$ rpki-client -vvf rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.mft File: XEFCLE7PHfpomnDePAORsdR-Vew.mft (raw, json) Hash identifier: kiee02xb1z7Pn4wBL+8+9i6acy3GZ2pCJ2P3cWPSvD0= Subject key identifier: 33:11:E9:55:38:48:39:70:0D:D2:85:CF:F4:F1:E1:A6:EF:6D:75:BA Authority key identifier: 5C:41:42:2C:4E:CF:1D:FA:68:9A:70:DE:3C:03:91:B1:D4:7E:55:EC Certificate issuer: /CN=A916B19D/serialNumber=5C41422C4ECF1DFA689A70DE3C0391B1D47E55EC Certificate serial: 02C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEFCLE7PHfpomnDePAORsdR-Vew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.mft Manifest number: 02C1 Signing time: Mon 03 Nov 2025 01:24:01 +0000 Manifest this update: Mon 03 Nov 2025 01:24:00 +0000 Manifest next update: Mon 10 Nov 2025 01:24:00 +0000 Files and hashes: 1: XEFCLE7PHfpomnDePAORsdR-Vew.crl (hash: fffwJCwQpol6LtIJ7IXiG8B8Sz/Dh3RVOQfeK0y+F3c=) 2: D11B9044112011EDAC1D3B15C4F9AE02.roa (hash: 61pm0oZ7VjxdVmZL23S60F3P/HQj2IC3SS8pznvYZ9k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.crl rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEFCLE7PHfpomnDePAORsdR-Vew.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:24:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 711 (0x2c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B19D, serialNumber=5C41422C4ECF1DFA689A70DE3C0391B1D47E55EC Validity Not Before: Nov 3 01:24:00 2025 GMT Not After : Nov 10 01:24:00 2025 GMT Subject: CN=69080431-99f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:78:05:53:16:92:ce:88:10:b9:7d:37:71:dc: eb:4e:30:d3:e0:14:1a:d8:9e:23:03:f1:41:2e:d8: 83:9e:88:89:3e:b5:b5:46:ff:e5:9f:1e:f7:33:bf: 0e:a4:ff:35:f6:81:88:d8:b1:f8:45:d7:1b:5a:b2: 1e:50:8c:4b:fc:ab:df:c8:9b:6e:05:6e:73:0b:b1: 9e:0f:e1:05:98:96:80:06:88:16:1d:7b:bf:3e:81: ac:c0:cf:db:41:b3:24:f0:54:fa:98:be:11:8d:01: 52:58:08:50:e8:83:4c:47:ef:fe:e1:32:a1:8e:6b: b5:32:cf:0a:d8:f5:b0:75:2d:2a:ec:8e:b0:10:81: d9:85:62:f6:71:ff:cf:e5:95:dc:23:b9:2b:9c:72: f1:63:8c:8d:3c:54:2c:f2:30:75:7c:1f:5b:0c:8b: 49:9a:62:66:be:06:4f:f3:3d:1d:d1:46:79:af:7f: d0:2c:b0:b9:f5:aa:15:ed:83:ac:c4:e5:de:75:5f: 7e:cc:93:47:19:0d:fd:c7:20:ef:8b:9f:ba:fe:02: a9:ee:ee:43:99:0d:d5:e1:e7:23:31:f7:59:66:bd: 87:fd:05:9a:b8:bb:4d:22:da:29:9d:06:dc:4a:c4: ac:8c:be:c4:6a:89:a8:5d:ad:f7:08:58:54:5a:2d: bc:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:11:E9:55:38:48:39:70:0D:D2:85:CF:F4:F1:E1:A6:EF:6D:75:BA X509v3 Authority Key Identifier: keyid:5C:41:42:2C:4E:CF:1D:FA:68:9A:70:DE:3C:03:91:B1:D4:7E:55:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEFCLE7PHfpomnDePAORsdR-Vew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:8d:c3:c9:59:4e:58:87:4f:31:0d:7d:8d:2e:53:65:cf:ef: 7a:7a:c4:d9:19:d8:c7:2b:cf:8e:63:09:73:47:cc:04:dc:99: f8:e8:a3:6e:0a:40:7e:fd:d4:9a:47:d4:bd:51:48:b0:5a:54: 66:6a:69:2b:20:83:d5:37:e3:36:f6:e6:82:7a:a4:25:ab:b2: 75:0c:b3:3a:10:49:17:6e:8c:f9:a3:1e:9e:27:d6:bb:76:46: d3:22:ed:72:6b:8b:49:0b:58:f3:09:b8:88:c4:ec:df:4a:06: 81:85:1e:9f:09:4a:7b:f0:be:34:1c:19:5d:93:1e:98:0c:a4: 1e:03:e8:4e:d6:64:c5:bc:ee:7c:af:63:b8:af:44:42:c4:d4: ec:db:90:eb:35:df:71:7c:4e:31:2f:f6:e2:6c:19:ee:43:e7: f5:0e:82:43:73:11:b7:8e:18:90:dc:cf:37:e3:f6:b2:ce:2f: 5c:1c:aa:00:ef:6a:b0:67:77:56:67:83:65:03:26:cf:a0:9f: bc:40:85:37:e8:95:25:8c:4d:18:2b:c0:cb:65:d4:84:92:f9: b3:1f:93:85:bd:0b:90:2c:30:8e:6e:fc:3c:7f:c7:bd:2d:9b: 5e:69:e4:ad:03:df:28:0a:d0:d9:9c:a9:65:ae:62:95:bf:a5: aa:f2:2c:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAscwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIxOUQxMTAvBgNVBAUTKDVDNDE0MjJDNEVDRjFERkE2ODlBNzBERTNDMDM5MUIx RDQ3RTU1RUMwHhcNMjUxMTAzMDEyNDAwWhcNMjUxMTEwMDEyNDAwWjAYMRYwFAYD VQQDEw02OTA4MDQzMS05OWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2HgFUxaSzogQuX03cdzrTjDT4BQa2J4jA/FBLtiDnoiJPrW1Rv/lnx73M78O pP819oGI2LH4RdcbWrIeUIxL/KvfyJtuBW5zC7GeD+EFmJaABogWHXu/PoGswM/b QbMk8FT6mL4RjQFSWAhQ6INMR+/+4TKhjmu1Ms8K2PWwdS0q7I6wEIHZhWL2cf/P 5ZXcI7krnHLxY4yNPFQs8jB1fB9bDItJmmJmvgZP8z0d0UZ5r3/QLLC59aoV7YOs xOXedV9+zJNHGQ39xyDvi5+6/gKp7u5DmQ3V4ecjMfdZZr2H/QWauLtNItopnQbc SsSsjL7EaomoXa33CFhUWi28XQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDMR6VU4 SDlwDdKFz/Tx4abvbXW6MB8GA1UdIwQYMBaAFFxBQixOzx36aJpw3jwDkbHUflXs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjE5RC9EMjY5NURERTEx MUUxMUVEOUI1OEZEMTRDNEY5QUUwMi9YRUZDTEU3UEhmcG9tbkRlUEFPUnNkUi1W ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hFRkNMRTdQSGZwb21uRGVQQU9Sc2RSLVZldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjE5RC9EMjY5NURERTExMUUxMUVEOUI1OEZEMTRDNEY5QUUwMi9YRUZDTEU3UEhm cG9tbkRlUEFPUnNkUi1WZXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXjcPJWU5Yh08xDX2NLlNlz+96esTZGdjHK8+OYwlzR8wE3Jn46KNu CkB+/dSaR9S9UUiwWlRmamkrIIPVN+M29uaCeqQlq7J1DLM6EEkXboz5ox6eJ9a7 dkbTIu1ya4tJC1jzCbiIxOzfSgaBhR6fCUp78L40HBldkx6YDKQeA+hO1mTFvO58 r2O4r0RCxNTs25DrNd9xfE4xL/bibBnuQ+f1DoJDcxG3jhiQ3M834/ayzi9cHKoA 72qwZ3dWZ4NlAybPoJ+8QIU36JUljE0YK8DLZdSEkvmzH5OFvQuQLDCObvw8f8e9 LZteaeStA98oCtDZnKllrmKVv6Wq8iyo -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:01 2025 by rpki-client