$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft File: XnKqfVsdVjLl0z_scvp0M_Sc4po.mft (raw, json) Hash identifier: R+k+/QMmwxjFs6Vj4kAnO5ved7OuR6YawmIcidTG/Io= Subject key identifier: 78:F8:C4:19:C8:73:8D:70:0F:70:28:F4:10:13:89:FE:3C:C7:C5:B3 Authority key identifier: 5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A Certificate issuer: /CN=A91C9E82/serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Certificate serial: 01C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft Manifest number: 019D Signing time: Wed 22 Oct 2025 03:55:57 +0000 Manifest this update: Wed 22 Oct 2025 03:55:55 +0000 Manifest next update: Wed 29 Oct 2025 03:55:55 +0000 Files and hashes: 1: XnKqfVsdVjLl0z_scvp0M_Sc4po.crl (hash: CSZbiKRcrL0NyKlGvgYmevHHIJwYezPqIRLNgve4cxY=) 2: 36C31E00637111EEA51CA05EC4F9AE02.roa (hash: lY96nEi5CKYTXJTj1z2X+4msAEH0lgBh87K7FsjTVZ8=) 3: 00E626A4A57611EF98285E5FC4F9AE02.roa (hash: 08NPSGEr7+x4MzDThoj8ZzRXxZk450XlydgirrF3WE4=) 4: 98BE8828663D11EE8CBBAE7CC4F9AE02.roa (hash: OnFM4tWhowHbvjU4usSptKOpZeLKLT7QxFEJy+UEpYk=) 5: 99341DD6663D11EE8CBBAE7CC4F9AE02.roa (hash: NzwtW94OGR5LBUfhUFwuihytDl5251IuikJ6D/DeFPA=) 6: 678C24C0663F11EEBD955D43C4F9AE02.roa (hash: Rlo1FH4ToBEybkPEC2r5mS4GIe86F2K5uAovVfJDrI8=) 7: 9830B6D8663D11EE8CBBAE7CC4F9AE02.roa (hash: RmkIIPTPM365rnHi3iyE65DKC/DdOKV16KKoUBGaAYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 03:55:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 450 (0x1c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9E82, serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Validity Not Before: Oct 22 03:55:55 2025 GMT Not After : Oct 29 03:55:55 2025 GMT Subject: CN=68f855cc-f175 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:98:bc:25:00:78:d8:34:1e:e6:5c:c1:c6:cf: cf:cd:6a:e0:cd:d0:4e:19:67:a4:d9:17:0f:4c:4b: 85:19:97:7b:04:ea:37:e3:a0:61:fb:d5:75:28:6b: 8f:7a:15:d1:10:10:e3:63:81:ce:a2:0c:a5:92:cf: 71:12:4d:0d:ed:9e:89:15:32:4a:1c:48:87:6e:48: d7:10:90:42:52:8e:ca:4c:6d:a2:bd:00:9b:04:2d: eb:47:7a:d2:e0:37:ba:50:9d:07:0a:2c:25:15:e9: d9:7e:f4:62:1f:39:46:a0:d2:eb:0b:bb:9e:fe:70: 75:39:f3:c4:49:c8:6a:ef:c5:80:ef:f0:0a:44:39: 49:35:09:a1:2d:e1:f4:4d:9a:30:91:76:07:94:19: b8:e7:74:2e:07:d3:54:99:8e:18:69:75:43:85:9f: fc:b2:4b:e0:c4:e4:a1:b6:c9:42:dc:c0:ed:b9:b4: 53:79:ac:d5:17:43:9f:77:11:82:63:29:fd:fc:db: 02:0d:2a:72:e2:94:9a:ef:32:b5:40:04:20:3b:9e: 42:bc:a5:31:8b:6f:e4:2b:73:b1:c4:c7:9d:60:47: 0f:86:2f:d0:51:89:c9:47:a1:ba:66:30:c8:8f:79: 98:37:6e:a3:b8:fc:d6:0d:c2:9a:37:88:d4:67:5f: 89:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:F8:C4:19:C8:73:8D:70:0F:70:28:F4:10:13:89:FE:3C:C7:C5:B3 X509v3 Authority Key Identifier: keyid:5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:ef:1c:a9:fd:91:ae:c7:86:a9:2d:1f:23:85:e0:af:76:9a: dc:1a:ea:a5:4c:a2:44:d0:2a:ff:61:f7:51:e7:eb:fd:64:db: a8:e5:11:30:f2:f6:8b:62:e0:4c:b7:ba:f9:d1:0d:cf:d6:20: 50:f3:71:59:d5:cf:c4:56:e0:2a:20:d4:30:7d:82:04:58:47: e2:4d:f4:ab:8f:1b:62:77:df:d4:aa:ab:6a:37:74:89:30:a1: 28:5d:cf:c5:65:65:e9:69:a2:e8:b0:a4:b7:06:d7:12:ec:02: 5e:5f:59:f9:32:5e:2e:84:3d:ce:90:95:95:da:23:29:c7:f9: bc:ae:37:1a:71:61:bb:eb:0e:64:e3:f4:69:5d:17:87:3a:3a: e6:12:d0:09:8e:08:eb:bc:ad:56:e6:94:ad:22:31:69:07:5b: f8:91:f1:05:cd:71:2b:47:37:18:8c:e6:88:3f:3e:f6:b7:d1: bf:ea:9c:eb:91:02:f6:d1:ef:3c:9d:46:97:b3:ba:b2:71:75: 47:7d:24:fd:77:fd:ef:6f:b2:dd:76:06:45:ed:80:3f:39:bb: 0d:f4:63:dd:57:05:af:b8:50:29:32:65:ec:91:10:b4:d4:52: 9d:41:a0:0a:f5:81:f2:a0:d8:60:51:57:19:f1:52:50:20:22: 70:04:ac:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlFODIxMTAvBgNVBAUTKDVFNzJBQTdENUIxRDU2MzJFNUQzM0ZFQzcyRkE3NDMz RjQ5Q0UyOUEwHhcNMjUxMDIyMDM1NTU1WhcNMjUxMDI5MDM1NTU1WjAYMRYwFAYD VQQDEw02OGY4NTVjYy1mMTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZi8JQB42DQe5lzBxs/PzWrgzdBOGWek2RcPTEuFGZd7BOo346Bh+9V1KGuP ehXREBDjY4HOogylks9xEk0N7Z6JFTJKHEiHbkjXEJBCUo7KTG2ivQCbBC3rR3rS 4De6UJ0HCiwlFenZfvRiHzlGoNLrC7ue/nB1OfPESchq78WA7/AKRDlJNQmhLeH0 TZowkXYHlBm453QuB9NUmY4YaXVDhZ/8skvgxOShtslC3MDtubRTeazVF0OfdxGC Yyn9/NsCDSpy4pSa7zK1QAQgO55CvKUxi2/kK3OxxMedYEcPhi/QUYnJR6G6ZjDI j3mYN26juPzWDcKaN4jUZ1+JBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHj4xBnI c41wD3Ao9BATif48x8WzMB8GA1UdIwQYMBaAFF5yqn1bHVYy5dM/7HL6dDP0nOKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUU4Mi9FQTdFNUZBNjYz NkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZqTGwwel9zY3ZwME1fU2M0 cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huS3FmVnNkVmpMbDB6X3NjdnAwTV9TYzRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUU4Mi9FQTdFNUZBNjYzNkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZq TGwwel9zY3ZwME1fU2M0cG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAE7xyp/ZGux4apLR8jheCvdprcGuqlTKJE0Cr/YfdR5+v9ZNuo5REw 8vaLYuBMt7r50Q3P1iBQ83FZ1c/EVuAqINQwfYIEWEfiTfSrjxtid9/UqqtqN3SJ MKEoXc/FZWXpaaLosKS3BtcS7AJeX1n5Ml4uhD3OkJWV2iMpx/m8rjcacWG76w5k 4/RpXReHOjrmEtAJjgjrvK1W5pStIjFpB1v4kfEFzXErRzcYjOaIPz72t9G/6pzr kQL20e88nUaXs7qycXVHfST9d/3vb7LddgZF7YA/ObsN9GPdVwWvuFApMmXskRC0 1FKdQaAK9YHyoNhgUVcZ8VJQICJwBKwN -----END CERTIFICATE-----Generated at Thu Oct 23 05:28:17 2025 by rpki-client