$ rpki-client -vvf rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.mft File: xIoOQPt_45dbEsI-AwrFTFIFcWM.mft (raw, json) Hash identifier: hZeZj303Dvm3AJ21ktf8i5HqWt7aq8CQtLXeeOnalX8= Subject key identifier: 27:96:BA:27:B3:C1:39:92:C7:84:20:B9:78:24:2C:AC:4B:09:35:58 Authority key identifier: C4:8A:0E:40:FB:7F:E3:97:5B:12:C2:3E:03:0A:C5:4C:52:05:71:63 Certificate issuer: /CN=A91D28BC/serialNumber=C48A0E40FB7FE3975B12C23E030AC54C52057163 Certificate serial: 05AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIoOQPt_45dbEsI-AwrFTFIFcWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.mft Manifest number: 05A6 Signing time: Sun 02 Nov 2025 23:08:15 +0000 Manifest this update: Sun 02 Nov 2025 23:08:14 +0000 Manifest next update: Sun 09 Nov 2025 23:08:14 +0000 Files and hashes: 1: xIoOQPt_45dbEsI-AwrFTFIFcWM.crl (hash: Y85EDoLEoQdiLW7WceJrxhxnp9plnlDfNa/M51JewmQ=) 2: 2B07FA82EADC11EBBE430B5EC4F9AE02.roa (hash: jxQWNR1P8sYKVza0W/49c3uTybsGhMQmKrsxrcNc/xk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.crl rsync://rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIoOQPt_45dbEsI-AwrFTFIFcWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:08:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1451 (0x5ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D28BC, serialNumber=C48A0E40FB7FE3975B12C23E030AC54C52057163 Validity Not Before: Nov 2 23:08:14 2025 GMT Not After : Nov 9 23:08:14 2025 GMT Subject: CN=6907e45e-62cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:41:6a:95:6b:b3:94:38:05:99:75:49:f0:11: 1b:bd:83:a7:f6:38:83:a9:0d:df:ac:eb:53:45:b5: 91:68:61:36:9d:9f:f1:e7:49:c2:10:78:a4:97:4b: 51:b5:7b:47:7b:71:d2:d0:79:7d:f9:f2:eb:cf:ff: 7e:7d:5a:e2:7e:c5:30:60:d3:ad:a2:fb:65:5a:1f: 45:64:92:63:75:40:d4:ef:0f:d9:c9:67:c0:a6:69: fc:b0:78:04:97:d4:c9:91:46:d1:a1:cb:ac:cd:9a: 39:87:34:b1:ac:13:6c:02:d7:04:53:4f:14:53:de: 79:96:ef:e0:c1:b7:cb:41:88:06:df:e0:12:f8:84: 2d:78:79:8a:33:3f:b2:6e:2f:26:ad:13:cf:4b:14: 83:d4:36:98:67:19:e6:18:76:c5:91:18:65:c1:46: 9e:9f:79:e5:09:8b:6c:24:9d:ae:c0:78:4a:dd:9f: dd:6a:d7:71:b9:bb:17:92:e9:f6:86:01:e5:5f:2a: 6e:ac:d5:a5:aa:08:62:6b:a3:ad:ad:8b:98:56:7e: 71:7a:ea:21:ae:ab:10:73:05:dd:47:29:23:54:f8: 98:1f:0b:6f:de:50:8a:85:0a:ec:a5:03:a5:09:36: e1:a1:47:4a:75:bf:62:38:08:a2:8a:d9:22:83:28: 80:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:96:BA:27:B3:C1:39:92:C7:84:20:B9:78:24:2C:AC:4B:09:35:58 X509v3 Authority Key Identifier: keyid:C4:8A:0E:40:FB:7F:E3:97:5B:12:C2:3E:03:0A:C5:4C:52:05:71:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIoOQPt_45dbEsI-AwrFTFIFcWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:92:95:56:db:88:a5:ba:26:37:ff:d4:d3:a0:b5:28:d1:f5: 40:7c:52:48:ea:76:6a:71:c3:69:bd:6b:32:9a:e2:aa:4e:fe: 78:26:bc:72:71:ff:db:f3:66:f3:ca:57:d5:3f:f3:31:ff:41: b7:66:70:96:e8:f9:98:64:76:6d:5d:db:d8:13:81:85:37:a2: e2:4d:e2:5a:5a:9a:07:81:bb:85:aa:f8:e4:3e:9d:ae:71:63: ad:b1:d5:ab:c1:76:c3:68:21:d5:8c:03:a2:3b:4c:b7:97:e4: d6:ec:f4:65:7f:5e:9d:16:94:62:96:38:53:8b:e9:ed:1b:2f: 2a:a3:63:81:ff:d6:61:3b:cd:75:8c:db:8d:05:04:2b:77:80: 07:d6:25:c0:78:df:66:5f:08:e6:a1:35:3a:0b:79:4f:5b:3a: 61:d7:91:be:9b:0f:99:46:9d:d5:1f:0a:40:4b:bf:a8:8b:bb: 6a:e3:b2:a2:e3:d6:98:77:a3:6a:bd:9f:a0:77:cf:d2:e6:71: eb:c8:68:a5:23:0e:69:58:0c:91:b1:9f:63:43:7e:ac:f1:de: 22:9b:78:b0:2b:49:2e:3c:37:f1:3e:d1:97:ac:8d:42:09:78: 6e:6e:cf:de:15:0d:7e:4d:7e:2c:a0:fc:f8:c1:9c:90:03:c9: b1:5f:6d:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI4QkMxMTAvBgNVBAUTKEM0OEEwRTQwRkI3RkUzOTc1QjEyQzIzRTAzMEFDNTRD NTIwNTcxNjMwHhcNMjUxMTAyMjMwODE0WhcNMjUxMTA5MjMwODE0WjAYMRYwFAYD VQQDEw02OTA3ZTQ1ZS02MmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq0FqlWuzlDgFmXVJ8BEbvYOn9jiDqQ3frOtTRbWRaGE2nZ/x50nCEHikl0tR tXtHe3HS0Hl9+fLrz/9+fVrifsUwYNOtovtlWh9FZJJjdUDU7w/ZyWfApmn8sHgE l9TJkUbRocuszZo5hzSxrBNsAtcEU08UU955lu/gwbfLQYgG3+AS+IQteHmKMz+y bi8mrRPPSxSD1DaYZxnmGHbFkRhlwUaen3nlCYtsJJ2uwHhK3Z/datdxubsXkun2 hgHlXypurNWlqghia6OtrYuYVn5xeuohrqsQcwXdRykjVPiYHwtv3lCKhQrspQOl CTbhoUdKdb9iOAiiitkigyiAzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCeWuiez wTmSx4QguXgkLKxLCTVYMB8GA1UdIwQYMBaAFMSKDkD7f+OXWxLCPgMKxUxSBXFj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjhCQy85MjA5MjM5MEVB RDgxMUVCQkQyQ0M3NThDNEY5QUUwMi94SW9PUVB0XzQ1ZGJFc0ktQXdyRlRGSUZj V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hJb09RUHRfNDVkYkVzSS1Bd3JGVEZJRmNXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjhCQy85MjA5MjM5MEVBRDgxMUVCQkQyQ0M3NThDNEY5QUUwMi94SW9PUVB0XzQ1 ZGJFc0ktQXdyRlRGSUZjV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8kpVW24iluiY3/9TToLUo0fVAfFJI6nZqccNpvWsymuKqTv54Jrxy cf/b82bzylfVP/Mx/0G3ZnCW6PmYZHZtXdvYE4GFN6LiTeJaWpoHgbuFqvjkPp2u cWOtsdWrwXbDaCHVjAOiO0y3l+TW7PRlf16dFpRiljhTi+ntGy8qo2OB/9ZhO811 jNuNBQQrd4AH1iXAeN9mXwjmoTU6C3lPWzph15G+mw+ZRp3VHwpAS7+oi7tq47Ki 49aYd6NqvZ+gd8/S5nHryGilIw5pWAyRsZ9jQ36s8d4im3iwK0kuPDfxPtGXrI1C CXhubs/eFQ1+TX4soPz4wZyQA8mxX210 -----END CERTIFICATE-----Generated at Mon Nov 3 18:08:20 2025 by rpki-client