:d0: 4e:38:70:bc:db:f4:4e:04:8e:32:eb:a1:4d:2e:cb:ee:32:c9: d8:47:a7:61:ae:a8:34:06:e4:35:ee:79:a6:da:a9:bc:7e:82: 29:09:44:26:75:ec:08:83:67:bd:32:fe:66:55:ad:7e:ff:e4: ab:c7:71:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCNjYxMTAvBgNVBAUTKEM0NTVCMDg2QkFCODY0N0NEMjUxMENBODMyNDFFNzAw MTRDRDhBNDQwHhcNMjUxMTAyMjIyMTU1WhcNMjUxMTA5MjIyMTU1WjAYMRYwFAYD VQQDEw02OTA3ZDk4My02YThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0knRuEDLLokbvXsM5H/8rmAIBFgm6c8Bvi4WbMjm8aq3IOxbEKBpy25Z4cjf ziUct0PEgo/7bxeBBYYe+17VtlulCNpLBNCTUPyzR1spx9gVNXgsBXRehl2eDFyX HXZKf6JZm2V2qgL7Zolsv0wS6ibBnKIAU4RqSTMT7jwYtPL7IUZGeoiqNfM9+XZk RoZ6I2Up/nM/4KXs5OiEQO9M57uxoKudRf6T3Gf9deYhXnFCb8K3FAll0V0d4dSq eK/sMQPENfmERdgKok5GEMJy4S2f2pZ9TdEaDGzW0gSwIwthq+TAe/IRkAjqfQ07 gzRYAWacG/F5rSp3TT6qSa6bXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB6IR7u+ DezwBYj7RhOYpC5GefVXMB8GA1UdIwQYMBaAFMRVsIa6uGR80lEMqDJB5wAUzYpE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0I2Ni9FNUM0RDMyNjkw MzgxMUVCQTREQzVBNTRDNEY5QUUwMi94Rld3aHJxNFpIelNVUXlvTWtIbkFCVE5p a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hGV3docnE0Wkh6U1VReW9Na0huQUJUTmlrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0I2Ni9FNUM0RDMyNjkwMzgxMUVCQTREQzVBNTRDNEY5QUUwMi94Rld3aHJxNFpI elNVUXlvTWtIbkFCVE5pa1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKtavu80Ul4XWWREMWpukA61E1pDscOHignOJf43AM7mvpBwo6TQxN /2QyJg5Sw1PX9W3AXTAmBpLpIoR0p6EP8VmPC8Q1n/6X4hkmzFob4CMSjNZRIWPV e81t9Saf4RpwvEaY8ohLUJrQ8O8VwB6gKVw3yuJvHLpTnk0Zfjq+USug9X0IBoDA Ocpk0vxSfDIpD+xumSbqhJ4/H7oAkI/hE2UpaSDyIitZ3XSpvtbJMyI1125iLVAp W+DgW1HnSLhCWd0D/dBOOHC82/ROBI4y66FNLsvuMsnYR6dhrqg0BuQ17nmm2qm8 foIpCUQmdewIg2e9Mv5mVa1+/+Srx3ER -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:38 2025 by rpki-client