$ rpki-client -vvf rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft File: 5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft (raw, json) Hash identifier: yIWCLEdC0Dz7F8UFCB1oJkCj2lWx9Xvfnig3LViUn3Q= Subject key identifier: 4D:29:B8:72:EE:75:AE:91:5B:22:85:B9:D9:CD:9A:70:A6:17:A6:13 Authority key identifier: E4:62:3C:FD:44:3E:62:32:F2:6C:23:E8:1F:DF:97:58:B2:6F:3B:2C Certificate issuer: /CN=A914F3BA/serialNumber=E4623CFD443E6232F26C23E81FDF9758B26F3B2C Certificate serial: 07FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft Manifest number: 07FA Signing time: Tue 04 Nov 2025 21:04:02 +0000 Manifest this update: Tue 04 Nov 2025 21:04:02 +0000 Manifest next update: Tue 11 Nov 2025 21:04:02 +0000 Files and hashes: 1: 5GI8_UQ-YjLybCPoH9-XWLJvOyw.crl (hash: wvp4TMlEktnwxoWz69Owgu7II0+8WaA59Hu7Q1d0eOk=) 2: D0D7EE48343211EFBF2C280DC4F9AE02.roa (hash: hbQmOshNkorS1/g78QiEhSVwbWUn9A8H0a6ZSzOWB98=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.crl rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:04:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2045 (0x7fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F3BA, serialNumber=E4623CFD443E6232F26C23E81FDF9758B26F3B2C Validity Not Before: Nov 4 21:04:02 2025 GMT Not After : Nov 11 21:04:02 2025 GMT Subject: CN=690a6a42-9efe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:2e:1c:c4:50:df:5f:75:4f:df:38:9b:14:a1: 1d:bb:42:2e:a7:10:b5:60:3f:e9:89:f8:28:c8:35: 97:27:bc:42:cd:44:ee:86:25:9d:a9:b3:9b:a7:f0: 92:30:01:aa:ac:f8:3c:bd:4a:5b:0c:f6:ba:39:07: f4:d2:40:da:0c:ce:0c:30:7c:ef:a5:33:96:5d:9d: 92:a8:9c:f7:01:78:3b:b8:c3:df:d3:01:9f:f7:48: 89:42:d8:33:18:0d:55:c1:3f:3d:49:d7:0c:20:63: 18:a6:af:5d:78:16:4c:5e:c1:df:39:53:0a:dd:34: 43:59:a5:7c:12:5e:a4:b3:f6:db:a3:a5:81:fb:63: 6e:60:6a:d6:3d:ec:a9:50:8e:eb:ba:1b:44:19:ce: 5b:ed:f9:36:bd:b7:58:44:4b:9c:67:f3:9c:07:8b: 68:69:2d:30:6e:3b:a8:9e:c1:8e:db:f8:42:0b:c6: 6e:cf:4e:ad:99:0f:81:31:2c:9b:cd:88:41:19:42: e9:c0:5a:52:0e:6b:37:64:78:a7:e1:ab:f3:76:da: 29:16:84:9d:14:b3:86:b1:5d:d0:25:34:b4:52:db: ef:3f:80:e6:cf:28:93:c3:f5:84:cb:e6:0e:45:c7: 28:a8:da:bd:25:9b:9d:13:19:3a:69:b2:32:f4:8d: 08:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:29:B8:72:EE:75:AE:91:5B:22:85:B9:D9:CD:9A:70:A6:17:A6:13 X509v3 Authority Key Identifier: keyid:E4:62:3C:FD:44:3E:62:32:F2:6C:23:E8:1F:DF:97:58:B2:6F:3B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption df:a2:9b:9b:04:bc:94:93:78:e6:d9:ba:e3:2c:70:0c:52:a1: a3:9a:2a:b4:4a:97:02:04:4a:12:0c:d0:bf:14:94:09:55:af: 44:f7:72:b2:88:76:7f:f9:2f:18:2a:b6:3f:9d:d1:d0:71:bf: 75:6d:36:c5:17:a7:0a:86:8e:2a:7a:8d:ad:60:1e:68:d7:18: a3:05:49:fb:97:73:e0:08:b3:0d:db:36:12:5a:f4:c1:0b:fb: 24:46:b7:a8:30:27:b5:64:a4:31:be:f9:72:c8:17:8f:b5:36: 87:77:85:96:7c:9c:a6:67:73:0e:14:5d:ee:74:07:a7:10:a9: 26:88:f5:74:dd:93:46:0c:46:cb:14:59:e2:3e:6d:36:ce:93: c7:cb:02:3d:c2:69:8c:60:d3:83:c3:4a:66:49:98:bc:06:32: cf:34:d0:d3:fe:0d:e5:d9:44:37:b7:cb:ba:9b:81:6f:47:e3: 81:72:0a:88:30:46:74:f6:db:6a:fd:2f:5f:9c:1a:e9:06:49: 21:52:06:b7:eb:66:e2:e2:9c:dd:a4:d8:10:8e:7a:f7:56:e3: d5:fb:78:9f:7a:c0:bb:f4:8e:37:0f:15:99:cc:f1:ad:68:25: de:76:c2:b2:9a:d1:dd:04:1e:ce:12:b8:9c:43:8e:16:80:88: f8:ad:bc:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYzQkExMTAvBgNVBAUTKEU0NjIzQ0ZENDQzRTYyMzJGMjZDMjNFODFGREY5NzU4 QjI2RjNCMkMwHhcNMjUxMTA0MjEwNDAyWhcNMjUxMTExMjEwNDAyWjAYMRYwFAYD VQQDEw02OTBhNmE0Mi05ZWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0i4cxFDfX3VP3zibFKEdu0IupxC1YD/pifgoyDWXJ7xCzUTuhiWdqbObp/CS MAGqrPg8vUpbDPa6OQf00kDaDM4MMHzvpTOWXZ2SqJz3AXg7uMPf0wGf90iJQtgz GA1VwT89SdcMIGMYpq9deBZMXsHfOVMK3TRDWaV8El6ks/bbo6WB+2NuYGrWPeyp UI7ruhtEGc5b7fk2vbdYREucZ/OcB4toaS0wbjuonsGO2/hCC8Zuz06tmQ+BMSyb zYhBGULpwFpSDms3ZHin4avzdtopFoSdFLOGsV3QJTS0UtvvP4DmzyiTw/WEy+YO RccoqNq9JZudExk6abIy9I0I7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE0puHLu da6RWyKFudnNmnCmF6YTMB8GA1UdIwQYMBaAFORiPP1EPmIy8mwj6B/fl1iybzss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjNCQS9GRjIwRUJEQzAx M0QxMUVCQTAwMDEyNkJDNEY5QUUwMi81R0k4X1VRLVlqTHliQ1BvSDktWFdMSnZP eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVHSThfVVEtWWpMeWJDUG9IOS1YV0xKdk95dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjNCQS9GRjIwRUJEQzAxM0QxMUVCQTAwMDEyNkJDNEY5QUUwMi81R0k4X1VRLVlq THliQ1BvSDktWFdMSnZPeXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDfopubBLyUk3jm2brjLHAMUqGjmiq0SpcCBEoSDNC/FJQJVa9E93Ky iHZ/+S8YKrY/ndHQcb91bTbFF6cKho4qeo2tYB5o1xijBUn7l3PgCLMN2zYSWvTB C/skRreoMCe1ZKQxvvlyyBePtTaHd4WWfJymZ3MOFF3udAenEKkmiPV03ZNGDEbL FFniPm02zpPHywI9wmmMYNODw0pmSZi8BjLPNNDT/g3l2UQ3t8u6m4FvR+OBcgqI MEZ09ttq/S9fnBrpBkkhUga362bi4pzdpNgQjnr3VuPV+3ifesC79I43DxWZzPGt aCXedsKymtHdBB7OEricQ44WgIj4rbwq -----END CERTIFICATE-----Generated at Wed Nov 5 19:17:21 2025 by rpki-client