$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft File: 5D3SMzFr8OKboG0g3sJdtMwRbgg.mft (raw, json) Hash identifier: HWHL2H91ssCcpQaJ4nFODZKq0b0R/Eoebus7cDMXNB0= Subject key identifier: 25:06:60:EA:00:2C:0A:F6:65:73:44:40:74:79:A2:FA:B4:D4:55:21 Authority key identifier: E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 Certificate issuer: /CN=A9120AC1/serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Certificate serial: 050E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft Manifest number: 0502 Signing time: Tue 04 Nov 2025 23:44:28 +0000 Manifest this update: Tue 04 Nov 2025 23:44:27 +0000 Manifest next update: Tue 11 Nov 2025 23:44:27 +0000 Files and hashes: 1: 5D3SMzFr8OKboG0g3sJdtMwRbgg.crl (hash: xL70Br6zrbLS7GE/5tgFe7pCYyX2ZwZOdhE4Sj/gZts=) 2: 3A2A80AE3C8311ECA86D031EC4F9AE02.roa (hash: aUDrwRtGsUzrY00Rmj3XgznPDP2fmFZxHTp5GIqGdmE=) 3: 579B33AE886F11F0A02D4009C4F9AE02.roa (hash: YP1QtoS6tJ0tfsbd9mqDdJjDX65W26gYVq3o6iBYRuU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:44:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1294 (0x50e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Validity Not Before: Nov 4 23:44:27 2025 GMT Not After : Nov 11 23:44:27 2025 GMT Subject: CN=690a8fdb-13c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:3f:78:2f:4a:cc:c6:3c:06:fe:96:ab:e8:09: 83:d6:90:1f:58:27:83:41:3d:9a:96:08:b9:c1:3b: 6a:51:8e:09:f2:41:69:26:ed:2c:a2:6e:0f:df:d0: b0:42:1e:34:83:4a:e4:89:aa:72:77:33:02:cc:51: 4a:9a:a5:aa:71:3a:97:5f:3d:42:00:3e:d7:9d:13: 04:23:42:99:3c:0d:ec:0e:5d:95:ce:7b:32:60:bd: 91:00:16:9a:ad:29:d2:05:bd:11:7f:e9:2f:c2:e3: cb:c0:e6:2e:9e:40:6b:13:76:5c:96:60:d7:81:91: ff:15:22:a8:ac:9a:d5:c8:63:73:e6:46:02:37:8e: ed:b1:59:9b:30:99:de:f5:c7:2b:be:50:13:8b:8a: ec:25:e0:c8:40:92:f7:8c:bc:3d:19:53:30:6f:00: 5b:d7:71:34:9b:0e:ea:a9:25:63:dd:f5:22:0f:33: 25:0e:f4:ef:8f:38:4b:e5:42:e5:ca:a6:6c:3d:56: ec:ca:f3:90:1c:79:57:18:91:4f:80:1f:55:56:2e: 6c:bc:80:82:f2:d9:51:92:3b:f0:c1:d1:f9:c0:20: 30:29:f1:76:08:5f:f6:16:cb:9d:6a:5c:e3:df:26: a9:74:53:0c:0b:0f:77:b6:b9:20:80:65:b0:77:7d: 6a:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:06:60:EA:00:2C:0A:F6:65:73:44:40:74:79:A2:FA:B4:D4:55:21 X509v3 Authority Key Identifier: keyid:E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:2f:b6:ba:2c:56:f8:da:18:04:47:e3:27:26:7a:c7:87:91: 22:83:a5:4b:36:4d:46:11:ad:33:a2:c2:d3:90:20:59:e7:f2: 1e:f9:ad:ac:fd:ef:73:57:f4:53:f0:14:e2:16:5f:b5:8a:80: 55:7a:a1:ad:4f:82:0e:b7:6f:c7:c5:da:18:db:85:b7:3d:f8: f4:7a:ce:57:04:0b:7c:26:03:51:3f:a3:9a:e2:4a:87:49:47: e2:db:d5:e4:15:8c:37:8a:c6:19:7e:c4:1a:d3:af:17:02:01: 36:9c:19:65:5f:1c:98:0d:29:01:9f:b5:50:31:ec:ae:39:fb: dd:5c:51:20:4a:69:1d:4f:c0:d1:01:12:cc:5a:8c:cf:8a:15: 1e:ed:3b:f7:40:75:d1:6b:23:54:f1:4d:a6:16:4d:83:88:e1: ec:89:e4:73:0f:21:0f:66:28:e3:99:8b:02:8f:cf:d3:ef:ce: ee:dc:31:0d:72:a5:50:47:d2:21:ff:3b:2b:f9:48:3d:f2:5d: f8:e4:5a:90:fb:3b:c0:5e:93:be:77:09:8b:1f:2d:2b:ab:fb: dd:dd:29:97:43:76:44:69:57:15:03:8e:d2:10:1e:46:2a:21: 5a:11:b6:b8:72:5b:f2:f2:4f:e9:d1:d1:71:9e:14:97:ac:7e: 7e:85:8d:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKEU0M0REMjMzMzE2QkYwRTI5QkEwNkQyMERFQzI1REI0 Q0MxMTZFMDgwHhcNMjUxMTA0MjM0NDI3WhcNMjUxMTExMjM0NDI3WjAYMRYwFAYD VQQDEw02OTBhOGZkYi0xM2M0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsT94L0rMxjwG/par6AmD1pAfWCeDQT2algi5wTtqUY4J8kFpJu0som4P39Cw Qh40g0rkiapydzMCzFFKmqWqcTqXXz1CAD7XnRMEI0KZPA3sDl2VznsyYL2RABaa rSnSBb0Rf+kvwuPLwOYunkBrE3ZclmDXgZH/FSKorJrVyGNz5kYCN47tsVmbMJne 9ccrvlATi4rsJeDIQJL3jLw9GVMwbwBb13E0mw7qqSVj3fUiDzMlDvTvjzhL5ULl yqZsPVbsyvOQHHlXGJFPgB9VVi5svICC8tlRkjvwwdH5wCAwKfF2CF/2Fsudalzj 3yapdFMMCw93trkggGWwd31qQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCUGYOoA LAr2ZXNEQHR5ovq01FUhMB8GA1UdIwQYMBaAFOQ90jMxa/Dim6BtIN7CXbTMEW4I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zRTlBNEFFMDMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhPS2JvRzBnM3NKZHRNd1Ji Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVEM1NNekZyOE9LYm9HMGczc0pkdE13UmJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zRTlBNEFFMDMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhP S2JvRzBnM3NKZHRNd1JiZ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzL7a6LFb42hgER+MnJnrHh5Eig6VLNk1GEa0zosLTkCBZ5/Ie+a2s /e9zV/RT8BTiFl+1ioBVeqGtT4IOt2/HxdoY24W3Pfj0es5XBAt8JgNRP6Oa4kqH SUfi29XkFYw3isYZfsQa068XAgE2nBllXxyYDSkBn7VQMeyuOfvdXFEgSmkdT8DR ARLMWozPihUe7Tv3QHXRayNU8U2mFk2DiOHsieRzDyEPZijjmYsCj8/T787u3DEN cqVQR9Ih/zsr+Ug98l345FqQ+zvAXpO+dwmLHy0rq/vd3SmXQ3ZEaVcVA47SEB5G KiFaEba4clvy8k/p0dFxnhSXrH5+hY0b -----END CERTIFICATE-----Generated at Wed Nov 5 04:28:08 2025 by rpki-client