$ rpki-client -vvf rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft File: 5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft (raw, json) Hash identifier: gJ+oZM2VYiTc8gu5Ak9VrorNaPLvzQ2JQfJEjgDG284= Subject key identifier: 73:C5:00:66:3D:9C:23:A3:4E:BB:15:F7:00:58:AC:CA:82:DE:EF:15 Authority key identifier: E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 Certificate issuer: /CN=A91B59E5/serialNumber=E47BF70254532697D20D0D3110F625370D65FA83 Certificate serial: 021C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft Manifest number: 01EE Signing time: Wed 05 Nov 2025 03:26:17 +0000 Manifest this update: Wed 05 Nov 2025 03:26:16 +0000 Manifest next update: Wed 12 Nov 2025 03:26:16 +0000 Files and hashes: 1: 5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl (hash: lkFwvdZgMDnCj9dr2wnyt1q5g5+rjXwccgfK87eqDkw=) 2: 9EEE3C44D94F11EF916BCF23C4F9AE02.roa (hash: MOCyDx3MMCgJ0iKiHYJPId15Yf0kFHcGhSay9PLqfd4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:26:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 540 (0x21c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B59E5, serialNumber=E47BF70254532697D20D0D3110F625370D65FA83 Validity Not Before: Nov 5 03:26:16 2025 GMT Not After : Nov 12 03:26:16 2025 GMT Subject: CN=690ac3d9-5382 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:69:8e:d7:dd:12:3a:f1:2b:99:e3:52:0a:85: 0a:9e:41:5d:ad:8f:8d:e9:af:3f:ad:21:ef:7b:80: 7e:be:4f:2f:2d:3d:40:8b:64:f3:a5:d3:0a:01:66: a1:fc:23:ab:2a:04:26:ce:58:6b:6f:d5:e9:92:93: fa:95:ff:b3:e4:5e:39:9c:d6:6c:c2:11:86:7c:d4: e5:b9:e8:87:44:27:fd:f3:28:45:5e:2d:a5:cb:f3: bd:f7:4e:cd:d7:4d:9c:d4:6c:17:82:96:52:6b:9e: d4:ec:af:00:d7:b8:db:87:e8:6e:eb:d6:31:19:8e: c3:55:93:8d:01:3b:9c:34:21:b2:47:bb:a3:be:2f: 2d:be:f6:b8:8a:74:5f:bf:d9:9a:1c:8f:e4:8f:96: c6:4b:a3:76:1a:1a:f0:57:ec:4e:27:9b:3d:c6:21: ec:4f:a2:3a:43:13:cd:35:bc:cb:47:77:12:da:a5: 82:bb:8e:ee:2c:93:63:f2:6f:b5:6a:34:6b:87:c6: 83:62:46:97:96:09:c8:28:69:c5:e9:39:16:73:aa: 92:0a:df:24:33:f7:56:eb:18:d7:46:43:b7:cf:f6: 72:5c:c2:8c:95:67:f6:76:cf:4c:3b:35:1d:8a:73: 52:41:81:b8:4a:28:01:09:ae:22:1b:78:a8:33:1c: 7f:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:C5:00:66:3D:9C:23:A3:4E:BB:15:F7:00:58:AC:CA:82:DE:EF:15 X509v3 Authority Key Identifier: keyid:E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:fd:d3:2b:e1:3f:f7:42:8c:87:b4:d4:05:44:ab:3a:b8:7f: 3e:2b:27:e6:d3:56:73:a3:85:d8:b3:f6:59:89:a6:f4:e4:f6: 06:00:d3:f6:e7:ac:36:ea:f8:3e:4e:10:f9:1a:06:f6:83:a3: 2a:a4:03:aa:80:bc:40:2b:25:d8:2f:f1:04:f2:83:75:8b:f7: 9f:e5:4a:13:49:fb:d4:c6:1e:2f:52:f3:2f:ca:98:e5:c1:71: f9:bc:f0:d4:83:6d:54:5b:db:68:b8:51:80:a6:57:6d:fa:8f: af:47:8c:6f:c5:4a:a1:ef:67:bb:9b:e7:ea:03:91:77:9b:5f: 34:4a:c3:92:b5:0e:0a:92:72:df:8e:6f:56:7c:9f:9b:88:b8: 6a:3b:da:e5:15:34:0a:a7:46:1f:6a:7c:76:68:d7:61:c9:0d: 7d:c2:23:70:46:a6:c4:a7:c6:ef:77:06:9e:35:05:1e:a6:22: f3:4d:f2:6d:53:fd:97:31:43:2a:6e:07:9e:2a:d9:4a:0b:88: 56:a8:29:ef:ed:46:96:22:44:11:87:f2:36:5e:0a:1a:8c:75: 1f:94:91:b9:c7:3c:8e:95:53:79:e6:08:d2:da:4f:0b:93:ed: 4e:1c:b6:fc:22:b5:f5:6a:69:8f:6d:88:57:08:f7:7b:e5:a6: 4f:4a:03:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU5RTUxMTAvBgNVBAUTKEU0N0JGNzAyNTQ1MzI2OTdEMjBEMEQzMTEwRjYyNTM3 MEQ2NUZBODMwHhcNMjUxMTA1MDMyNjE2WhcNMjUxMTEyMDMyNjE2WjAYMRYwFAYD VQQDEw02OTBhYzNkOS01MzgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0WmO190SOvErmeNSCoUKnkFdrY+N6a8/rSHve4B+vk8vLT1Ai2TzpdMKAWah /COrKgQmzlhrb9XpkpP6lf+z5F45nNZswhGGfNTlueiHRCf98yhFXi2ly/O9907N 102c1GwXgpZSa57U7K8A17jbh+hu69YxGY7DVZONATucNCGyR7ujvi8tvva4inRf v9maHI/kj5bGS6N2GhrwV+xOJ5s9xiHsT6I6QxPNNbzLR3cS2qWCu47uLJNj8m+1 ajRrh8aDYkaXlgnIKGnF6TkWc6qSCt8kM/dW6xjXRkO3z/ZyXMKMlWf2ds9MOzUd inNSQYG4SigBCa4iG3ioMxx/9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHPFAGY9 nCOjTrsV9wBYrMqC3u8VMB8GA1UdIwQYMBaAFOR79wJUUyaX0g0NMRD2JTcNZfqD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTlFNS9ERDlGMUY3QzND MDExMUVFOTFDQkUxNTdDNEY5QUUwMi81SHYzQWxSVEpwZlNEUTB4RVBZbE53MWwt b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVIdjNBbFJUSnBmU0RRMHhFUFlsTncxbC1vTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTlFNS9ERDlGMUY3QzNDMDExMUVFOTFDQkUxNTdDNEY5QUUwMi81SHYzQWxSVEpw ZlNEUTB4RVBZbE53MWwtb00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC//dMr4T/3QoyHtNQFRKs6uH8+Kyfm01Zzo4XYs/ZZiab05PYGANP2 56w26vg+ThD5Ggb2g6MqpAOqgLxAKyXYL/EE8oN1i/ef5UoTSfvUxh4vUvMvypjl wXH5vPDUg21UW9touFGApldt+o+vR4xvxUqh72e7m+fqA5F3m180SsOStQ4KknLf jm9WfJ+biLhqO9rlFTQKp0Yfanx2aNdhyQ19wiNwRqbEp8bvdwaeNQUepiLzTfJt U/2XMUMqbgeeKtlKC4hWqCnv7UaWIkQRh/I2XgoajHUflJG5xzyOlVN55gjS2k8L k+1OHLb8IrX1ammPbYhXCPd75aZPSgNV -----END CERTIFICATE-----Generated at Wed Nov 5 18:06:23 2025 by rpki-client