$ rpki-client -vvf rpki.apnic.net/member_repository/A915B2F1/26007FB68DF111EB8D0EA511C4F9AE02/XoJBeVOzWp-LWaQuyUb00CTYd2s.mft File: XoJBeVOzWp-LWaQuyUb00CTYd2s.mft (raw, json) Hash identifier: R3NyB69GGbiDJLXSut2fWQbHp1pjm4wvTMTwuMCQ328= Subject key identifier: E9:B8:05:CF:12:F8:26:4C:69:A2:E7:35:CD:C5:CC:BC:A8:96:04:8A Authority key identifier: 5E:82:41:79:53:B3:5A:9F:8B:59:A4:2E:C9:46:F4:D0:24:D8:77:6B Certificate issuer: /CN=A915B2F1/serialNumber=5E82417953B35A9F8B59A42EC946F4D024D8776B Certificate serial: 0698 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoJBeVOzWp-LWaQuyUb00CTYd2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B2F1/26007FB68DF111EB8D0EA511C4F9AE02/XoJBeVOzWp-LWaQuyUb00CTYd2s.mft Manifest number: 0693 Signing time: Tue 04 Nov 2025 22:27:31 +0000 Manifest this update: Tue 04 Nov 2025 22:27:31 +0000 Manifest next update: Tue 11 Nov 2025 22:27:31 +0000 Files and hashes: 1: XoJBeVOzWp-LWaQuyUb00CTYd2s.crl (hash: wGAEF2vFUYnqctuc2VYQLDPoSLXhaeosvFFrGsMD1pU=) 2: 9378220A8DF211EBADEDD212C4F9AE02.roa (hash: VBf2KoYNobofH3/9baJ/IEUrVzYCh2sv0jk4TufySgA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B2F1/26007FB68DF111EB8D0EA511C4F9AE02/XoJBeVOzWp-LWaQuyUb00CTYd2s.crl rsync://rpki.apnic.net/member_repository/A915B2F1/26007FB68DF111EB8D0EA511C4F9AE02/XoJBeVOzWp-LWaQuyUb00CTYd2s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoJBeVOzWp-LWaQuyUb00CTYd2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:27:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1688 (0x698) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B2F1, serialNumber=5E82417953B35A9F8B59A42EC946F4D024D8776B Validity Not Before: Nov 4 22:27:31 2025 GMT Not After : Nov 11 22:27:31 2025 GMT Subject: CN=690a7dd3-b0e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:b2:5a:e1:63:22:09:7f:c0:57:62:fe:cc:08: ea:e6:76:a3:3b:0b:e5:40:3a:e8:d1:f6:44:91:eb: 36:6b:80:0e:4a:30:dd:90:ad:3e:65:8b:61:fc:3d: d8:0c:0e:22:86:fe:cc:a7:c0:74:b0:1a:03:3c:fc: 0d:d4:02:ac:7b:e1:fb:50:28:25:0e:0f:8e:8c:e8: 80:5f:b8:f3:21:79:82:d3:31:2e:39:30:14:41:17: 59:cf:0b:3e:08:03:37:e1:d4:79:9d:91:b6:5b:f0: 6d:3e:fd:99:7b:34:7c:ae:80:83:cc:13:2c:ce:b5: 9e:12:b9:b8:5d:36:ac:22:ee:43:2e:68:df:2e:2f: dd:63:87:c9:3c:44:92:81:6b:20:c7:66:00:2f:fb: a0:52:b8:70:72:c3:fc:88:27:da:13:c5:6c:19:02: 5c:b4:10:ab:b3:82:ad:16:39:0f:f6:e0:ce:37:20: d0:ba:b3:5a:2d:66:22:ed:41:fb:ae:59:8b:c4:ee: f7:92:61:63:6c:23:5b:87:5b:fd:57:bf:b0:39:2e: b9:fa:55:03:f4:8b:5c:17:c9:76:b8:c4:a1:53:54: 15:a0:2a:0e:79:33:d2:dc:d8:b6:f9:5b:8a:d4:43: 72:ea:0d:bf:79:d8:7a:68:99:a5:85:3a:6a:08:99: 7a:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:B8:05:CF:12:F8:26:4C:69:A2:E7:35:CD:C5:CC:BC:A8:96:04:8A X509v3 Authority Key Identifier: keyid:5E:82:41:79:53:B3:5A:9F:8B:59:A4:2E:C9:46:F4:D0:24:D8:77:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B2F1/26007FB68DF111EB8D0EA511C4F9AE02/XoJBeVOzWp-LWaQuyUb00CTYd2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XoJBeVOzWp-LWaQuyUb00CTYd2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B2F1/26007FB68DF111EB8D0EA511C4F9AE02/XoJBeVOzWp-LWaQuyUb00CTYd2s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:81:bf:f1:99:99:55:a7:bc:8a:3b:0c:3c:2e:a7:a1:0d:70: 56:c3:75:8c:c6:16:93:30:69:1d:64:81:cc:d7:8e:27:9d:79: 50:dc:66:82:14:32:dc:0b:6e:ad:7d:3f:a9:5b:30:eb:64:cf: 63:8f:8a:2c:d9:3b:e3:be:e0:62:91:dd:e2:3b:f6:cf:cb:06: f3:31:ca:d9:73:ff:e2:f1:1f:64:15:c9:88:5f:46:16:91:76: 3f:ca:6f:34:f1:1d:21:28:42:21:89:c3:93:15:4c:6b:3f:5c: ee:c5:c6:6c:0f:58:ba:c5:0f:a2:56:19:77:af:af:56:11:dc: 1f:c3:bf:c5:84:9f:42:44:7a:e7:b2:32:85:59:b9:e4:59:1f: 90:a8:51:60:0a:2a:48:78:e2:77:ee:d8:e0:47:c8:66:65:21: de:37:45:96:cc:64:fe:37:59:be:1a:eb:72:80:e2:e9:58:ec: 0d:5e:0b:2b:f3:d7:14:63:1e:98:e9:55:87:67:53:3f:51:f3: 77:10:a9:39:0f:b2:d6:a7:72:91:62:7a:8b:b9:bf:09:e9:e0: 9f:3a:1e:5f:ee:90:1f:5c:83:62:6e:44:73:31:90:51:c6:73: 34:47:73:d1:75:90:b5:f1:d3:72:24:cc:c1:d3:4d:cf:c6:32: 7b:4a:cd:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUIyRjExMTAvBgNVBAUTKDVFODI0MTc5NTNCMzVBOUY4QjU5QTQyRUM5NDZGNEQw MjREODc3NkIwHhcNMjUxMTA0MjIyNzMxWhcNMjUxMTExMjIyNzMxWjAYMRYwFAYD VQQDEw02OTBhN2RkMy1iMGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA37Ja4WMiCX/AV2L+zAjq5najOwvlQDro0fZEkes2a4AOSjDdkK0+ZYth/D3Y DA4ihv7Mp8B0sBoDPPwN1AKse+H7UCglDg+OjOiAX7jzIXmC0zEuOTAUQRdZzws+ CAM34dR5nZG2W/BtPv2ZezR8roCDzBMszrWeErm4XTasIu5DLmjfLi/dY4fJPESS gWsgx2YAL/ugUrhwcsP8iCfaE8VsGQJctBCrs4KtFjkP9uDONyDQurNaLWYi7UH7 rlmLxO73kmFjbCNbh1v9V7+wOS65+lUD9ItcF8l2uMShU1QVoCoOeTPS3Ni2+VuK 1ENy6g2/edh6aJmlhTpqCJl6IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOm4Bc8S +CZMaaLnNc3FzLyolgSKMB8GA1UdIwQYMBaAFF6CQXlTs1qfi1mkLslG9NAk2Hdr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjJGMS8yNjAwN0ZCNjhE RjExMUVCOEQwRUE1MTFDNEY5QUUwMi9Yb0pCZVZPeldwLUxXYVF1eVViMDBDVFlk MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hvSkJlVk96V3AtTFdhUXV5VWIwMENUWWQycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QjJGMS8yNjAwN0ZCNjhERjExMUVCOEQwRUE1MTFDNEY5QUUwMi9Yb0pCZVZPeldw LUxXYVF1eVViMDBDVFlkMnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTgb/xmZlVp7yKOww8LqehDXBWw3WMxhaTMGkdZIHM144nnXlQ3GaC FDLcC26tfT+pWzDrZM9jj4os2TvjvuBikd3iO/bPywbzMcrZc//i8R9kFcmIX0YW kXY/ym808R0hKEIhicOTFUxrP1zuxcZsD1i6xQ+iVhl3r69WEdwfw7/FhJ9CRHrn sjKFWbnkWR+QqFFgCipIeOJ37tjgR8hmZSHeN0WWzGT+N1m+GutygOLpWOwNXgsr 89cUYx6Y6VWHZ1M/UfN3EKk5D7LWp3KRYnqLub8J6eCfOh5f7pAfXINibkRzMZBR xnM0R3PRdZC18dNyJMzB003PxjJ7Ss3A -----END CERTIFICATE-----Generated at Wed Nov 5 07:47:16 2025 by rpki-client