$ rpki-client -vvf rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.mft File: sXBCw3IXHA9BRv78RNHbqlIjhxs.mft (raw, json) Hash identifier: v1PVel8x3vBsxehM2dM0+pI2CudQDqgGcmXVkrQ11H4= Subject key identifier: 37:09:A3:98:C1:EE:61:B5:7F:83:9C:19:F2:8B:42:94:1F:AC:80:49 Authority key identifier: B1:70:42:C3:72:17:1C:0F:41:46:FE:FC:44:D1:DB:AA:52:23:87:1B Certificate issuer: /CN=A918FEF6/serialNumber=B17042C372171C0F4146FEFC44D1DBAA5223871B Certificate serial: 0781 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXBCw3IXHA9BRv78RNHbqlIjhxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.mft Manifest number: 077B Signing time: Sun 02 Nov 2025 21:32:45 +0000 Manifest this update: Sun 02 Nov 2025 21:32:45 +0000 Manifest next update: Sun 09 Nov 2025 21:32:45 +0000 Files and hashes: 1: sXBCw3IXHA9BRv78RNHbqlIjhxs.crl (hash: 7cTma5pGwrM/4ygkLCOhYZPHhnNuTYwzBeC6CPATQUU=) 2: 3A9A3904330011EBA08B865DC4F9AE02.roa (hash: vSs025YJGtpmQ8e6r7LD8M48HbnExGzsb5IXIH1Cfbw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.crl rsync://rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXBCw3IXHA9BRv78RNHbqlIjhxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:32:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1921 (0x781) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FEF6, serialNumber=B17042C372171C0F4146FEFC44D1DBAA5223871B Validity Not Before: Nov 2 21:32:45 2025 GMT Not After : Nov 9 21:32:45 2025 GMT Subject: CN=6907cdfd-102f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:9c:a3:ce:e6:f4:18:49:d0:52:ce:7c:b9:1d: f3:89:cf:b6:b4:93:ab:d0:28:1a:d0:09:24:22:4f: 96:e9:c2:b2:b8:f3:7b:76:e2:05:2f:55:f0:94:51: a8:74:d4:65:1c:1d:20:81:eb:34:94:c5:5e:0d:bd: e5:d5:3a:a1:24:9d:e6:fb:6b:9d:41:dc:7a:cf:13: 4a:4f:e3:2e:37:77:91:d0:e9:8b:4f:08:f1:95:a4: 31:5e:27:35:bd:6d:51:94:56:d7:c9:e0:28:14:c7: 8d:95:4a:99:f3:75:bf:1a:77:72:22:52:34:2d:e0: dd:4f:38:9d:17:8a:3e:0c:66:8f:9f:5c:b9:04:5f: 29:11:97:75:b0:26:58:53:92:03:b5:bc:de:42:08: 6e:ae:64:f1:af:76:0b:7d:9b:4d:dc:98:87:1e:8f: 70:2d:88:ed:a0:bc:32:64:66:99:f3:6d:de:8c:5c: 9f:a9:d8:77:5f:85:de:76:7a:b8:b8:eb:6e:10:e6: bd:26:15:a2:28:c8:bc:17:26:b9:b8:66:5b:3b:39: 43:eb:9d:87:9f:a0:a7:e8:66:32:9e:57:ac:42:45: 70:82:77:f7:38:75:af:2b:c1:ff:71:a3:81:85:e4: 06:6b:2a:7a:80:c7:93:e0:a6:37:2a:71:86:dd:1a: d2:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:09:A3:98:C1:EE:61:B5:7F:83:9C:19:F2:8B:42:94:1F:AC:80:49 X509v3 Authority Key Identifier: keyid:B1:70:42:C3:72:17:1C:0F:41:46:FE:FC:44:D1:DB:AA:52:23:87:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXBCw3IXHA9BRv78RNHbqlIjhxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption db:6b:7b:25:ba:60:f1:35:39:64:c9:cb:f1:d6:64:6b:66:5e: d7:81:c2:a0:16:78:a5:eb:51:f8:0f:1e:31:d4:12:69:b4:5c: a5:a7:8d:45:72:8e:15:ec:f5:2b:65:f4:2d:c7:a0:f8:a4:ea: e9:62:2d:f0:a3:70:cf:ce:37:83:ff:b9:31:28:13:ae:fc:8b: 01:85:2c:8b:e5:36:c9:7c:80:e8:96:74:0d:c1:e3:a7:4d:19: d2:07:78:d5:07:2c:af:37:91:82:19:44:c5:97:67:1f:63:54: ed:9d:c6:d8:14:b9:b2:10:1f:1e:c6:d1:68:74:64:7d:c4:65: 4c:4a:56:f9:dd:13:57:87:48:b3:db:df:1e:c5:f6:cc:d0:93: e6:fd:a3:1c:07:9b:68:22:60:e3:83:b0:c3:63:8e:d2:21:69: e5:ac:ed:52:4c:6c:9d:da:14:bc:6d:f4:5f:62:5e:e7:7e:03: 78:83:76:6b:18:af:53:46:6b:bd:ba:e7:55:52:22:46:cc:c8: b8:61:82:b3:bb:8a:34:42:c6:fd:2a:ee:22:ad:7d:05:f3:21: 4c:78:37:7c:9b:38:f3:70:06:8a:6f:db:89:8c:7b:75:e7:46: 96:f7:16:c2:a7:f1:42:dd:45:1e:15:ed:a1:ff:ed:8a:c6:61: 37:35:3f:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZFRjYxMTAvBgNVBAUTKEIxNzA0MkMzNzIxNzFDMEY0MTQ2RkVGQzQ0RDFEQkFB NTIyMzg3MUIwHhcNMjUxMTAyMjEzMjQ1WhcNMjUxMTA5MjEzMjQ1WjAYMRYwFAYD VQQDEw02OTA3Y2RmZC0xMDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Zyjzub0GEnQUs58uR3zic+2tJOr0Cga0AkkIk+W6cKyuPN7duIFL1XwlFGo dNRlHB0gges0lMVeDb3l1TqhJJ3m+2udQdx6zxNKT+MuN3eR0OmLTwjxlaQxXic1 vW1RlFbXyeAoFMeNlUqZ83W/GndyIlI0LeDdTzidF4o+DGaPn1y5BF8pEZd1sCZY U5IDtbzeQghurmTxr3YLfZtN3JiHHo9wLYjtoLwyZGaZ823ejFyfqdh3X4Xednq4 uOtuEOa9JhWiKMi8Fya5uGZbOzlD652Hn6Cn6GYynlesQkVwgnf3OHWvK8H/caOB heQGayp6gMeT4KY3KnGG3RrSCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDcJo5jB 7mG1f4OcGfKLQpQfrIBJMB8GA1UdIwQYMBaAFLFwQsNyFxwPQUb+/ETR26pSI4cb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkVGNi8xOTg2QjlEODMy RkUxMUVCODVCQUQxNTdDNEY5QUUwMi9zWEJDdzNJWEhBOUJSdjc4Uk5IYnFsSWpo eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NYQkN3M0lYSEE5QlJ2NzhSTkhicWxJamh4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkVGNi8xOTg2QjlEODMyRkUxMUVCODVCQUQxNTdDNEY5QUUwMi9zWEJDdzNJWEhB OUJSdjc4Uk5IYnFsSWpoeHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDba3slumDxNTlkycvx1mRrZl7XgcKgFnil61H4Dx4x1BJptFylp41F co4V7PUrZfQtx6D4pOrpYi3wo3DPzjeD/7kxKBOu/IsBhSyL5TbJfIDolnQNweOn TRnSB3jVByyvN5GCGUTFl2cfY1TtncbYFLmyEB8extFodGR9xGVMSlb53RNXh0iz 298exfbM0JPm/aMcB5toImDjg7DDY47SIWnlrO1STGyd2hS8bfRfYl7nfgN4g3Zr GK9TRmu9uudVUiJGzMi4YYKzu4o0Qsb9Ku4irX0F8yFMeDd8mzjzcAaKb9uJjHt1 50aW9xbCp/FC3UUeFe2h/+2KxmE3NT+K -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:33 2025 by rpki-client