$ rpki-client -vvf rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.mft File: xHWJli7Q04kmIr5be4vu_ozniKc.mft (raw, json) Hash identifier: 8Ev54nbxfIeR7E8ZpLqefWRxbB2r0Uiill7WOohavKI= Subject key identifier: 49:D5:27:C2:E3:8A:28:7B:A0:DA:35:87:14:E0:45:4F:39:70:C0:AA Authority key identifier: C4:75:89:96:2E:D0:D3:89:26:22:BE:5B:7B:8B:EE:FE:8C:E7:88:A7 Certificate issuer: /CN=A91A13A6/serialNumber=C47589962ED0D3892622BE5B7B8BEEFE8CE788A7 Certificate serial: 0155 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xHWJli7Q04kmIr5be4vu_ozniKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.mft Manifest number: 014C Signing time: Thu 23 Oct 2025 06:12:14 +0000 Manifest this update: Thu 23 Oct 2025 06:12:14 +0000 Manifest next update: Thu 30 Oct 2025 06:12:14 +0000 Files and hashes: 1: xHWJli7Q04kmIr5be4vu_ozniKc.crl (hash: +0YGBg0KmmCxfnVuDuiKKfnbhfNPumzkf/ZSVJn2ouE=) 2: 4E2CAC386E8711EF8521ED6FC4F9AE02.roa (hash: rFJbuDYL88Z9KeNowFp3y8pDODtibJ7P1KjjzQ7u73o=) 3: 8C7D223C2DAB11EF88127264C4F9AE02.roa (hash: qHX8rwWLzYwQ68AYEwJa6sYGgUw03regWlERxMTMTs4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.crl rsync://rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xHWJli7Q04kmIr5be4vu_ozniKc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 06:12:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 341 (0x155) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A13A6, serialNumber=C47589962ED0D3892622BE5B7B8BEEFE8CE788A7 Validity Not Before: Oct 23 06:12:14 2025 GMT Not After : Oct 30 06:12:14 2025 GMT Subject: CN=68f9c73e-3f2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:61:b2:1d:ab:99:44:48:00:92:c2:a5:62:b5: dd:31:cf:ef:c8:89:d9:66:bf:fa:56:1a:3f:65:4d: b7:69:ba:b7:9b:be:f0:9e:4d:49:1d:65:2c:1d:99: 13:88:75:4d:80:db:bd:f0:8a:b0:3e:c4:fb:ed:5c: 6b:c6:f1:19:e6:0c:18:c4:1c:8f:2f:0c:3e:17:9e: 05:90:e9:c3:f0:19:b5:a8:66:0c:03:60:53:f4:50: e7:9d:32:26:6f:e8:cd:1e:5e:56:36:c6:b8:27:b2: 1e:4d:53:25:1a:76:65:74:b6:51:ed:75:d7:d9:1f: 42:d9:dc:3c:e3:00:54:3f:17:ee:21:63:c8:d0:32: 55:40:8b:e0:db:a7:b1:28:97:99:a5:e1:27:90:eb: 10:4b:f5:31:d7:62:4e:26:c6:a5:0b:ff:ad:39:9d: 89:d6:38:0c:d4:73:d9:91:2c:79:4c:dd:2d:d1:c1: 75:d8:96:d1:eb:c3:56:55:86:de:44:45:8c:8c:8b: a4:ae:67:b9:94:bb:fc:f2:d5:7e:b6:ae:91:7f:f5: 62:d6:64:31:47:98:37:21:b3:98:e3:8e:0a:d5:bb: 29:b7:2c:dd:67:1c:8e:29:ed:3d:e6:99:12:03:e4: 6f:67:e6:5b:3b:6e:b2:df:15:45:ba:9e:ac:9c:94: ec:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:D5:27:C2:E3:8A:28:7B:A0:DA:35:87:14:E0:45:4F:39:70:C0:AA X509v3 Authority Key Identifier: keyid:C4:75:89:96:2E:D0:D3:89:26:22:BE:5B:7B:8B:EE:FE:8C:E7:88:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xHWJli7Q04kmIr5be4vu_ozniKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A13A6/80794C9AC08C11EEBD805B24C4F9AE02/xHWJli7Q04kmIr5be4vu_ozniKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:d6:e9:85:e0:da:1e:5f:a4:ed:3b:ea:dc:2f:57:15:1a:69: 4d:18:8a:bc:1b:d6:e7:b5:52:d2:fc:da:1d:b9:3c:f3:6d:a4: 86:3c:2c:3f:47:47:9e:38:b4:7f:a5:58:bf:84:5a:c9:69:0e: c5:b2:7f:f9:12:6c:3b:0c:c7:fd:42:08:19:e9:bd:e2:95:43: e8:ba:32:35:73:c0:37:c2:3c:74:04:c7:a3:22:6c:72:40:dc: 90:65:31:6b:94:96:74:a5:3f:ef:e4:74:24:b4:dc:80:ac:30: 93:33:99:7a:4c:9c:37:61:fe:aa:a5:e2:f4:b0:6e:7d:33:34: c9:01:32:6b:ca:36:6d:90:a7:e0:a8:46:d2:84:6c:e9:ad:d5: f6:98:6f:a2:2b:c7:80:27:24:62:a9:31:94:9f:0a:82:37:c6: 49:7c:48:0d:23:f6:ac:98:1a:f7:e5:ec:e5:8e:b9:39:a2:10: 84:45:61:9d:71:ea:7e:e4:e9:d1:a5:6a:e1:e2:73:27:93:b9: 22:b4:e6:37:2b:af:f6:43:be:72:01:55:c2:6f:35:f6:c7:92: 16:67:d0:b6:ed:76:fe:d4:3f:f5:a2:e6:f5:e8:78:cf:80:01: 0b:d5:2e:70:51:75:09:5f:e5:0f:f7:8b:bc:26:c4:86:53:44: 23:ff:cc:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTEzQTYxMTAvBgNVBAUTKEM0NzU4OTk2MkVEMEQzODkyNjIyQkU1QjdCOEJFRUZF OENFNzg4QTcwHhcNMjUxMDIzMDYxMjE0WhcNMjUxMDMwMDYxMjE0WjAYMRYwFAYD VQQDEw02OGY5YzczZS0zZjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm2GyHauZREgAksKlYrXdMc/vyInZZr/6Vho/ZU23abq3m77wnk1JHWUsHZkT iHVNgNu98IqwPsT77VxrxvEZ5gwYxByPLww+F54FkOnD8Bm1qGYMA2BT9FDnnTIm b+jNHl5WNsa4J7IeTVMlGnZldLZR7XXX2R9C2dw84wBUPxfuIWPI0DJVQIvg26ex KJeZpeEnkOsQS/Ux12JOJsalC/+tOZ2J1jgM1HPZkSx5TN0t0cF12JbR68NWVYbe REWMjIukrme5lLv88tV+tq6Rf/Vi1mQxR5g3IbOY444K1bsptyzdZxyOKe095pkS A+RvZ+ZbO26y3xVFup6snJTsiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEnVJ8Lj iih7oNo1hxTgRU85cMCqMB8GA1UdIwQYMBaAFMR1iZYu0NOJJiK+W3uL7v6M54in MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTNBNi84MDc5NEM5QUMw OEMxMUVFQkQ4MDVCMjRDNEY5QUUwMi94SFdKbGk3UTA0a21JcjViZTR2dV9vem5p S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hIV0psaTdRMDRrbUlyNWJlNHZ1X296bmlLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTNBNi84MDc5NEM5QUMwOEMxMUVFQkQ4MDVCMjRDNEY5QUUwMi94SFdKbGk3UTA0 a21JcjViZTR2dV9vem5pS2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBu1umF4NoeX6TtO+rcL1cVGmlNGIq8G9bntVLS/NoduTzzbaSGPCw/ R0eeOLR/pVi/hFrJaQ7Fsn/5Emw7DMf9QggZ6b3ilUPoujI1c8A3wjx0BMejImxy QNyQZTFrlJZ0pT/v5HQktNyArDCTM5l6TJw3Yf6qpeL0sG59MzTJATJryjZtkKfg qEbShGzprdX2mG+iK8eAJyRiqTGUnwqCN8ZJfEgNI/asmBr35ezljrk5ohCERWGd cep+5OnRpWrh4nMnk7kitOY3K6/2Q75yAVXCbzX2x5IWZ9C27Xb+1D/1oub16HjP gAEL1S5wUXUJX+UP94u8JsSGU0Qj/8xA -----END CERTIFICATE-----Generated at Thu Oct 23 10:15:12 2025 by rpki-client