$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft File: XYnzqvmxOgelsmTy3rpk1cUAZRw.mft (raw, json) Hash identifier: TkbOewD9KSUIag+M49zRKO3pfPBBXbLtOlVEasgeknI= Subject key identifier: 02:93:17:56:DE:F3:15:93:A7:C6:DB:9F:6E:FF:3B:5B:B2:A5:05:A8 Authority key identifier: 5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C Certificate issuer: /CN=A91D5240/serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Certificate serial: 0217 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft Manifest number: 020C Signing time: Mon 03 Nov 2025 02:17:13 +0000 Manifest this update: Mon 03 Nov 2025 02:17:13 +0000 Manifest next update: Mon 10 Nov 2025 02:17:13 +0000 Files and hashes: 1: XYnzqvmxOgelsmTy3rpk1cUAZRw.crl (hash: ucbaHXJ0slmLp8OAqCMZueiQLgGi7e9SgO/fK5zULd4=) 2: 9EA7B7D8A63911ED874E6630C4F9AE02.roa (hash: 6o0EUZvJBerht1y6bzh1g89SRPPeQ5cLEU5AQhJzOAU=) 3: 5DCE1A1AA63C11ED9306165AC4F9AE02.roa (hash: QPGj0eJqXgnGukiRaT/QHSiAaiIAXjZCnZKqvteNQAI=) 4: 9FBA5FCCA63911ED874E6630C4F9AE02.roa (hash: lCV4Wc/C2vG49K6yvqo7KO+pzcjtBqjnxvlmY9cM+oI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:17:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 535 (0x217) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5240, serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Validity Not Before: Nov 3 02:17:13 2025 GMT Not After : Nov 10 02:17:13 2025 GMT Subject: CN=690810a9-2550 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a0:a1:56:a0:fe:5b:25:01:32:49:0a:41:87: c1:4f:81:66:ff:41:70:4c:e8:08:f2:c0:a9:83:52: 62:2f:e8:0e:54:c1:88:d6:d9:b6:2b:11:71:41:aa: 4d:5a:c2:54:90:9b:10:bb:82:35:7c:30:88:91:7e: 3b:a6:b1:0e:44:ca:8f:b3:f3:1a:96:79:34:32:98: 3b:c4:d5:ad:c0:c8:43:59:4f:f7:20:19:37:44:5f: 2c:4b:27:ca:33:2b:bc:3e:57:ae:b4:de:9b:a4:58: 03:58:7a:37:22:1a:0c:a7:e1:68:e1:4c:7a:69:a6: ba:89:bb:25:ca:ab:15:02:f9:b5:24:33:fe:95:0f: 5e:6e:31:74:26:bf:bf:37:02:05:45:17:19:29:55: e2:05:83:1b:d9:62:2e:65:cb:68:7e:14:9f:27:15: e4:92:72:ef:02:c3:aa:d2:3a:1f:18:13:22:e4:78: b6:cd:a2:22:15:8d:08:70:57:8d:d2:51:c7:aa:82: f2:3c:fb:93:f3:7c:38:47:21:a6:34:0d:0d:80:bd: f8:f8:f9:0b:bf:a1:f5:fb:29:75:93:43:e1:83:f8: 1b:33:77:4b:e4:e2:01:2b:3f:ce:f3:c3:84:9e:d2: 88:84:ca:9a:e0:f8:ba:24:73:f2:77:4b:97:6e:57: 84:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:93:17:56:DE:F3:15:93:A7:C6:DB:9F:6E:FF:3B:5B:B2:A5:05:A8 X509v3 Authority Key Identifier: keyid:5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:9a:6f:be:1e:66:a1:ce:b4:95:5a:23:a8:ce:ba:aa:52:87: 37:82:ff:02:4a:a6:fc:33:82:cd:c4:9c:94:a9:7e:d8:ef:38: ff:f0:e7:24:c1:e5:73:bc:56:d3:c3:f4:12:ba:81:e3:22:16: bf:b5:18:36:f7:97:25:29:8a:3e:43:c9:ee:aa:d8:67:9b:34: af:fb:28:ee:d0:69:a1:e0:1e:d5:35:97:cf:08:17:77:14:6d: 82:23:2e:8c:7a:74:29:cd:1f:3d:e1:42:e2:a3:6c:a4:ea:ff: d4:bc:e7:98:08:ad:e4:f8:46:8a:a7:5d:65:f4:96:6f:70:e7: 5e:3e:0e:7f:1f:17:8e:64:65:d7:2d:99:77:61:3e:0a:23:13: a2:b5:db:ea:ba:d9:77:f5:c7:4c:e1:40:9d:53:8c:d6:08:25: 61:1a:d9:b3:7f:31:91:6c:58:30:c0:08:79:f2:fb:5c:6b:97: 1c:02:c9:e7:96:6c:65:ae:99:58:a2:2a:19:a2:69:48:57:01: d2:d3:91:32:68:66:76:f1:92:4d:9b:c4:66:57:1e:7e:b9:24: 1a:29:bf:76:f7:f8:6b:bc:09:b5:09:34:45:f9:dd:60:b3:fe: c8:f6:32:49:1e:22:98:c9:bc:0e:d8:cc:d9:29:f3:37:54:a2: 57:4b:bb:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUyNDAxMTAvBgNVBAUTKDVEODlGM0FBRjlCMTNBMDdBNUIyNjRGMkRFQkE2NEQ1 QzUwMDY1MUMwHhcNMjUxMTAzMDIxNzEzWhcNMjUxMTEwMDIxNzEzWjAYMRYwFAYD VQQDEw02OTA4MTBhOS0yNTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsqChVqD+WyUBMkkKQYfBT4Fm/0FwTOgI8sCpg1JiL+gOVMGI1tm2KxFxQapN WsJUkJsQu4I1fDCIkX47prEORMqPs/Malnk0Mpg7xNWtwMhDWU/3IBk3RF8sSyfK Myu8PleutN6bpFgDWHo3IhoMp+Fo4Ux6aaa6ibslyqsVAvm1JDP+lQ9ebjF0Jr+/ NwIFRRcZKVXiBYMb2WIuZctofhSfJxXkknLvAsOq0jofGBMi5Hi2zaIiFY0IcFeN 0lHHqoLyPPuT83w4RyGmNA0NgL34+PkLv6H1+yl1k0Phg/gbM3dL5OIBKz/O88OE ntKIhMqa4Pi6JHPyd0uXbleEXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAKTF1be 8xWTp8bbn27/O1uypQWoMB8GA1UdIwQYMBaAFF2J86r5sToHpbJk8t66ZNXFAGUc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTI0MC8yN0RERTdEODlC N0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9nZWxzbVR5M3JwazFjVUFa UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hZbnpxdm14T2dlbHNtVHkzcnBrMWNVQVpSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTI0MC8yN0RERTdEODlCN0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9n ZWxzbVR5M3JwazFjVUFaUncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDFmm++HmahzrSVWiOozrqqUoc3gv8CSqb8M4LNxJyUqX7Y7zj/8Ock weVzvFbTw/QSuoHjIha/tRg295clKYo+Q8nuqthnmzSv+yju0Gmh4B7VNZfPCBd3 FG2CIy6MenQpzR894ULio2yk6v/UvOeYCK3k+EaKp11l9JZvcOdePg5/HxeOZGXX LZl3YT4KIxOitdvqutl39cdM4UCdU4zWCCVhGtmzfzGRbFgwwAh58vtca5ccAsnn lmxlrplYoioZomlIVwHS05EyaGZ28ZJNm8RmVx5+uSQaKb929/hrvAm1CTRF+d1g s/7I9jJJHiKYybwO2MzZKfM3VKJXS7sH -----END CERTIFICATE-----Generated at Mon Nov 3 18:11:01 2025 by rpki-client