$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft File: 5bRMaejecz32GWYFbn5BXsfHDSo.mft (raw, json) Hash identifier: uKY09Xku/ZyWtgtekOKRSR/cY4DfF5rZhW05Ge9WwiY= Subject key identifier: AC:70:A2:D9:2A:64:4E:D8:49:8F:40:0A:61:D3:9F:9B:3F:0C:6B:B7 Authority key identifier: E5:B4:4C:69:E8:DE:73:3D:F6:19:66:05:6E:7E:41:5E:C7:C7:0D:2A Certificate issuer: /CN=A91B4873/serialNumber=E5B44C69E8DE733DF61966056E7E415EC7C70D2A Certificate serial: FF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft Manifest number: FC Signing time: Mon 03 Nov 2025 05:08:26 +0000 Manifest this update: Mon 03 Nov 2025 05:08:25 +0000 Manifest next update: Mon 10 Nov 2025 05:08:25 +0000 Files and hashes: 1: 5bRMaejecz32GWYFbn5BXsfHDSo.crl (hash: uOtqThYi/vMHOafJ7YOi61JipQUSZB/kglcoNcr+rHk=) 2: F9AAE6F8994011F097180C40C4F9AE02.roa (hash: RU5OhSVcdir8OrT3E9J1urB5y05ack2UMndknf/XUMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.crl rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:08:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 255 (0xff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4873, serialNumber=E5B44C69E8DE733DF61966056E7E415EC7C70D2A Validity Not Before: Nov 3 05:08:25 2025 GMT Not After : Nov 10 05:08:25 2025 GMT Subject: CN=690838ca-9192 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a8:4d:eb:3e:d6:40:f6:e5:f0:7c:d8:b9:0a: b9:59:5e:f5:69:e0:d0:99:ba:16:b3:c4:8d:c2:c8: 58:12:56:4d:a6:ee:30:94:8c:d8:f7:33:d6:f1:23: f3:07:67:32:0f:cc:d8:b5:bd:e1:18:d3:bb:09:22: 3a:a4:e1:3a:71:df:b9:a4:50:e1:c7:a0:f6:ce:13: bb:9f:bc:e2:98:f8:79:99:22:07:bf:21:e6:df:85: 65:1f:8e:53:11:9a:3f:2d:e8:fd:98:27:dc:d0:4a: 6b:fa:0f:fb:d8:3d:06:f6:a4:b1:6f:8b:22:a8:93: 39:72:64:68:e8:b1:81:d6:19:21:95:cc:1e:89:4c: c2:8a:bf:de:cc:f8:63:75:4c:3c:76:ec:66:6a:6b: 2d:90:48:bf:f4:74:5a:3d:30:76:00:5b:55:5c:46: 90:e4:b5:03:6b:aa:81:76:be:a1:b8:c8:ab:33:de: ed:d8:72:f0:9e:4e:ca:1d:76:b1:e2:5f:0a:f3:5d: 6d:dc:70:2b:1c:8b:ce:5c:47:72:d8:eb:e7:6f:50: 46:15:fc:78:7f:3f:94:df:b7:df:da:42:ee:80:29: ab:e0:6c:5b:0d:9e:c4:ea:2c:7a:a4:a4:57:5a:9e: 8a:79:4a:ba:3d:01:b8:f1:77:79:c9:04:23:cb:74: e9:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:70:A2:D9:2A:64:4E:D8:49:8F:40:0A:61:D3:9F:9B:3F:0C:6B:B7 X509v3 Authority Key Identifier: keyid:E5:B4:4C:69:E8:DE:73:3D:F6:19:66:05:6E:7E:41:5E:C7:C7:0D:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:9d:10:b1:65:e0:99:9d:ac:e1:ed:17:3e:72:97:7e:4d:0f: f2:4f:c5:60:fe:f5:d4:0d:e8:b6:d0:02:dd:0e:58:6c:2c:5a: e1:ef:f9:9e:60:5f:f7:13:23:38:c3:46:ed:49:a9:b2:ef:32: b8:c8:05:30:0c:0d:1a:11:b7:4c:3c:aa:23:b4:aa:0a:8f:09: 8d:28:63:c3:44:11:31:c5:f0:4f:9a:93:7d:37:f1:6a:7a:0f: fe:98:58:49:aa:51:fa:da:a9:ce:aa:3a:ed:bc:23:ca:c6:f9: 2e:0c:86:b6:72:f2:1f:fe:64:7b:4d:2f:68:5b:ee:f5:54:3e: 29:9f:ff:6f:01:4a:e8:b5:e7:28:10:19:29:9c:93:0a:02:60: df:06:50:47:24:7d:23:df:38:a9:e4:4c:e5:a2:23:3e:4e:91: 54:a9:76:b8:a5:16:0d:07:37:6d:ab:91:44:3a:77:b2:d1:f8: 06:8f:68:72:39:d4:dd:2d:21:f7:9b:0a:16:08:31:5e:bf:be: 2a:cd:7e:21:c4:56:26:a1:ff:aa:0b:f4:3e:de:75:20:ba:a5: e4:1f:30:ed:1b:9b:41:fc:ff:a2:54:a0:83:e0:1e:c3:07:0a: 2e:f5:32:bd:dc:08:73:aa:be:e6:7d:e2:4c:86:4e:7d:14:6d: 62:b9:d5:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ4NzMxMTAvBgNVBAUTKEU1QjQ0QzY5RThERTczM0RGNjE5NjYwNTZFN0U0MTVF QzdDNzBEMkEwHhcNMjUxMTAzMDUwODI1WhcNMjUxMTEwMDUwODI1WjAYMRYwFAYD VQQDEw02OTA4MzhjYS05MTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxahN6z7WQPbl8HzYuQq5WV71aeDQmboWs8SNwshYElZNpu4wlIzY9zPW8SPz B2cyD8zYtb3hGNO7CSI6pOE6cd+5pFDhx6D2zhO7n7zimPh5mSIHvyHm34VlH45T EZo/Lej9mCfc0Epr+g/72D0G9qSxb4siqJM5cmRo6LGB1hkhlcweiUzCir/ezPhj dUw8duxmamstkEi/9HRaPTB2AFtVXEaQ5LUDa6qBdr6huMirM97t2HLwnk7KHXax 4l8K811t3HArHIvOXEdy2Ovnb1BGFfx4fz+U37ff2kLugCmr4GxbDZ7E6ix6pKRX Wp6KeUq6PQG48Xd5yQQjy3TpjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKxwotkq ZE7YSY9ACmHTn5s/DGu3MB8GA1UdIwQYMBaAFOW0TGno3nM99hlmBW5+QV7Hxw0q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDg3My80RTI1QzhCQzM4 RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi81YlJNYWVqZWN6MzJHV1lGYm41QlhzZkhE U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzViUk1hZWplY3ozMkdXWUZibjVCWHNmSERTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDg3My80RTI1QzhCQzM4RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi81YlJNYWVqZWN6 MzJHV1lGYm41QlhzZkhEU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlnRCxZeCZnazh7Rc+cpd+TQ/yT8Vg/vXUDei20ALdDlhsLFrh7/me YF/3EyM4w0btSamy7zK4yAUwDA0aEbdMPKojtKoKjwmNKGPDRBExxfBPmpN9N/Fq eg/+mFhJqlH62qnOqjrtvCPKxvkuDIa2cvIf/mR7TS9oW+71VD4pn/9vAUroteco EBkpnJMKAmDfBlBHJH0j3zip5EzloiM+TpFUqXa4pRYNBzdtq5FEOney0fgGj2hy OdTdLSH3mwoWCDFev74qzX4hxFYmof+qC/Q+3nUguqXkHzDtG5tB/P+iVKCD4B7D Bwou9TK93Ahzqr7mfeJMhk59FG1iudUm -----END CERTIFICATE-----Generated at Tue Nov 4 21:35:11 2025 by rpki-client