$ rpki-client -vvf rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.mft File: 5nG8sr6VpsiFJxIdiBXovPGKoeI.mft (raw, json) Hash identifier: KtS7xaVrs7elZSpKSZk7iZt2M2avmJPktzEq6enMX0c= Subject key identifier: C4:EB:7C:23:A6:D4:F9:72:35:48:4F:92:C9:49:76:7E:34:CF:13:55 Authority key identifier: E6:71:BC:B2:BE:95:A6:C8:85:27:12:1D:88:15:E8:BC:F1:8A:A1:E2 Certificate issuer: /CN=A9124926/serialNumber=E671BCB2BE95A6C88527121D8815E8BCF18AA1E2 Certificate serial: 0A1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5nG8sr6VpsiFJxIdiBXovPGKoeI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.mft Manifest number: 0A12 Signing time: Sun 02 Nov 2025 19:46:03 +0000 Manifest this update: Sun 02 Nov 2025 19:46:03 +0000 Manifest next update: Sun 09 Nov 2025 19:46:03 +0000 Files and hashes: 1: 5nG8sr6VpsiFJxIdiBXovPGKoeI.crl (hash: Xc4NFi3u8m9D2FUzTUO4guZBWjobk3hi6Kv6+TY1wss=) 2: 209BA8B682DF11EAABBC5018C4F9AE02.roa (hash: BPcITeixSaXAriwkv0vsDzYrlqCAlvQdRZ4cRFHy1EA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.crl rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5nG8sr6VpsiFJxIdiBXovPGKoeI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:46:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2587 (0xa1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124926, serialNumber=E671BCB2BE95A6C88527121D8815E8BCF18AA1E2 Validity Not Before: Nov 2 19:46:03 2025 GMT Not After : Nov 9 19:46:03 2025 GMT Subject: CN=6907b4fb-d513 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f1:db:87:93:41:66:0a:a4:15:59:13:cd:48: fa:1b:db:ad:11:21:70:00:5a:63:6d:24:1e:7d:f0: 4c:68:e0:2e:65:22:69:2e:3e:2d:90:f5:3a:b5:de: ca:1c:ae:8f:f4:34:48:08:5e:2b:1b:55:c8:48:aa: 0e:27:a9:c2:6a:69:6e:8c:a2:49:77:52:58:97:7a: 72:fd:09:df:96:76:57:c5:0e:67:d6:28:bf:bd:bd: 15:a0:59:b9:23:8a:72:5a:40:b6:a6:dd:12:21:41: 96:46:95:fe:26:e7:dc:e2:16:31:0e:6d:bc:bf:b3: d3:99:d0:c1:db:9e:91:98:27:8a:78:08:d6:1f:4d: fb:da:ee:6d:48:28:f4:9e:26:ee:c2:3a:2f:09:43: 2e:98:8d:d9:32:07:0f:15:c5:39:33:3c:a8:11:2e: f7:e6:87:45:7d:71:0c:18:f7:4d:df:39:4d:d2:c9: d3:2a:75:eb:01:7d:6b:7b:97:83:75:cc:fd:18:7c: 6d:48:b7:51:65:5c:87:90:76:ef:8a:d3:6e:22:f2: 1e:03:a7:ff:ba:ba:53:ad:c2:5c:09:7e:f6:04:7f: 8d:38:02:51:5a:0d:40:7b:a9:0d:ef:fe:aa:ff:07: b5:7d:93:e3:66:a8:c2:84:e2:2f:a3:51:b1:00:ef: 03:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:EB:7C:23:A6:D4:F9:72:35:48:4F:92:C9:49:76:7E:34:CF:13:55 X509v3 Authority Key Identifier: keyid:E6:71:BC:B2:BE:95:A6:C8:85:27:12:1D:88:15:E8:BC:F1:8A:A1:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5nG8sr6VpsiFJxIdiBXovPGKoeI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9124926/B38578C482D911EAB9FCD285C4F9AE02/5nG8sr6VpsiFJxIdiBXovPGKoeI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:5d:4c:37:80:66:97:83:ee:87:f1:5f:24:6a:70:cc:00:de: 01:b6:66:1f:5e:9a:89:d5:bd:96:3d:48:d6:9d:c9:14:91:f6: 8c:96:b8:e3:93:51:53:03:3e:ef:20:56:7f:79:86:8d:4d:a3: 6a:27:9d:69:b6:c7:b8:11:ee:69:9a:d1:bd:79:f3:95:20:42: d4:8d:47:d4:68:8a:7b:a2:f2:1a:99:b9:14:b2:b0:44:8a:37: e4:1f:ac:b6:25:cc:30:83:67:37:04:90:f2:92:3b:de:44:72: 59:0c:9a:e0:d0:81:39:91:12:c6:38:d2:b5:68:47:61:8e:8c: 9e:04:7f:4c:9f:76:69:d2:0d:e1:12:c7:7e:71:ec:5c:c4:55: c6:c4:75:7c:9c:61:70:6f:6e:cc:1e:d7:96:03:4a:84:1a:29: 34:79:c6:5d:79:23:3f:74:de:09:fd:4f:da:67:5f:6a:3b:2f: 95:e7:e5:1a:d6:44:71:3e:4b:71:d4:6c:35:5e:4b:7b:c9:2c: 5a:da:c5:69:ba:54:1e:67:41:4d:80:45:44:74:0f:72:11:40: b6:c7:36:7e:07:cb:ab:33:a0:12:fd:15:c9:f6:4d:7f:eb:ab: ef:f2:0b:25:b9:dc:d7:1a:db:cf:b9:78:94:90:4e:ae:0b:30: ea:a9:39:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ5MjYxMTAvBgNVBAUTKEU2NzFCQ0IyQkU5NUE2Qzg4NTI3MTIxRDg4MTVFOEJD RjE4QUExRTIwHhcNMjUxMTAyMTk0NjAzWhcNMjUxMTA5MTk0NjAzWjAYMRYwFAYD VQQDEw02OTA3YjRmYi1kNTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/Hbh5NBZgqkFVkTzUj6G9utESFwAFpjbSQeffBMaOAuZSJpLj4tkPU6td7K HK6P9DRICF4rG1XISKoOJ6nCamlujKJJd1JYl3py/QnflnZXxQ5n1ii/vb0VoFm5 I4pyWkC2pt0SIUGWRpX+Jufc4hYxDm28v7PTmdDB256RmCeKeAjWH0372u5tSCj0 nibuwjovCUMumI3ZMgcPFcU5MzyoES735odFfXEMGPdN3zlN0snTKnXrAX1re5eD dcz9GHxtSLdRZVyHkHbvitNuIvIeA6f/urpTrcJcCX72BH+NOAJRWg1Ae6kN7/6q /we1fZPjZqjChOIvo1GxAO8DCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMTrfCOm 1PlyNUhPkslJdn40zxNVMB8GA1UdIwQYMBaAFOZxvLK+labIhScSHYgV6LzxiqHi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDkyNi9CMzg1NzhDNDgy RDkxMUVBQjlGQ0QyODVDNEY5QUUwMi81bkc4c3I2VnBzaUZKeElkaUJYb3ZQR0tv ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVuRzhzcjZWcHNpRkp4SWRpQlhvdlBHS29lSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDkyNi9CMzg1NzhDNDgyRDkxMUVBQjlGQ0QyODVDNEY5QUUwMi81bkc4c3I2VnBz aUZKeElkaUJYb3ZQR0tvZUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzXUw3gGaXg+6H8V8kanDMAN4BtmYfXpqJ1b2WPUjWnckUkfaMlrjj k1FTAz7vIFZ/eYaNTaNqJ51ptse4Ee5pmtG9efOVIELUjUfUaIp7ovIambkUsrBE ijfkH6y2Jcwwg2c3BJDykjveRHJZDJrg0IE5kRLGONK1aEdhjoyeBH9Mn3Zp0g3h Esd+cexcxFXGxHV8nGFwb27MHteWA0qEGik0ecZdeSM/dN4J/U/aZ19qOy+V5+Ua 1kRxPktx1Gw1Xkt7ySxa2sVpulQeZ0FNgEVEdA9yEUC2xzZ+B8urM6AS/RXJ9k1/ 66vv8gsludzXGtvPuXiUkE6uCzDqqTmZ -----END CERTIFICATE-----Generated at Tue Nov 4 16:05:00 2025 by rpki-client