$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft File: XlEJvjS4HAy74OQ1mneBpGJLn80.mft (raw, json) Hash identifier: 6yBw9kOIiVf4G9H/QHKwhc2hxGQJEehfoG9SADaPG6s= Subject key identifier: F2:27:17:8A:44:C0:B4:8E:C5:E6:DF:FC:8F:12:E2:9D:A6:48:F6:3E Authority key identifier: 5E:51:09:BE:34:B8:1C:0C:BB:E0:E4:35:9A:77:81:A4:62:4B:9F:CD Certificate issuer: /CN=A91E5D61/serialNumber=5E5109BE34B81C0CBBE0E4359A7781A4624B9FCD Certificate serial: 1327 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft Manifest number: 484A Signing time: Tue 04 Nov 2025 14:21:05 +0000 Manifest this update: Tue 04 Nov 2025 14:21:04 +0000 Manifest next update: Tue 11 Nov 2025 14:21:04 +0000 Files and hashes: 1: XlEJvjS4HAy74OQ1mneBpGJLn80.crl (hash: 3K46Hnr20Ry3FE5bCOWNlwsbBB0lzvapn4lwlk4zYSk=) 2: 12300E80ECD911EEB21F7B7FC4F9AE02.roa (hash: hei/cgFAUZIGCHaatDAW34u7WoWx8+SizsC0TsbKAW0=) 3: 792023A8E0DD11EE86DB926AC4F9AE02.roa (hash: GOy9OboZpKQbKQnVi7OFhab7NMhnYhuV2h2uNtdNUpY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.crl rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:21:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4903 (0x1327) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D61, serialNumber=5E5109BE34B81C0CBBE0E4359A7781A4624B9FCD Validity Not Before: Nov 4 14:21:04 2025 GMT Not After : Nov 11 14:21:04 2025 GMT Subject: CN=690a0bd0-100f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:5e:db:87:2a:e8:37:6f:44:9e:99:c9:76:68: db:7f:c6:fd:e7:cd:29:1a:50:18:51:9c:69:b1:82: 78:a3:e3:47:0d:6d:3a:a1:d4:ee:83:d4:19:3e:92: f2:b2:96:29:92:f7:7b:fa:1c:35:e5:6c:6c:e4:1b: 04:fb:7c:e9:cb:29:97:9b:5a:9d:5a:40:99:ab:4e: f4:66:6a:4d:cb:72:52:1b:dc:e9:1d:ae:6c:b6:fb: 98:e7:10:90:b2:6f:a1:11:7f:d7:76:ea:4b:1a:3e: 70:6b:98:cb:e1:ec:2c:dd:67:02:d8:db:91:fe:9a: aa:5a:f2:e3:cf:9f:68:e1:b4:c0:0c:48:0f:ef:56: 1b:bb:15:a4:c5:41:95:40:60:25:73:ff:6f:d4:93: d0:3d:f3:91:29:50:09:dd:5f:34:df:e3:19:33:65: 21:a8:97:e1:02:a8:88:b4:13:6f:51:5a:9b:e3:2e: 69:33:85:01:5f:80:a3:6b:a5:ed:e8:64:24:9b:49: d4:29:6b:e3:a5:c4:ed:c0:19:16:14:92:a3:44:eb: 88:9a:01:49:57:8f:4b:ae:af:5f:a2:df:cd:77:26: 0c:37:ee:da:9b:96:89:35:55:b1:bb:f1:8a:6b:a5: f7:f3:b8:c9:a8:99:cd:ab:a3:c3:6b:de:04:f8:a2: 33:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:27:17:8A:44:C0:B4:8E:C5:E6:DF:FC:8F:12:E2:9D:A6:48:F6:3E X509v3 Authority Key Identifier: keyid:5E:51:09:BE:34:B8:1C:0C:BB:E0:E4:35:9A:77:81:A4:62:4B:9F:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:6f:31:cf:16:8c:f6:33:ef:65:cc:de:30:4b:af:19:0c:d6: 5c:2c:b7:f3:4b:41:58:96:db:e2:30:2b:ea:9a:dc:e3:44:f0: 3e:13:a3:ae:72:af:7e:a6:a4:f8:81:b5:30:ce:67:1a:e9:5e: 9b:51:35:93:12:05:53:ac:f1:22:76:ff:13:ec:75:d5:97:fe: 32:c4:75:f5:1f:3b:1c:81:ee:01:07:05:bd:70:11:38:f2:d0: 88:17:22:05:cc:82:90:db:90:b5:2f:b1:63:5e:05:60:9b:5b: 32:88:dc:12:b7:72:70:0f:5e:10:94:9a:3b:1b:10:a2:df:84: 6b:e3:8e:af:36:25:ac:5b:a3:76:e7:4d:5d:9e:ce:6f:d6:39: 5f:30:65:8e:2c:ac:ed:a7:d5:a8:87:66:4a:e6:a2:52:b5:28: 6b:91:14:03:fe:eb:27:ea:d8:e9:91:cb:e2:f7:ba:f0:ba:73: 34:ed:df:0f:99:e5:b2:f5:00:bd:21:dc:8b:79:ff:3a:ef:24: 52:e9:b4:70:c5:69:de:a3:cd:82:ec:02:80:fc:0c:e6:65:97: da:29:32:59:26:d9:19:ef:32:6a:72:92:9c:d4:59:c0:cf:08: b7:fa:87:d3:d1:d9:d8:20:42:55:5e:6e:08:24:a0:ba:4a:e9: 1a:aa:21:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEycwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVENjExMTAvBgNVBAUTKDVFNTEwOUJFMzRCODFDMENCQkUwRTQzNTlBNzc4MUE0 NjI0QjlGQ0QwHhcNMjUxMTA0MTQyMTA0WhcNMjUxMTExMTQyMTA0WjAYMRYwFAYD VQQDEw02OTBhMGJkMC0xMDBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtF7bhyroN29EnpnJdmjbf8b9580pGlAYUZxpsYJ4o+NHDW06odTug9QZPpLy spYpkvd7+hw15Wxs5BsE+3zpyymXm1qdWkCZq070ZmpNy3JSG9zpHa5stvuY5xCQ sm+hEX/XdupLGj5wa5jL4ews3WcC2NuR/pqqWvLjz59o4bTADEgP71YbuxWkxUGV QGAlc/9v1JPQPfORKVAJ3V803+MZM2UhqJfhAqiItBNvUVqb4y5pM4UBX4Cja6Xt 6GQkm0nUKWvjpcTtwBkWFJKjROuImgFJV49Lrq9fot/NdyYMN+7am5aJNVWxu/GK a6X387jJqJnNq6PDa94E+KIzXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPInF4pE wLSOxebf/I8S4p2mSPY+MB8GA1UdIwQYMBaAFF5RCb40uBwMu+DkNZp3gaRiS5/N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUQ2MS8wQzZBMEM5RTFE NzkxMUUyODc5RTM4QzUwOEIwMkNEMi9YbEVKdmpTNEhBeTc0T1ExbW5lQnBHSkxu ODAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hsRUp2alM0SEF5NzRPUTFtbmVCcEdKTG44MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUQ2MS8wQzZBMEM5RTFENzkxMUUyODc5RTM4QzUwOEIwMkNEMi9YbEVKdmpTNEhB eTc0T1ExbW5lQnBHSkxuODAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUbzHPFoz2M+9lzN4wS68ZDNZcLLfzS0FYltviMCvqmtzjRPA+E6Ou cq9+pqT4gbUwzmca6V6bUTWTEgVTrPEidv8T7HXVl/4yxHX1Hzscge4BBwW9cBE4 8tCIFyIFzIKQ25C1L7FjXgVgm1syiNwSt3JwD14QlJo7GxCi34Rr446vNiWsW6N2 501dns5v1jlfMGWOLKztp9Woh2ZK5qJStShrkRQD/usn6tjpkcvi97rwunM07d8P meWy9QC9IdyLef867yRS6bRwxWneo82C7AKA/AzmZZfaKTJZJtkZ7zJqcpKc1FnA zwi3+ofT0dnYIEJVXm4IJKC6SukaqiGK -----END CERTIFICATE-----Generated at Wed Nov 5 05:25:25 2025 by rpki-client