$ rpki-client -vvf rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft File: 5vEsD995brDfK2AuWsQsy4OyLhg.mft (raw, json) Hash identifier: GRN4kFJZccy6QE8xk8cGm4LW0i6Gp1dM8Dbr/yS9KSc= Subject key identifier: CC:E5:DC:67:ED:37:44:5D:37:46:B8:DF:0A:FF:68:18:87:E0:48:31 Authority key identifier: E6:F1:2C:0F:DF:79:6E:B0:DF:2B:60:2E:5A:C4:2C:CB:83:B2:2E:18 Certificate issuer: /CN=A914E3B7/serialNumber=E6F12C0FDF796EB0DF2B602E5AC42CCB83B22E18 Certificate serial: 34D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vEsD995brDfK2AuWsQsy4OyLhg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft Manifest number: 34D1 Signing time: Tue 04 Nov 2025 15:12:14 +0000 Manifest this update: Tue 04 Nov 2025 15:12:13 +0000 Manifest next update: Tue 11 Nov 2025 15:12:13 +0000 Files and hashes: 1: 5vEsD995brDfK2AuWsQsy4OyLhg.crl (hash: Z0Tv+peJfUUQzeIc/Xm7X9Qw/5/QFeUkNp6N5OPNTME=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.crl rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vEsD995brDfK2AuWsQsy4OyLhg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:12:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13524 (0x34d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E3B7, serialNumber=E6F12C0FDF796EB0DF2B602E5AC42CCB83B22E18 Validity Not Before: Nov 4 15:12:13 2025 GMT Not After : Nov 11 15:12:13 2025 GMT Subject: CN=690a17ce-eb14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a7:c7:a7:f8:bf:43:a5:6e:e1:53:94:25:23: 8c:0d:86:78:4b:06:ad:57:d4:1e:f5:48:21:a3:54: 7d:ce:0a:36:5e:11:e2:ed:79:99:bb:b3:19:6e:ec: 30:7e:ce:a3:bd:ac:d1:51:4d:74:e9:85:0c:02:0f: 32:6b:96:79:e8:f5:8c:fa:67:83:f5:d0:e7:c2:b9: 37:33:fe:10:ce:d5:f2:5c:29:cc:b6:55:58:a5:84: bc:2a:30:8d:6c:f8:40:28:39:43:8d:16:fa:f3:1a: 9b:fd:9d:bb:11:f8:50:e7:0e:e2:68:a6:14:14:61: 35:ff:f9:75:35:ae:0c:01:61:38:b4:74:0a:70:d9: e6:fd:4d:36:5d:15:5b:bb:12:20:f5:97:bb:4d:6a: b8:75:b2:47:e4:5f:fc:3b:ca:fc:74:36:af:16:2f: f0:cd:e3:c1:85:ef:e6:cf:ce:8c:04:a2:87:de:af: 62:99:05:fc:58:5d:f9:81:9d:2a:0b:99:f1:04:36: 7d:a2:8e:bd:a0:1b:1e:75:b6:ae:d6:86:44:f8:2c: 83:51:f1:e5:db:74:63:4a:25:9f:94:3e:d3:e7:d1: 21:98:9c:96:20:8e:db:ba:96:5f:4e:4c:17:5a:63: 07:08:2f:10:c3:df:75:35:22:0e:e7:3a:61:eb:ed: c4:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:E5:DC:67:ED:37:44:5D:37:46:B8:DF:0A:FF:68:18:87:E0:48:31 X509v3 Authority Key Identifier: keyid:E6:F1:2C:0F:DF:79:6E:B0:DF:2B:60:2E:5A:C4:2C:CB:83:B2:2E:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vEsD995brDfK2AuWsQsy4OyLhg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:43:67:e9:ac:6d:4c:15:a6:6c:96:fd:19:0a:8e:0c:64:4e: d6:d2:83:28:7f:82:23:f5:e2:e7:7d:c6:90:44:bc:c9:ed:e3: 41:3b:5b:03:10:a5:a3:32:6e:b5:11:96:49:d4:3c:06:07:18: b9:d0:e7:16:fd:28:bd:79:3e:8a:19:71:7b:68:80:26:dd:3a: ad:ee:6e:e9:c2:7c:ce:15:ea:38:f1:b7:e5:b3:7c:73:20:8c: c9:ac:84:55:ee:ab:c2:b9:45:75:04:25:3d:b8:dd:62:68:40: d1:e3:f6:10:e3:c5:30:bf:e6:c1:b2:11:3d:dc:82:2b:cc:13: 5c:a2:b5:f3:6c:6f:a3:4b:1f:9b:ae:de:fd:c9:b1:6e:28:26: 25:e6:fc:97:e5:8f:bb:36:1c:b3:f0:e6:36:b2:50:fd:09:6f: a9:fd:0e:fa:18:0e:ab:4c:c8:0c:e7:9c:6b:bf:74:22:9b:2d: 92:85:13:62:63:04:91:f7:cf:26:d3:28:7c:7c:ff:fa:4d:ed: 3f:10:23:b5:bd:5c:50:6e:d9:7c:b1:e7:5d:93:6f:90:2a:f5: 56:9b:08:ea:6a:48:8c:44:aa:19:76:44:3e:eb:c1:b5:72:90: bc:43:61:97:81:cc:ea:fd:6f:df:34:83:79:ab:c9:7f:8b:ee: fa:84:a2:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUzQjcxMTAvBgNVBAUTKEU2RjEyQzBGREY3OTZFQjBERjJCNjAyRTVBQzQyQ0NC ODNCMjJFMTgwHhcNMjUxMTA0MTUxMjEzWhcNMjUxMTExMTUxMjEzWjAYMRYwFAYD VQQDEw02OTBhMTdjZS1lYjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuqfHp/i/Q6Vu4VOUJSOMDYZ4SwatV9Qe9Ugho1R9zgo2XhHi7XmZu7MZbuww fs6jvazRUU106YUMAg8ya5Z56PWM+meD9dDnwrk3M/4QztXyXCnMtlVYpYS8KjCN bPhAKDlDjRb68xqb/Z27EfhQ5w7iaKYUFGE1//l1Na4MAWE4tHQKcNnm/U02XRVb uxIg9Ze7TWq4dbJH5F/8O8r8dDavFi/wzePBhe/mz86MBKKH3q9imQX8WF35gZ0q C5nxBDZ9oo69oBsedbau1oZE+CyDUfHl23RjSiWflD7T59EhmJyWII7bupZfTkwX WmMHCC8Qw991NSIO5zph6+3EqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMzl3Gft N0RdN0a43wr/aBiH4EgxMB8GA1UdIwQYMBaAFObxLA/feW6w3ytgLlrELMuDsi4Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTNCNy85RkFFODRGQTFE QTQxMUUyQUMyQkFGOUEwOEIwMkNEMi81dkVzRDk5NWJyRGZLMkF1V3NRc3k0T3lM aGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV2RXNEOTk1YnJEZksyQXVXc1FzeTRPeUxoZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTNCNy85RkFFODRGQTFEQTQxMUUyQUMyQkFGOUEwOEIwMkNEMi81dkVzRDk5NWJy RGZLMkF1V3NRc3k0T3lMaGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9Q2fprG1MFaZslv0ZCo4MZE7W0oMof4Ij9eLnfcaQRLzJ7eNBO1sD EKWjMm61EZZJ1DwGBxi50OcW/Si9eT6KGXF7aIAm3Tqt7m7pwnzOFeo48bfls3xz IIzJrIRV7qvCuUV1BCU9uN1iaEDR4/YQ48Uwv+bBshE93IIrzBNcorXzbG+jSx+b rt79ybFuKCYl5vyX5Y+7Nhyz8OY2slD9CW+p/Q76GA6rTMgM55xrv3Qimy2ShRNi YwSR988m0yh8fP/6Te0/ECO1vVxQbtl8seddk2+QKvVWmwjqakiMRKoZdkQ+68G1 cpC8Q2GXgczq/W/fNIN5q8l/i+76hKIK -----END CERTIFICATE-----Generated at Tue Nov 4 19:04:06 2025 by rpki-client