$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.mft File: Soo5XlVsx_Garmqwav8GeUSVa0Y.mft (raw, json) Hash identifier: i4oscP+ol3ESjtq7Y6yHCvtc3u/q4B2iW5u8cNqOPac= Subject key identifier: 74:EE:3A:27:9C:FD:B9:CE:97:FC:45:34:FB:24:5C:D6:17:59:EC:6A Authority key identifier: 4A:8A:39:5E:55:6C:C7:F1:9A:AE:6A:B0:6A:FF:06:79:44:95:6B:46 Certificate issuer: /CN=A91CFD5A/serialNumber=4A8A395E556CC7F19AAE6AB06AFF067944956B46 Certificate serial: 0156 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Soo5XlVsx_Garmqwav8GeUSVa0Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.mft Manifest number: 0153 Signing time: Wed 05 Nov 2025 04:23:27 +0000 Manifest this update: Wed 05 Nov 2025 04:23:26 +0000 Manifest next update: Wed 12 Nov 2025 04:23:26 +0000 Files and hashes: 1: Soo5XlVsx_Garmqwav8GeUSVa0Y.crl (hash: D1M1qeX3TaC7sEg/W2AeocaN0/Lb7aX6cl8zoLCU6Ag=) 2: D60B1BCCB9AF11EE97EEDB49C4F9AE02.roa (hash: VWW3LG8bH56OHxKp9a6acMJUcTvLWrd2aS1b8cisvbE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.crl rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Soo5XlVsx_Garmqwav8GeUSVa0Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:23:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 342 (0x156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFD5A, serialNumber=4A8A395E556CC7F19AAE6AB06AFF067944956B46 Validity Not Before: Nov 5 04:23:26 2025 GMT Not After : Nov 12 04:23:26 2025 GMT Subject: CN=690ad13f-b353 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a4:d9:f7:99:19:5e:c6:c8:f6:39:8a:6b:85: 8e:aa:7b:f3:b2:b6:7b:23:cb:c0:ea:1c:49:14:9d: 2f:ef:a6:40:79:ac:6a:93:5b:57:fe:78:04:09:fa: fe:33:d4:2a:06:a3:64:da:3c:5d:2b:73:a7:71:5d: b6:d3:92:a2:08:89:58:f5:77:83:0e:4e:2a:03:c2: 92:6a:d4:54:e3:53:5b:29:40:a7:11:42:35:3e:a5: 57:3a:05:f9:f4:8c:ca:08:42:05:cf:e9:87:0d:92: a8:c5:14:2a:70:88:d8:40:58:89:dc:6a:75:95:37: 74:3b:e2:c7:87:e7:d2:19:a7:39:c6:d5:a8:5e:fd: 6a:23:68:02:0d:ae:a8:48:06:8d:46:1d:b2:0a:e4: da:13:b6:3f:bc:05:20:4b:28:b8:91:90:ba:67:e0: 0b:34:6e:ce:e2:fb:1a:94:3e:44:3f:2a:14:a3:2a: f4:7f:53:a1:6a:83:30:20:b6:45:e4:b1:6a:a3:28: 79:28:82:7a:ba:d8:f0:be:f8:b0:c6:43:4e:bc:f4: 30:9c:1e:f7:d2:04:d3:64:14:d7:a6:4a:25:7c:ed: 4a:09:80:ba:42:14:41:80:e2:dd:21:fd:c5:32:fb: 3e:0e:c8:1e:6a:aa:97:53:02:f0:82:1f:ec:b5:72: 2c:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:EE:3A:27:9C:FD:B9:CE:97:FC:45:34:FB:24:5C:D6:17:59:EC:6A X509v3 Authority Key Identifier: keyid:4A:8A:39:5E:55:6C:C7:F1:9A:AE:6A:B0:6A:FF:06:79:44:95:6B:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Soo5XlVsx_Garmqwav8GeUSVa0Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFD5A/2375B306B94511EEBB818834C4F9AE02/Soo5XlVsx_Garmqwav8GeUSVa0Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:14:9d:a8:bb:b0:40:f3:52:de:59:a8:f1:33:8f:96:4c:d5: 11:22:a0:ce:ad:9c:20:37:b0:5d:21:24:cc:eb:6b:9b:49:8d: 56:38:33:8a:f2:ab:53:22:cf:bc:e9:0a:d2:7e:f5:6b:19:94: 4b:50:40:02:2a:d8:ff:b2:a9:ca:df:e0:ac:31:d6:2f:fd:50: 37:65:92:08:21:33:8f:3a:4f:57:79:78:ba:7c:11:87:9a:4d: 53:5b:59:9f:dc:6c:43:6e:47:a4:a9:3a:3d:cc:24:d8:ca:e5: 25:6e:50:b4:a0:91:32:03:d9:ca:46:6f:19:8b:ae:55:68:74: 79:14:72:49:24:d4:ca:b4:ac:0c:43:0b:59:ac:9e:b0:50:27: 2f:75:ea:3f:b1:13:6f:3b:4e:a7:57:60:ab:b8:7b:25:7c:60: 8c:80:fd:1f:02:64:b3:21:ad:6b:f7:3b:c4:0d:7a:22:c1:d0: 7f:9d:5c:1d:6c:b3:d3:7a:99:52:f9:dc:21:86:10:1f:4e:81: 21:b5:23:30:e8:f9:45:24:72:93:17:92:66:14:1a:a1:6e:40: 3c:c6:f9:ad:37:c7:55:a8:a3:76:7c:eb:9d:c9:b2:61:e2:5a: 7d:e9:cb:10:1b:96:e6:0f:97:86:31:81:7d:59:78:dd:49:da: 40:53:cf:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZENUExMTAvBgNVBAUTKDRBOEEzOTVFNTU2Q0M3RjE5QUFFNkFCMDZBRkYwNjc5 NDQ5NTZCNDYwHhcNMjUxMTA1MDQyMzI2WhcNMjUxMTEyMDQyMzI2WjAYMRYwFAYD VQQDEw02OTBhZDEzZi1iMzUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsKTZ95kZXsbI9jmKa4WOqnvzsrZ7I8vA6hxJFJ0v76ZAeaxqk1tX/ngECfr+ M9QqBqNk2jxdK3OncV2205KiCIlY9XeDDk4qA8KSatRU41NbKUCnEUI1PqVXOgX5 9IzKCEIFz+mHDZKoxRQqcIjYQFiJ3Gp1lTd0O+LHh+fSGac5xtWoXv1qI2gCDa6o SAaNRh2yCuTaE7Y/vAUgSyi4kZC6Z+ALNG7O4vsalD5EPyoUoyr0f1OhaoMwILZF 5LFqoyh5KIJ6utjwvviwxkNOvPQwnB730gTTZBTXpkolfO1KCYC6QhRBgOLdIf3F Mvs+DsgeaqqXUwLwgh/stXIslwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHTuOiec /bnOl/xFNPskXNYXWexqMB8GA1UdIwQYMBaAFEqKOV5VbMfxmq5qsGr/BnlElWtG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkQ1QS8yMzc1QjMwNkI5 NDUxMUVFQkI4MTg4MzRDNEY5QUUwMi9Tb281WGxWc3hfR2FybXF3YXY4R2VVU1Zh MFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NvbzVYbFZzeF9HYXJtcXdhdjhHZVVTVmEwWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkQ1QS8yMzc1QjMwNkI5NDUxMUVFQkI4MTg4MzRDNEY5QUUwMi9Tb281WGxWc3hf R2FybXF3YXY4R2VVU1ZhMFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBFJ2ou7BA81LeWajxM4+WTNURIqDOrZwgN7BdISTM62ubSY1WODOK 8qtTIs+86QrSfvVrGZRLUEACKtj/sqnK3+CsMdYv/VA3ZZIIITOPOk9XeXi6fBGH mk1TW1mf3GxDbkekqTo9zCTYyuUlblC0oJEyA9nKRm8Zi65VaHR5FHJJJNTKtKwM QwtZrJ6wUCcvdeo/sRNvO06nV2CruHslfGCMgP0fAmSzIa1r9zvEDXoiwdB/nVwd bLPTeplS+dwhhhAfToEhtSMw6PlFJHKTF5JmFBqhbkA8xvmtN8dVqKN2fOudybJh 4lp96csQG5bmD5eGMYF9WXjdSdpAU8+/ -----END CERTIFICATE-----Generated at Wed Nov 5 11:56:47 2025 by rpki-client