$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft File: XcAwMzGJiu_bheTZFABriTdr7-E.mft (raw, json) Hash identifier: srCOUR2GOK5s2V2U72Rl4BUp4yFgazC/ABxrkfPoU5k= Subject key identifier: 1A:BA:9A:DA:18:5B:9A:7A:79:69:70:7F:AF:34:B9:08:1F:B6:68:8C Authority key identifier: 5D:C0:30:33:31:89:8A:EF:DB:85:E4:D9:14:00:6B:89:37:6B:EF:E1 Certificate issuer: /CN=A91E7BD4/serialNumber=5DC0303331898AEFDB85E4D914006B89376BEFE1 Certificate serial: 06B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft Manifest number: 06AC Signing time: Sun 02 Nov 2025 22:15:58 +0000 Manifest this update: Sun 02 Nov 2025 22:15:57 +0000 Manifest next update: Sun 09 Nov 2025 22:15:57 +0000 Files and hashes: 1: XcAwMzGJiu_bheTZFABriTdr7-E.crl (hash: ma76SMyr2Mgh7P4Yj+0r2y05SZKdBe+hoBPe/SqDBTY=) 2: 81E3F4ACBBDA11ED8FDB4E45C4F9AE02.roa (hash: 7yUDpuvZHp5QBz3hhy/vTUHq3B8un1JwIKUsswRBXgQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.crl rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:15:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1718 (0x6b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BD4, serialNumber=5DC0303331898AEFDB85E4D914006B89376BEFE1 Validity Not Before: Nov 2 22:15:57 2025 GMT Not After : Nov 9 22:15:57 2025 GMT Subject: CN=6907d81e-79e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:6a:62:cb:f1:e3:95:b4:1c:1c:39:ca:e3:37: 3e:f5:dd:9d:a8:32:3b:87:9d:ea:a0:e5:55:af:51: a7:2d:f7:49:8b:2f:c0:2f:be:ae:aa:74:5c:df:81: d5:86:ee:c3:7c:97:29:c9:9f:41:44:28:e0:cf:d6: 58:86:9e:ac:ee:06:ad:a6:7a:9e:cf:05:ba:f3:c9: 1e:73:0e:10:a5:91:f6:2f:d5:6c:d5:bc:59:19:19: ab:5e:b6:84:52:3a:1f:86:4f:eb:0f:53:e0:ba:2a: 3a:ce:7e:1b:a3:1e:85:fc:d3:0e:3a:dc:00:16:98: 3f:44:a4:9e:81:9e:12:6f:7d:f5:44:fc:cc:42:c0: 77:a1:cf:10:26:d7:10:d2:b7:53:72:77:ea:79:b7: bc:b3:16:cb:4f:ab:d6:f5:ac:71:5b:ec:fe:b0:77: e9:f5:d0:2d:4e:45:4a:75:06:cf:18:9e:34:77:2f: ea:c2:89:5d:c9:f4:5c:8e:f1:a7:c7:86:5b:50:a9: 66:b2:b2:98:19:38:3e:1f:9f:4c:ca:ac:6a:81:17: bc:9f:c6:da:ce:b2:40:6f:af:ff:e5:22:be:87:05: c1:79:6c:5a:ed:f2:59:04:db:37:dc:a5:cc:40:10: e2:6c:8c:26:03:2d:81:7e:d8:bc:39:8d:06:37:51: 11:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:BA:9A:DA:18:5B:9A:7A:79:69:70:7F:AF:34:B9:08:1F:B6:68:8C X509v3 Authority Key Identifier: keyid:5D:C0:30:33:31:89:8A:EF:DB:85:E4:D9:14:00:6B:89:37:6B:EF:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:12:37:64:de:83:a2:24:c5:d8:3d:14:a6:2a:96:19:72:91: e5:5f:ae:a8:a3:3f:c2:9e:d4:0e:10:81:1d:59:ef:86:84:38: 3e:ff:6e:21:c0:77:0d:7a:e6:a9:48:88:c7:e9:6b:71:e0:a4: f7:71:5b:06:b7:c2:6a:f3:a6:9f:5c:ea:12:1f:d9:06:06:45: 61:58:bd:c1:f7:86:6e:df:18:80:f7:28:f7:b1:33:5c:6f:d9: 61:b5:a8:2e:2c:0e:bd:e6:5e:07:68:dc:de:bd:5f:8b:fd:41: 0a:a6:2c:40:2d:cb:f1:23:58:2b:4d:d2:d3:2b:f8:56:0c:b4: 2d:82:e6:e5:1b:df:2b:db:cb:b6:7a:3d:98:71:ef:37:c0:b1: 0a:58:c7:f3:e7:6c:1d:6a:18:88:fb:1e:16:8e:81:1c:28:4d: e5:f5:ef:7b:70:d7:fe:98:1d:3e:a4:85:2e:e8:2e:e7:e1:cb: 71:7b:f3:6f:70:27:ad:fc:5f:6e:40:5d:fd:14:07:d6:43:6c: 23:32:78:a8:c2:bb:91:44:82:61:99:10:9f:d6:5a:41:d1:6e: 2c:0b:63:e7:cd:46:f8:08:7a:22:82:9c:02:77:26:32:39:fd: 7f:42:32:12:8d:46:68:94:3d:f6:c6:9d:9b:46:3e:93:5e:2f: 4c:b1:9e:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCRDQxMTAvBgNVBAUTKDVEQzAzMDMzMzE4OThBRUZEQjg1RTREOTE0MDA2Qjg5 Mzc2QkVGRTEwHhcNMjUxMTAyMjIxNTU3WhcNMjUxMTA5MjIxNTU3WjAYMRYwFAYD VQQDEw02OTA3ZDgxZS03OWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp2piy/HjlbQcHDnK4zc+9d2dqDI7h53qoOVVr1GnLfdJiy/AL76uqnRc34HV hu7DfJcpyZ9BRCjgz9ZYhp6s7gatpnqezwW688kecw4QpZH2L9Vs1bxZGRmrXraE Ujofhk/rD1Pguio6zn4box6F/NMOOtwAFpg/RKSegZ4Sb331RPzMQsB3oc8QJtcQ 0rdTcnfqebe8sxbLT6vW9axxW+z+sHfp9dAtTkVKdQbPGJ40dy/qwoldyfRcjvGn x4ZbUKlmsrKYGTg+H59MyqxqgRe8n8bazrJAb6//5SK+hwXBeWxa7fJZBNs33KXM QBDibIwmAy2Bfti8OY0GN1ERUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBq6mtoY W5p6eWlwf680uQgftmiMMB8GA1UdIwQYMBaAFF3AMDMxiYrv24Xk2RQAa4k3a+/h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JENC80RTg3QTQ2QTg2 QjExMUVCQjhCRTIxN0NDNEY5QUUwMi9YY0F3TXpHSml1X2JoZVRaRkFCcmlUZHI3 LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjQXdNekdKaXVfYmhlVFpGQUJyaVRkcjctRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JENC80RTg3QTQ2QTg2QjExMUVCQjhCRTIxN0NDNEY5QUUwMi9YY0F3TXpHSml1 X2JoZVRaRkFCcmlUZHI3LUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFEjdk3oOiJMXYPRSmKpYZcpHlX66ooz/CntQOEIEdWe+GhDg+/24h wHcNeuapSIjH6Wtx4KT3cVsGt8Jq86afXOoSH9kGBkVhWL3B94Zu3xiA9yj3sTNc b9lhtaguLA695l4HaNzevV+L/UEKpixALcvxI1grTdLTK/hWDLQtgublG98r28u2 ej2Yce83wLEKWMfz52wdahiI+x4WjoEcKE3l9e97cNf+mB0+pIUu6C7n4ctxe/Nv cCet/F9uQF39FAfWQ2wjMniowruRRIJhmRCf1lpB0W4sC2PnzUb4CHoigpwCdyYy Of1/QjISjUZolD32xp2bRj6TXi9MsZ7U -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:01 2025 by rpki-client