$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft File: XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft (raw, json) Hash identifier: pkm1sv5dDFV7k5KYLrpWmknQ52UVLlG4rkYrGXNSVUk= Subject key identifier: AA:6D:AE:C7:86:2E:2C:DE:6F:F9:09:C6:3F:9B:31:A5:19:4E:B0:81 Authority key identifier: 5E:3C:F0:25:1D:8A:60:06:B8:28:5B:D0:94:9F:CD:9B:A3:F9:EB:B8 Certificate issuer: /CN=A91C9561/serialNumber=5E3CF0251D8A6006B8285BD0949FCD9BA3F9EBB8 Certificate serial: 0346 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft Manifest number: 0345 Signing time: Wed 05 Nov 2025 01:04:50 +0000 Manifest this update: Wed 05 Nov 2025 01:04:49 +0000 Manifest next update: Wed 12 Nov 2025 01:04:49 +0000 Files and hashes: 1: XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl (hash: ZdumCBSsrQEliFAmKk+aXaSuibPRjg4cH0RDuEH7h24=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:04:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 838 (0x346) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9561, serialNumber=5E3CF0251D8A6006B8285BD0949FCD9BA3F9EBB8 Validity Not Before: Nov 5 01:04:49 2025 GMT Not After : Nov 12 01:04:49 2025 GMT Subject: CN=690aa2b2-524b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c3:24:d8:f1:12:d0:4e:d6:40:0c:aa:1d:0d: 1c:1b:07:f5:8f:39:3d:eb:db:93:1b:b8:be:75:24: d3:3c:8f:f0:d6:d5:81:4d:ab:18:f8:39:10:eb:90: 7a:e3:4b:11:db:3b:3f:8d:fa:63:7b:60:d8:8a:c7: 44:0b:73:73:b4:1c:63:b7:54:56:a1:35:fd:76:f1: 0d:7e:4a:cb:c4:8b:1b:6c:67:62:55:78:32:47:4d: 7c:9a:c4:01:2b:1a:0e:2b:1b:e1:1b:ae:99:2b:98: fa:38:e5:ca:63:88:76:ca:d1:f4:50:7e:de:69:30: 4d:50:28:eb:b7:10:34:2d:ed:31:a8:07:5f:c2:3f: a0:3e:d5:87:21:2d:2d:93:0f:0b:46:3c:7a:59:e2: a6:c9:a0:62:41:40:7b:19:0d:97:d0:f3:ea:8d:29: a8:db:03:83:65:f1:55:ec:c2:1e:be:82:f6:9b:4c: 8c:9d:42:cc:2a:cd:b4:fc:03:c5:2d:26:3e:64:8d: fc:bc:0b:fc:25:24:09:66:eb:7b:96:0b:8a:0d:73: 98:82:a7:7c:d1:d4:a4:c9:22:53:5c:39:41:df:59: 4f:0a:a6:f7:3f:19:72:7e:99:9b:2d:47:7b:39:51: 42:d4:ba:25:87:15:7c:d9:0a:28:c9:80:85:07:ee: 2c:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:6D:AE:C7:86:2E:2C:DE:6F:F9:09:C6:3F:9B:31:A5:19:4E:B0:81 X509v3 Authority Key Identifier: keyid:5E:3C:F0:25:1D:8A:60:06:B8:28:5B:D0:94:9F:CD:9B:A3:F9:EB:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XjzwJR2KYAa4KFvQlJ_Nm6P567g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9561/C9A8DFDADA6911EC9C815358C4F9AE02/XjzwJR2KYAa4KFvQlJ_Nm6P567g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:61:59:59:88:8d:1c:99:b2:9b:4d:49:98:48:a7:6a:9d:ad: dd:2d:d1:f2:06:7e:1f:87:5b:e0:7b:00:d0:62:81:9b:85:3b: d3:ab:dd:92:01:b2:db:84:79:9b:ce:cd:43:d0:74:a1:ee:99: 7d:f1:45:ea:ce:fc:5c:7a:23:b6:43:a1:67:f3:ac:11:be:26: c9:f4:75:cf:f9:2d:61:3a:ab:27:d5:08:1d:a7:dd:e3:c4:e7: 63:4d:b6:c2:31:4e:e4:6d:4c:67:ad:45:af:67:f0:cd:48:2d: 5b:74:52:68:29:cd:66:69:0c:37:92:0d:72:25:28:34:38:89: 4b:06:bc:8a:c5:84:a7:6c:e6:93:1a:51:d6:96:e4:8e:12:1c: 8e:11:f7:0f:62:e9:e1:14:53:2d:fe:a2:d2:93:ef:6f:8d:ca: 0e:3f:71:28:ac:26:fa:6c:45:6e:c0:44:c3:13:9c:0c:fe:4d: f9:c3:87:e0:b0:2b:94:09:3b:7d:ea:b5:dd:0e:dd:63:ef:ac: 8a:2e:25:db:24:da:23:1f:9a:74:e7:ee:66:72:a6:7e:78:01: ca:a6:fb:d3:ad:77:8d:82:64:9c:98:1d:b4:73:86:6b:72:8a: 80:1b:bf:87:14:25:0c:4b:31:70:36:ae:e9:50:e8:82:41:07: e7:26:e1:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk1NjExMTAvBgNVBAUTKDVFM0NGMDI1MUQ4QTYwMDZCODI4NUJEMDk0OUZDRDlC QTNGOUVCQjgwHhcNMjUxMTA1MDEwNDQ5WhcNMjUxMTEyMDEwNDQ5WjAYMRYwFAYD VQQDEw02OTBhYTJiMi01MjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApsMk2PES0E7WQAyqHQ0cGwf1jzk969uTG7i+dSTTPI/w1tWBTasY+DkQ65B6 40sR2zs/jfpje2DYisdEC3NztBxjt1RWoTX9dvENfkrLxIsbbGdiVXgyR018msQB KxoOKxvhG66ZK5j6OOXKY4h2ytH0UH7eaTBNUCjrtxA0Le0xqAdfwj+gPtWHIS0t kw8LRjx6WeKmyaBiQUB7GQ2X0PPqjSmo2wODZfFV7MIevoL2m0yMnULMKs20/APF LSY+ZI38vAv8JSQJZut7lguKDXOYgqd80dSkySJTXDlB31lPCqb3PxlyfpmbLUd7 OVFC1LolhxV82QooyYCFB+4sTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKptrseG Lizeb/kJxj+bMaUZTrCBMB8GA1UdIwQYMBaAFF488CUdimAGuChb0JSfzZuj+eu4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTU2MS9DOUE4REZEQURB NjkxMUVDOUM4MTUzNThDNEY5QUUwMi9Yanp3SlIyS1lBYTRLRnZRbEpfTm02UDU2 N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hqendKUjJLWUFhNEtGdlFsSl9ObTZQNTY3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTU2MS9DOUE4REZEQURBNjkxMUVDOUM4MTUzNThDNEY5QUUwMi9Yanp3SlIyS1lB YTRLRnZRbEpfTm02UDU2N2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOYVlZiI0cmbKbTUmYSKdqna3dLdHyBn4fh1vgewDQYoGbhTvTq92S AbLbhHmbzs1D0HSh7pl98UXqzvxceiO2Q6Fn86wRvibJ9HXP+S1hOqsn1Qgdp93j xOdjTbbCMU7kbUxnrUWvZ/DNSC1bdFJoKc1maQw3kg1yJSg0OIlLBryKxYSnbOaT GlHWluSOEhyOEfcPYunhFFMt/qLSk+9vjcoOP3EorCb6bEVuwETDE5wM/k35w4fg sCuUCTt96rXdDt1j76yKLiXbJNojH5p05+5mcqZ+eAHKpvvTrXeNgmScmB20c4Zr coqAG7+HFCUMSzFwNq7pUOiCQQfnJuGu -----END CERTIFICATE-----Generated at Wed Nov 5 05:20:36 2025 by rpki-client