$ rpki-client -vvf rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft File: 5HfTiqrEo3zG3xZlvxyICvmbe08.mft (raw, json) Hash identifier: lkZOUquDNm/xiObWpK/L2Zve2lNLE1b5QuVvkNqZx+o= Subject key identifier: 42:EB:C1:80:CB:4B:86:BC:B9:6C:AA:9E:C4:A8:3C:B7:C3:10:B4:98 Authority key identifier: E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F Certificate issuer: /CN=A91E504E/serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Certificate serial: 0412 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft Manifest number: 0404 Signing time: Mon 03 Nov 2025 00:26:04 +0000 Manifest this update: Mon 03 Nov 2025 00:26:03 +0000 Manifest next update: Mon 10 Nov 2025 00:26:03 +0000 Files and hashes: 1: 5HfTiqrEo3zG3xZlvxyICvmbe08.crl (hash: fCEh+wKYdJXCNsX1f8juK1teQrFbfzr/Vye21AFaYXY=) 2: 5F9FA12E0CA411ED96936D79C4F9AE02.roa (hash: 1kY42j3eWLAd8yp1AvznjQwJBoHaBnQrkaPK6EtSCdQ=) 3: 06820D08961011ECA540626AC4F9AE02.roa (hash: XbxtLk1+2CfWndcMlMOnwCxgbfEchquqUDJGfTWj61E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:26:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1042 (0x412) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E504E, serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Validity Not Before: Nov 3 00:26:03 2025 GMT Not After : Nov 10 00:26:03 2025 GMT Subject: CN=6907f69c-065a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:56:63:59:2c:88:c1:0e:b2:93:64:25:d7:63: f1:a6:7d:a1:f1:17:30:a1:fb:67:dd:a5:e4:df:07: 26:06:9d:b1:40:66:7c:52:2c:71:bd:0f:20:2a:9f: 58:eb:cd:74:20:5f:a8:6a:1d:e9:8d:89:c3:3e:42: 9e:79:8c:b9:13:2a:e6:de:b1:7f:fb:0a:e6:df:0e: 55:a3:d7:e8:f2:a0:73:1c:c1:a1:24:71:40:4c:b4: 76:1d:fa:04:2a:c1:1f:36:d2:3a:1e:28:9d:da:06: 3b:a4:e4:22:13:2a:38:fe:b7:95:85:4c:65:b8:92: fe:e6:f9:b2:1d:8e:51:40:d3:c7:92:28:3d:b6:aa: 10:d8:72:1b:f1:57:90:cf:f2:b2:4c:d7:19:ae:3b: 4b:07:3d:ba:28:63:2d:66:31:0f:cf:d3:85:21:9b: 7f:f4:d0:25:5e:90:96:3d:d9:36:65:13:ac:13:d1: ae:e3:f9:5a:e4:49:48:25:2d:a5:16:c5:e0:88:a6: 19:f8:9d:1f:46:0c:4a:28:2b:77:13:e6:2b:d6:96: 60:35:5a:a0:40:8c:2d:af:98:34:c9:6c:de:f4:2e: 6e:f4:b3:ad:a7:98:8d:c5:b1:ff:57:49:41:b9:9a: 68:25:cd:66:08:8d:88:de:e8:5e:b0:a6:47:9d:d5: c4:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:EB:C1:80:CB:4B:86:BC:B9:6C:AA:9E:C4:A8:3C:B7:C3:10:B4:98 X509v3 Authority Key Identifier: keyid:E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:a5:6e:de:70:8d:9a:92:ae:3b:ec:55:a9:bf:1c:e9:2c:be: dd:ea:37:e7:a9:36:e2:74:ca:2e:93:91:55:42:0b:23:06:49: db:18:fd:0c:df:4b:b6:cf:e8:3d:d5:24:7d:8a:52:f9:9d:34: 26:e1:ef:c2:f5:ce:2b:1f:89:49:60:3f:81:32:27:75:54:ea: 1a:7e:84:07:69:14:b4:e7:b2:86:ea:79:a4:f8:6e:98:36:4b: 6b:83:aa:7a:36:ce:9f:52:a2:ee:22:fa:e3:98:27:78:af:3c: 14:ea:eb:e4:fb:f9:eb:f3:87:70:25:14:e7:98:61:14:a3:54: 3a:52:da:67:44:8b:2c:6d:5e:62:94:0c:2d:30:83:f0:db:48: 71:6f:98:46:8e:21:06:76:e6:6f:2d:17:16:d4:71:ac:18:b7: f8:79:cf:00:71:5b:fd:a4:eb:e8:45:3a:d2:85:14:fc:bc:8d: 0c:bf:7e:fd:a6:cd:06:14:ed:27:fb:c6:1d:2f:48:b0:4c:3f: c2:6a:e7:05:b1:5a:0c:a2:ff:a8:22:00:4f:50:ac:83:93:9b: 7b:11:05:33:59:1c:0e:1d:26:28:ec:11:fe:52:fc:ff:de:11: 1d:55:b5:0c:7e:fc:3f:36:40:54:51:19:df:b1:d7:a7:6c:05: 90:a3:49:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUwNEUxMTAvBgNVBAUTKEU0NzdEMzhBQUFDNEEzN0NDNkRGMTY2NUJGMUM4ODBB Rjk5QjdCNEYwHhcNMjUxMTAzMDAyNjAzWhcNMjUxMTEwMDAyNjAzWjAYMRYwFAYD VQQDEw02OTA3ZjY5Yy0wNjVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnlZjWSyIwQ6yk2Ql12Pxpn2h8Rcwoftn3aXk3wcmBp2xQGZ8UixxvQ8gKp9Y 6810IF+oah3pjYnDPkKeeYy5Eyrm3rF/+wrm3w5Vo9fo8qBzHMGhJHFATLR2HfoE KsEfNtI6Hiid2gY7pOQiEyo4/reVhUxluJL+5vmyHY5RQNPHkig9tqoQ2HIb8VeQ z/KyTNcZrjtLBz26KGMtZjEPz9OFIZt/9NAlXpCWPdk2ZROsE9Gu4/la5ElIJS2l FsXgiKYZ+J0fRgxKKCt3E+Yr1pZgNVqgQIwtr5g0yWze9C5u9LOtp5iNxbH/V0lB uZpoJc1mCI2I3uhesKZHndXEVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFELrwYDL S4a8uWyqnsSoPLfDELSYMB8GA1UdIwQYMBaAFOR304qqxKN8xt8WZb8ciAr5m3tP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTA0RS80RTNFMzY3RTk2 MDgxMUVDQTA0QTAwODZDNEY5QUUwMi81SGZUaXFyRW8zekczeFpsdnh5SUN2bWJl MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVIZlRpcXJFbzN6RzN4Wmx2eHlJQ3ZtYmUwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTA0RS80RTNFMzY3RTk2MDgxMUVDQTA0QTAwODZDNEY5QUUwMi81SGZUaXFyRW8z ekczeFpsdnh5SUN2bWJlMDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRpW7ecI2akq477FWpvxzpLL7d6jfnqTbidMouk5FVQgsjBknbGP0M 30u2z+g91SR9ilL5nTQm4e/C9c4rH4lJYD+BMid1VOoafoQHaRS057KG6nmk+G6Y Nktrg6p6Ns6fUqLuIvrjmCd4rzwU6uvk+/nr84dwJRTnmGEUo1Q6UtpnRIssbV5i lAwtMIPw20hxb5hGjiEGduZvLRcW1HGsGLf4ec8AcVv9pOvoRTrShRT8vI0Mv379 ps0GFO0n+8YdL0iwTD/CaucFsVoMov+oIgBPUKyDk5t7EQUzWRwOHSYo7BH+Uvz/ 3hEdVbUMfvw/NkBUURnfsdenbAWQo0k4 -----END CERTIFICATE-----Generated at Tue Nov 4 21:35:29 2025 by rpki-client