$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.mft File: 5JdLhBatO5ndEfOwQFbwx5m3ocs.mft (raw, json) Hash identifier: Trw89XGX+IHQm+nz0zOf2KF3ehK0ajG7fbvT9GbMnQo= Subject key identifier: B3:30:2F:E1:19:9E:40:69:8A:5A:47:1A:60:96:B8:8D:D9:16:0E:5A Authority key identifier: E4:97:4B:84:16:AD:3B:99:DD:11:F3:B0:40:56:F0:C7:99:B7:A1:CB Certificate issuer: /CN=A91D9CA8/serialNumber=E4974B8416AD3B99DD11F3B04056F0C799B7A1CB Certificate serial: 8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5JdLhBatO5ndEfOwQFbwx5m3ocs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.mft Manifest number: 8A Signing time: Wed 05 Nov 2025 06:45:41 +0000 Manifest this update: Wed 05 Nov 2025 06:45:41 +0000 Manifest next update: Wed 12 Nov 2025 06:45:41 +0000 Files and hashes: 1: 5JdLhBatO5ndEfOwQFbwx5m3ocs.crl (hash: oz8wAtk31OOznerHyG5bPw2KCl4JF3cu8VcJIPmg3Ik=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.crl rsync://rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5JdLhBatO5ndEfOwQFbwx5m3ocs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:45:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CA8, serialNumber=E4974B8416AD3B99DD11F3B04056F0C799B7A1CB Validity Not Before: Nov 5 06:45:41 2025 GMT Not After : Nov 12 06:45:41 2025 GMT Subject: CN=690af295-0a16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a6:8c:25:40:23:f0:2b:0b:1d:3f:93:79:9d: fa:85:29:88:39:1c:c0:fc:2b:3e:8f:7d:6d:15:be: f2:40:bd:9c:60:9a:85:dd:21:33:68:2b:ac:52:71: 9f:0e:ec:5f:c2:33:6e:9b:e4:33:bf:2f:09:5d:61: 4a:87:be:1a:07:27:c3:ed:92:61:d3:ea:b4:ce:ab: 58:51:8c:f5:94:49:b9:df:0b:7a:90:03:a6:6e:80: de:7d:cb:4f:8c:39:6e:5f:3e:9c:9b:d5:80:45:a0: 26:b6:06:c8:3b:6b:a6:2b:88:98:c8:ab:36:dc:d2: c8:89:1f:8e:fd:19:0f:c2:3c:ff:8c:08:03:2c:df: e5:e5:25:c8:08:64:08:4b:67:53:07:f0:f5:bc:e9: 85:24:f1:97:3a:6a:5f:28:35:85:c2:ec:4a:ed:41: 5d:ef:69:6f:2c:72:6d:76:21:9f:03:08:0b:35:04: cc:63:e6:5e:2a:72:96:20:69:92:2d:51:19:f0:fe: 10:ad:8e:1d:d0:a7:06:28:5c:cc:d3:d4:e5:f7:74: fd:4c:00:b8:67:6e:65:b8:b5:ba:bb:da:6f:88:5a: 44:2d:96:96:bd:5b:25:0a:d1:e5:7e:95:3b:83:31: 19:59:c8:42:a7:24:c2:65:9d:9b:60:27:16:77:df: b7:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:30:2F:E1:19:9E:40:69:8A:5A:47:1A:60:96:B8:8D:D9:16:0E:5A X509v3 Authority Key Identifier: keyid:E4:97:4B:84:16:AD:3B:99:DD:11:F3:B0:40:56:F0:C7:99:B7:A1:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5JdLhBatO5ndEfOwQFbwx5m3ocs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/2932C588E4FD11EFAC1CE67FC4F9AE02/5JdLhBatO5ndEfOwQFbwx5m3ocs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:0a:67:ab:1c:8b:70:40:53:c0:03:35:9c:55:8a:84:9b:a7: cf:41:64:55:30:0c:17:7e:e4:cf:e3:63:da:e6:49:8c:cf:fa: 15:07:85:7a:32:8e:81:cc:ed:1a:73:cd:fd:f0:3b:66:62:85: 93:f5:d0:b0:44:0e:c7:cd:88:fe:0d:06:93:94:90:28:7a:45: 18:61:24:2c:c4:b2:cf:09:d0:43:2d:a6:73:2a:0b:86:4b:82: ab:ee:20:03:6c:18:71:f8:3b:14:24:62:ef:17:82:f5:9c:af: b9:0f:b8:e2:a8:1e:16:54:13:23:bf:7e:1c:03:75:83:6f:7c: f6:c2:f9:e6:6b:70:1d:cf:09:fd:e6:b0:1c:f6:63:c3:29:64: 81:f2:70:2a:cd:ec:f3:6a:83:ef:f3:4d:ec:fd:03:2d:3b:51: 0e:f4:43:24:de:ea:2d:75:cb:6a:96:55:09:d1:da:89:6a:0a: d7:a5:1f:90:bb:e9:d8:9e:15:26:3e:cc:d8:8e:b7:c6:d8:e6: 25:e2:a4:94:50:f2:8d:b3:c6:8a:90:38:17:b6:cb:e4:2f:96: 28:40:54:e6:69:79:63:99:9b:1f:15:49:08:80:b6:c7:1e:04: 3c:e3:d7:a7:38:28:ec:9e:e0:e5:32:8d:eb:b9:d4:21:83:12: b6:71:44:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlDQTgxMTAvBgNVBAUTKEU0OTc0Qjg0MTZBRDNCOTlERDExRjNCMDQwNTZGMEM3 OTlCN0ExQ0IwHhcNMjUxMTA1MDY0NTQxWhcNMjUxMTEyMDY0NTQxWjAYMRYwFAYD VQQDEw02OTBhZjI5NS0wYTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0qaMJUAj8CsLHT+TeZ36hSmIORzA/Cs+j31tFb7yQL2cYJqF3SEzaCusUnGf DuxfwjNum+Qzvy8JXWFKh74aByfD7ZJh0+q0zqtYUYz1lEm53wt6kAOmboDefctP jDluXz6cm9WARaAmtgbIO2umK4iYyKs23NLIiR+O/RkPwjz/jAgDLN/l5SXICGQI S2dTB/D1vOmFJPGXOmpfKDWFwuxK7UFd72lvLHJtdiGfAwgLNQTMY+ZeKnKWIGmS LVEZ8P4QrY4d0KcGKFzM09Tl93T9TAC4Z25luLW6u9pviFpELZaWvVslCtHlfpU7 gzEZWchCpyTCZZ2bYCcWd9+3dwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLMwL+EZ nkBpilpHGmCWuI3ZFg5aMB8GA1UdIwQYMBaAFOSXS4QWrTuZ3RHzsEBW8MeZt6HL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUNBOC8yOTMyQzU4OEU0 RkQxMUVGQUMxQ0U2N0ZDNEY5QUUwMi81SmRMaEJhdE81bmRFZk93UUZid3g1bTNv Y3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVKZExoQmF0TzVuZEVmT3dRRmJ3eDVtM29jcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUNBOC8yOTMyQzU4OEU0RkQxMUVGQUMxQ0U2N0ZDNEY5QUUwMi81SmRMaEJhdE81 bmRFZk93UUZid3g1bTNvY3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHCmerHItwQFPAAzWcVYqEm6fPQWRVMAwXfuTP42Pa5kmMz/oVB4V6 Mo6BzO0ac8398DtmYoWT9dCwRA7HzYj+DQaTlJAoekUYYSQsxLLPCdBDLaZzKguG S4Kr7iADbBhx+DsUJGLvF4L1nK+5D7jiqB4WVBMjv34cA3WDb3z2wvnma3Adzwn9 5rAc9mPDKWSB8nAqzezzaoPv803s/QMtO1EO9EMk3uotdctqllUJ0dqJagrXpR+Q u+nYnhUmPszYjrfG2OYl4qSUUPKNs8aKkDgXtsvkL5YoQFTmaXljmZsfFUkIgLbH HgQ849enOCjsnuDlMo3rudQhgxK2cURn -----END CERTIFICATE-----Generated at Wed Nov 5 10:04:18 2025 by rpki-client