$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft File: XmtaBob1a6DA93-zvzGzhWMiCCQ.mft (raw, json) Hash identifier: 3eoRGrZ7epnau9M7cDFkcC22QdWu3RRXYgd7It0Hl1M= Subject key identifier: DE:C5:2E:23:E1:C4:D3:BD:F3:D3:A7:70:78:B7:C6:08:D7:A2:12:94 Authority key identifier: 5E:6B:5A:06:86:F5:6B:A0:C0:F7:7F:B3:BF:31:B3:85:63:22:08:24 Certificate issuer: /CN=A91FE107/serialNumber=5E6B5A0686F56BA0C0F77FB3BF31B38563220824 Certificate serial: 2331 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft Manifest number: 2317 Signing time: Fri 24 Oct 2025 16:06:57 +0000 Manifest this update: Fri 24 Oct 2025 16:06:57 +0000 Manifest next update: Fri 31 Oct 2025 16:06:57 +0000 Files and hashes: 1: XmtaBob1a6DA93-zvzGzhWMiCCQ.crl (hash: e3z+6pnXngt7SlhN6u/JPjTrUDT9QTAjcky30B5UxoQ=) 2: 44C007B0A0D611EDA2603C4EC4F9AE02.roa (hash: MAOIki/mm/t0sbRkALRqm8AR2/Jy8UBEI5Awsr4aYLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.crl rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 16:06:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9009 (0x2331) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE107, serialNumber=5E6B5A0686F56BA0C0F77FB3BF31B38563220824 Validity Not Before: Oct 24 16:06:57 2025 GMT Not After : Oct 31 16:06:57 2025 GMT Subject: CN=68fba421-18fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:55:0e:1f:36:05:eb:54:ad:ec:ba:ec:bb:81: bf:73:68:52:3e:84:0e:a7:71:1a:19:ae:7b:12:0d: 1d:af:eb:b7:04:00:30:49:50:49:76:7f:97:b1:dc: 2b:b6:7e:a1:2b:91:dd:8d:17:0e:32:b5:60:98:59: 2d:79:38:8f:52:42:42:08:24:77:f9:4c:f7:ce:23: 96:a3:e6:b3:2a:3f:a6:c3:69:98:5d:a3:72:97:3c: 19:3b:f0:cb:88:b7:0f:8a:55:22:25:68:59:e6:be: 92:41:0e:50:2e:92:48:ac:b4:07:b4:65:f4:f2:6d: 01:37:25:5a:5f:2a:66:16:16:3a:9e:41:bf:56:e4: ba:1a:7c:39:78:00:ea:47:b6:56:e9:00:fc:f1:8d: ea:31:53:e0:a1:60:22:d5:c8:f2:c7:5c:55:ef:2e: e6:42:27:91:b9:b5:ea:3b:d1:e9:9a:4d:0b:52:87: 62:d0:f4:79:fa:8d:c7:8f:00:e6:73:d0:11:f9:09: f1:e5:ed:ab:6d:d6:d2:2e:78:f9:4e:eb:79:72:ce: f1:ff:f7:56:e9:3e:a2:00:58:51:49:8c:99:2f:9c: 41:16:91:26:5f:11:05:d6:3e:2f:d0:6a:8e:3d:ec: aa:7f:8d:6a:c1:67:21:1f:6e:a8:2a:f4:f7:05:c4: 75:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:C5:2E:23:E1:C4:D3:BD:F3:D3:A7:70:78:B7:C6:08:D7:A2:12:94 X509v3 Authority Key Identifier: keyid:5E:6B:5A:06:86:F5:6B:A0:C0:F7:7F:B3:BF:31:B3:85:63:22:08:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:c2:b8:c2:3d:c4:1b:ec:2f:dd:cb:64:eb:5f:df:fe:e5:3f: cc:83:8a:f7:9b:a4:fe:79:bb:be:73:2c:56:8c:e7:25:6e:51: ed:19:39:0d:b7:40:c6:d9:64:de:8d:69:7a:6b:76:15:37:d7: 6d:b6:ec:e5:2f:da:de:d8:71:97:34:d2:ce:7d:0c:f8:7c:9b: e1:c4:d4:0b:5d:7e:45:67:a2:9a:0c:8c:4e:85:d0:b0:7b:07: 26:c1:2f:fc:cd:44:e1:0b:25:e4:ce:7d:c0:43:dd:bb:3a:a1: 1f:fd:96:37:93:db:29:af:a5:1f:a2:f0:66:0a:f2:b7:a5:81: 55:d5:17:2e:3c:da:2b:27:2b:50:3d:3f:c6:01:82:99:bc:7b: f2:ad:69:52:92:57:af:0c:c0:df:da:74:af:8b:38:7a:e9:aa: fb:f5:9a:96:eb:9e:5c:d4:1d:a1:9b:04:66:be:74:cb:3c:05: b7:07:61:01:d4:d3:b0:b1:5b:b5:ad:59:9d:18:8c:b9:2d:2f: 7d:40:39:28:ed:e3:32:03:2d:d8:22:5e:64:a0:22:2f:a6:71: 2e:40:45:12:62:9f:1b:b0:28:8a:40:c0:5b:52:e2:c7:67:38: 84:0f:08:d5:8d:66:57:c2:16:86:bb:78:00:e4:bd:73:65:80: f1:a0:6d:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIzEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkUxMDcxMTAvBgNVBAUTKDVFNkI1QTA2ODZGNTZCQTBDMEY3N0ZCM0JGMzFCMzg1 NjMyMjA4MjQwHhcNMjUxMDI0MTYwNjU3WhcNMjUxMDMxMTYwNjU3WjAYMRYwFAYD VQQDEw02OGZiYTQyMS0xOGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoFUOHzYF61St7Lrsu4G/c2hSPoQOp3EaGa57Eg0dr+u3BAAwSVBJdn+Xsdwr tn6hK5HdjRcOMrVgmFkteTiPUkJCCCR3+Uz3ziOWo+azKj+mw2mYXaNylzwZO/DL iLcPilUiJWhZ5r6SQQ5QLpJIrLQHtGX08m0BNyVaXypmFhY6nkG/VuS6Gnw5eADq R7ZW6QD88Y3qMVPgoWAi1cjyx1xV7y7mQieRubXqO9Hpmk0LUodi0PR5+o3HjwDm c9AR+Qnx5e2rbdbSLnj5Tut5cs7x//dW6T6iAFhRSYyZL5xBFpEmXxEF1j4v0GqO Peyqf41qwWchH26oKvT3BcR12QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN7FLiPh xNO989OncHi3xgjXohKUMB8GA1UdIwQYMBaAFF5rWgaG9WugwPd/s78xs4VjIggk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTEwNy9FRTM1QzQ0NjlF NjQxMUU1OUQ0OEZCNjBDNEY5QUUwMi9YbXRhQm9iMWE2REE5My16dnpHemhXTWlD Q1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1htdGFCb2IxYTZEQTkzLXp2ekd6aFdNaUNDUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTEwNy9FRTM1QzQ0NjlFNjQxMUU1OUQ0OEZCNjBDNEY5QUUwMi9YbXRhQm9iMWE2 REE5My16dnpHemhXTWlDQ1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxwrjCPcQb7C/dy2TrX9/+5T/Mg4r3m6T+ebu+cyxWjOclblHtGTkN t0DG2WTejWl6a3YVN9dttuzlL9re2HGXNNLOfQz4fJvhxNQLXX5FZ6KaDIxOhdCw ewcmwS/8zUThCyXkzn3AQ927OqEf/ZY3k9spr6UfovBmCvK3pYFV1RcuPNorJytQ PT/GAYKZvHvyrWlSklevDMDf2nSvizh66ar79ZqW655c1B2hmwRmvnTLPAW3B2EB 1NOwsVu1rVmdGIy5LS99QDko7eMyAy3YIl5koCIvpnEuQEUSYp8bsCiKQMBbUuLH ZziEDwjVjWZXwhaGu3gA5L1zZYDxoG0O -----END CERTIFICATE-----Generated at Sat Oct 25 17:18:58 2025 by rpki-client