$ rpki-client -vvf rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft File: XDZbFzHKfOfbgd1XEwvU1kMBm14.mft (raw, json) Hash identifier: iO1k/Zz3j1xZ1iGPAHLJd6995P2p0r8cL87CBb8PUjg= Subject key identifier: B9:3F:63:A7:46:52:BE:8E:1F:3E:CC:3F:68:C3:07:76:FF:91:99:C6 Authority key identifier: 5C:36:5B:17:31:CA:7C:E7:DB:81:DD:57:13:0B:D4:D6:43:01:9B:5E Certificate issuer: /CN=A91D28EB/serialNumber=5C365B1731CA7CE7DB81DD57130BD4D643019B5E Certificate serial: 05B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft Manifest number: 05AC Signing time: Tue 04 Nov 2025 23:13:43 +0000 Manifest this update: Tue 04 Nov 2025 23:13:42 +0000 Manifest next update: Tue 11 Nov 2025 23:13:42 +0000 Files and hashes: 1: XDZbFzHKfOfbgd1XEwvU1kMBm14.crl (hash: BhIUzjKZTcd/FQwA2Yxj2GYieoVvTm9/qDkZPaGcaWQ=) 2: 8E90AA02EB0B11EBA0B6DD84C4F9AE02.roa (hash: WoeJPfBlNid7RydzbYK1jVf1zbozvuQMQ+6wRuDKrQE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.crl rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:13:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1460 (0x5b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D28EB, serialNumber=5C365B1731CA7CE7DB81DD57130BD4D643019B5E Validity Not Before: Nov 4 23:13:42 2025 GMT Not After : Nov 11 23:13:42 2025 GMT Subject: CN=690a88a6-7ab7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:b3:e3:6d:43:e1:5b:2b:a8:fb:c8:e2:fa:a4: e4:78:f8:41:58:69:9b:41:6d:f0:69:37:a4:0d:26: f0:03:5f:53:81:4c:a6:80:0c:98:ed:ff:0c:b8:ee: f4:c9:b7:23:09:9b:e2:db:7c:ee:a4:d3:c7:a4:9b: 6b:6b:5e:13:71:af:31:5c:80:0f:d1:45:2b:cc:32: 76:af:fa:5a:9b:46:84:db:2e:c9:a6:d4:e9:e1:44: e2:c5:f0:3f:03:45:9f:02:90:b4:48:97:2e:5e:84: 45:0a:4b:20:e8:06:73:3f:4d:4f:8e:0a:96:f4:59: 1e:c2:79:6b:bb:1f:6b:35:e5:86:5f:11:b6:8a:d0: 6c:f9:f7:d2:ea:69:47:9f:ac:89:fc:c4:a9:04:be: ec:47:07:0a:99:41:fe:8f:01:55:f6:35:86:06:97: f4:39:45:34:c1:62:e0:6f:ba:93:08:99:3f:b8:27: f9:a2:b2:63:80:73:53:1e:d8:57:d6:4d:73:6f:50: 12:a5:93:cf:e5:b5:a0:9c:11:a9:8f:20:82:cc:87: bf:33:b5:49:2d:28:d3:2c:85:93:a2:f4:fd:0a:62: 1e:8e:a8:f0:d4:f0:1e:b8:ef:72:6c:53:78:6d:12: 80:83:1a:42:6c:d3:6e:95:e2:af:82:67:e6:f8:b2: 58:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:3F:63:A7:46:52:BE:8E:1F:3E:CC:3F:68:C3:07:76:FF:91:99:C6 X509v3 Authority Key Identifier: keyid:5C:36:5B:17:31:CA:7C:E7:DB:81:DD:57:13:0B:D4:D6:43:01:9B:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:ab:fd:64:d2:11:02:ba:12:85:7e:ed:a5:86:75:b6:23:93: f5:8e:a3:1c:27:98:d7:27:88:28:f2:83:f1:b4:0e:64:55:60: 73:c0:bb:10:4d:97:6c:dc:f3:58:57:72:91:10:5c:18:16:f5: 43:55:64:c6:6e:70:97:8f:b8:03:a8:ae:e4:d9:69:b5:d4:84: 5e:f8:26:f6:c1:ed:50:c7:bf:bf:94:6a:7d:0f:e5:7e:ce:f6: f2:d4:c4:ca:e7:2c:45:50:1a:5f:8b:55:58:ad:77:93:80:30: d8:47:fb:67:64:68:fa:25:58:57:75:a5:63:44:bf:13:26:e0: f2:29:92:02:a7:b1:bb:1c:49:5f:48:96:d9:2c:fc:97:bb:5e: ce:0a:6f:01:7b:0f:ea:90:5f:90:e2:d0:40:93:34:0c:1f:ae: 4f:33:8f:01:f6:c3:f1:be:91:0b:d0:74:f9:08:c2:19:9f:70: df:57:c5:37:76:48:70:ab:67:c5:d9:84:a3:48:2c:c1:e8:1f: 87:b7:af:2b:81:36:5f:99:2a:a2:ac:5c:9c:54:b2:5a:5e:8e: 1d:51:89:e0:ad:64:0b:d8:ed:be:d8:6c:7a:89:a4:01:89:53: 65:86:08:84:04:e6:27:f1:f1:83:3b:98:52:3b:a9:60:ee:12: 59:8f:ad:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI4RUIxMTAvBgNVBAUTKDVDMzY1QjE3MzFDQTdDRTdEQjgxREQ1NzEzMEJENEQ2 NDMwMTlCNUUwHhcNMjUxMTA0MjMxMzQyWhcNMjUxMTExMjMxMzQyWjAYMRYwFAYD VQQDEw02OTBhODhhNi03YWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3rPjbUPhWyuo+8ji+qTkePhBWGmbQW3waTekDSbwA19TgUymgAyY7f8MuO70 ybcjCZvi23zupNPHpJtra14Tca8xXIAP0UUrzDJ2r/pam0aE2y7JptTp4UTixfA/ A0WfApC0SJcuXoRFCksg6AZzP01PjgqW9Fkewnlrux9rNeWGXxG2itBs+ffS6mlH n6yJ/MSpBL7sRwcKmUH+jwFV9jWGBpf0OUU0wWLgb7qTCJk/uCf5orJjgHNTHthX 1k1zb1ASpZPP5bWgnBGpjyCCzIe/M7VJLSjTLIWTovT9CmIejqjw1PAeuO9ybFN4 bRKAgxpCbNNuleKvgmfm+LJYyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLk/Y6dG Ur6OHz7MP2jDB3b/kZnGMB8GA1UdIwQYMBaAFFw2Wxcxynzn24HdVxML1NZDAZte MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjhFQi83NzE0OEFDNkVC MDkxMUVCOUM3NTkxODBDNEY5QUUwMi9YRFpiRnpIS2ZPZmJnZDFYRXd2VTFrTUJt MTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEWmJGekhLZk9mYmdkMVhFd3ZVMWtNQm0xNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjhFQi83NzE0OEFDNkVCMDkxMUVCOUM3NTkxODBDNEY5QUUwMi9YRFpiRnpIS2ZP ZmJnZDFYRXd2VTFrTUJtMTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8q/1k0hECuhKFfu2lhnW2I5P1jqMcJ5jXJ4go8oPxtA5kVWBzwLsQ TZds3PNYV3KREFwYFvVDVWTGbnCXj7gDqK7k2Wm11IRe+Cb2we1Qx7+/lGp9D+V+ zvby1MTK5yxFUBpfi1VYrXeTgDDYR/tnZGj6JVhXdaVjRL8TJuDyKZICp7G7HElf SJbZLPyXu17OCm8Bew/qkF+Q4tBAkzQMH65PM48B9sPxvpEL0HT5CMIZn3DfV8U3 dkhwq2fF2YSjSCzB6B+Ht68rgTZfmSqirFycVLJaXo4dUYngrWQL2O2+2Gx6iaQB iVNlhgiEBOYn8fGDO5hSO6lg7hJZj62t -----END CERTIFICATE-----Generated at Wed Nov 5 19:28:45 2025 by rpki-client