$ rpki-client -vvf rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft File: XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft (raw, json) Hash identifier: dbs4wVrJ707XJt5zLFbc+YOz/znh/xfJQmnAiI6y8G0= Subject key identifier: 04:00:F6:44:65:21:18:1A:0F:31:7B:51:5C:E3:BE:DD:5A:6B:1F:FC Authority key identifier: 5D:5F:61:90:21:5D:FF:0A:C3:54:32:BC:3A:52:A0:8B:D3:41:B7:00 Certificate issuer: /CN=A91D28E1/serialNumber=5D5F6190215DFF0AC35432BC3A52A08BD341B700 Certificate serial: 0166 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XV9hkCFd_wrDVDK8OlKgi9NBtwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft Manifest number: 0163 Signing time: Wed 05 Nov 2025 04:10:37 +0000 Manifest this update: Wed 05 Nov 2025 04:10:36 +0000 Manifest next update: Wed 12 Nov 2025 04:10:36 +0000 Files and hashes: 1: XV9hkCFd_wrDVDK8OlKgi9NBtwA.crl (hash: Wh2fY7539qGSfrSdOzI6S7/FgS0VZEr4YeHy3YhpkzQ=) 2: 0A576F089A4C11EEBD557E12C4F9AE02.roa (hash: W3PBLvmUcdE3zAX7FZy5vyT9kW67f//Ujbv+JZHmvZA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.crl rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XV9hkCFd_wrDVDK8OlKgi9NBtwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:10:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 358 (0x166) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D28E1, serialNumber=5D5F6190215DFF0AC35432BC3A52A08BD341B700 Validity Not Before: Nov 5 04:10:36 2025 GMT Not After : Nov 12 04:10:36 2025 GMT Subject: CN=690ace3c-aa29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:1a:1b:58:0b:da:6a:4f:75:e2:80:ed:30:8f: 52:7f:b6:6c:98:50:a8:ca:c7:c2:b2:3a:cf:d5:af: 08:ac:5f:80:de:58:b3:07:12:e8:2c:ea:e7:75:7d: 7e:5a:59:e0:b5:33:52:74:46:74:bd:7a:4c:17:71: eb:c5:fe:38:07:25:cd:4b:62:9a:d8:66:e9:2f:8e: 12:17:51:67:c6:62:ca:f4:22:94:dd:26:f8:d2:4d: 65:dc:07:1e:69:d3:08:51:3c:18:9a:69:0c:17:52: 0c:c8:cb:57:91:db:b6:2c:f3:ec:32:d0:e0:ac:b6: 91:30:37:25:0d:9b:28:06:84:ee:77:53:5a:25:6a: 29:7c:d0:1d:6d:33:d4:e6:b8:ae:96:56:00:15:c6: aa:77:ec:f9:7a:68:39:5d:4d:f5:b6:5e:2d:e3:09: 09:59:37:68:cf:84:c9:cf:fd:18:8d:68:a0:a8:33: e0:ca:03:5d:00:61:13:38:39:8b:41:d6:bc:9a:e5: 06:29:d5:39:9b:5d:19:be:8f:96:db:80:43:f4:c5: bd:0b:d9:74:3d:22:c6:8e:4a:fe:cc:4a:a0:23:d5: 3a:55:06:5a:58:ec:2a:53:71:38:e0:7f:cd:c4:6b: 5a:d4:f6:af:6c:27:d5:1d:f8:b1:f1:6a:90:68:7b: bc:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:00:F6:44:65:21:18:1A:0F:31:7B:51:5C:E3:BE:DD:5A:6B:1F:FC X509v3 Authority Key Identifier: keyid:5D:5F:61:90:21:5D:FF:0A:C3:54:32:BC:3A:52:A0:8B:D3:41:B7:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XV9hkCFd_wrDVDK8OlKgi9NBtwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D28E1/BBE3D43A9A4911EE9092E070C4F9AE02/XV9hkCFd_wrDVDK8OlKgi9NBtwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:42:ba:32:00:98:be:59:58:c7:c0:81:9b:4d:49:e3:fb:d5: 15:b4:a7:04:6b:63:fb:68:64:54:0f:5a:ef:f8:b9:42:67:02: 53:f5:d9:9a:01:06:06:d7:7f:eb:d1:76:38:ae:cb:c0:b4:5b: 5d:95:e1:fd:24:9f:eb:ff:10:31:d4:de:28:a8:36:d3:01:bb: a7:13:1a:19:71:98:5d:1e:8b:75:1f:f8:34:53:87:dd:d5:01: cc:b8:bd:b9:8b:cc:71:08:86:08:34:1e:f0:9a:1c:34:7c:e0: cf:01:0d:c0:28:ce:1b:34:9d:1c:f1:a0:4e:0e:af:24:f0:65: b9:cc:de:65:e8:7d:82:13:5f:b5:2d:56:e8:9e:1f:e5:cd:af: 2d:28:70:00:73:99:2b:35:f1:6a:be:17:6b:6c:d7:03:9c:45: 93:7a:32:95:7c:57:71:04:9b:05:33:6a:ec:14:f2:75:7e:cb: f0:c5:38:bc:a6:9c:e9:c7:f3:f8:cb:5c:1c:bb:0f:2f:0e:46: 7f:3b:c0:56:43:cf:91:cd:d8:be:f4:4c:56:5b:ac:f0:7b:b8: 5d:b0:bd:f5:7b:22:8f:bd:f2:22:33:87:68:41:89:6e:73:04: 3c:cd:cd:03:cf:50:72:f7:16:b1:80:d4:b3:ff:77:94:ff:61: 68:70:d2:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI4RTExMTAvBgNVBAUTKDVENUY2MTkwMjE1REZGMEFDMzU0MzJCQzNBNTJBMDhC RDM0MUI3MDAwHhcNMjUxMTA1MDQxMDM2WhcNMjUxMTEyMDQxMDM2WjAYMRYwFAYD VQQDEw02OTBhY2UzYy1hYTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1BobWAvaak914oDtMI9Sf7ZsmFCoysfCsjrP1a8IrF+A3lizBxLoLOrndX1+ WlngtTNSdEZ0vXpMF3Hrxf44ByXNS2Ka2GbpL44SF1FnxmLK9CKU3Sb40k1l3Ace adMIUTwYmmkMF1IMyMtXkdu2LPPsMtDgrLaRMDclDZsoBoTud1NaJWopfNAdbTPU 5riullYAFcaqd+z5emg5XU31tl4t4wkJWTdoz4TJz/0YjWigqDPgygNdAGETODmL Qda8muUGKdU5m10Zvo+W24BD9MW9C9l0PSLGjkr+zEqgI9U6VQZaWOwqU3E44H/N xGta1PavbCfVHfix8WqQaHu8fQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAQA9kRl IRgaDzF7UVzjvt1aax/8MB8GA1UdIwQYMBaAFF1fYZAhXf8Kw1QyvDpSoIvTQbcA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjhFMS9CQkUzRDQzQTlB NDkxMUVFOTA5MkUwNzBDNEY5QUUwMi9YVjloa0NGZF93ckRWREs4T2xLZ2k5TkJ0 d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hWOWhrQ0ZkX3dyRFZESzhPbEtnaTlOQnR3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjhFMS9CQkUzRDQzQTlBNDkxMUVFOTA5MkUwNzBDNEY5QUUwMi9YVjloa0NGZF93 ckRWREs4T2xLZ2k5TkJ0d0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzQroyAJi+WVjHwIGbTUnj+9UVtKcEa2P7aGRUD1rv+LlCZwJT9dma AQYG13/r0XY4rsvAtFtdleH9JJ/r/xAx1N4oqDbTAbunExoZcZhdHot1H/g0U4fd 1QHMuL25i8xxCIYINB7wmhw0fODPAQ3AKM4bNJ0c8aBODq8k8GW5zN5l6H2CE1+1 LVbonh/lza8tKHAAc5krNfFqvhdrbNcDnEWTejKVfFdxBJsFM2rsFPJ1fsvwxTi8 ppzpx/P4y1wcuw8vDkZ/O8BWQ8+Rzdi+9ExWW6zwe7hdsL31eyKPvfIiM4doQYlu cwQ8zc0Dz1By9xaxgNSz/3eU/2FocNKi -----END CERTIFICATE-----Generated at Wed Nov 5 19:46:39 2025 by rpki-client