$ rpki-client -vvf rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft File: XrCY701WVcxmtq-Bw83kBi2ALzs.mft (raw, json) Hash identifier: 2VgYBsnkR1ecxVqxhtPXixU5KZJfojq0P18dDjQNKes= Subject key identifier: 59:69:DA:18:C5:3C:EE:2F:4A:30:A7:EA:4B:DC:48:35:B4:91:E3:EC Authority key identifier: 5E:B0:98:EF:4D:56:55:CC:66:B6:AF:81:C3:CD:E4:06:2D:80:2F:3B Certificate issuer: /CN=A919E3FB/serialNumber=5EB098EF4D5655CC66B6AF81C3CDE4062D802F3B Certificate serial: 0517 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft Manifest number: 0511 Signing time: Sat 25 Oct 2025 02:17:49 +0000 Manifest this update: Sat 25 Oct 2025 02:17:49 +0000 Manifest next update: Sat 01 Nov 2025 02:17:49 +0000 Files and hashes: 1: XrCY701WVcxmtq-Bw83kBi2ALzs.crl (hash: qVt96sqibFpO+zCIhe6LtJtzVD8bgS9JZ+zmetMRQA0=) 2: B4D8E692267111ECA0546981C4F9AE02.roa (hash: 5Q4guNeQaB31WqKdHmdzuqJlgTxkvhYKs90qMoibdec=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.crl rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 02:17:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1303 (0x517) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E3FB, serialNumber=5EB098EF4D5655CC66B6AF81C3CDE4062D802F3B Validity Not Before: Oct 25 02:17:49 2025 GMT Not After : Nov 1 02:17:49 2025 GMT Subject: CN=68fc334d-a372 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:c4:6a:4c:d5:d7:e6:74:86:7f:a1:b6:ac:25: b7:0b:c6:38:aa:cd:fc:47:ae:ae:2b:42:b1:9b:b2: 9a:88:b7:f8:17:73:7c:8b:a5:e7:99:1a:ba:18:e1: c5:36:98:05:46:aa:01:bc:c0:cc:5d:97:75:b7:09: 58:6c:9c:a4:9b:b8:91:d2:6b:6b:77:bc:7a:c9:96: a6:68:21:f8:13:73:ef:5a:f3:57:23:fc:42:c1:0e: e0:ca:15:8b:9a:69:93:11:70:44:eb:9f:d3:3e:41: a1:a4:73:15:72:51:72:62:96:5f:89:88:c8:ff:be: ee:23:23:53:e4:8d:f8:b7:f4:20:0f:33:26:5c:df: 4e:bf:97:d0:ad:2f:58:cd:24:4b:70:21:48:f6:6a: 36:5c:e4:d4:d4:f1:c5:81:2d:11:3e:04:e8:65:64: ec:e6:4f:5e:a8:00:86:0c:87:af:df:24:a9:0e:21: 02:d7:46:8f:72:8e:93:38:81:ea:79:3c:1f:b9:8a: 62:1f:eb:bd:45:14:53:87:88:84:62:8b:c7:ba:cd: 47:a6:a9:42:c4:ba:3c:b9:d8:23:b6:84:16:8d:27: 70:bc:c4:7e:72:f8:63:08:e1:df:0e:36:90:a0:c6: 05:58:af:6f:92:54:36:6a:1a:94:44:8c:83:fd:ba: 4e:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:69:DA:18:C5:3C:EE:2F:4A:30:A7:EA:4B:DC:48:35:B4:91:E3:EC X509v3 Authority Key Identifier: keyid:5E:B0:98:EF:4D:56:55:CC:66:B6:AF:81:C3:CD:E4:06:2D:80:2F:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:31:4d:15:bb:75:68:ab:6b:a7:d0:c6:d9:33:e9:50:61:c3: 97:bc:db:e7:c6:e8:b5:43:2f:65:d9:8a:2f:06:3c:b0:d7:78: 20:ae:16:eb:90:23:10:7a:08:dc:fe:04:01:28:25:d3:79:8f: da:b2:dd:dc:a0:7f:ec:95:71:18:cf:76:bd:77:83:73:62:23: a2:f1:db:58:60:4f:31:e0:fd:53:56:be:c4:fc:d9:fd:87:c2: bc:98:23:cf:e5:a5:fb:3e:42:a1:4e:2f:30:5f:b8:94:da:28: f3:38:60:82:ad:a8:7f:a9:f8:6d:e7:2b:66:cf:12:89:3e:af: 43:12:2d:fd:c4:60:da:a9:57:58:15:14:f7:d0:01:65:8d:72: e9:fc:b1:0f:80:8e:21:d4:db:61:5d:dc:eb:96:5a:40:96:f0: c7:aa:74:e8:5a:cf:57:6e:17:47:f4:60:09:06:af:f2:4a:50: 1e:38:5f:79:97:b2:25:17:cd:d3:6a:1d:ba:07:96:5f:56:90: ac:30:7c:27:f6:af:f4:a6:24:1f:70:12:13:42:e2:e9:fc:de: 77:10:e6:8c:52:91:2b:71:bb:f4:73:a8:e8:27:c4:e8:23:b6: 93:2d:77:97:27:23:37:ae:4f:f1:69:98:d0:a4:87:e8:dc:c7: 48:bd:a0:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUUzRkIxMTAvBgNVBAUTKDVFQjA5OEVGNEQ1NjU1Q0M2NkI2QUY4MUMzQ0RFNDA2 MkQ4MDJGM0IwHhcNMjUxMDI1MDIxNzQ5WhcNMjUxMTAxMDIxNzQ5WjAYMRYwFAYD VQQDEw02OGZjMzM0ZC1hMzcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzMRqTNXX5nSGf6G2rCW3C8Y4qs38R66uK0Kxm7KaiLf4F3N8i6XnmRq6GOHF NpgFRqoBvMDMXZd1twlYbJykm7iR0mtrd7x6yZamaCH4E3PvWvNXI/xCwQ7gyhWL mmmTEXBE65/TPkGhpHMVclFyYpZfiYjI/77uIyNT5I34t/QgDzMmXN9Ov5fQrS9Y zSRLcCFI9mo2XOTU1PHFgS0RPgToZWTs5k9eqACGDIev3ySpDiEC10aPco6TOIHq eTwfuYpiH+u9RRRTh4iEYovHus1HpqlCxLo8udgjtoQWjSdwvMR+cvhjCOHfDjaQ oMYFWK9vklQ2ahqURIyD/bpObQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFlp2hjF PO4vSjCn6kvcSDW0kePsMB8GA1UdIwQYMBaAFF6wmO9NVlXMZravgcPN5AYtgC87 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTNGQi9GREQ0NEMyMjI2 NkUxMUVDQUMwOTdDN0JDNEY5QUUwMi9YckNZNzAxV1ZjeG10cS1Cdzgza0JpMkFM enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hyQ1k3MDFXVmN4bXRxLUJ3ODNrQmkyQUx6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTNGQi9GREQ0NEMyMjI2NkUxMUVDQUMwOTdDN0JDNEY5QUUwMi9YckNZNzAxV1Zj eG10cS1Cdzgza0JpMkFMenMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIMU0Vu3Voq2un0MbZM+lQYcOXvNvnxui1Qy9l2YovBjyw13ggrhbr kCMQegjc/gQBKCXTeY/ast3coH/slXEYz3a9d4NzYiOi8dtYYE8x4P1TVr7E/Nn9 h8K8mCPP5aX7PkKhTi8wX7iU2ijzOGCCrah/qfht5ytmzxKJPq9DEi39xGDaqVdY FRT30AFljXLp/LEPgI4h1NthXdzrllpAlvDHqnToWs9XbhdH9GAJBq/ySlAeOF95 l7IlF83Tah26B5ZfVpCsMHwn9q/0piQfcBITQuLp/N53EOaMUpErcbv0c6joJ8To I7aTLXeXJyM3rk/xaZjQpIfo3MdIvaDX -----END CERTIFICATE-----Generated at Sat Oct 25 04:42:28 2025 by rpki-client