$ rpki-client -vvf rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.mft File: 5muokllQFHlLtkUdFCgchAAgYgM.mft (raw, json) Hash identifier: +nwE7FT7XcwGZASX7Z3YXYyAW65DKKWq/PZ1bnto17Q= Subject key identifier: A1:19:33:12:88:C4:85:31:57:F6:D6:A8:7E:48:6E:EA:56:78:E2:F4 Authority key identifier: E6:6B:A8:92:59:50:14:79:4B:B6:45:1D:14:28:1C:84:00:20:62:03 Certificate issuer: /CN=A9140BA4/serialNumber=E66BA892595014794BB6451D14281C8400206203 Certificate serial: 14C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5muokllQFHlLtkUdFCgchAAgYgM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.mft Manifest number: 14BE Signing time: Tue 04 Nov 2025 16:57:32 +0000 Manifest this update: Tue 04 Nov 2025 16:57:31 +0000 Manifest next update: Tue 11 Nov 2025 16:57:31 +0000 Files and hashes: 1: 5muokllQFHlLtkUdFCgchAAgYgM.crl (hash: ueT22RxwlH5eEN46GTjur35a1YabbWL7ufbASmYypdw=) 2: 3FF298D41AFF11EFB20C2648C4F9AE02.roa (hash: K3UhQQDhvIK9kiqYEaaLUGkHSXsQC8El8DjsvYMTmMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.crl rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5muokllQFHlLtkUdFCgchAAgYgM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:57:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5313 (0x14c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140BA4, serialNumber=E66BA892595014794BB6451D14281C8400206203 Validity Not Before: Nov 4 16:57:31 2025 GMT Not After : Nov 11 16:57:31 2025 GMT Subject: CN=690a307c-4d1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b1:92:96:83:4e:b6:04:33:96:c6:8e:88:1b: fe:77:28:2c:ef:60:eb:38:35:1f:53:e0:4f:60:0d: f3:40:70:45:fc:41:f3:2a:68:d1:24:c1:8d:65:51: 22:76:70:6d:4d:97:96:c9:15:d7:a1:07:83:82:00: 55:9b:18:c8:3d:ed:47:e8:b9:4a:55:7a:b0:14:ac: 74:d0:25:50:e8:29:86:12:17:9d:43:c7:43:62:3c: 04:a8:a9:c7:cb:20:26:24:ee:b9:ca:58:87:46:e4: b6:0e:83:3b:a2:51:5b:4d:20:f1:e4:2a:e6:da:0a: ce:01:74:29:79:13:3b:cf:59:e2:31:af:16:b6:b3: 7f:34:2f:46:c3:e2:f9:7e:03:af:1c:9e:ec:a5:66: be:38:9e:03:22:08:f1:88:09:1d:38:3b:67:31:82: 71:05:eb:92:5e:11:7b:53:f6:2b:a2:0d:56:7f:e8: 09:0e:6c:52:6f:51:72:b1:4b:5d:e9:67:e4:c4:8c: 39:c6:98:93:c0:ee:0f:70:e6:d6:0f:05:18:a5:51: 50:6f:22:e2:22:2b:c8:15:b3:24:d4:30:da:d0:37: 00:88:07:bb:92:b7:8f:a1:01:44:58:ec:fd:67:3a: 06:d4:3a:89:e6:67:3d:d7:a9:68:c3:a4:81:46:28: 99:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:19:33:12:88:C4:85:31:57:F6:D6:A8:7E:48:6E:EA:56:78:E2:F4 X509v3 Authority Key Identifier: keyid:E6:6B:A8:92:59:50:14:79:4B:B6:45:1D:14:28:1C:84:00:20:62:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5muokllQFHlLtkUdFCgchAAgYgM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:6e:d5:6d:18:a2:89:d5:39:86:68:c7:54:09:da:11:15:3e: 87:f7:38:44:6e:4c:f0:ba:84:96:b7:d5:5f:de:77:79:e1:86: 12:d2:5e:a1:fb:6c:34:44:3e:6c:4e:8e:8a:33:5b:73:5f:bd: 33:dc:e6:6d:7d:1a:69:a5:e1:71:29:10:af:14:18:dc:65:05: 6d:6f:f2:70:6d:e9:62:b7:cc:70:5b:57:32:17:0d:13:55:99: 3b:2b:42:f0:6f:1b:51:a0:d2:21:a8:7a:e9:a6:ff:72:b8:30: 66:fd:c4:8c:54:ed:2d:19:d9:8e:6f:c9:59:56:b9:20:64:4f: 89:9d:a2:1b:63:69:00:14:ca:21:5e:93:9d:34:7e:25:0d:a5: 10:15:44:15:cc:86:63:12:85:a9:be:52:b3:70:b4:9b:c7:ac: 9f:56:35:e7:b5:78:ca:00:47:cb:d0:b0:5a:f0:af:45:5c:a5: dc:65:b4:d6:c5:c3:8c:b1:21:d8:a7:d6:6e:90:ca:1f:1c:fb: 9a:39:03:39:16:aa:67:52:63:01:16:d7:4e:e7:88:aa:db:f4: 2a:ad:36:6f:97:f3:85:5a:06:50:8e:48:29:db:26:98:7d:0e: 7d:34:bf:d2:28:7d:ae:b8:2d:13:00:7a:9f:ef:f8:ab:64:45: 2e:ac:8e:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBCQTQxMTAvBgNVBAUTKEU2NkJBODkyNTk1MDE0Nzk0QkI2NDUxRDE0MjgxQzg0 MDAyMDYyMDMwHhcNMjUxMTA0MTY1NzMxWhcNMjUxMTExMTY1NzMxWjAYMRYwFAYD VQQDEw02OTBhMzA3Yy00ZDFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvbGSloNOtgQzlsaOiBv+dygs72DrODUfU+BPYA3zQHBF/EHzKmjRJMGNZVEi dnBtTZeWyRXXoQeDggBVmxjIPe1H6LlKVXqwFKx00CVQ6CmGEhedQ8dDYjwEqKnH yyAmJO65yliHRuS2DoM7olFbTSDx5Crm2grOAXQpeRM7z1niMa8WtrN/NC9Gw+L5 fgOvHJ7spWa+OJ4DIgjxiAkdODtnMYJxBeuSXhF7U/Yrog1Wf+gJDmxSb1FysUtd 6WfkxIw5xpiTwO4PcObWDwUYpVFQbyLiIivIFbMk1DDa0DcAiAe7krePoQFEWOz9 ZzoG1DqJ5mc916low6SBRiiZVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKEZMxKI xIUxV/bWqH5IbupWeOL0MB8GA1UdIwQYMBaAFOZrqJJZUBR5S7ZFHRQoHIQAIGID MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEJBNC80N0U5MjY4NjY4 RUQxMUU4OTBFMzk1NDlDNEY5QUUwMi81bXVva2xsUUZIbEx0a1VkRkNnY2hBQWdZ Z00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVtdW9rbGxRRkhsTHRrVWRGQ2djaEFBZ1lnTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEJBNC80N0U5MjY4NjY4RUQxMUU4OTBFMzk1NDlDNEY5QUUwMi81bXVva2xsUUZI bEx0a1VkRkNnY2hBQWdZZ00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/btVtGKKJ1TmGaMdUCdoRFT6H9zhEbkzwuoSWt9Vf3nd54YYS0l6h +2w0RD5sTo6KM1tzX70z3OZtfRpppeFxKRCvFBjcZQVtb/Jwbelit8xwW1cyFw0T VZk7K0LwbxtRoNIhqHrppv9yuDBm/cSMVO0tGdmOb8lZVrkgZE+JnaIbY2kAFMoh XpOdNH4lDaUQFUQVzIZjEoWpvlKzcLSbx6yfVjXntXjKAEfL0LBa8K9FXKXcZbTW xcOMsSHYp9ZukMofHPuaOQM5FqpnUmMBFtdO54iq2/QqrTZvl/OFWgZQjkgp2yaY fQ59NL/SKH2uuC0TAHqf7/irZEUurI7c -----END CERTIFICATE-----Generated at Wed Nov 5 00:24:13 2025 by rpki-client