$ rpki-client -vvf rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft File: XqEcijop4GlzwfEhYR1aXCobBp0.mft (raw, json) Hash identifier: KzJRowfakgbeGAp6aSqf3BqBfpIlhO96ds+q0cgiJ/4= Subject key identifier: 6B:73:9B:AB:57:2E:75:10:63:01:06:94:17:43:8F:79:6A:7F:60:38 Authority key identifier: 5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D Certificate issuer: /CN=A91A654C/serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Certificate serial: 079E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft Manifest number: 076F Signing time: Wed 22 Oct 2025 22:35:26 +0000 Manifest this update: Wed 22 Oct 2025 22:35:25 +0000 Manifest next update: Wed 29 Oct 2025 22:35:25 +0000 Files and hashes: 1: XqEcijop4GlzwfEhYR1aXCobBp0.crl (hash: yaLgUAkwQG0aZY6OsmHjW7TXn2GVTitlSVg0MiMLJEw=) 2: 66FC64186D0711F0AC1BE951C4F9AE02.roa (hash: hWwF88GIP3tV+NyMDvSvQLm3VEbfDC65iFXo9VhwYUk=) 3: 5A51D464F5FA11EC9B35372AC4F9AE02.roa (hash: xKqf+n8kgniX6QnefZ1ax3dHrgOYPyD34X8HXDWa04o=) 4: 94A5320663A111F092E32646C4F9AE02.roa (hash: O5r2+wXt4zH6hxOJA3sUCrB8yg9bHS1XDEYPpgUx1XQ=) 5: 0940732E0E6311EDB98DEA0DC4F9AE02.roa (hash: LjX/y1bmr7lUb6+mhBpoHtfDQ+zCLBR7g1pGcdMOf00=) 6: 0A37FEFA0E6311EDB98DEA0DC4F9AE02.roa (hash: SGNPZCwfC0xAo0xM/Ak76M8pbN3zzIxkj9O1xC+I8EU=) 7: 9507206A63A111F092E32646C4F9AE02.roa (hash: rAuvyeznobZzFQMS0Fgkc4tf80FkzwtmDY5jMNACHCg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 22:35:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1950 (0x79e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A654C, serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Validity Not Before: Oct 22 22:35:25 2025 GMT Not After : Oct 29 22:35:25 2025 GMT Subject: CN=68f95c2e-18ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:13:13:65:be:94:31:46:62:b1:a0:ee:34:9e: 23:e3:95:45:40:78:e5:09:ff:24:c2:64:b0:97:04: f8:59:05:76:21:8f:b5:b2:d9:16:2b:f0:1a:39:b5: 91:53:f4:3f:3b:c6:8a:67:34:cd:80:2d:8e:a9:75: e6:5c:e2:50:6c:6a:bb:6b:f0:a1:6b:33:2a:0a:6f: 5d:e7:22:67:96:fc:77:8c:84:8d:85:82:1c:d2:9f: 85:1c:03:54:2d:46:36:25:13:22:c7:a1:30:55:78: 20:a5:bf:51:05:20:e8:15:0d:86:66:b5:74:81:c7: 8e:b8:98:cd:d5:63:a8:42:08:fc:c1:ea:00:62:55: f7:11:bf:49:45:c4:e3:8e:a4:58:e9:4c:8e:5d:db: 78:9f:28:1b:ce:22:2e:4d:f8:18:47:63:db:fd:85: ab:ca:0d:81:a5:1f:2c:17:7f:e4:0b:7a:85:74:12: 8f:df:f9:1f:dd:27:11:ba:73:23:43:a1:e8:bd:83: ef:58:7d:c7:37:54:ef:42:27:14:23:a0:e4:c3:77: 06:6c:15:fe:1d:29:3b:10:c8:1d:18:1b:9b:f0:25: 33:ad:ba:9c:f2:c1:23:b6:91:01:1d:61:a1:41:89: c6:ed:52:a6:b7:26:5a:b6:26:b0:0c:e3:b8:76:9c: 6b:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:73:9B:AB:57:2E:75:10:63:01:06:94:17:43:8F:79:6A:7F:60:38 X509v3 Authority Key Identifier: keyid:5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:3d:08:0e:ee:6b:67:03:27:7a:2a:8f:ef:c8:7e:b5:90:6c: db:a4:59:bd:bf:0e:f2:5b:4d:5a:d9:af:ce:b7:8d:4b:ff:d2: dd:b2:09:67:d4:30:39:42:3c:0d:50:86:2e:4c:3c:73:1f:d5: 2f:a2:ee:c0:cb:0f:2e:26:0f:0f:b1:0c:7e:19:b9:6c:57:b4: 2f:9c:73:31:29:af:d5:1f:5f:3d:e7:41:d0:c0:ca:fb:09:9a: 37:22:4e:3e:58:2a:89:50:25:ba:92:a2:23:35:e3:04:8d:a3: aa:4c:24:71:45:91:f6:6a:d7:cc:2d:62:63:3a:84:90:95:6a: df:4e:ec:b8:f1:6e:94:fa:9d:c4:e6:34:2f:08:3d:d3:0c:df: c8:36:9c:f2:3d:14:a8:13:84:9c:5f:7e:e1:8e:b4:df:80:e2: 0e:64:ed:bd:01:5c:21:24:d6:2f:10:90:b8:31:70:e1:49:f9: 22:68:f0:2a:08:10:e3:73:c9:a7:37:1c:bc:4c:d6:24:d0:69: dc:08:f4:4a:67:2b:17:d1:b7:d2:ce:54:27:ad:6f:da:60:e7: 67:7b:43:4b:0d:bf:81:44:6d:49:71:c0:af:46:bd:61:31:b0: cf:a7:cd:8a:dd:c8:da:51:f1:fe:d6:18:5f:ce:9a:30:65:39: 17:25:05:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB54wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1NEMxMTAvBgNVBAUTKDVFQTExQzhBM0EyOUUwNjk3M0MxRjEyMTYxMUQ1QTVD MkExQjA2OUQwHhcNMjUxMDIyMjIzNTI1WhcNMjUxMDI5MjIzNTI1WjAYMRYwFAYD VQQDEw02OGY5NWMyZS0xOGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzhMTZb6UMUZisaDuNJ4j45VFQHjlCf8kwmSwlwT4WQV2IY+1stkWK/AaObWR U/Q/O8aKZzTNgC2OqXXmXOJQbGq7a/ChazMqCm9d5yJnlvx3jISNhYIc0p+FHANU LUY2JRMix6EwVXggpb9RBSDoFQ2GZrV0gceOuJjN1WOoQgj8weoAYlX3Eb9JRcTj jqRY6UyOXdt4nygbziIuTfgYR2Pb/YWryg2BpR8sF3/kC3qFdBKP3/kf3ScRunMj Q6HovYPvWH3HN1TvQicUI6Dkw3cGbBX+HSk7EMgdGBub8CUzrbqc8sEjtpEBHWGh QYnG7VKmtyZatiawDOO4dpxr4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGtzm6tX LnUQYwEGlBdDj3lqf2A4MB8GA1UdIwQYMBaAFF6hHIo6KeBpc8HxIWEdWlwqGwad MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjU0Qy81MUE5RUFDQzQx NjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRHbHp3ZkVoWVIxYVhDb2JC cDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hxRWNpam9wNEdsendmRWhZUjFhWENvYkJwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjU0Qy81MUE5RUFDQzQxNjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRH bHp3ZkVoWVIxYVhDb2JCcDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBePQgO7mtnAyd6Ko/vyH61kGzbpFm9vw7yW01a2a/Ot41L/9Ldsgln 1DA5QjwNUIYuTDxzH9Uvou7Ayw8uJg8PsQx+GblsV7QvnHMxKa/VH18950HQwMr7 CZo3Ik4+WCqJUCW6kqIjNeMEjaOqTCRxRZH2atfMLWJjOoSQlWrfTuy48W6U+p3E 5jQvCD3TDN/INpzyPRSoE4ScX37hjrTfgOIOZO29AVwhJNYvEJC4MXDhSfkiaPAq CBDjc8mnNxy8TNYk0GncCPRKZysX0bfSzlQnrW/aYOdne0NLDb+BRG1JccCvRr1h MbDPp82K3cjaUfH+1hhfzpowZTkXJQUW -----END CERTIFICATE-----Generated at Thu Oct 23 10:00:50 2025 by rpki-client