$ rpki-client -vvf rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft File: XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft (raw, json) Hash identifier: fsl5QBaKITjBSeMcPtzehesxa7wQ29nIC+jFOHd3gC0= Subject key identifier: 88:42:BA:2B:98:B7:E5:A4:85:DA:88:99:98:C3:A1:C2:22:83:61:68 Authority key identifier: 5C:5A:4F:AE:4A:F0:1F:FD:C9:27:53:55:CC:BA:B8:C8:10:18:9F:54 Certificate issuer: /CN=A918B0B9/serialNumber=5C5A4FAE4AF01FFDC9275355CCBAB8C810189F54 Certificate serial: 09F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft Manifest number: 09DE Signing time: Tue 04 Nov 2025 20:03:06 +0000 Manifest this update: Tue 04 Nov 2025 20:03:06 +0000 Manifest next update: Tue 11 Nov 2025 20:03:06 +0000 Files and hashes: 1: XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl (hash: rlJMl3NI0Sbx0CW+dsVMLJK8qN4UrVMg//D0l96d9Zg=) 2: 52F955A89B1511EA9BEFA53BC4F9AE02.roa (hash: ULVz6gtv7Lj17GsbY0DraIvlqeAo9m+ryNVdzpRY8/w=) 3: BED54F1A9B1611EA939F5A3FC4F9AE02.roa (hash: vTD8xn0iYmYF0FCpYg76YMcwnWDZovAXcFL69UbAO9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:03:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2550 (0x9f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B0B9, serialNumber=5C5A4FAE4AF01FFDC9275355CCBAB8C810189F54 Validity Not Before: Nov 4 20:03:06 2025 GMT Not After : Nov 11 20:03:06 2025 GMT Subject: CN=690a5bfa-de26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:ed:6a:e5:fd:22:70:51:c3:4e:0f:17:ec:1d: 9d:16:3d:32:d5:6c:af:c9:a8:07:97:fb:23:dc:e5: 71:37:46:fb:0b:35:ea:97:22:96:f7:44:66:b4:ae: 78:a4:fc:bf:cc:ac:35:c7:3e:a5:ed:0e:59:54:5c: a6:39:1e:93:22:d4:e6:ae:34:a1:85:13:ea:b2:51: c4:38:ae:ec:2b:1d:6b:6c:d2:ee:1c:29:f7:54:ba: c7:6c:e7:b3:c1:0d:08:70:d8:bf:06:aa:bc:b5:03: 18:90:12:f8:2e:d3:ae:34:ec:a7:bf:f8:88:96:8b: bd:95:da:92:22:e0:4d:b0:bb:b5:79:95:b6:61:2c: 35:0c:88:a6:2b:fd:ac:e0:74:f1:4d:28:bd:63:ed: 04:c5:4c:71:85:f1:15:95:ad:73:cc:a6:ed:fb:4e: 72:d7:7c:cf:e2:a0:2f:dd:77:8a:fa:c9:f9:ef:4b: f3:c0:df:69:7c:28:e4:cc:45:c7:b7:41:72:2e:2e: 19:a6:a5:af:22:c7:35:af:b5:d7:42:0a:d3:fb:35: 29:e1:e1:45:a2:01:35:b9:c4:2b:ee:73:a0:a6:32: 3a:d0:88:bb:9e:6d:36:1b:cc:e5:85:00:42:d7:2b: 05:24:6f:b1:5f:f8:f8:da:63:bd:39:16:c7:37:95: 08:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:42:BA:2B:98:B7:E5:A4:85:DA:88:99:98:C3:A1:C2:22:83:61:68 X509v3 Authority Key Identifier: keyid:5C:5A:4F:AE:4A:F0:1F:FD:C9:27:53:55:CC:BA:B8:C8:10:18:9F:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:05:29:45:47:0e:fa:9d:06:e7:81:32:8f:c9:9b:8e:a2:f4: 86:94:6f:78:50:91:8e:df:fd:c2:26:b7:b7:e1:e9:95:cf:81: 94:2b:fd:66:3a:75:07:60:43:ed:57:a7:43:9d:07:bd:87:1a: ed:5f:06:0a:f0:1e:ec:0e:9c:d1:b9:ed:b1:e1:ed:67:01:83: 65:0b:fa:e3:2e:20:bd:c5:1f:f9:bd:0a:c2:18:03:5a:bc:fb: d4:30:f3:43:63:e0:94:51:c7:22:d2:c6:2f:e7:77:b7:06:b9: 26:01:b2:34:f2:33:43:1e:38:4d:ac:55:4a:f6:5f:bd:5e:34: 7b:4c:9b:1b:15:1f:4e:10:25:87:df:49:2e:4b:70:10:6c:98: e7:b4:3c:b9:6e:9a:11:57:8c:a8:2c:52:1a:4b:a1:ce:1c:4c: e4:32:83:bf:69:59:6d:6c:31:97:44:64:02:9e:d0:3c:d2:f3: 6a:23:f5:4d:b6:a5:48:62:2c:78:b0:49:eb:b4:40:c1:04:cc: 9a:38:77:10:1a:b7:49:6f:66:be:8a:c1:d3:c7:4e:cb:3a:80: 66:74:c4:46:c7:5a:65:8c:d3:2e:2a:af:e4:23:07:30:a8:0b: 4e:dd:b6:3d:c6:a9:b8:b5:5c:13:b4:b9:4c:8b:8f:7c:27:3e: a8:2b:5a:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCfYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEIwQjkxMTAvBgNVBAUTKDVDNUE0RkFFNEFGMDFGRkRDOTI3NTM1NUNDQkFCOEM4 MTAxODlGNTQwHhcNMjUxMTA0MjAwMzA2WhcNMjUxMTExMjAwMzA2WjAYMRYwFAYD VQQDEw02OTBhNWJmYS1kZTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3u1q5f0icFHDTg8X7B2dFj0y1WyvyagHl/sj3OVxN0b7CzXqlyKW90RmtK54 pPy/zKw1xz6l7Q5ZVFymOR6TItTmrjShhRPqslHEOK7sKx1rbNLuHCn3VLrHbOez wQ0IcNi/Bqq8tQMYkBL4LtOuNOynv/iIlou9ldqSIuBNsLu1eZW2YSw1DIimK/2s 4HTxTSi9Y+0ExUxxhfEVla1zzKbt+05y13zP4qAv3XeK+sn570vzwN9pfCjkzEXH t0FyLi4ZpqWvIsc1r7XXQgrT+zUp4eFFogE1ucQr7nOgpjI60Ii7nm02G8zlhQBC 1ysFJG+xX/j42mO9ORbHN5UI1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIhCuiuY t+WkhdqImZjDocIig2FoMB8GA1UdIwQYMBaAFFxaT65K8B/9ySdTVcy6uMgQGJ9U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjBCOS85Q0JGM0Q5MDhG QTAxMUVBQUE5QkJBMThDNEY5QUUwMi9YRnBQcmtyd0hfM0pKMU5WekxxNHlCQVlu MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hGcFBya3J3SF8zSkoxTlZ6THE0eUJBWW4xUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjBCOS85Q0JGM0Q5MDhGQTAxMUVBQUE5QkJBMThDNEY5QUUwMi9YRnBQcmtyd0hf M0pKMU5WekxxNHlCQVluMVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdBSlFRw76nQbngTKPyZuOovSGlG94UJGO3/3CJre34emVz4GUK/1m OnUHYEPtV6dDnQe9hxrtXwYK8B7sDpzRue2x4e1nAYNlC/rjLiC9xR/5vQrCGANa vPvUMPNDY+CUUcci0sYv53e3BrkmAbI08jNDHjhNrFVK9l+9XjR7TJsbFR9OECWH 30kuS3AQbJjntDy5bpoRV4yoLFIaS6HOHEzkMoO/aVltbDGXRGQCntA80vNqI/VN tqVIYix4sEnrtEDBBMyaOHcQGrdJb2a+isHTx07LOoBmdMRGx1pljNMuKq/kIwcw qAtO3bY9xqm4tVwTtLlMi498Jz6oK1rL -----END CERTIFICATE-----Generated at Wed Nov 5 08:10:35 2025 by rpki-client