$ rpki-client -vvf rpki.apnic.net/member_repository/A9191769/D26DDDB077BE11EF9F2A4547C4F9AE02/_5I0f11UaIEf0lOki_xp_lcKpFA.mft File: _5I0f11UaIEf0lOki_xp_lcKpFA.mft (raw, json) Hash identifier: +2ptM3tru/gXXqrJ9jTltQpA9pDpqxa2AXjNIPCRm+o= Subject key identifier: 3B:93:27:35:B8:C3:CB:90:AD:12:9A:23:CD:5D:9D:7A:3D:69:08:17 Authority key identifier: FF:92:34:7F:5D:54:68:81:1F:D2:53:A4:8B:FC:69:FE:57:0A:A4:50 Certificate issuer: /CN=A9191769/serialNumber=FF92347F5D5468811FD253A48BFC69FE570AA450 Certificate serial: D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_5I0f11UaIEf0lOki_xp_lcKpFA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191769/D26DDDB077BE11EF9F2A4547C4F9AE02/_5I0f11UaIEf0lOki_xp_lcKpFA.mft Manifest number: D4 Signing time: Wed 05 Nov 2025 05:49:21 +0000 Manifest this update: Wed 05 Nov 2025 05:49:21 +0000 Manifest next update: Wed 12 Nov 2025 05:49:21 +0000 Files and hashes: 1: _5I0f11UaIEf0lOki_xp_lcKpFA.crl (hash: eRZsq8CZoj2eT8IP4hQoAxEttZ4E6ehBqzbKVEWFmoo=) 2: 4D36C07677C311EF84D38A3BC4F9AE02.roa (hash: JXSolNPYFIreOexnYnb4A7e51oAbg28HPMtSTeakZI4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191769/D26DDDB077BE11EF9F2A4547C4F9AE02/_5I0f11UaIEf0lOki_xp_lcKpFA.crl rsync://rpki.apnic.net/member_repository/A9191769/D26DDDB077BE11EF9F2A4547C4F9AE02/_5I0f11UaIEf0lOki_xp_lcKpFA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_5I0f11UaIEf0lOki_xp_lcKpFA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:49:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191769, serialNumber=FF92347F5D5468811FD253A48BFC69FE570AA450 Validity Not Before: Nov 5 05:49:21 2025 GMT Not After : Nov 12 05:49:21 2025 GMT Subject: CN=690ae561-1352 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:57:9a:85:4d:40:6b:8a:de:ea:bf:49:bc:5b: ea:eb:46:2a:80:98:28:a5:88:15:35:e2:88:50:35: 23:db:85:4c:05:53:31:06:41:75:1f:2c:27:d9:e7: c3:b3:8d:8b:fc:a9:d8:2b:93:a4:3f:95:e0:fd:51: 25:0f:e3:47:ff:ef:cc:29:e7:37:88:d3:2f:47:9b: 35:bf:9e:99:23:66:f7:01:b6:90:d4:11:df:3f:ed: a2:b6:7d:01:34:86:df:36:06:50:60:38:cc:5e:e9: 85:37:f0:02:e7:2f:22:7e:aa:4a:d0:44:15:1b:0b: 3d:b3:d2:cc:4e:5a:8c:ef:c9:68:4e:bd:74:44:8d: 09:17:eb:05:cc:ba:8d:56:6f:87:77:a9:69:d3:37: f2:99:9b:dc:20:09:a9:14:4f:8d:29:de:65:1e:50: 61:e2:7a:47:c5:3c:68:71:51:eb:a2:7e:03:1b:da: 7c:98:b2:88:fe:2e:7c:0c:a1:81:a6:c8:bf:b9:68: 5f:ec:ee:95:6d:63:62:52:44:ad:09:a3:01:1b:39: 5b:13:96:80:5b:68:81:ab:09:e1:80:da:ca:7c:29: bc:ad:6c:65:0f:09:06:e9:ee:96:27:3b:c6:8e:b8: 85:ef:41:b9:73:e3:be:da:5e:c3:63:ac:bc:d9:6b: 1a:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:93:27:35:B8:C3:CB:90:AD:12:9A:23:CD:5D:9D:7A:3D:69:08:17 X509v3 Authority Key Identifier: keyid:FF:92:34:7F:5D:54:68:81:1F:D2:53:A4:8B:FC:69:FE:57:0A:A4:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191769/D26DDDB077BE11EF9F2A4547C4F9AE02/_5I0f11UaIEf0lOki_xp_lcKpFA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_5I0f11UaIEf0lOki_xp_lcKpFA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191769/D26DDDB077BE11EF9F2A4547C4F9AE02/_5I0f11UaIEf0lOki_xp_lcKpFA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:b5:9d:9f:0f:ca:b5:95:89:b3:e6:3b:3e:d7:4a:e3:31:12: 7c:f4:72:57:96:95:46:f8:75:57:2e:50:02:55:a5:16:1e:22: ec:73:d1:94:56:7a:16:f2:9e:09:60:31:34:0e:13:0f:7a:0f: 17:6a:80:7a:56:db:f5:da:68:85:45:66:c3:79:ff:a9:a7:24: e0:94:42:c2:6f:c3:8f:1a:18:19:a7:a1:8c:7d:92:cf:e0:ce: 17:f3:d0:5e:f4:0c:b6:9e:d4:ad:68:7f:0b:27:7d:24:33:2e: 1e:33:ea:bf:ec:dc:db:a4:25:06:3c:68:23:9b:f8:82:f5:f4: 90:8f:ad:05:1a:5f:68:01:73:ac:5f:ff:ca:ce:d5:31:6b:e8: 02:ab:fd:bc:a1:b0:31:bb:08:97:05:4e:1c:38:d5:0a:21:40: 78:b0:57:59:a8:19:ad:8d:9e:d0:08:40:74:ca:b6:b2:e1:23: f2:58:22:4b:95:0e:d4:97:29:1e:0c:2a:99:3d:75:19:85:0f: b2:48:10:c7:e0:84:5a:b6:0f:23:6a:ad:fb:12:b9:36:c0:3c: cd:60:33:69:f5:a3:ef:a0:54:0e:36:b2:8d:c8:96:e3:ce:7c: df:b0:cf:ec:2c:a1:25:b2:47:5d:b7:16:e5:f5:33:f0:59:81: 88:4e:63:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE3NjkxMTAvBgNVBAUTKEZGOTIzNDdGNUQ1NDY4ODExRkQyNTNBNDhCRkM2OUZF NTcwQUE0NTAwHhcNMjUxMTA1MDU0OTIxWhcNMjUxMTEyMDU0OTIxWjAYMRYwFAYD VQQDEw02OTBhZTU2MS0xMzUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuFeahU1Aa4re6r9JvFvq60YqgJgopYgVNeKIUDUj24VMBVMxBkF1Hywn2efD s42L/KnYK5OkP5Xg/VElD+NH/+/MKec3iNMvR5s1v56ZI2b3AbaQ1BHfP+2itn0B NIbfNgZQYDjMXumFN/AC5y8ifqpK0EQVGws9s9LMTlqM78loTr10RI0JF+sFzLqN Vm+Hd6lp0zfymZvcIAmpFE+NKd5lHlBh4npHxTxocVHron4DG9p8mLKI/i58DKGB psi/uWhf7O6VbWNiUkStCaMBGzlbE5aAW2iBqwnhgNrKfCm8rWxlDwkG6e6WJzvG jriF70G5c+O+2l7DY6y82Wsa5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDuTJzW4 w8uQrRKaI81dnXo9aQgXMB8GA1UdIwQYMBaAFP+SNH9dVGiBH9JTpIv8af5XCqRQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTc2OS9EMjZERERCMDc3 QkUxMUVGOUYyQTQ1NDdDNEY5QUUwMi9fNUkwZjExVWFJRWYwbE9raV94cF9sY0tw RkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL181STBmMTFVYUlFZjBsT2tpX3hwX2xjS3BGQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTc2OS9EMjZERERCMDc3QkUxMUVGOUYyQTQ1NDdDNEY5QUUwMi9fNUkwZjExVWFJ RWYwbE9raV94cF9sY0twRkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrtZ2fD8q1lYmz5js+10rjMRJ89HJXlpVG+HVXLlACVaUWHiLsc9GU VnoW8p4JYDE0DhMPeg8XaoB6Vtv12miFRWbDef+ppyTglELCb8OPGhgZp6GMfZLP 4M4X89Be9Ay2ntStaH8LJ30kMy4eM+q/7NzbpCUGPGgjm/iC9fSQj60FGl9oAXOs X//KztUxa+gCq/28obAxuwiXBU4cONUKIUB4sFdZqBmtjZ7QCEB0yray4SPyWCJL lQ7UlykeDCqZPXUZhQ+ySBDH4IRatg8jaq37Erk2wDzNYDNp9aPvoFQONrKNyJbj znzfsM/sLKElskddtxbl9TPwWYGITmOC -----END CERTIFICATE-----Generated at Wed Nov 5 10:08:01 2025 by rpki-client