$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft File: sBO5crQspa2fahYr87XHT5M8HgU.mft (raw, json) Hash identifier: eWV6h3st9Y9uurOYAhAAdkm8ut1765gloLDCrbsqYG4= Subject key identifier: 45:18:C5:32:8F:EF:D8:8C:A7:A2:3B:6B:6A:37:C3:26:98:F6:53:F9 Authority key identifier: B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 Certificate issuer: /CN=A91E2B66/serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Certificate serial: 05DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft Manifest number: 05D1 Signing time: Tue 04 Nov 2025 23:07:38 +0000 Manifest this update: Tue 04 Nov 2025 23:07:38 +0000 Manifest next update: Tue 11 Nov 2025 23:07:38 +0000 Files and hashes: 1: sBO5crQspa2fahYr87XHT5M8HgU.crl (hash: 9nDnRrYFaBrh+LbCkA0SQLCZ45sQpRuEE41TboOgdjA=) 2: 5334D20CDA5E11EBA323F462C4F9AE02.roa (hash: grIWyyq0MDFCb7a6KfrpTu3LAH64VdoYs4KvoLwKfQg=) 3: 53AD6F32DA5E11EBA323F462C4F9AE02.roa (hash: /1rRME/YWECCYt6toeN715tq9fDj34iC1+mJGA+LM6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:07:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1499 (0x5db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2B66, serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Validity Not Before: Nov 4 23:07:38 2025 GMT Not After : Nov 11 23:07:38 2025 GMT Subject: CN=690a873a-be1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b4:bd:82:ee:e9:90:6c:d3:55:c5:29:74:dc: e3:a6:fe:5f:bf:aa:bc:bc:a5:15:58:cb:ff:6f:31: 43:a4:66:bc:1b:0e:e7:94:a0:ae:30:24:7e:37:33: e5:ea:99:ee:1f:d6:77:aa:c4:95:fc:39:25:4b:6b: a1:04:30:5d:db:e4:2a:43:29:fb:b6:b4:e1:5c:78: 71:0a:d8:7d:f6:aa:db:a4:72:1b:9c:15:32:e4:37: 40:3f:13:69:42:d6:60:ec:10:eb:7a:5f:9a:ac:ab: 19:cc:aa:e1:79:86:77:57:23:7b:14:09:0b:a2:96: 10:d0:d6:cb:56:87:0c:37:31:e1:1c:8f:59:8e:c0: 8c:d0:d7:55:9d:7e:a3:30:b3:3a:0e:76:13:88:70: 9b:23:47:6a:d4:86:28:fb:47:85:a2:9d:13:c6:1c: 45:93:08:4d:c9:98:78:96:43:d7:5c:e0:79:1b:ee: 78:a1:56:9d:8c:a6:28:69:0c:31:f3:45:4e:2d:c5: 2d:73:d1:69:11:9f:bf:a0:ef:66:45:61:37:5c:8c: d7:86:37:dc:af:76:14:e8:d5:9a:ab:18:1f:1a:8c: bf:1b:06:ab:fb:60:4b:51:18:e7:0b:ed:59:61:15: 94:bf:ba:3b:ac:5a:5f:98:fc:00:3f:b7:c7:f5:42: d0:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:18:C5:32:8F:EF:D8:8C:A7:A2:3B:6B:6A:37:C3:26:98:F6:53:F9 X509v3 Authority Key Identifier: keyid:B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:b6:65:11:d8:a0:ea:4d:c4:dc:4c:40:a0:23:3b:86:91:ca: a5:b0:73:be:72:41:5a:95:a9:dd:1c:80:cd:e6:1d:b4:fa:cf: 63:a5:f3:67:da:10:bd:e8:31:71:c8:73:32:fd:66:bc:46:96: 6b:29:38:59:69:82:8b:da:47:48:90:d5:02:3e:b2:84:40:f7: 5b:d5:c2:bb:78:a1:85:22:a5:4c:6e:05:b6:45:29:b2:41:fb: 35:9e:24:ef:f5:95:e3:71:42:58:9d:2c:0d:d4:b6:73:95:23: 1c:a7:57:a9:c3:82:27:86:1c:51:b5:80:e5:40:f0:a5:b2:3a: fd:de:0b:d6:6e:cf:20:33:97:06:ab:53:96:7e:fb:f2:e0:90: 3d:3d:5f:a3:32:d9:5b:bd:d6:4d:8d:82:86:aa:77:d4:70:25: df:43:3a:3f:81:8a:ee:9a:8f:4a:82:2e:ad:f4:7d:a6:fa:64: 1f:09:57:60:89:cf:b3:d7:58:b8:5a:ea:9c:be:1b:ff:80:ac: 2c:d8:58:e9:98:91:0a:61:3e:bf:f2:a2:72:ef:7b:d1:9a:44: 57:65:1d:25:52:a1:ce:72:ca:ca:3f:c7:df:66:9e:6c:45:51: 44:0b:c9:b6:c9:87:93:db:1c:fa:d6:d2:d6:e8:ff:78:d8:60: 77:62:3c:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJCNjYxMTAvBgNVBAUTKEIwMTNCOTcyQjQyQ0E1QUQ5RjZBMTYyQkYzQjVDNzRG OTMzQzFFMDUwHhcNMjUxMTA0MjMwNzM4WhcNMjUxMTExMjMwNzM4WjAYMRYwFAYD VQQDEw02OTBhODczYS1iZTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs7S9gu7pkGzTVcUpdNzjpv5fv6q8vKUVWMv/bzFDpGa8Gw7nlKCuMCR+NzPl 6pnuH9Z3qsSV/DklS2uhBDBd2+QqQyn7trThXHhxCth99qrbpHIbnBUy5DdAPxNp QtZg7BDrel+arKsZzKrheYZ3VyN7FAkLopYQ0NbLVocMNzHhHI9ZjsCM0NdVnX6j MLM6DnYTiHCbI0dq1IYo+0eFop0TxhxFkwhNyZh4lkPXXOB5G+54oVadjKYoaQwx 80VOLcUtc9FpEZ+/oO9mRWE3XIzXhjfcr3YU6NWaqxgfGoy/Gwar+2BLURjnC+1Z YRWUv7o7rFpfmPwAP7fH9ULQvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEUYxTKP 79iMp6I7a2o3wyaY9lP5MB8GA1UdIwQYMBaAFLATuXK0LKWtn2oWK/O1x0+TPB4F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkI2Ni81M0U4RkJFQURB NUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3BhMmZhaFlyODdYSFQ1TThI Z1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NCTzVjclFzcGEyZmFoWXI4N1hIVDVNOEhnVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkI2Ni81M0U4RkJFQURBNUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3Bh MmZhaFlyODdYSFQ1TThIZ1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCltmUR2KDqTcTcTECgIzuGkcqlsHO+ckFalandHIDN5h20+s9jpfNn 2hC96DFxyHMy/Wa8RpZrKThZaYKL2kdIkNUCPrKEQPdb1cK7eKGFIqVMbgW2RSmy Qfs1niTv9ZXjcUJYnSwN1LZzlSMcp1epw4InhhxRtYDlQPClsjr93gvWbs8gM5cG q1OWfvvy4JA9PV+jMtlbvdZNjYKGqnfUcCXfQzo/gYrumo9Kgi6t9H2m+mQfCVdg ic+z11i4Wuqcvhv/gKws2FjpmJEKYT6/8qJy73vRmkRXZR0lUqHOcsrKP8ffZp5s RVFEC8m2yYeT2xz61tLW6P942GB3Yjx8 -----END CERTIFICATE-----Generated at Wed Nov 5 10:25:56 2025 by rpki-client