$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft File: X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft (raw, json) Hash identifier: 0GxG3PBoMITyLBuiPm5Tb49o4rxU1QDKyVQrXyIUheo= Subject key identifier: 19:63:21:2C:50:72:DF:E1:A0:94:E1:F8:E8:CB:BC:8B:DA:24:61:35 Authority key identifier: 5F:8A:F3:59:73:FD:4F:A5:63:F3:3B:73:76:53:46:82:10:7B:C8:F9 Certificate issuer: /CN=A91CE285/serialNumber=5F8AF35973FD4FA563F33B7376534682107BC8F9 Certificate serial: 0A0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft Manifest number: 0A04 Signing time: Sun 02 Nov 2025 19:48:56 +0000 Manifest this update: Sun 02 Nov 2025 19:48:56 +0000 Manifest next update: Sun 09 Nov 2025 19:48:56 +0000 Files and hashes: 1: X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl (hash: bYX50KF8xqXxv6uDCLAnG+R8Ua+oPMUi+itRXaie+mc=) 2: E5C4974689CF11EAA39AF441C4F9AE02.roa (hash: S/+GQ9LaNR6oJzl2BIn9qWcVDZWjqUHkpie5l4NiGuc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:48:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2571 (0xa0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE285, serialNumber=5F8AF35973FD4FA563F33B7376534682107BC8F9 Validity Not Before: Nov 2 19:48:56 2025 GMT Not After : Nov 9 19:48:56 2025 GMT Subject: CN=6907b5a8-c92d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:fd:82:d7:94:9a:6b:3e:42:2a:f0:0a:a0:67: 0d:23:82:df:4a:5c:55:a7:d2:ae:7b:fb:a2:6f:22: 79:b3:e9:61:9d:70:cc:07:e6:be:d0:47:f9:41:11: cc:c8:f4:73:b2:a8:c7:e6:0e:f7:39:0a:88:88:b3: a3:11:3e:41:c1:47:5d:28:6e:65:ae:e6:7c:41:7f: 75:6d:2f:10:bf:13:e6:8b:8b:04:40:10:29:d8:64: ae:24:40:ae:78:6c:45:17:dd:c7:4a:22:46:25:86: 36:cb:33:5f:96:af:26:a9:de:93:b5:a4:e3:39:fa: 95:8f:bd:df:49:fa:36:71:a1:bc:0d:12:99:75:ce: 55:42:6d:0d:ca:96:b6:91:f3:8d:dc:a9:22:1f:ca: e0:52:fa:27:5c:cf:e0:07:c9:30:c9:d6:4f:f2:ab: a1:eb:3b:e0:1b:81:a0:54:1d:3d:26:97:8c:5a:5b: b6:e9:86:0c:e5:82:83:b0:2b:34:42:67:15:0e:47: 0a:7c:74:d1:49:c1:70:86:31:51:88:9c:6f:5b:36: b5:2f:4e:9f:40:75:4a:c6:ae:62:60:6f:70:21:f1: ed:97:b8:e8:c2:60:45:07:82:fd:b4:cc:b0:5d:f5: e0:77:37:2d:5c:cf:8e:f6:fe:cc:d2:cf:1b:bd:ba: e1:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:63:21:2C:50:72:DF:E1:A0:94:E1:F8:E8:CB:BC:8B:DA:24:61:35 X509v3 Authority Key Identifier: keyid:5F:8A:F3:59:73:FD:4F:A5:63:F3:3B:73:76:53:46:82:10:7B:C8:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:f7:dc:36:4a:02:d5:8e:86:73:c7:71:2d:0f:95:6c:f4:1e: c3:8d:a5:5d:c1:c8:df:9b:c7:f5:d3:d5:9b:80:fb:32:92:27: 86:9e:3c:14:fd:08:2b:88:b0:b5:0b:55:63:3b:77:34:a5:4c: 62:56:fd:19:be:f0:c5:08:5b:b9:83:c6:8b:da:9d:96:5d:2d: 6b:07:5c:d5:a0:15:de:65:02:bb:bb:15:0c:ef:a6:ef:de:0d: 7e:66:fd:6e:7f:5b:75:45:95:d4:9f:e3:7d:2c:b4:7c:4e:f7: b9:cb:68:ae:0f:db:b2:9e:f1:72:76:a2:53:9d:ac:f0:1f:0a: 79:4f:34:6f:5c:03:34:be:7e:70:62:0b:2a:67:44:b4:b4:93: e5:27:c6:e6:09:06:a7:03:3e:20:34:5e:ae:2f:49:c1:cf:c5: 44:fb:41:34:3c:41:ad:2c:2e:a4:7c:19:74:5c:f6:05:e5:72: 03:e4:92:4f:06:8a:99:34:8a:b3:24:d0:28:82:a8:52:ef:62: 1b:bf:0f:da:cf:64:dc:83:fa:c6:51:eb:82:40:c5:c2:48:9b: 32:9d:a7:54:e7:d0:f5:1d:c7:4b:1c:95:a2:b2:bb:70:60:38: 35:c5:02:02:6e:bd:88:0a:56:71:fa:b0:ea:cc:cf:f4:0e:14: 82:a9:19:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyODUxMTAvBgNVBAUTKDVGOEFGMzU5NzNGRDRGQTU2M0YzM0I3Mzc2NTM0Njgy MTA3QkM4RjkwHhcNMjUxMTAyMTk0ODU2WhcNMjUxMTA5MTk0ODU2WjAYMRYwFAYD VQQDEw02OTA3YjVhOC1jOTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyP2C15Saaz5CKvAKoGcNI4LfSlxVp9Kue/uibyJ5s+lhnXDMB+a+0Ef5QRHM yPRzsqjH5g73OQqIiLOjET5BwUddKG5lruZ8QX91bS8QvxPmi4sEQBAp2GSuJECu eGxFF93HSiJGJYY2yzNflq8mqd6TtaTjOfqVj73fSfo2caG8DRKZdc5VQm0Nypa2 kfON3KkiH8rgUvonXM/gB8kwydZP8quh6zvgG4GgVB09JpeMWlu26YYM5YKDsCs0 QmcVDkcKfHTRScFwhjFRiJxvWza1L06fQHVKxq5iYG9wIfHtl7jowmBFB4L9tMyw XfXgdzctXM+O9v7M0s8bvbrhewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBljISxQ ct/hoJTh+OjLvIvaJGE1MB8GA1UdIwQYMBaAFF+K81lz/U+lY/M7c3ZTRoIQe8j5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTI4NS81RTE2NDhCNjg0 QkMxMUVBQTUyNjIyNjNDNEY5QUUwMi9YNHJ6V1hQOVQ2Vmo4enR6ZGxOR2doQjd5 UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0cnpXWFA5VDZWajh6dHpkbE5HZ2hCN3lQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTI4NS81RTE2NDhCNjg0QkMxMUVBQTUyNjIyNjNDNEY5QUUwMi9YNHJ6V1hQOVQ2 Vmo4enR6ZGxOR2doQjd5UGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBV99w2SgLVjoZzx3EtD5Vs9B7DjaVdwcjfm8f109WbgPsykieGnjwU /QgriLC1C1VjO3c0pUxiVv0ZvvDFCFu5g8aL2p2WXS1rB1zVoBXeZQK7uxUM76bv 3g1+Zv1uf1t1RZXUn+N9LLR8Tve5y2iuD9uynvFydqJTnazwHwp5TzRvXAM0vn5w YgsqZ0S0tJPlJ8bmCQanAz4gNF6uL0nBz8VE+0E0PEGtLC6kfBl0XPYF5XID5JJP BoqZNIqzJNAogqhS72Ibvw/az2Tcg/rGUeuCQMXCSJsynadU59D1HcdLHJWisrtw YDg1xQICbr2IClZx+rDqzM/0DhSCqRmH -----END CERTIFICATE-----Generated at Mon Nov 3 18:20:12 2025 by rpki-client