$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.mft File: XytYId1DwpQ50rruW9wEMpHEe68.mft (raw, json) Hash identifier: NR6+PJzE9Bsut7XP70b7/cGgQGP40CpYZrvEINRSRUA= Subject key identifier: E1:F5:BD:BA:D2:4E:C5:E6:00:C1:63:A0:98:B9:A7:8D:45:72:70:EF Authority key identifier: 5F:2B:58:21:DD:43:C2:94:39:D2:BA:EE:5B:DC:04:32:91:C4:7B:AF Certificate issuer: /CN=A91BF2FD/serialNumber=5F2B5821DD43C29439D2BAEE5BDC043291C47BAF Certificate serial: 0139 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XytYId1DwpQ50rruW9wEMpHEe68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.mft Manifest number: 0134 Signing time: Wed 05 Nov 2025 04:39:37 +0000 Manifest this update: Wed 05 Nov 2025 04:39:37 +0000 Manifest next update: Wed 12 Nov 2025 04:39:37 +0000 Files and hashes: 1: XytYId1DwpQ50rruW9wEMpHEe68.crl (hash: uozfcEXBVLDhVsnrhupmjKi88IvfHVV+gHu36IiS7Ww=) 2: 199F588CE21711EE913F3E62C4F9AE02.roa (hash: osmG47ejUnqAfJKuMkDqKj8NyV5CxVCxx93M/mU6AGU=) 3: F5A311DAE21611EEB7B0D361C4F9AE02.roa (hash: tXFOS4K6NP0mWp2yqDrG4Mk0xH2TKVaPDDMjLQ6peHE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.crl rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XytYId1DwpQ50rruW9wEMpHEe68.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:39:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 313 (0x139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF2FD, serialNumber=5F2B5821DD43C29439D2BAEE5BDC043291C47BAF Validity Not Before: Nov 5 04:39:37 2025 GMT Not After : Nov 12 04:39:37 2025 GMT Subject: CN=690ad509-3235 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:5f:21:c3:02:bc:94:94:37:6f:fa:fe:1e:53: a8:70:a3:75:09:b8:39:41:f2:63:b9:8d:32:76:a1: 90:6b:d4:a3:60:04:00:07:f3:3b:32:dd:be:f4:2f: b2:29:19:af:31:8c:bb:ca:f6:e0:1e:55:72:56:ca: ae:b0:7a:38:24:f6:b4:22:0d:2e:01:e2:dd:5d:a8: 9d:e0:cc:da:f0:97:c9:33:8b:cf:b8:8f:63:0f:f0: e7:e3:be:f8:79:5a:fc:30:61:b8:2b:3f:1c:53:2b: a3:57:c9:d6:2b:64:48:1a:be:3a:9c:b9:5f:03:7e: ff:7d:ae:fa:d7:19:09:8b:54:86:77:80:25:d8:09: ab:50:01:21:87:2e:15:39:a6:70:03:ae:f8:1e:88: ed:f0:d9:5b:93:50:91:38:3f:d4:dc:0c:9d:83:81: 41:3a:3b:79:be:a7:9d:1d:77:63:10:ba:11:e6:c5: 53:0b:fe:3a:bf:1d:44:ba:7a:80:05:c1:e5:d0:f1: 4a:96:cd:f5:aa:2b:a1:66:34:f2:28:2a:40:9e:e1: 06:f1:16:0a:c0:18:46:fa:eb:a4:97:40:b6:48:59: 53:80:c4:27:fa:cf:dc:a8:8c:74:01:44:35:6b:cc: 13:cf:b9:08:fe:a0:6b:73:bd:99:d3:d0:4d:e5:d8: 21:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:F5:BD:BA:D2:4E:C5:E6:00:C1:63:A0:98:B9:A7:8D:45:72:70:EF X509v3 Authority Key Identifier: keyid:5F:2B:58:21:DD:43:C2:94:39:D2:BA:EE:5B:DC:04:32:91:C4:7B:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XytYId1DwpQ50rruW9wEMpHEe68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:5d:97:cf:9a:7a:90:c9:d0:cc:56:4c:e1:b0:fb:f4:6f:53: 50:3c:f8:9c:98:03:32:18:9d:6c:68:75:cf:b5:69:eb:06:d4: dc:7f:e0:ff:ff:5e:eb:8d:ee:41:83:29:3c:08:47:c2:01:95: 2b:59:32:a6:16:0a:0e:02:a7:84:aa:a3:3e:85:e2:b0:76:40: c3:ab:17:c2:a1:18:6e:f1:ef:b6:6e:32:b3:9e:08:91:4b:78: af:be:74:8e:70:5e:43:ac:f6:1c:d5:e6:37:b5:ee:b1:3d:1a: 41:16:b1:e0:0c:fa:4c:94:73:db:da:8a:af:dd:98:ec:4c:cb: 45:54:e4:30:6d:71:63:94:d5:ac:37:05:c5:67:b9:cf:cf:bc: bc:e0:68:58:ac:63:3f:69:bd:3a:6d:01:46:8a:a7:98:a4:0d: 23:5f:2c:6a:f4:96:80:4b:2d:fd:3b:fb:06:e9:35:69:c0:a5: d6:9e:0a:30:a4:25:7f:0b:a8:32:13:31:cd:9a:32:33:c0:74: be:04:91:a4:6b:62:2a:75:62:8a:b7:14:1f:9b:65:ad:d1:53: 35:95:f9:2d:76:fc:dc:f4:65:24:9b:c6:f4:a1:92:2d:c7:bc: b8:4d:84:df:07:0f:7e:05:ef:d6:b3:dd:78:c1:e9:1a:5d:bf: 74:a5:30:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyRkQxMTAvBgNVBAUTKDVGMkI1ODIxREQ0M0MyOTQzOUQyQkFFRTVCREMwNDMy OTFDNDdCQUYwHhcNMjUxMTA1MDQzOTM3WhcNMjUxMTEyMDQzOTM3WjAYMRYwFAYD VQQDEw02OTBhZDUwOS0zMjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtV8hwwK8lJQ3b/r+HlOocKN1Cbg5QfJjuY0ydqGQa9SjYAQAB/M7Mt2+9C+y KRmvMYy7yvbgHlVyVsqusHo4JPa0Ig0uAeLdXaid4Mza8JfJM4vPuI9jD/Dn4774 eVr8MGG4Kz8cUyujV8nWK2RIGr46nLlfA37/fa761xkJi1SGd4Al2AmrUAEhhy4V OaZwA674Hojt8Nlbk1CROD/U3Aydg4FBOjt5vqedHXdjELoR5sVTC/46vx1EunqA BcHl0PFKls31qiuhZjTyKCpAnuEG8RYKwBhG+uukl0C2SFlTgMQn+s/cqIx0AUQ1 a8wTz7kI/qBrc72Z09BN5dghiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOH1vbrS TsXmAMFjoJi5p41FcnDvMB8GA1UdIwQYMBaAFF8rWCHdQ8KUOdK67lvcBDKRxHuv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjJGRC82MzhENjJBMEUx MTIxMUVFQUM3ODYxMzhDNEY5QUUwMi9YeXRZSWQxRHdwUTUwcnJ1Vzl3RU1wSEVl NjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h5dFlJZDFEd3BRNTBycnVXOXdFTXBIRWU2OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjJGRC82MzhENjJBMEUxMTIxMUVFQUM3ODYxMzhDNEY5QUUwMi9YeXRZSWQxRHdw UTUwcnJ1Vzl3RU1wSEVlNjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyXZfPmnqQydDMVkzhsPv0b1NQPPicmAMyGJ1saHXPtWnrBtTcf+D/ /17rje5Bgyk8CEfCAZUrWTKmFgoOAqeEqqM+heKwdkDDqxfCoRhu8e+2bjKzngiR S3ivvnSOcF5DrPYc1eY3te6xPRpBFrHgDPpMlHPb2oqv3ZjsTMtFVOQwbXFjlNWs NwXFZ7nPz7y84GhYrGM/ab06bQFGiqeYpA0jXyxq9JaASy39O/sG6TVpwKXWngow pCV/C6gyEzHNmjIzwHS+BJGka2IqdWKKtxQfm2Wt0VM1lfktdvzc9GUkm8b0oZIt x7y4TYTfBw9+Be/Ws914wekaXb90pTC3 -----END CERTIFICATE-----Generated at Wed Nov 5 10:07:35 2025 by rpki-client