$ rpki-client -vvf rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft File: 5S3osZGTOKPiVWZOiASKVpihINA.mft (raw, json) Hash identifier: QKZr6EK4isVoYKqNcPENN163ESi6QgmJczZO2Ca0emY= Subject key identifier: 32:AB:86:33:B0:BD:95:C5:AA:13:8F:6D:B4:3D:51:77:51:90:85:19 Authority key identifier: E5:2D:E8:B1:91:93:38:A3:E2:55:66:4E:88:04:8A:56:98:A1:20:D0 Certificate issuer: /CN=A9160701/serialNumber=E52DE8B1919338A3E255664E88048A5698A120D0 Certificate serial: 0BC5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft Manifest number: 0BBB Signing time: Tue 04 Nov 2025 19:01:33 +0000 Manifest this update: Tue 04 Nov 2025 19:01:32 +0000 Manifest next update: Tue 11 Nov 2025 19:01:32 +0000 Files and hashes: 1: 5S3osZGTOKPiVWZOiASKVpihINA.crl (hash: TQY6Q2rEIGKfM3/pngcRlYsq4uY/0D8VDzFQXoPHolQ=) 2: 6DCC06C231BC11EA9AACCA4BC4F9AE02.roa (hash: 3rmLILbAM/KMJx9b9ZtmiW/UU8JiAcyOhmtpDcFmRPg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.crl rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:01:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3013 (0xbc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160701, serialNumber=E52DE8B1919338A3E255664E88048A5698A120D0 Validity Not Before: Nov 4 19:01:32 2025 GMT Not After : Nov 11 19:01:32 2025 GMT Subject: CN=690a4d8d-79e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:b7:d0:e7:d7:91:65:c0:be:7c:46:5c:8e:3b: f0:ea:01:3d:fb:2b:f4:7e:1d:21:76:55:96:a8:e1: 69:97:5b:7e:0e:ea:f2:1f:f6:0f:fd:8b:25:cd:3a: 74:06:52:9f:de:64:5f:24:ad:da:13:e4:d4:38:df: fd:15:57:c9:06:d6:c9:f6:1e:40:a5:13:bb:b9:56: fe:4f:8e:70:17:e1:92:a5:a4:d9:d1:42:26:65:29: ec:1d:9f:1e:a8:5b:be:87:58:41:f1:48:4e:ff:02: a0:75:1e:a1:55:2d:60:28:d0:50:ff:7d:e3:cc:d7: 20:91:0a:86:e7:e1:79:a8:e4:4f:53:1b:c2:b3:0e: 8a:87:11:4c:6b:33:c7:1a:87:c8:5a:fc:8b:0a:41: a4:d5:2c:56:51:59:d8:6b:90:a3:2b:00:bc:94:a1: 25:85:72:41:ff:a3:50:a7:74:e6:bf:86:38:88:a8: f1:d1:a2:61:bb:03:af:c6:df:ef:75:a1:82:e2:c1: e8:92:0c:7b:30:02:06:cd:d3:2a:34:55:a1:8f:54: 56:13:e9:78:82:7e:88:af:8f:61:69:c4:24:0b:3e: b3:1f:e0:bf:53:d9:ae:10:43:2b:7f:f4:d7:5e:a9: 0b:d4:b5:4b:ab:ce:41:61:d7:c5:8d:57:9d:bf:80: 03:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:AB:86:33:B0:BD:95:C5:AA:13:8F:6D:B4:3D:51:77:51:90:85:19 X509v3 Authority Key Identifier: keyid:E5:2D:E8:B1:91:93:38:A3:E2:55:66:4E:88:04:8A:56:98:A1:20:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:96:64:60:36:8c:8d:70:32:18:ab:fa:ad:6e:92:1b:17:ab: 81:66:e8:22:ff:7e:47:41:f0:09:7a:3e:4a:05:52:7d:65:1d: 03:c8:aa:8e:62:f1:11:ca:c3:5d:f3:34:65:0b:df:f9:79:39: 82:30:a4:8a:48:15:44:5b:d6:24:71:38:09:cf:ce:22:c8:28: 7e:a9:63:e6:60:b6:79:57:60:63:50:44:1b:63:58:33:08:fa: a2:86:d7:9c:13:bd:7c:c4:bd:84:4e:a3:ae:cf:f6:07:25:39: 59:43:e4:df:dc:b2:16:c4:79:5c:20:8a:5e:e8:de:b9:6c:e0: 6b:7d:81:fe:1f:4a:03:20:a1:f2:cc:d5:6d:63:78:51:28:d2: 44:fd:11:87:8d:ac:2f:27:bd:db:1d:c2:d2:cf:d4:36:fc:a5: 6f:53:63:64:90:3d:12:8f:94:1e:d5:8a:1d:17:ec:d1:bf:0c: df:fc:ad:8c:6a:7a:67:e7:5b:67:42:10:dc:ca:ab:a4:48:9a: 93:26:c7:03:b9:1d:2b:f1:4d:1f:26:3c:ab:da:97:88:54:5e: d4:a6:8f:50:91:b8:e0:c8:26:83:6b:58:ba:56:7a:f9:e5:7b: 30:a4:76:e2:af:fb:52:b5:36:a0:1c:88:42:5a:8e:59:f8:45: ae:64:06:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA3MDExMTAvBgNVBAUTKEU1MkRFOEIxOTE5MzM4QTNFMjU1NjY0RTg4MDQ4QTU2 OThBMTIwRDAwHhcNMjUxMTA0MTkwMTMyWhcNMjUxMTExMTkwMTMyWjAYMRYwFAYD VQQDEw02OTBhNGQ4ZC03OWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2bfQ59eRZcC+fEZcjjvw6gE9+yv0fh0hdlWWqOFpl1t+DuryH/YP/YslzTp0 BlKf3mRfJK3aE+TUON/9FVfJBtbJ9h5ApRO7uVb+T45wF+GSpaTZ0UImZSnsHZ8e qFu+h1hB8UhO/wKgdR6hVS1gKNBQ/33jzNcgkQqG5+F5qORPUxvCsw6KhxFMazPH GofIWvyLCkGk1SxWUVnYa5CjKwC8lKElhXJB/6NQp3Tmv4Y4iKjx0aJhuwOvxt/v daGC4sHokgx7MAIGzdMqNFWhj1RWE+l4gn6Ir49hacQkCz6zH+C/U9muEEMrf/TX XqkL1LVLq85BYdfFjVedv4ADGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDKrhjOw vZXFqhOPbbQ9UXdRkIUZMB8GA1UdIwQYMBaAFOUt6LGRkzij4lVmTogEilaYoSDQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDcwMS81NDAwQzQxODMw MzAxMUVBQTcyRjM2N0FDNEY5QUUwMi81UzNvc1pHVE9LUGlWV1pPaUFTS1ZwaWhJ TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVTM29zWkdUT0tQaVZXWk9pQVNLVnBpaElOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDcwMS81NDAwQzQxODMwMzAxMUVBQTcyRjM2N0FDNEY5QUUwMi81UzNvc1pHVE9L UGlWV1pPaUFTS1ZwaWhJTkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjlmRgNoyNcDIYq/qtbpIbF6uBZugi/35HQfAJej5KBVJ9ZR0DyKqO YvERysNd8zRlC9/5eTmCMKSKSBVEW9YkcTgJz84iyCh+qWPmYLZ5V2BjUEQbY1gz CPqihtecE718xL2ETqOuz/YHJTlZQ+Tf3LIWxHlcIIpe6N65bOBrfYH+H0oDIKHy zNVtY3hRKNJE/RGHjawvJ73bHcLSz9Q2/KVvU2NkkD0Sj5Qe1YodF+zRvwzf/K2M anpn51tnQhDcyqukSJqTJscDuR0r8U0fJjyr2peIVF7Upo9QkbjgyCaDa1i6Vnr5 5XswpHbir/tStTagHIhCWo5Z+EWuZAYb -----END CERTIFICATE-----Generated at Wed Nov 5 07:59:19 2025 by rpki-client