$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.mft File: 5xqfIU6Aybw7LSOf-LmqtxP27bc.mft (raw, json) Hash identifier: PWyemLNkM3SWMqEzmhpe3pAjWCExYD14r8Y/Z48odv0= Subject key identifier: EC:B8:6F:32:05:E6:17:2C:FF:DA:8C:A0:E0:85:B0:65:3D:DA:F0:47 Authority key identifier: E7:1A:9F:21:4E:80:C9:BC:3B:2D:23:9F:F8:B9:AA:B7:13:F6:ED:B7 Certificate issuer: /CN=A91E8525/serialNumber=E71A9F214E80C9BC3B2D239FF8B9AAB713F6EDB7 Certificate serial: 1A25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5xqfIU6Aybw7LSOf-LmqtxP27bc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.mft Manifest number: 1A12 Signing time: Sun 02 Nov 2025 16:22:40 +0000 Manifest this update: Sun 02 Nov 2025 16:22:40 +0000 Manifest next update: Sun 09 Nov 2025 16:22:40 +0000 Files and hashes: 1: 5xqfIU6Aybw7LSOf-LmqtxP27bc.crl (hash: iR7hsbDbuTBhAPU1dDOBQatWt37wNdJ4kaqMrjxwp1c=) 2: 3A21C144E51211EBB1225278C4F9AE02.roa (hash: nW5GBU8+whiRwJPpyl+4Uvg+meP7sM49SIVv5JyITRM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.crl rsync://rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5xqfIU6Aybw7LSOf-LmqtxP27bc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6693 (0x1a25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8525, serialNumber=E71A9F214E80C9BC3B2D239FF8B9AAB713F6EDB7 Validity Not Before: Nov 2 16:22:40 2025 GMT Not After : Nov 9 16:22:40 2025 GMT Subject: CN=69078550-3919 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:d2:3e:22:2e:e4:89:86:e1:bd:88:d9:71:aa: 5b:20:1c:b5:f1:0e:a7:c1:a9:31:ce:47:77:d5:7c: a5:b8:c2:81:cf:6b:57:42:da:bc:20:2e:69:e9:e7: 56:55:aa:af:41:36:e8:95:25:0f:7d:87:da:cc:5e: c1:e7:e6:0a:06:57:4e:39:54:b8:2a:b8:69:b7:64: 9b:eb:39:22:91:cd:78:17:48:31:6d:89:ea:7f:01: 62:2a:4d:7b:dd:3f:16:e0:aa:0a:c0:2e:f2:b8:36: 87:bf:eb:b6:6e:e2:0d:fc:1a:38:32:b7:fd:96:fe: 41:42:fa:6c:8e:d1:eb:0b:c3:76:5f:9b:8d:c0:cb: af:46:19:27:31:e7:dd:47:e1:6f:3d:eb:91:44:8f: 05:09:dc:79:8a:64:1c:30:b8:56:50:4c:42:85:85: 1e:77:bc:b2:26:41:c5:77:1d:a8:a1:87:d1:ac:f0: fd:18:9e:93:37:37:0d:69:50:77:39:36:e3:19:6c: 63:cb:64:21:96:95:f5:56:8c:c5:c7:70:01:05:39: d2:a9:fa:d7:2f:7f:dc:65:a6:9b:ce:2d:ef:35:61: e3:0f:f6:0a:74:8a:e9:61:ee:6d:c8:5f:9d:12:b8: 52:66:73:5e:7b:6e:9b:5a:01:02:e5:7d:d5:ba:b5: 53:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:B8:6F:32:05:E6:17:2C:FF:DA:8C:A0:E0:85:B0:65:3D:DA:F0:47 X509v3 Authority Key Identifier: keyid:E7:1A:9F:21:4E:80:C9:BC:3B:2D:23:9F:F8:B9:AA:B7:13:F6:ED:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5xqfIU6Aybw7LSOf-LmqtxP27bc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8525/52212610612F11E7BD2EDA0BC4F9AE02/5xqfIU6Aybw7LSOf-LmqtxP27bc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:d9:0e:63:14:cc:25:68:1b:8d:23:cf:cf:5b:97:d5:c1:be: 38:2c:5c:9b:c0:11:89:e6:af:1b:00:99:29:55:e8:dc:a2:48: 24:7e:3f:35:30:65:30:77:2a:d1:0f:5a:1f:88:2f:2b:24:7e: 09:25:a5:f2:97:57:ff:a8:fe:b5:be:a4:b7:5e:1e:cd:d3:e4: cd:a6:bd:8c:c6:b1:08:8c:4a:f0:c3:56:96:26:4e:14:2b:30: 19:cc:69:fa:0b:2d:68:c2:b1:04:f9:8b:dd:1e:c2:ae:e9:34: 11:7b:1f:df:13:37:30:2c:10:20:d0:e9:27:2b:58:5c:5e:0c: 45:7f:81:9f:0c:d8:3b:23:8e:49:04:c2:78:6b:18:a9:cd:35: d2:f4:37:9b:e5:a0:ed:be:6c:d8:a3:e9:78:47:94:d5:99:e5: c0:a7:36:7e:e2:64:c6:c4:d2:87:9a:4e:bc:9c:ef:3c:5b:b0: 4e:c2:00:30:f7:a2:67:1c:2b:77:3a:60:88:01:70:4d:90:1c: 78:31:c1:5b:b0:7c:06:3b:8a:98:43:33:80:62:45:fd:1f:cc: 25:8a:e7:69:12:6b:46:8e:76:6b:7a:00:76:e1:fd:2d:38:08: a2:76:21:05:56:56:b3:b0:7d:19:65:bc:b6:24:e8:3e:a0:0d: ad:15:7b:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg1MjUxMTAvBgNVBAUTKEU3MUE5RjIxNEU4MEM5QkMzQjJEMjM5RkY4QjlBQUI3 MTNGNkVEQjcwHhcNMjUxMTAyMTYyMjQwWhcNMjUxMTA5MTYyMjQwWjAYMRYwFAYD VQQDEw02OTA3ODU1MC0zOTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7NI+Ii7kiYbhvYjZcapbIBy18Q6nwakxzkd31XyluMKBz2tXQtq8IC5p6edW VaqvQTbolSUPfYfazF7B5+YKBldOOVS4Krhpt2Sb6zkikc14F0gxbYnqfwFiKk17 3T8W4KoKwC7yuDaHv+u2buIN/Bo4Mrf9lv5BQvpsjtHrC8N2X5uNwMuvRhknMefd R+FvPeuRRI8FCdx5imQcMLhWUExChYUed7yyJkHFdx2ooYfRrPD9GJ6TNzcNaVB3 OTbjGWxjy2QhlpX1VozFx3ABBTnSqfrXL3/cZaabzi3vNWHjD/YKdIrpYe5tyF+d ErhSZnNee26bWgEC5X3VurVTJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOy4bzIF 5hcs/9qMoOCFsGU92vBHMB8GA1UdIwQYMBaAFOcanyFOgMm8Oy0jn/i5qrcT9u23 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODUyNS81MjIxMjYxMDYx MkYxMUU3QkQyRURBMEJDNEY5QUUwMi81eHFmSVU2QXlidzdMU09mLUxtcXR4UDI3 YmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV4cWZJVTZBeWJ3N0xTT2YtTG1xdHhQMjdiYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODUyNS81MjIxMjYxMDYxMkYxMUU3QkQyRURBMEJDNEY5QUUwMi81eHFmSVU2QXli dzdMU09mLUxtcXR4UDI3YmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBc2Q5jFMwlaBuNI8/PW5fVwb44LFybwBGJ5q8bAJkpVejcokgkfj81 MGUwdyrRD1ofiC8rJH4JJaXyl1f/qP61vqS3Xh7N0+TNpr2MxrEIjErww1aWJk4U KzAZzGn6Cy1owrEE+YvdHsKu6TQRex/fEzcwLBAg0OknK1hcXgxFf4GfDNg7I45J BMJ4axipzTXS9Deb5aDtvmzYo+l4R5TVmeXApzZ+4mTGxNKHmk68nO88W7BOwgAw 96JnHCt3OmCIAXBNkBx4McFbsHwGO4qYQzOAYkX9H8wliudpEmtGjnZregB24f0t OAiidiEFVlazsH0ZZby2JOg+oA2tFXvJ -----END CERTIFICATE-----Generated at Tue Nov 4 02:15:10 2025 by rpki-client