$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft File: X1zijATRbpUODrzVlVVCSD05VtA.mft (raw, json) Hash identifier: e5wmbXOSKKSeHH5+79g9OG1txP23PevMk3vJU7T6+y0= Subject key identifier: AC:6B:1E:64:1E:D4:41:BE:88:B5:BC:1F:0C:DA:07:3B:04:5B:6C:41 Authority key identifier: 5F:5C:E2:8C:04:D1:6E:95:0E:0E:BC:D5:95:55:42:48:3D:39:56:D0 Certificate issuer: /CN=A91F0D86/serialNumber=5F5CE28C04D16E950E0EBCD5955542483D3956D0 Certificate serial: 018B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft Manifest number: 0185 Signing time: Mon 03 Nov 2025 03:39:14 +0000 Manifest this update: Mon 03 Nov 2025 03:39:13 +0000 Manifest next update: Mon 10 Nov 2025 03:39:13 +0000 Files and hashes: 1: X1zijATRbpUODrzVlVVCSD05VtA.crl (hash: rcZmyp+W56zhGcR+FUaye3fL6PvwTunHyV76XDCH+0k=) 2: 85BF2BE4710111F093C54468C4F9AE02.roa (hash: 0DjY0BlkVRPwB3NWf9zy3shKm/xu/h/zeurHbCub9hQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.crl rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:39:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 395 (0x18b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0D86, serialNumber=5F5CE28C04D16E950E0EBCD5955542483D3956D0 Validity Not Before: Nov 3 03:39:13 2025 GMT Not After : Nov 10 03:39:13 2025 GMT Subject: CN=690823e2-6637 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:1e:db:f2:cd:f6:e3:c6:e6:98:90:9c:da:14: 1b:a3:29:3e:8a:f2:9d:e1:af:15:dd:a5:ad:41:dc: 93:79:a7:30:b3:00:d7:b9:a7:b7:b5:32:63:33:c6: 87:1a:ef:9d:42:b2:32:49:2a:c8:59:e4:8b:92:f1: 16:24:c1:5d:3e:3f:d2:75:3c:60:54:2c:fe:2f:0e: 43:b6:33:a6:9b:f6:71:ba:2a:f4:95:b8:db:a6:b6: 50:9e:34:bf:ca:20:fc:13:e5:e1:bf:b5:54:4d:e5: 1d:2e:09:4a:b9:34:6e:93:7f:83:97:52:01:7a:0f: 9e:d8:ed:f6:64:81:14:07:c3:00:02:2c:a9:11:ac: c4:d2:f0:1a:77:b3:c8:d0:ed:4a:2c:a4:b9:fa:7e: da:f4:3b:2c:3a:16:c9:81:1e:fb:81:6d:1e:71:ce: f6:35:ee:02:21:98:9c:aa:d9:65:07:6d:34:92:39: 9e:00:8c:89:f9:98:ee:f0:90:7c:ca:23:90:4d:e2: 5e:85:0e:6b:f9:ff:c0:d8:77:a5:64:9c:63:01:07: fe:ff:72:64:a7:de:4b:56:cb:07:46:a9:31:1a:b8: 75:f6:44:1f:be:e0:e6:4d:4c:bc:9c:ed:7f:f2:71: e0:b0:4f:c0:24:a7:37:43:29:04:1d:7a:c0:53:ed: bf:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:6B:1E:64:1E:D4:41:BE:88:B5:BC:1F:0C:DA:07:3B:04:5B:6C:41 X509v3 Authority Key Identifier: keyid:5F:5C:E2:8C:04:D1:6E:95:0E:0E:BC:D5:95:55:42:48:3D:39:56:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:d2:30:ee:f6:57:16:c9:57:b9:78:95:da:83:20:e7:0c:a8: b2:13:15:bd:23:a9:eb:92:f4:c3:0d:d6:65:0b:c0:ed:fe:b8: 79:71:ac:5b:f0:26:47:43:b9:e3:eb:20:f8:52:36:53:89:af: 26:3c:a7:2e:a4:de:76:60:bf:65:82:00:94:4f:fa:4f:85:d1: e4:96:c5:75:b3:c6:b5:a5:54:8e:b3:f6:3d:05:0f:f8:ad:11: a9:f1:ae:89:29:8a:04:2a:51:c9:6f:ab:e5:cb:73:a7:a5:67: 8b:42:65:23:87:4d:99:52:61:06:cc:6a:3e:56:f3:85:67:b9: 1b:2e:9d:30:3a:f0:4c:ec:d2:10:d6:42:fc:4a:c9:17:a0:f4: ad:3e:56:3c:a5:4b:7a:70:23:22:f4:2a:2f:9f:4d:d3:83:0a: 1a:06:38:d2:21:0c:3f:cc:e5:35:39:38:f3:eb:b7:df:39:5d: b7:af:5b:05:1e:db:c9:e4:67:fc:e8:f8:7d:ab:bc:dd:cb:08: 00:95:b8:8b:c4:6b:dc:ad:0e:d4:57:d1:89:2c:f6:aa:81:1b: 07:6a:3f:14:2e:60:76:fc:44:9b:a5:d3:13:22:3d:cc:95:3c: fe:f7:f4:22:de:c1:75:33:b0:45:13:f6:3e:b2:13:7d:95:d6: 7a:de:29:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBEODYxMTAvBgNVBAUTKDVGNUNFMjhDMDREMTZFOTUwRTBFQkNENTk1NTU0MjQ4 M0QzOTU2RDAwHhcNMjUxMTAzMDMzOTEzWhcNMjUxMTEwMDMzOTEzWjAYMRYwFAYD VQQDEw02OTA4MjNlMi02NjM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyB7b8s3248bmmJCc2hQboyk+ivKd4a8V3aWtQdyTeacwswDXuae3tTJjM8aH Gu+dQrIySSrIWeSLkvEWJMFdPj/SdTxgVCz+Lw5DtjOmm/Zxuir0lbjbprZQnjS/ yiD8E+Xhv7VUTeUdLglKuTRuk3+Dl1IBeg+e2O32ZIEUB8MAAiypEazE0vAad7PI 0O1KLKS5+n7a9DssOhbJgR77gW0ecc72Ne4CIZicqtllB200kjmeAIyJ+Zju8JB8 yiOQTeJehQ5r+f/A2HelZJxjAQf+/3Jkp95LVssHRqkxGrh19kQfvuDmTUy8nO1/ 8nHgsE/AJKc3QykEHXrAU+2/dwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKxrHmQe 1EG+iLW8HwzaBzsEW2xBMB8GA1UdIwQYMBaAFF9c4owE0W6VDg681ZVVQkg9OVbQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEQ4Ni82OEU3OTc4QTZD QkQxMUVFQjg0NkYzNzlDNEY5QUUwMi9YMXppakFUUmJwVU9EcnpWbFZWQ1NEMDVW dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gxemlqQVRSYnBVT0RyelZsVlZDU0QwNVZ0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEQ4Ni82OEU3OTc4QTZDQkQxMUVFQjg0NkYzNzlDNEY5QUUwMi9YMXppakFUUmJw VU9EcnpWbFZWQ1NEMDVWdEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCG0jDu9lcWyVe5eJXagyDnDKiyExW9I6nrkvTDDdZlC8Dt/rh5caxb 8CZHQ7nj6yD4UjZTia8mPKcupN52YL9lggCUT/pPhdHklsV1s8a1pVSOs/Y9BQ/4 rRGp8a6JKYoEKlHJb6vly3OnpWeLQmUjh02ZUmEGzGo+VvOFZ7kbLp0wOvBM7NIQ 1kL8SskXoPStPlY8pUt6cCMi9Covn03TgwoaBjjSIQw/zOU1OTjz67ffOV23r1sF HtvJ5Gf86Ph9q7zdywgAlbiLxGvcrQ7UV9GJLPaqgRsHaj8ULmB2/ESbpdMTIj3M lTz+9/Qi3sF1M7BFE/Y+shN9ldZ63imS -----END CERTIFICATE-----Generated at Mon Nov 3 08:10:56 2025 by rpki-client