$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft File: 5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft (raw, json) Hash identifier: BC5TA5x4H/bCM3nS8nO5pJ//ZQrpYgf2ooGkrVHafxM= Subject key identifier: 0D:43:A6:98:F7:81:10:03:35:CB:E5:38:25:7A:47:CC:D0:08:AF:9F Authority key identifier: E5:B1:CE:1D:45:39:18:19:5B:EB:5C:D9:0F:6D:87:9E:FE:99:10:A2 Certificate issuer: /CN=A91DE5E8/serialNumber=E5B1CE1D453918195BEB5CD90F6D879EFE9910A2 Certificate serial: 0208 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft Manifest number: 0202 Signing time: Mon 03 Nov 2025 02:20:09 +0000 Manifest this update: Mon 03 Nov 2025 02:20:09 +0000 Manifest next update: Mon 10 Nov 2025 02:20:09 +0000 Files and hashes: 1: 5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl (hash: RI7VsdJmlCwpcw90FFN3dG9a6Kgr4mDnTnV9O5hUNgo=) 2: 785B44D6F2AF11EF97443030C4F9AE02.roa (hash: 3X8JQRJ56NXF/A25OQxe1Q8xkJiOt4/FMaPtZ+BwKik=) 3: B264EB66A30911ED99A82087C4F9AE02.roa (hash: tZEzhiKfHDteKh17cCbwci/tZYnVymPaW90yd5ZJ1q4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:20:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 520 (0x208) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE5E8, serialNumber=E5B1CE1D453918195BEB5CD90F6D879EFE9910A2 Validity Not Before: Nov 3 02:20:09 2025 GMT Not After : Nov 10 02:20:09 2025 GMT Subject: CN=69081159-4820 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:26:22:60:bf:51:2c:22:6d:6c:12:91:98:54: e9:bc:3e:41:ed:ac:e8:57:aa:48:32:70:be:ce:8f: 99:76:a9:54:84:de:c9:ee:f9:78:61:40:46:80:21: 36:a4:b9:b3:fa:78:a9:51:9b:70:33:85:8b:3b:9f: f1:bb:ca:48:5e:f8:b1:98:fe:fb:ab:56:1e:8b:93: b5:0e:b0:99:18:55:31:d9:21:b0:7d:8c:09:8a:d2: 53:e9:7d:6f:49:d5:7e:1b:bb:89:ef:62:9c:42:ff: 34:69:a7:90:de:e5:cc:c3:af:f8:f2:72:8f:6e:e6: cb:d5:63:00:95:c0:97:a6:f6:81:8d:79:f5:cb:bd: 9a:8a:d1:0b:ef:8f:59:b7:11:6d:11:9e:ca:7a:92: 09:ae:66:d4:5c:37:da:fa:c4:5e:1b:8f:01:c4:bd: 5c:8a:ab:2c:5b:a7:fa:49:c2:ba:6d:11:77:01:35: 93:ca:64:37:0b:67:8a:c6:0c:2b:cf:3f:42:6b:a7: aa:fc:97:76:7e:49:82:0d:1d:c3:e8:88:65:ad:56: 9b:6f:dd:32:67:ae:8c:f6:ab:66:de:e8:87:a6:9f: 17:51:23:51:14:49:07:b5:93:07:1e:69:ac:3f:6f: 1f:e7:2d:6c:84:e8:e3:3d:c1:75:dc:e4:3a:c2:60: cd:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:43:A6:98:F7:81:10:03:35:CB:E5:38:25:7A:47:CC:D0:08:AF:9F X509v3 Authority Key Identifier: keyid:E5:B1:CE:1D:45:39:18:19:5B:EB:5C:D9:0F:6D:87:9E:FE:99:10:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:5b:ca:80:f6:0b:fb:21:36:be:1a:d7:fe:8f:ba:36:e7:e1: d5:30:b5:3e:4d:96:b8:99:74:21:1a:04:fb:7c:c6:9c:3d:ea: 95:b8:d5:54:05:69:59:28:59:be:98:df:06:e8:b3:02:84:3b: 10:54:b6:03:8a:a6:9a:3c:7d:a7:4d:23:5a:7f:e4:69:30:5e: eb:5e:e8:74:e9:ea:05:21:c9:ca:a0:fe:8c:c9:24:12:1d:e9: ca:c9:ae:8c:65:76:de:16:bf:c6:3a:d2:6e:14:c3:ff:70:74: 74:f0:cd:97:90:9a:65:ef:f6:5d:0d:36:9f:9d:f6:2f:e4:8d: 86:6b:df:d0:2e:60:48:3b:23:2a:74:69:a5:61:5a:23:88:87: e0:0d:98:01:93:59:04:9d:03:0d:54:7b:b9:c0:0a:c8:b2:51: f1:a4:42:cf:24:a9:09:4f:7d:7f:00:6a:8b:d2:cc:eb:29:af: 03:0c:a7:ee:86:91:08:62:4f:4b:a6:2a:af:d5:98:92:7a:50: 71:51:da:ba:31:5a:41:9a:a0:d7:01:0f:65:4c:81:13:96:57: ae:2a:20:e6:09:19:ad:dc:bb:4d:b2:e8:dd:c2:27:0e:a2:4e: 15:3d:09:90:8e:1d:1f:2f:96:4d:26:d3:e5:bd:5b:39:27:b5: b9:a6:b4:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAggwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU1RTgxMTAvBgNVBAUTKEU1QjFDRTFENDUzOTE4MTk1QkVCNUNEOTBGNkQ4NzlF RkU5OTEwQTIwHhcNMjUxMTAzMDIyMDA5WhcNMjUxMTEwMDIyMDA5WjAYMRYwFAYD VQQDEw02OTA4MTE1OS00ODIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqiYiYL9RLCJtbBKRmFTpvD5B7azoV6pIMnC+zo+ZdqlUhN7J7vl4YUBGgCE2 pLmz+nipUZtwM4WLO5/xu8pIXvixmP77q1Yei5O1DrCZGFUx2SGwfYwJitJT6X1v SdV+G7uJ72KcQv80aaeQ3uXMw6/48nKPbubL1WMAlcCXpvaBjXn1y72aitEL749Z txFtEZ7KepIJrmbUXDfa+sReG48BxL1ciqssW6f6ScK6bRF3ATWTymQ3C2eKxgwr zz9Ca6eq/Jd2fkmCDR3D6IhlrVabb90yZ66M9qtm3uiHpp8XUSNRFEkHtZMHHmms P28f5y1shOjjPcF13OQ6wmDN6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA1Dppj3 gRADNcvlOCV6R8zQCK+fMB8GA1UdIwQYMBaAFOWxzh1FORgZW+tc2Q9th57+mRCi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTVFOC9FOUUxQkYyOEEz MDUxMUVEQUMxNEVFNkNDNEY5QUUwMi81YkhPSFVVNUdCbGI2MXpaRDIySG52NlpF S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzViSE9IVVU1R0JsYjYxelpEMjJIbnY2WkVLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTVFOC9FOUUxQkYyOEEzMDUxMUVEQUMxNEVFNkNDNEY5QUUwMi81YkhPSFVVNUdC bGI2MXpaRDIySG52NlpFS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7W8qA9gv7ITa+Gtf+j7o25+HVMLU+TZa4mXQhGgT7fMacPeqVuNVU BWlZKFm+mN8G6LMChDsQVLYDiqaaPH2nTSNaf+RpMF7rXuh06eoFIcnKoP6MySQS HenKya6MZXbeFr/GOtJuFMP/cHR08M2XkJpl7/ZdDTafnfYv5I2Ga9/QLmBIOyMq dGmlYVojiIfgDZgBk1kEnQMNVHu5wArIslHxpELPJKkJT31/AGqL0szrKa8DDKfu hpEIYk9Lpiqv1ZiSelBxUdq6MVpBmqDXAQ9lTIETlleuKiDmCRmt3LtNsujdwicO ok4VPQmQjh0fL5ZNJtPlvVs5J7W5prQc -----END CERTIFICATE-----Generated at Tue Nov 4 19:04:23 2025 by rpki-client