$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft File: 5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft (raw, json) Hash identifier: r/9qI5oSuD70LMgOme5CuO5EzU1TIJOrUMmi6iX4+aE= Subject key identifier: B6:00:52:00:1A:FB:54:F5:7D:32:AB:56:6F:DF:0F:14:B1:38:64:D5 Authority key identifier: E6:F6:5D:22:1B:59:5F:6B:A1:3E:B3:14:DE:E3:38:CA:24:1E:27:20 Certificate issuer: /CN=A91D2B62/serialNumber=E6F65D221B595F6BA13EB314DEE338CA241E2720 Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vZdIhtZX2uhPrMU3uM4yiQeJyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft Manifest number: E7 Signing time: Mon 03 Nov 2025 05:22:26 +0000 Manifest this update: Mon 03 Nov 2025 05:22:26 +0000 Manifest next update: Mon 10 Nov 2025 05:22:26 +0000 Files and hashes: 1: 5vZdIhtZX2uhPrMU3uM4yiQeJyA.crl (hash: 5OHpjdiW687eIYL7RcQtRIH7EEV3aaHsqGO0ga9IT8I=) 2: E9BDEF2CABD011F0B868ED11C4F9AE02.roa (hash: WrRhZ+VcPHGC3dqSfUQV3PGRsqcEeVFs0llndXVdriQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.crl rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vZdIhtZX2uhPrMU3uM4yiQeJyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:22:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2B62, serialNumber=E6F65D221B595F6BA13EB314DEE338CA241E2720 Validity Not Before: Nov 3 05:22:26 2025 GMT Not After : Nov 10 05:22:26 2025 GMT Subject: CN=69083c12-2f45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:60:1a:81:cb:f5:59:18:fc:54:26:98:e7:e5: bb:9f:28:3f:d8:68:04:df:20:87:0f:48:5e:33:bb: 13:91:87:33:c3:01:07:67:2c:9f:f9:79:af:76:cf: 71:4d:0f:b7:e9:40:64:f9:12:3c:5e:52:48:f7:4e: c0:11:6e:52:c1:87:9b:bb:58:b6:4d:ea:7e:8c:d2: 6e:d4:60:bd:62:d6:7b:06:e3:dc:25:da:e9:ac:46: 6a:6f:1f:87:2f:7d:83:ee:96:2e:40:1d:b0:7e:cb: c8:c4:e3:56:b0:d9:f7:d8:65:0e:7d:74:bd:57:c7: f2:2f:ee:16:71:d4:e5:37:fb:5f:90:1f:24:b1:fd: e2:ce:5b:ff:31:f7:62:23:41:b5:1b:ee:42:7e:44: 9b:a2:71:69:61:53:0f:49:25:ed:e2:ed:4e:13:a7: 3b:65:7c:f1:bf:ba:fc:e4:ec:ba:d5:82:d1:6b:bf: 50:2f:56:cb:97:e0:2e:7e:c7:d1:89:b2:a9:1b:c4: cf:27:a8:76:01:60:20:75:22:d1:51:b3:f0:21:59: dc:cd:4b:9c:b7:de:a0:91:ed:a1:54:3a:2d:68:cf: a4:f9:48:38:79:d3:b7:db:03:29:39:dd:af:37:9f: aa:a8:76:0a:90:4c:94:9f:bf:9d:7a:e0:1e:0d:39: b8:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:00:52:00:1A:FB:54:F5:7D:32:AB:56:6F:DF:0F:14:B1:38:64:D5 X509v3 Authority Key Identifier: keyid:E6:F6:5D:22:1B:59:5F:6B:A1:3E:B3:14:DE:E3:38:CA:24:1E:27:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vZdIhtZX2uhPrMU3uM4yiQeJyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:89:8a:0a:d8:92:a2:9a:16:49:10:9f:f1:5b:b1:6a:39:3d: 03:01:5d:d4:de:0a:af:f0:fa:1e:e6:ec:c9:f7:ac:97:5d:c6: 47:83:ed:6b:0a:a0:04:7c:f3:20:3f:09:1a:82:18:75:dc:a1: ab:01:88:cf:4d:b0:73:e0:e8:d8:e0:a4:69:67:78:fc:3b:dd: 3e:7d:06:d7:aa:02:53:06:85:19:73:7a:5a:76:a0:86:a0:ac: 3f:54:83:ca:22:c0:62:0c:46:54:61:15:43:f4:8d:c0:4f:da: 97:ff:9e:25:3e:a1:10:0a:3e:3f:1a:20:3f:60:2d:c4:13:30: 82:0c:c8:09:1c:62:fe:f7:0f:4d:b9:a9:71:04:60:ff:09:73: ae:58:94:95:43:5b:5f:c1:21:bc:ce:ee:d0:29:72:c6:f4:37: e4:29:62:32:ec:b8:b8:b6:e4:87:d2:5e:07:94:03:12:c5:de: 20:c4:7e:8f:54:fb:9b:f1:5c:25:96:c2:ab:d5:a1:d7:35:c8: 83:9c:80:34:6f:71:dd:92:63:d2:e3:27:6e:54:6b:9c:12:9b: 39:28:d4:16:28:2c:47:87:e2:bb:e2:94:8b:86:66:ad:1b:6d: 58:1b:03:a9:4d:09:f2:6e:54:b5:a1:6e:4f:c0:17:e5:44:f1: 81:13:9a:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJCNjIxMTAvBgNVBAUTKEU2RjY1RDIyMUI1OTVGNkJBMTNFQjMxNERFRTMzOENB MjQxRTI3MjAwHhcNMjUxMTAzMDUyMjI2WhcNMjUxMTEwMDUyMjI2WjAYMRYwFAYD VQQDEw02OTA4M2MxMi0yZjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp2Aagcv1WRj8VCaY5+W7nyg/2GgE3yCHD0heM7sTkYczwwEHZyyf+Xmvds9x TQ+36UBk+RI8XlJI907AEW5SwYebu1i2Tep+jNJu1GC9YtZ7BuPcJdrprEZqbx+H L32D7pYuQB2wfsvIxONWsNn32GUOfXS9V8fyL+4WcdTlN/tfkB8ksf3izlv/Mfdi I0G1G+5CfkSbonFpYVMPSSXt4u1OE6c7ZXzxv7r85Oy61YLRa79QL1bLl+AufsfR ibKpG8TPJ6h2AWAgdSLRUbPwIVnczUuct96gke2hVDotaM+k+Ug4edO32wMpOd2v N5+qqHYKkEyUn7+deuAeDTm4IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLYAUgAa +1T1fTKrVm/fDxSxOGTVMB8GA1UdIwQYMBaAFOb2XSIbWV9roT6zFN7jOMokHicg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkI2Mi9CRDI5QjgxNjVB RTAxMUVGODY1MUI2MUJDNEY5QUUwMi81dlpkSWh0WlgydWhQck1VM3VNNHlpUWVK eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV2WmRJaHRaWDJ1aFByTVUzdU00eWlRZUp5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkI2Mi9CRDI5QjgxNjVBRTAxMUVGODY1MUI2MUJDNEY5QUUwMi81dlpkSWh0Wlgy dWhQck1VM3VNNHlpUWVKeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDOiYoK2JKimhZJEJ/xW7FqOT0DAV3U3gqv8Poe5uzJ96yXXcZHg+1r CqAEfPMgPwkaghh13KGrAYjPTbBz4OjY4KRpZ3j8O90+fQbXqgJTBoUZc3padqCG oKw/VIPKIsBiDEZUYRVD9I3AT9qX/54lPqEQCj4/GiA/YC3EEzCCDMgJHGL+9w9N ualxBGD/CXOuWJSVQ1tfwSG8zu7QKXLG9DfkKWIy7Li4tuSH0l4HlAMSxd4gxH6P VPub8VwllsKr1aHXNciDnIA0b3HdkmPS4yduVGucEps5KNQWKCxHh+K74pSLhmat G21YGwOpTQnyblS1oW5PwBflRPGBE5o4 -----END CERTIFICATE-----Generated at Tue Nov 4 02:15:01 2025 by rpki-client