$ rpki-client -vvf rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft File: XctT6r5qkI7KhlLekkgHxQnFLTA.mft (raw, json) Hash identifier: OybSePkFPlB4FMfoY2K/9iwZwmYnAY/uNwgyW2Nu4ro= Subject key identifier: EB:FB:73:8C:10:E5:68:D7:F9:D2:A8:53:54:8E:CE:79:BD:7E:96:C5 Authority key identifier: 5D:CB:53:EA:BE:6A:90:8E:CA:86:52:DE:92:48:07:C5:09:C5:2D:30 Certificate issuer: /CN=A918560D/serialNumber=5DCB53EABE6A908ECA8652DE924807C509C52D30 Certificate serial: 0D3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft Manifest number: 0D34 Signing time: Sun 02 Nov 2025 18:02:12 +0000 Manifest this update: Sun 02 Nov 2025 18:02:11 +0000 Manifest next update: Sun 09 Nov 2025 18:02:11 +0000 Files and hashes: 1: XctT6r5qkI7KhlLekkgHxQnFLTA.crl (hash: R4HMPJHs19tfp5qg0h5QXC53PTs9ahyyI9/sIPbMZ04=) 2: 41A8E738045111EA9C7DF516C4F9AE02.roa (hash: t9j99ouqyAO1DSlTWOraKVE9DSXzBdaScfcUdlzhboc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.crl rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:02:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3390 (0xd3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918560D, serialNumber=5DCB53EABE6A908ECA8652DE924807C509C52D30 Validity Not Before: Nov 2 18:02:11 2025 GMT Not After : Nov 9 18:02:11 2025 GMT Subject: CN=69079ca4-eebf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:31:15:a2:25:f5:bc:28:1e:a9:05:b2:0e:51: 5b:2d:3b:8a:f0:54:f6:40:4e:bd:27:be:02:cd:94: 31:b9:83:35:6e:ac:7b:74:a3:02:0c:d7:05:a5:cd: 21:99:0f:17:2b:11:1c:78:bf:6c:56:6d:01:e6:b0: a0:35:44:3f:e6:24:f9:b4:79:72:13:66:8c:46:19: b0:ca:79:62:11:ea:33:16:67:0f:91:bc:06:8f:da: a9:fd:e8:44:01:5c:91:42:ba:69:03:fb:44:37:35: aa:d1:1e:55:fe:c7:26:79:7e:c6:6d:bd:ff:84:b2: d3:bb:c4:ee:1a:a6:c7:2b:a4:30:81:cd:24:3d:37: 7a:ae:57:12:c3:5b:64:e6:b8:56:c3:2a:15:35:8c: 90:ac:c4:3d:0e:4f:4a:05:23:a2:05:8a:9e:02:5b: d2:7d:63:2a:72:a3:cd:5c:d0:d9:3a:2f:69:a2:f1: 99:20:b8:91:a2:92:7f:28:f0:8c:62:15:be:66:6d: bb:d4:d3:57:9f:45:e1:f3:fe:e9:ee:13:4b:fc:7c: fa:eb:a3:54:dc:59:48:27:dc:ae:3f:ea:60:fd:c6: 22:a7:e0:32:a0:6c:8f:5b:80:4d:2e:d9:f7:01:1b: 80:70:36:57:50:ca:4f:50:43:21:4e:e4:ef:71:38: 82:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:FB:73:8C:10:E5:68:D7:F9:D2:A8:53:54:8E:CE:79:BD:7E:96:C5 X509v3 Authority Key Identifier: keyid:5D:CB:53:EA:BE:6A:90:8E:CA:86:52:DE:92:48:07:C5:09:C5:2D:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:76:66:d4:22:05:cb:c8:03:57:24:ab:df:72:e1:16:8c:28: aa:1e:7f:0d:c3:54:31:d6:80:11:bb:a3:1e:f5:22:ff:5b:ac: 9e:1a:d0:db:8e:7d:3f:84:5e:00:ca:c8:48:63:29:51:ad:95: e7:bf:ea:06:54:28:a4:df:70:82:f2:8b:f1:34:35:09:77:45: 6c:6b:f4:32:e9:d1:28:ae:be:75:69:cf:5b:f1:09:fd:27:0b: d6:2a:1f:2d:88:62:1e:9f:95:92:28:63:25:45:84:88:7e:fe: 21:24:08:fa:1a:34:c8:cd:61:ed:33:8c:04:5a:c6:4a:be:9b: b5:8a:ae:a8:a9:79:06:93:a1:60:3a:94:f1:27:3f:89:e6:e2: 56:37:76:53:0a:59:c3:96:e5:07:39:ac:e0:40:a1:f4:23:73: a6:db:cb:2f:72:92:2e:02:79:4f:62:a4:2e:70:d2:ba:b6:1c: 0c:e5:48:45:10:15:a3:3e:60:b5:e9:52:86:a8:d4:5e:ea:de: bc:c2:d8:d1:39:c9:05:d1:c4:e1:b5:65:d8:1c:e1:91:ad:4b: ff:ff:6b:cd:73:6f:6d:9b:92:a9:0a:cd:53:d2:7a:aa:91:d8: 42:05:14:54:64:f4:e5:c3:5b:e3:95:bf:95:16:66:75:ca:c6: 08:c8:fc:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDT4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU2MEQxMTAvBgNVBAUTKDVEQ0I1M0VBQkU2QTkwOEVDQTg2NTJERTkyNDgwN0M1 MDlDNTJEMzAwHhcNMjUxMTAyMTgwMjExWhcNMjUxMTA5MTgwMjExWjAYMRYwFAYD VQQDEw02OTA3OWNhNC1lZWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4zEVoiX1vCgeqQWyDlFbLTuK8FT2QE69J74CzZQxuYM1bqx7dKMCDNcFpc0h mQ8XKxEceL9sVm0B5rCgNUQ/5iT5tHlyE2aMRhmwynliEeozFmcPkbwGj9qp/ehE AVyRQrppA/tENzWq0R5V/scmeX7Gbb3/hLLTu8TuGqbHK6Qwgc0kPTd6rlcSw1tk 5rhWwyoVNYyQrMQ9Dk9KBSOiBYqeAlvSfWMqcqPNXNDZOi9povGZILiRopJ/KPCM YhW+Zm271NNXn0Xh8/7p7hNL/Hz666NU3FlIJ9yuP+pg/cYip+AyoGyPW4BNLtn3 ARuAcDZXUMpPUEMhTuTvcTiCKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOv7c4wQ 5WjX+dKoU1SOznm9fpbFMB8GA1UdIwQYMBaAFF3LU+q+apCOyoZS3pJIB8UJxS0w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTYwRC9GNURDQTZENEU1 QjgxMUU5OEE3NjEyMEVDNEY5QUUwMi9YY3RUNnI1cWtJN0tobExla2tnSHhRbkZM VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjdFQ2cjVxa0k3S2hsTGVra2dIeFFuRkxUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTYwRC9GNURDQTZENEU1QjgxMUU5OEE3NjEyMEVDNEY5QUUwMi9YY3RUNnI1cWtJ N0tobExla2tnSHhRbkZMVEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOdmbUIgXLyANXJKvfcuEWjCiqHn8Nw1Qx1oARu6Me9SL/W6yeGtDb jn0/hF4AyshIYylRrZXnv+oGVCik33CC8ovxNDUJd0Vsa/Qy6dEorr51ac9b8Qn9 JwvWKh8tiGIen5WSKGMlRYSIfv4hJAj6GjTIzWHtM4wEWsZKvpu1iq6oqXkGk6Fg OpTxJz+J5uJWN3ZTClnDluUHOazgQKH0I3Om28svcpIuAnlPYqQucNK6thwM5UhF EBWjPmC16VKGqNRe6t68wtjROckF0cThtWXYHOGRrUv//2vNc29tm5KpCs1T0nqq kdhCBRRUZPTlw1vjlb+VFmZ1ysYIyPw4 -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:35 2025 by rpki-client