$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft File: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft (raw, json) Hash identifier: Z4ghxkNp53pvuX5C1YG4nDmqpC3Du5ZqRyrXrwIMJAk= Subject key identifier: E9:0C:BB:F5:D3:8F:9D:0E:5D:18:36:9D:B0:8B:5E:62:5C:F3:C5:08 Authority key identifier: C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 Certificate issuer: /CN=A91AAF73/serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Certificate serial: 018B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft Manifest number: 0188 Signing time: Mon 03 Nov 2025 03:33:49 +0000 Manifest this update: Mon 03 Nov 2025 03:33:48 +0000 Manifest next update: Mon 10 Nov 2025 03:33:48 +0000 Files and hashes: 1: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl (hash: R+Za24JaCKFdzcdPaOVaRH4pmmP/ElBxzbpROLh2ANw=) 2: 4B2F1F725E7811EE9307D234C4F9AE02.roa (hash: 3yvbzjuUuh9G6qcJ8V8xglcFed2rUg7lvlhKdI7EHEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:33:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 395 (0x18b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF73, serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Validity Not Before: Nov 3 03:33:48 2025 GMT Not After : Nov 10 03:33:48 2025 GMT Subject: CN=6908229d-7431 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e3:ed:89:d6:32:7d:f9:b7:b6:8e:b3:14:ac: 4c:f0:92:d0:d0:ff:2c:ef:1b:80:57:e0:b3:2c:cc: 71:fc:a4:2c:a9:9b:72:7e:30:5f:0c:42:05:09:88: 22:aa:f4:3b:6b:68:ac:cc:96:2f:9f:20:2a:3a:65: 5b:26:f0:f0:59:f7:aa:84:cb:69:9a:b0:83:1e:aa: eb:85:d5:dd:8c:df:3e:c3:f3:92:4b:a8:6f:07:37: 2c:7b:62:25:29:80:bb:04:62:d9:a0:c4:44:05:9c: 26:05:db:d0:59:3d:21:3f:9b:60:7a:44:fc:4f:2d: 10:63:3b:8d:33:f8:86:72:1f:59:c7:1b:2c:b1:5f: e4:bc:31:fb:f3:69:57:46:92:b4:10:dd:71:35:ef: eb:51:70:4a:a2:4a:d5:31:cd:45:c8:c6:8d:95:02: 53:75:75:65:1b:0a:ac:56:41:55:1d:d1:84:12:ed: 8f:08:eb:3b:bb:69:c6:24:f9:c3:ee:76:70:f1:8c: 24:e6:14:aa:b0:6e:e7:14:be:fe:be:40:34:b8:4d: 42:61:97:fd:aa:02:04:b1:f6:82:6e:a1:8d:bd:4c: 1d:09:e1:38:67:88:f0:77:ca:ef:78:d1:f9:59:27: d1:83:ba:f6:c1:90:37:86:b3:40:0d:df:98:34:c9: 7d:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:0C:BB:F5:D3:8F:9D:0E:5D:18:36:9D:B0:8B:5E:62:5C:F3:C5:08 X509v3 Authority Key Identifier: keyid:C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:05:b3:25:95:9a:71:bb:89:00:d3:3b:75:31:c5:ac:b7:64: e2:7f:b9:0a:a4:89:44:dd:21:87:fb:bf:60:c1:69:b4:83:8d: 54:26:dc:45:03:8b:c2:dc:23:38:97:e9:26:2b:28:60:f0:c0: c9:a9:e0:14:04:17:b9:21:63:63:a5:6c:c3:ed:18:ec:9e:3b: 11:f6:8f:48:c4:4a:a9:d8:d1:fc:f1:71:91:f0:3d:5a:62:af: ff:66:27:0e:a5:af:22:55:a2:1c:7d:42:ec:67:25:5b:33:94: 9b:86:98:25:77:13:bf:e3:e6:5e:b8:fb:ee:ea:ef:50:36:5c: 47:97:fd:47:46:31:db:32:75:cf:4e:0d:46:84:00:c6:24:33: 42:99:69:2e:41:95:44:09:48:2f:57:33:d1:3a:05:a8:32:1a: 77:ab:55:bd:bd:1c:28:cc:b2:2f:01:c7:f5:16:f4:4d:a6:89: ee:3a:cd:1b:70:f4:56:20:18:84:63:d8:df:47:b9:30:80:e7: ad:96:d7:46:b2:f3:4b:22:3e:2b:c5:74:45:be:85:70:1c:03: 33:7b:d3:0b:a5:7d:5f:87:b3:35:4e:31:a7:ed:12:ab:59:df: 45:ab:bb:54:0b:c2:2d:d1:44:71:81:ae:01:0b:a2:24:a6:1e: 39:84:df:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFGNzMxMTAvBgNVBAUTKEM0MDVGMDYxRTMzQjA3MTdDOTA0RkMxREYzRTc5QkNE Nzk1MjBGQTYwHhcNMjUxMTAzMDMzMzQ4WhcNMjUxMTEwMDMzMzQ4WjAYMRYwFAYD VQQDEw02OTA4MjI5ZC03NDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0uPtidYyffm3to6zFKxM8JLQ0P8s7xuAV+CzLMxx/KQsqZtyfjBfDEIFCYgi qvQ7a2iszJYvnyAqOmVbJvDwWfeqhMtpmrCDHqrrhdXdjN8+w/OSS6hvBzcse2Il KYC7BGLZoMREBZwmBdvQWT0hP5tgekT8Ty0QYzuNM/iGch9ZxxsssV/kvDH782lX RpK0EN1xNe/rUXBKokrVMc1FyMaNlQJTdXVlGwqsVkFVHdGEEu2PCOs7u2nGJPnD 7nZw8Ywk5hSqsG7nFL7+vkA0uE1CYZf9qgIEsfaCbqGNvUwdCeE4Z4jwd8rveNH5 WSfRg7r2wZA3hrNADd+YNMl9MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOkMu/XT j50OXRg2nbCLXmJc88UIMB8GA1UdIwQYMBaAFMQF8GHjOwcXyQT8HfPnm815Ug+m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUY3My9ENUZGMUY0MDVF NzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4ZkpCUHdkOC1lYnpYbFNE NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hBWHdZZU03QnhmSkJQd2Q4LWVielhsU0Q2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUY3My9ENUZGMUY0MDVFNzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4 ZkpCUHdkOC1lYnpYbFNENlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvBbMllZpxu4kA0zt1McWst2Tif7kKpIlE3SGH+79gwWm0g41UJtxF A4vC3CM4l+kmKyhg8MDJqeAUBBe5IWNjpWzD7RjsnjsR9o9IxEqp2NH88XGR8D1a Yq//ZicOpa8iVaIcfULsZyVbM5SbhpgldxO/4+ZeuPvu6u9QNlxHl/1HRjHbMnXP Tg1GhADGJDNCmWkuQZVECUgvVzPROgWoMhp3q1W9vRwozLIvAcf1FvRNponuOs0b cPRWIBiEY9jfR7kwgOetltdGsvNLIj4rxXRFvoVwHAMze9MLpX1fh7M1TjGn7RKr Wd9Fq7tUC8It0URxga4BC6Ikph45hN+q -----END CERTIFICATE-----Generated at Mon Nov 3 18:14:41 2025 by rpki-client