$ rpki-client -vvf rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft File: c5FNFBChzT-FrR4bClD_P4vWDBA.mft (raw, json) Hash identifier: SiR0WfNl7Bo8fLj1S41OxioAWaG409KGoAv1JBihEHQ= Subject key identifier: 75:81:82:52:C7:52:FE:98:04:87:13:71:77:56:EE:0D:4D:09:16:E3 Authority key identifier: 73:91:4D:14:10:A1:CD:3F:85:AD:1E:1B:0A:50:FF:3F:8B:D6:0C:10 Certificate issuer: /CN=A91366F8/serialNumber=73914D1410A1CD3F85AD1E1B0A50FF3F8BD60C10 Certificate serial: 039C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5FNFBChzT-FrR4bClD_P4vWDBA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft Manifest number: 0397 Signing time: Wed 05 Nov 2025 00:51:33 +0000 Manifest this update: Wed 05 Nov 2025 00:51:32 +0000 Manifest next update: Wed 12 Nov 2025 00:51:32 +0000 Files and hashes: 1: c5FNFBChzT-FrR4bClD_P4vWDBA.crl (hash: ERBTutHToCMg4ZSxGUTKqDkGPmx8p/j//7DlzPUUpH0=) 2: 591A8C06BE4D11EC8DADB22CC4F9AE02.roa (hash: OdJBHfeW2Re+5Y2fi/VDd9mvhSQUJ11CYcf0wDjfUuA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.crl rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5FNFBChzT-FrR4bClD_P4vWDBA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:51:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 924 (0x39c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91366F8, serialNumber=73914D1410A1CD3F85AD1E1B0A50FF3F8BD60C10 Validity Not Before: Nov 5 00:51:32 2025 GMT Not After : Nov 12 00:51:32 2025 GMT Subject: CN=690a9f94-02eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:98:8d:01:ce:60:3c:71:24:79:5a:df:59:73: 3e:1d:b7:af:18:34:81:a8:cf:e6:b9:21:ce:15:12: f0:8a:0d:ea:ae:98:b1:ec:dc:25:e4:21:5a:fd:41: b7:98:62:b2:3d:1e:1a:1d:18:5a:03:56:c8:19:ba: ed:ae:53:b9:21:e9:ff:c9:4d:1f:1a:0e:89:c4:ba: 64:01:25:a1:be:b5:8a:2e:f8:52:e3:a7:9b:bc:a3: 68:77:5e:65:e3:66:a0:05:12:c4:87:35:b8:91:5c: 26:b3:b9:32:e8:50:53:1b:6b:ab:57:e7:fd:38:a3: b3:64:50:18:ae:b6:fc:3f:cb:92:26:f2:3b:4d:99: c7:f1:3a:aa:32:ec:8b:ca:5f:18:d6:2c:b0:33:4c: 20:bb:72:8e:19:f7:07:27:29:da:cc:d7:0c:5d:f4: a8:aa:f4:43:4a:6d:8c:be:90:4b:0b:12:df:e7:75: 4f:5e:c8:30:1a:9e:66:0a:1f:a7:ac:23:36:8c:b4: d8:77:95:d4:11:88:de:73:04:0f:81:a9:0a:dc:a4: c1:8a:81:35:bd:ad:19:fe:d9:61:51:3f:62:f2:6b: a6:ef:29:c8:96:29:94:9c:6b:33:98:04:3e:aa:13: 33:53:58:a0:9c:c0:48:56:8d:15:26:90:2b:66:a8: 49:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:81:82:52:C7:52:FE:98:04:87:13:71:77:56:EE:0D:4D:09:16:E3 X509v3 Authority Key Identifier: keyid:73:91:4D:14:10:A1:CD:3F:85:AD:1E:1B:0A:50:FF:3F:8B:D6:0C:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c5FNFBChzT-FrR4bClD_P4vWDBA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91366F8/A4243970BE4A11ECB279552AC4F9AE02/c5FNFBChzT-FrR4bClD_P4vWDBA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cc:cb:67:95:41:69:98:88:48:8f:77:74:9b:fd:46:90:05:0d: b6:9e:5f:c1:17:20:01:ce:b4:6a:09:eb:60:16:22:3a:15:cc: 34:ea:ed:7c:da:3b:7f:ae:56:58:e9:e3:a9:f1:e1:29:ce:a2: dc:d4:7e:ca:7a:b0:dc:e6:81:34:bf:cc:23:18:93:9c:51:19: ce:67:55:ca:8d:ad:dd:01:35:cc:5e:76:62:6b:28:8a:3a:3c: ce:1b:78:6f:29:0c:43:a7:e0:e5:a7:74:dc:18:da:8b:29:c1: b3:f6:9e:6d:cf:a2:6b:da:a2:e4:c8:8f:21:aa:44:34:f4:b6: 5a:fb:1a:74:28:7a:5a:8e:96:4e:0f:f4:e2:70:c5:9a:b5:b8: 95:b0:64:af:a2:d8:ad:d0:c0:65:5a:f8:cb:8b:58:28:ff:4d: 4f:02:df:a6:42:53:32:44:d2:e4:ba:2a:64:f2:67:2b:71:95: 7d:b0:6c:50:2c:26:a9:dc:47:cc:1e:49:8d:cc:20:5b:f0:cd: 44:4f:05:7d:9e:4e:43:a4:fb:6d:8a:b3:57:1f:3f:37:09:a5: ee:c2:b8:28:9f:bb:b5:05:d6:0e:0f:9b:68:75:86:87:71:4d: fe:b4:05:b8:ce:94:c4:cd:b0:b7:98:03:f5:59:9a:9e:54:7a: ae:0c:3a:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY2RjgxMTAvBgNVBAUTKDczOTE0RDE0MTBBMUNEM0Y4NUFEMUUxQjBBNTBGRjNG OEJENjBDMTAwHhcNMjUxMTA1MDA1MTMyWhcNMjUxMTEyMDA1MTMyWjAYMRYwFAYD VQQDEw02OTBhOWY5NC0wMmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAypiNAc5gPHEkeVrfWXM+HbevGDSBqM/muSHOFRLwig3qrpix7Nwl5CFa/UG3 mGKyPR4aHRhaA1bIGbrtrlO5Ien/yU0fGg6JxLpkASWhvrWKLvhS46ebvKNod15l 42agBRLEhzW4kVwms7ky6FBTG2urV+f9OKOzZFAYrrb8P8uSJvI7TZnH8TqqMuyL yl8Y1iywM0wgu3KOGfcHJynazNcMXfSoqvRDSm2MvpBLCxLf53VPXsgwGp5mCh+n rCM2jLTYd5XUEYjecwQPgakK3KTBioE1va0Z/tlhUT9i8mum7ynIlimUnGszmAQ+ qhMzU1ignMBIVo0VJpArZqhJLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHWBglLH Uv6YBIcTcXdW7g1NCRbjMB8GA1UdIwQYMBaAFHORTRQQoc0/ha0eGwpQ/z+L1gwQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjZGOC9BNDI0Mzk3MEJF NEExMUVDQjI3OTU1MkFDNEY5QUUwMi9jNUZORkJDaHpULUZyUjRiQ2xEX1A0dldE QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2M1Rk5GQkNoelQtRnJSNGJDbERfUDR2V0RCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjZGOC9BNDI0Mzk3MEJFNEExMUVDQjI3OTU1MkFDNEY5QUUwMi9jNUZORkJDaHpU LUZyUjRiQ2xEX1A0dldEQkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDMy2eVQWmYiEiPd3Sb/UaQBQ22nl/BFyABzrRqCetgFiI6Fcw06u18 2jt/rlZY6eOp8eEpzqLc1H7KerDc5oE0v8wjGJOcURnOZ1XKja3dATXMXnZiayiK OjzOG3hvKQxDp+Dlp3TcGNqLKcGz9p5tz6Jr2qLkyI8hqkQ09LZa+xp0KHpajpZO D/TicMWatbiVsGSvotit0MBlWvjLi1go/01PAt+mQlMyRNLkuipk8mcrcZV9sGxQ LCap3EfMHkmNzCBb8M1ETwV9nk5DpPttirNXHz83CaXuwrgon7u1BdYOD5todYaH cU3+tAW4zpTEzbC3mAP1WZqeVHquDDrc -----END CERTIFICATE-----Generated at Wed Nov 5 11:12:30 2025 by rpki-client