$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft File: xbajYOSK75Kf3CcpbR1S9b9umRY.mft (raw, json) Hash identifier: cTZ3JDnTpeT/+pRwV+DzuNFISMF/VSR9jYY0fURKRc8= Subject key identifier: C4:FE:1E:A3:97:4C:30:44:84:42:6F:3C:07:44:D7:FF:47:7A:D0:11 Authority key identifier: C5:B6:A3:60:E4:8A:EF:92:9F:DC:27:29:6D:1D:52:F5:BF:6E:99:16 Certificate issuer: /CN=A91FD088/serialNumber=C5B6A360E48AEF929FDC27296D1D52F5BF6E9916 Certificate serial: 080A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft Manifest number: 0803 Signing time: Sun 02 Nov 2025 20:55:54 +0000 Manifest this update: Sun 02 Nov 2025 20:55:53 +0000 Manifest next update: Sun 09 Nov 2025 20:55:53 +0000 Files and hashes: 1: xbajYOSK75Kf3CcpbR1S9b9umRY.crl (hash: xVuofB/LS0ZSwbO5wn9CQUnnacSCRPCHZpK66HJI7mQ=) 2: 423EA4CC039B11EBB3C1465CC4F9AE02.roa (hash: LsVQKkTp9V5mDiVUJekj0bvUgPf5aQfKDpRqhhkjvWs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.crl rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:55:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2058 (0x80a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD088, serialNumber=C5B6A360E48AEF929FDC27296D1D52F5BF6E9916 Validity Not Before: Nov 2 20:55:53 2025 GMT Not After : Nov 9 20:55:53 2025 GMT Subject: CN=6907c55a-a86b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ac:a9:40:18:7c:d2:3d:7a:54:d1:61:46:d9: 8a:47:2a:9b:f1:65:71:34:2a:50:4b:39:8d:ca:42: 15:95:bd:3c:23:47:43:76:2a:c2:2f:30:c7:3a:7b: fb:c9:fc:ec:30:93:a2:25:14:09:b6:dd:f6:ff:bf: 4d:35:9a:63:4c:23:39:b0:58:ec:fb:bf:b1:90:a5: 1e:df:c4:44:e8:32:32:02:da:90:74:81:b0:8f:82: 51:e6:8e:da:6c:41:09:6f:df:c4:0a:a7:02:54:96: 38:20:08:ff:1a:de:96:cc:97:1f:5b:f8:cf:5d:d1: 2a:5e:2c:d7:81:0f:3f:35:2b:a8:ca:b9:33:38:8e: 1b:e0:6a:fa:84:e3:97:c6:15:73:af:db:7f:20:27: 2b:1e:b1:04:69:26:45:45:58:f7:2e:d4:96:a0:9b: 2b:3e:24:15:9c:53:56:3c:8c:99:ad:5c:4c:15:39: 7a:86:02:bd:13:93:7d:ac:37:be:49:ed:61:9a:df: ca:d9:e7:dd:94:97:3d:7e:f1:2c:f5:9c:11:be:32: 7b:f0:5e:0c:21:80:87:a7:bb:7c:fd:83:44:6e:36: db:a8:47:f6:20:c2:9c:cf:f2:95:41:96:0a:61:0a: 4b:c7:df:b9:92:69:a7:7a:ff:4f:1b:4a:77:3c:b1: f3:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:FE:1E:A3:97:4C:30:44:84:42:6F:3C:07:44:D7:FF:47:7A:D0:11 X509v3 Authority Key Identifier: keyid:C5:B6:A3:60:E4:8A:EF:92:9F:DC:27:29:6D:1D:52:F5:BF:6E:99:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:23:89:5e:32:e8:f9:cf:0b:50:51:1b:5d:91:5c:9f:0a:b2: 4f:95:58:da:e7:2f:d1:c0:40:fa:7f:19:3f:00:0d:c4:b7:27: 11:60:b5:36:9b:95:be:83:ee:57:ea:d3:b2:5c:20:3f:e5:a7: d5:fb:6e:d9:78:f0:8e:66:de:14:23:69:9a:72:df:3e:c6:37: 00:29:83:3e:21:bb:b7:d5:12:f4:7c:5b:ce:b7:8d:de:62:80: ea:96:0e:85:2f:9a:71:4b:8d:5e:ff:44:f3:e6:c0:a0:7e:33: 8b:d7:83:89:d7:c8:9d:7e:a8:db:0d:a1:f5:09:26:ab:36:7c: 37:5b:8f:fc:69:e5:85:4c:55:01:f3:4f:7b:81:e6:0f:be:fd: 8f:7a:b3:1c:fb:c5:a7:6b:dd:c4:0e:13:3c:53:67:b8:96:6d: 2e:73:98:56:bd:01:89:6a:a0:1e:40:c6:67:39:f1:4d:9f:27: cc:d6:13:24:24:99:a8:bb:78:78:9c:1e:86:7b:08:fd:71:30: 18:17:83:a1:3e:98:b5:3c:4b:81:a8:3f:10:1d:e9:b3:dc:0d: 6b:7d:de:fd:80:09:eb:97:8a:7c:72:41:f6:64:1e:61:37:e7: 7f:11:44:9a:9d:39:d3:97:f6:9e:12:1c:12:41:49:13:73:aa: 7e:aa:06:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQwODgxMTAvBgNVBAUTKEM1QjZBMzYwRTQ4QUVGOTI5RkRDMjcyOTZEMUQ1MkY1 QkY2RTk5MTYwHhcNMjUxMTAyMjA1NTUzWhcNMjUxMTA5MjA1NTUzWjAYMRYwFAYD VQQDEw02OTA3YzU1YS1hODZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr6ypQBh80j16VNFhRtmKRyqb8WVxNCpQSzmNykIVlb08I0dDdirCLzDHOnv7 yfzsMJOiJRQJtt32/79NNZpjTCM5sFjs+7+xkKUe38RE6DIyAtqQdIGwj4JR5o7a bEEJb9/ECqcCVJY4IAj/Gt6WzJcfW/jPXdEqXizXgQ8/NSuoyrkzOI4b4Gr6hOOX xhVzr9t/ICcrHrEEaSZFRVj3LtSWoJsrPiQVnFNWPIyZrVxMFTl6hgK9E5N9rDe+ Se1hmt/K2efdlJc9fvEs9ZwRvjJ78F4MIYCHp7t8/YNEbjbbqEf2IMKcz/KVQZYK YQpLx9+5kmmnev9PG0p3PLHzCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMT+HqOX TDBEhEJvPAdE1/9HetARMB8GA1UdIwQYMBaAFMW2o2Dkiu+Sn9wnKW0dUvW/bpkW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDA4OC80NEJBN0NBMkZE OUQxMUVBQTA0RUI4N0RDNEY5QUUwMi94YmFqWU9TSzc1S2YzQ2NwYlIxUzliOXVt UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hiYWpZT1NLNzVLZjNDY3BiUjFTOWI5dW1SWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDA4OC80NEJBN0NBMkZEOUQxMUVBQTA0RUI4N0RDNEY5QUUwMi94YmFqWU9TSzc1 S2YzQ2NwYlIxUzliOXVtUlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALI4leMuj5zwtQURtdkVyfCrJPlVja5y/RwED6fxk/AA3EtycRYLU2 m5W+g+5X6tOyXCA/5afV+27ZePCOZt4UI2mact8+xjcAKYM+Ibu31RL0fFvOt43e YoDqlg6FL5pxS41e/0Tz5sCgfjOL14OJ18idfqjbDaH1CSarNnw3W4/8aeWFTFUB 8097geYPvv2PerMc+8Wna93EDhM8U2e4lm0uc5hWvQGJaqAeQMZnOfFNnyfM1hMk JJmou3h4nB6Gewj9cTAYF4OhPpi1PEuBqD8QHemz3A1rfd79gAnrl4p8ckH2ZB5h N+d/EUSanTnTl/aeEhwSQUkTc6p+qgbu -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:01 2025 by rpki-client