$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.mft File: XwIkjJxclPFTxZ9Wdyxf2n-Ncec.mft (raw, json) Hash identifier: yHSCz66Mdi4wjo8C7LrOtkWtyK1GBem2aCQZWiaCp90= Subject key identifier: C5:CE:E2:13:38:57:DD:0C:31:65:4D:99:25:E2:45:CF:B2:A0:41:BE Authority key identifier: 5F:02:24:8C:9C:5C:94:F1:53:C5:9F:56:77:2C:5F:DA:7F:8D:71:E7 Certificate issuer: /CN=A91E3C76/serialNumber=5F02248C9C5C94F153C59F56772C5FDA7F8D71E7 Certificate serial: 0106 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.mft Manifest number: 0100 Signing time: Mon 03 Nov 2025 05:06:17 +0000 Manifest this update: Mon 03 Nov 2025 05:06:16 +0000 Manifest next update: Mon 10 Nov 2025 05:06:16 +0000 Files and hashes: 1: XwIkjJxclPFTxZ9Wdyxf2n-Ncec.crl (hash: EyLyWBwjTjIFQKK+T1YFS7GQ+I8nw/JsBxYW7Rr0MQQ=) 2: 51BBEE10B2BE11EFA108946DC4F9AE02.roa (hash: syHq3DbE7eogaPpFVFVsQfYoWLCn9NostuRXmVIHm9Y=) 3: 50F0AF8EB2BE11EFA108946DC4F9AE02.roa (hash: MWqHxm4EUBLTsZ0EUDg6aYtdnfWY5OwTTnXPxS3oZHM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.crl rsync://rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:06:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 262 (0x106) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3C76, serialNumber=5F02248C9C5C94F153C59F56772C5FDA7F8D71E7 Validity Not Before: Nov 3 05:06:16 2025 GMT Not After : Nov 10 05:06:16 2025 GMT Subject: CN=69083848-73b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:7f:77:47:13:52:eb:14:a3:23:cf:1e:16:fb: aa:2e:19:a0:1e:85:65:64:5c:6f:a8:97:20:12:e7: c5:4f:0a:86:d8:40:1a:e8:48:35:8c:4a:1a:33:1e: 28:48:70:38:01:5f:75:bb:70:56:fe:de:6c:9c:b1: 67:5a:a8:46:c1:5f:8c:25:d1:c7:ce:03:1c:99:29: f0:7a:d1:55:bc:33:b7:47:a2:98:92:e9:2a:32:87: fd:b1:cb:68:d9:75:32:48:1c:ee:45:6d:e7:ce:95: 27:5e:03:67:a0:ee:19:fa:41:b8:b6:48:b1:b1:cb: bf:3e:52:08:1d:d6:ce:f4:8f:db:a0:ee:1f:bf:4a: 76:23:1b:1c:e9:0a:a5:f6:76:87:de:2a:8f:1b:ab: 89:ad:92:b5:e4:0f:1f:ba:f8:d9:a7:14:8b:aa:b3: ab:63:d7:84:58:50:a7:b8:68:70:84:87:6f:ad:f5: a1:80:64:3d:b2:51:ec:73:39:b8:80:51:89:a0:a4: 3d:73:f1:7e:dd:ef:f0:a5:0b:29:db:68:b2:5f:3f: a0:0f:10:b0:4a:2d:26:92:5c:88:96:a5:df:99:65: 01:0a:a8:eb:6e:f4:ca:ae:6b:49:02:8f:c7:2e:83: e5:91:47:05:3d:18:ab:e1:48:71:fd:2f:f6:6d:cc: 30:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:CE:E2:13:38:57:DD:0C:31:65:4D:99:25:E2:45:CF:B2:A0:41:BE X509v3 Authority Key Identifier: keyid:5F:02:24:8C:9C:5C:94:F1:53:C5:9F:56:77:2C:5F:DA:7F:8D:71:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d3:72:da:98:a4:5d:98:6a:71:d5:9a:9b:32:c0:f3:91:18:e6: ea:ad:07:8e:a4:3a:74:e5:1a:66:86:ff:9a:47:94:c2:29:63: 91:80:34:2f:8b:37:de:25:45:db:7c:5b:b3:79:f2:18:dd:d1: 59:61:c0:a0:99:64:63:8a:98:4d:35:74:39:02:e9:64:9c:38: 7a:cd:a7:53:eb:e0:6b:62:fe:0e:00:42:18:b7:38:40:0c:e2: 4e:7c:58:c5:1b:92:d4:29:2c:6d:be:44:07:77:2a:68:e4:6a: 4b:a5:ea:9f:6a:36:07:70:e9:73:41:0d:cd:1d:0c:8b:6b:2b: d1:4b:d9:42:b4:ed:5d:05:86:62:51:27:eb:59:ae:87:02:79: 18:72:b1:9c:6b:20:73:88:a5:97:0d:d9:8e:18:5c:ac:60:0d: fb:f9:70:fa:86:83:38:d7:2d:9d:02:53:ea:1a:22:1a:82:60: 63:3b:85:ea:79:c8:18:01:35:18:67:2f:df:76:e0:35:51:06: ef:da:da:b3:a4:11:de:d2:12:1b:e5:5f:e5:00:2d:f1:a0:a7: 84:cf:42:39:0d:86:f8:ec:0e:be:05:85:69:34:72:d0:4f:e8: c4:d7:e9:9c:9b:7e:79:98:2b:61:08:60:ac:9d:d7:c4:93:09: 54:f0:cf:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNDNzYxMTAvBgNVBAUTKDVGMDIyNDhDOUM1Qzk0RjE1M0M1OUY1Njc3MkM1RkRB N0Y4RDcxRTcwHhcNMjUxMTAzMDUwNjE2WhcNMjUxMTEwMDUwNjE2WjAYMRYwFAYD VQQDEw02OTA4Mzg0OC03M2IyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw393RxNS6xSjI88eFvuqLhmgHoVlZFxvqJcgEufFTwqG2EAa6Eg1jEoaMx4o SHA4AV91u3BW/t5snLFnWqhGwV+MJdHHzgMcmSnwetFVvDO3R6KYkukqMof9scto 2XUySBzuRW3nzpUnXgNnoO4Z+kG4tkixscu/PlIIHdbO9I/boO4fv0p2Ixsc6Qql 9naH3iqPG6uJrZK15A8fuvjZpxSLqrOrY9eEWFCnuGhwhIdvrfWhgGQ9slHsczm4 gFGJoKQ9c/F+3e/wpQsp22iyXz+gDxCwSi0mklyIlqXfmWUBCqjrbvTKrmtJAo/H LoPlkUcFPRir4Uhx/S/2bcwwMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMXO4hM4 V90MMWVNmSXiRc+yoEG+MB8GA1UdIwQYMBaAFF8CJIycXJTxU8WfVncsX9p/jXHn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0M3Ni9CNDk5MkQ1MjM0 NTgxMUVGQjQyRjlEMzdDNEY5QUUwMi9Yd0lrakp4Y2xQRlR4WjlXZHl4ZjJuLU5j ZWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h3SWtqSnhjbFBGVHhaOVdkeXhmMm4tTmNlYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0M3Ni9CNDk5MkQ1MjM0NTgxMUVGQjQyRjlEMzdDNEY5QUUwMi9Yd0lrakp4Y2xQ RlR4WjlXZHl4ZjJuLU5jZWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDTctqYpF2YanHVmpsywPORGObqrQeOpDp05Rpmhv+aR5TCKWORgDQv izfeJUXbfFuzefIY3dFZYcCgmWRjiphNNXQ5AulknDh6zadT6+BrYv4OAEIYtzhA DOJOfFjFG5LUKSxtvkQHdypo5GpLpeqfajYHcOlzQQ3NHQyLayvRS9lCtO1dBYZi USfrWa6HAnkYcrGcayBziKWXDdmOGFysYA37+XD6hoM41y2dAlPqGiIagmBjO4Xq ecgYATUYZy/fduA1UQbv2tqzpBHe0hIb5V/lAC3xoKeEz0I5DYb47A6+BYVpNHLQ T+jE1+mcm355mCthCGCsndfEkwlU8M9M -----END CERTIFICATE-----Generated at Tue Nov 4 07:19:24 2025 by rpki-client