$ rpki-client -vvf rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft File: Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft (raw, json) Hash identifier: vgOs4ZBYO37tmTEOBtT8PGzxiL5GVVdZdZMn7//sOJQ= Subject key identifier: 76:C4:20:47:A5:BB:DB:18:84:05:3E:8C:9E:8B:0A:63:EB:DE:C1:A5 Authority key identifier: 5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC Certificate issuer: /CN=A9158E8E/serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Certificate serial: 03FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft Manifest number: 03DA Signing time: Mon 03 Nov 2025 00:37:24 +0000 Manifest this update: Mon 03 Nov 2025 00:37:23 +0000 Manifest next update: Mon 10 Nov 2025 00:37:23 +0000 Files and hashes: 1: Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl (hash: BnJmEdXdZGOZv68KXyOseoN5FhaPZYBjR1jrvYHNp8w=) 2: 7B6F6276E03811EFAC3C5652C4F9AE02.roa (hash: melteXR1cRharD5muHTsf70+edihxivjKNNQzAZNpLE=) 3: 79C2D638E03811EFAC3C5652C4F9AE02.roa (hash: pIl/ybOSWeNJuXyu7vI+RsUvtpL0KXP/t0jEbgQtU7I=) 4: 7AA94F3CE03811EFAC3C5652C4F9AE02.roa (hash: ImUvDtTwcm68idWdwXB7tEHKc5rG51UP9vCEMxdSyRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:37:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1022 (0x3fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158E8E, serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Validity Not Before: Nov 3 00:37:23 2025 GMT Not After : Nov 10 00:37:23 2025 GMT Subject: CN=6907f944-755e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f9:ee:29:d4:60:eb:6d:3d:aa:92:41:2c:4e: bc:c0:1d:80:76:38:61:1a:34:75:8b:9d:bc:4f:d5: ca:d5:fc:70:d9:75:56:05:ee:5c:27:d4:5f:6c:68: 9c:04:ea:ab:3a:a5:a2:25:8b:ab:48:6c:05:fa:10: 42:10:6a:36:5d:2f:69:eb:9c:61:12:97:46:cf:d8: f8:e2:43:ee:31:28:52:19:8f:5d:bd:54:45:b1:6c: 2a:0f:8d:49:7f:cb:11:c1:18:b9:50:05:83:22:d9: 7e:11:2d:b7:2e:5c:b5:96:0a:fa:55:9a:84:a8:33: 3b:cf:d6:96:29:b6:0d:07:df:3e:f7:5e:8c:7e:b7: f8:54:77:21:86:84:f2:3c:a1:e4:47:b1:23:0e:1a: 28:00:e5:11:47:79:ee:14:6b:6a:8c:53:94:95:b3: a4:de:a2:2b:9a:3c:68:5a:03:19:6d:0e:ce:66:8c: d3:39:11:3a:34:e2:14:e9:15:54:d8:15:13:68:ba: b3:c8:57:1b:dd:86:84:5c:0e:a5:86:b2:22:91:ea: 0d:9e:c5:9c:8a:55:67:9d:8d:2b:75:e5:6b:b6:6a: 3c:26:70:0c:0e:79:dd:b2:99:ab:3c:c4:05:c2:93: 22:31:c1:c4:2f:cb:7b:5e:6a:76:bf:a4:5b:d1:30: 1d:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:C4:20:47:A5:BB:DB:18:84:05:3E:8C:9E:8B:0A:63:EB:DE:C1:A5 X509v3 Authority Key Identifier: keyid:5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:4c:55:07:56:e1:bf:77:31:e5:81:c3:3b:39:de:96:9e:53: 88:e5:bd:3b:8d:d6:16:63:c2:16:d2:aa:d7:6f:96:28:71:6f: 8a:b6:89:ee:ef:fd:d6:c8:09:fc:f1:9b:bf:fd:d1:08:cf:6f: 16:4c:0d:ef:06:9b:4f:bc:4c:7e:bc:98:c6:ea:8e:58:21:73: f7:b3:15:9f:57:5a:7a:80:ae:6c:28:91:19:89:fa:8b:71:d7: 0d:ea:6f:67:f2:de:1d:1d:f6:a9:d8:72:fc:47:f3:6e:d6:cd: b4:2f:93:cc:2a:16:39:8a:62:6b:a0:7f:51:35:54:c7:7b:4d: 15:b8:ba:3e:5a:88:06:63:8e:5e:5d:4c:a9:f4:cb:1e:aa:6a: c6:2c:91:9c:fb:33:7b:40:d1:95:a3:4d:21:49:17:ab:0e:2c: 52:b1:ab:8d:55:f4:f5:0e:10:17:64:68:dd:f2:e5:ff:ad:77: 7f:13:fe:91:35:f9:67:81:55:80:7a:a7:3c:4f:e3:4b:ba:54: 95:71:ce:e1:c7:3b:2c:ae:34:3f:8f:ec:9f:3a:06:75:19:5a: 34:25:91:d9:60:a0:2a:7f:01:5d:ba:78:ea:46:d0:56:93:ff: 66:f8:cd:31:7c:bf:b6:c1:51:f4:6f:ce:c6:10:bc:8a:4d:40: 97:c7:d8:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFOEUxMTAvBgNVBAUTKDVGMkU1RTYyOTMyQkI1MEE4NUZGMkY5QTVGMzFCMkJB REQ1RjM0QUMwHhcNMjUxMTAzMDAzNzIzWhcNMjUxMTEwMDAzNzIzWjAYMRYwFAYD VQQDEw02OTA3Zjk0NC03NTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/nuKdRg6209qpJBLE68wB2AdjhhGjR1i528T9XK1fxw2XVWBe5cJ9RfbGic BOqrOqWiJYurSGwF+hBCEGo2XS9p65xhEpdGz9j44kPuMShSGY9dvVRFsWwqD41J f8sRwRi5UAWDItl+ES23Lly1lgr6VZqEqDM7z9aWKbYNB98+916Mfrf4VHchhoTy PKHkR7EjDhooAOURR3nuFGtqjFOUlbOk3qIrmjxoWgMZbQ7OZozTORE6NOIU6RVU 2BUTaLqzyFcb3YaEXA6lhrIikeoNnsWcilVnnY0rdeVrtmo8JnAMDnndspmrPMQF wpMiMcHEL8t7Xmp2v6Rb0TAdLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHbEIEel u9sYhAU+jJ6LCmPr3sGlMB8GA1UdIwQYMBaAFF8uXmKTK7UKhf8vml8xsrrdXzSs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEU4RS8wNEZCQjhGMEFF MEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRRcUZfeS1hWHpHeXV0MWZO S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h5NWVZcE1ydFFxRl95LWFYekd5dXQxZk5Ldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEU4RS8wNEZCQjhGMEFFMEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRR cUZfeS1hWHpHeXV0MWZOS3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2TFUHVuG/dzHlgcM7Od6WnlOI5b07jdYWY8IW0qrXb5YocW+Ktonu 7/3WyAn88Zu//dEIz28WTA3vBptPvEx+vJjG6o5YIXP3sxWfV1p6gK5sKJEZifqL cdcN6m9n8t4dHfap2HL8R/Nu1s20L5PMKhY5imJroH9RNVTHe00VuLo+WogGY45e XUyp9MseqmrGLJGc+zN7QNGVo00hSRerDixSsauNVfT1DhAXZGjd8uX/rXd/E/6R NflngVWAeqc8T+NLulSVcc7hxzssrjQ/j+yfOgZ1GVo0JZHZYKAqfwFdunjqRtBW k/9m+M0xfL+2wVH0b87GELyKTUCXx9ip -----END CERTIFICATE-----Generated at Tue Nov 4 07:23:36 2025 by rpki-client