$ rpki-client -vvf rpki.apnic.net/member_repository/A919D2EE/8D96675456F911ECB021F60CC4F9AE02/XotdlW6b29kHcBQqxw_fm2OIxtg.mft File: XotdlW6b29kHcBQqxw_fm2OIxtg.mft (raw, json) Hash identifier: ECSrNSQjv2YNckYr3H8CMd3EMtcgGm9H+VOfDIStcK4= Subject key identifier: 0A:CA:C8:6F:46:95:02:36:C9:6C:FF:00:B0:02:76:9B:45:7B:1C:35 Authority key identifier: 5E:8B:5D:95:6E:9B:DB:D9:07:70:14:2A:C7:0F:DF:9B:63:88:C6:D8 Certificate issuer: /CN=A919D2EE/serialNumber=5E8B5D956E9BDBD90770142AC70FDF9B6388C6D8 Certificate serial: 049F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XotdlW6b29kHcBQqxw_fm2OIxtg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D2EE/8D96675456F911ECB021F60CC4F9AE02/XotdlW6b29kHcBQqxw_fm2OIxtg.mft Manifest number: 049A Signing time: Sun 02 Nov 2025 23:57:58 +0000 Manifest this update: Sun 02 Nov 2025 23:57:57 +0000 Manifest next update: Sun 09 Nov 2025 23:57:57 +0000 Files and hashes: 1: XotdlW6b29kHcBQqxw_fm2OIxtg.crl (hash: lYWVQoZEWp0pih7j7m2NgJvKwSLeUWl/yTSU2AWiXV4=) 2: 097C49CC56FC11EC8032440FC4F9AE02.roa (hash: LDObm+V0VfIIUmkFfanPpTePErVvUeuNiy33kvT6Iys=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D2EE/8D96675456F911ECB021F60CC4F9AE02/XotdlW6b29kHcBQqxw_fm2OIxtg.crl rsync://rpki.apnic.net/member_repository/A919D2EE/8D96675456F911ECB021F60CC4F9AE02/XotdlW6b29kHcBQqxw_fm2OIxtg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XotdlW6b29kHcBQqxw_fm2OIxtg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:57:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1183 (0x49f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D2EE, serialNumber=5E8B5D956E9BDBD90770142AC70FDF9B6388C6D8 Validity Not Before: Nov 2 23:57:57 2025 GMT Not After : Nov 9 23:57:57 2025 GMT Subject: CN=6907f005-9d9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a4:bf:fe:c2:46:6c:cf:e5:45:26:96:e3:6e: 0a:67:ed:21:0e:1f:60:b5:8c:58:77:fe:cf:93:91: 19:e8:cc:ab:3d:4b:ee:c8:ee:4b:00:3e:14:b3:06: 6e:67:8f:f5:e3:c8:0e:21:85:d9:00:22:9a:a1:3c: d8:3e:bb:67:fa:3d:53:e8:68:61:ad:87:d1:60:e7: 22:11:0c:2e:9d:e8:0b:cb:48:12:71:e6:b1:e6:7f: fc:ed:36:af:a2:00:e6:12:5f:5e:31:5b:6b:e7:cf: c5:f0:89:27:e3:45:e7:e1:a2:60:45:49:8d:5b:b6: 19:d5:08:e3:8e:dc:37:cc:ea:f2:eb:c1:30:fb:ae: 20:23:d8:5b:fe:6f:15:a4:2a:63:e5:3c:e1:7e:4f: ac:f8:ee:2e:70:58:af:36:4d:9a:d5:14:0e:0c:ac: 0d:1b:36:69:ed:86:81:c4:9c:43:f6:2b:0a:8c:46: 95:7d:3f:c6:0b:61:11:74:04:7b:7e:3d:0b:43:bd: 80:d4:eb:5f:71:8d:e2:5b:c0:d4:c7:1b:9c:e7:55: 2e:26:f8:4f:d8:3a:f0:64:48:0d:69:82:b2:20:5e: a7:de:b6:28:cc:06:bf:dd:c2:ee:28:06:12:cf:78: f7:02:4b:9f:72:19:ff:bf:e5:0a:1c:38:05:07:ef: 75:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:CA:C8:6F:46:95:02:36:C9:6C:FF:00:B0:02:76:9B:45:7B:1C:35 X509v3 Authority Key Identifier: keyid:5E:8B:5D:95:6E:9B:DB:D9:07:70:14:2A:C7:0F:DF:9B:63:88:C6:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D2EE/8D96675456F911ECB021F60CC4F9AE02/XotdlW6b29kHcBQqxw_fm2OIxtg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XotdlW6b29kHcBQqxw_fm2OIxtg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D2EE/8D96675456F911ECB021F60CC4F9AE02/XotdlW6b29kHcBQqxw_fm2OIxtg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e9:54:ef:bf:50:6d:3a:f5:e3:a4:2f:88:16:8d:2b:9c:fa:dc: 1d:5c:a6:2a:bb:34:70:ae:f8:4b:89:f9:6d:1c:85:5b:3c:f5: e7:fd:f3:6b:72:b9:5f:1e:2f:ae:8b:e7:98:d4:d6:8f:16:2a: ff:2f:4e:a3:84:92:45:bc:e6:26:fa:32:4c:6b:fd:4e:46:91: d7:25:42:4f:7b:c3:5b:29:4f:25:68:f8:b7:aa:22:ec:a8:98: 68:c0:4e:15:23:f2:68:b9:b8:82:b2:08:23:76:18:6c:be:fc: 0c:62:30:7c:a9:68:b0:dc:fe:4c:db:76:0f:99:4a:0b:83:65: 36:1e:47:51:24:76:4d:ad:e8:6e:a5:76:9f:f1:2c:df:08:96: f7:35:f9:9b:57:f1:48:e3:3b:45:e9:b2:94:c4:bf:4c:fe:4b: c4:25:46:4e:43:f1:59:f4:71:3c:e9:97:8f:e8:3b:0b:4c:2d: 26:80:12:c4:70:29:aa:4e:7c:2c:7f:90:72:6b:17:f3:b7:0d: 7d:75:db:7e:c3:58:92:ce:fa:a4:e3:ac:f5:7a:2e:e6:22:64: d8:85:60:de:99:54:83:54:91:fe:52:ca:43:f3:90:a9:9d:4d: 11:89:28:ce:8f:d8:3d:63:5b:96:05:0e:36:18:ae:05:16:5d: aa:ca:23:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQyRUUxMTAvBgNVBAUTKDVFOEI1RDk1NkU5QkRCRDkwNzcwMTQyQUM3MEZERjlC NjM4OEM2RDgwHhcNMjUxMTAyMjM1NzU3WhcNMjUxMTA5MjM1NzU3WjAYMRYwFAYD VQQDEw02OTA3ZjAwNS05ZDllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy6S//sJGbM/lRSaW424KZ+0hDh9gtYxYd/7Pk5EZ6MyrPUvuyO5LAD4UswZu Z4/148gOIYXZACKaoTzYPrtn+j1T6GhhrYfRYOciEQwunegLy0gSceax5n/87Tav ogDmEl9eMVtr58/F8Ikn40Xn4aJgRUmNW7YZ1Qjjjtw3zOry68Ew+64gI9hb/m8V pCpj5Tzhfk+s+O4ucFivNk2a1RQODKwNGzZp7YaBxJxD9isKjEaVfT/GC2ERdAR7 fj0LQ72A1OtfcY3iW8DUxxuc51UuJvhP2DrwZEgNaYKyIF6n3rYozAa/3cLuKAYS z3j3Akufchn/v+UKHDgFB+91WQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFArKyG9G lQI2yWz/ALACdptFexw1MB8GA1UdIwQYMBaAFF6LXZVum9vZB3AUKscP35tjiMbY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDJFRS84RDk2Njc1NDU2 RjkxMUVDQjAyMUY2MENDNEY5QUUwMi9Yb3RkbFc2YjI5a0hjQlFxeHdfZm0yT0l4 dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hvdGRsVzZiMjlrSGNCUXF4d19mbTJPSXh0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDJFRS84RDk2Njc1NDU2RjkxMUVDQjAyMUY2MENDNEY5QUUwMi9Yb3RkbFc2YjI5 a0hjQlFxeHdfZm0yT0l4dGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDpVO+/UG069eOkL4gWjSuc+twdXKYquzRwrvhLifltHIVbPPXn/fNr crlfHi+ui+eY1NaPFir/L06jhJJFvOYm+jJMa/1ORpHXJUJPe8NbKU8laPi3qiLs qJhowE4VI/JoubiCsggjdhhsvvwMYjB8qWiw3P5M23YPmUoLg2U2HkdRJHZNrehu pXaf8SzfCJb3NfmbV/FI4ztF6bKUxL9M/kvEJUZOQ/FZ9HE86ZeP6DsLTC0mgBLE cCmqTnwsf5Byaxfztw19ddt+w1iSzvqk46z1ei7mImTYhWDemVSDVJH+UspD85Cp nU0RiSjOj9g9Y1uWBQ42GK4FFl2qyiNa -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:06 2025 by rpki-client