$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft File: K5XY2CKKiRR9gBk9l3DrUK7du2s.mft (raw, json) Hash identifier: 1Km1ikwr6sGIeMxtQXGyPCxfpThUh5D7vLbQ/BuqhKg= Subject key identifier: 00:FE:ED:3A:AD:CC:CF:F8:D3:F9:AC:D3:25:0F:89:F7:EA:15:6D:2A Authority key identifier: 2B:95:D8:D8:22:8A:89:14:7D:80:19:3D:97:70:EB:50:AE:DD:BB:6B Certificate issuer: /CN=A91FF5A9/serialNumber=2B95D8D8228A89147D80193D9770EB50AEDDBB6B Certificate serial: 1711 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft Manifest number: 16F8 Signing time: Sun 02 Nov 2025 16:37:34 +0000 Manifest this update: Sun 02 Nov 2025 16:37:34 +0000 Manifest next update: Sun 09 Nov 2025 16:37:34 +0000 Files and hashes: 1: K5XY2CKKiRR9gBk9l3DrUK7du2s.crl (hash: 5sM5seK4D0MA9dHIhBa8QOzThYn0UeZYdnikNZcIi08=) 2: 07D665E0862711EBAC147872C4F9AE02.roa (hash: h1jWRhCaXCGscugt7m7NPkJTh1NUHltfWypGJXiPwZw=) 3: F9E21144D90F11EDB2DBEA49C4F9AE02.roa (hash: fP45NGSHNvdQShMBiD1rePe2Esz9p+VlDQo2vfi2cz0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.crl rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:37:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5905 (0x1711) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5A9, serialNumber=2B95D8D8228A89147D80193D9770EB50AEDDBB6B Validity Not Before: Nov 2 16:37:34 2025 GMT Not After : Nov 9 16:37:34 2025 GMT Subject: CN=690788ce-c89f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c4:08:2f:37:47:6a:a7:de:a5:b5:b1:14:11: b7:52:6b:94:16:5b:c0:b7:79:87:07:77:ec:46:89: 43:dd:01:33:16:6a:50:19:80:c0:20:d9:cb:42:ec: 1c:6c:60:1c:84:98:7e:7a:00:21:91:93:6a:b1:e1: 8c:29:01:5a:6d:ef:c5:62:0a:ba:8f:f0:8a:bb:bd: b4:a2:83:89:8e:4a:b7:0b:91:16:5e:8d:ad:aa:2d: fd:0c:94:56:ff:58:6b:24:86:6a:37:7e:e3:09:c2: cc:31:7a:98:4c:78:eb:ab:64:8c:db:f4:1f:fa:79: 9a:cf:09:2f:75:b0:ae:3a:4f:d8:8a:bd:7b:db:d6: 90:a4:10:5a:cb:a7:00:2f:b8:46:e4:b0:49:91:05: cc:9d:20:a1:8d:dc:4a:d7:19:e7:7e:8c:d5:d1:8f: d0:51:54:8a:ee:33:c8:29:20:8e:b1:b5:fe:34:b4: f9:4a:4b:a4:e4:51:d3:7e:7b:6a:f9:2c:a7:6f:0b: 4f:c0:74:c3:dc:3b:b8:85:39:e7:27:ce:6e:c1:25: 75:b7:78:a3:56:b9:d7:27:31:04:3a:9c:69:a2:2c: ac:73:b9:c2:75:80:10:75:55:b8:18:45:e2:d0:e2: 4f:e0:ef:53:39:e5:ad:77:65:ae:0d:7f:0e:52:f4: 7d:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:FE:ED:3A:AD:CC:CF:F8:D3:F9:AC:D3:25:0F:89:F7:EA:15:6D:2A X509v3 Authority Key Identifier: keyid:2B:95:D8:D8:22:8A:89:14:7D:80:19:3D:97:70:EB:50:AE:DD:BB:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:fa:22:12:fe:3c:81:c7:e0:b8:f4:15:50:08:7c:f1:a7:89: a1:a0:5a:7c:1e:83:8a:33:f0:06:11:ef:1b:2a:c9:a1:3e:06: dc:91:9c:b4:cd:e7:ef:f8:cb:11:c6:4a:1f:49:5a:75:78:d6: 7d:0e:e7:d9:36:c7:71:c3:ca:bb:00:4f:53:fb:65:8a:6a:1b: 04:f3:c4:96:72:95:64:5d:41:00:34:34:b6:0d:e3:ee:ef:46: 2b:19:5d:d1:36:01:7b:ba:a8:e5:5d:25:7e:f3:c0:7b:88:2e: df:06:bd:b5:f9:51:dd:34:9e:a0:b6:32:43:7b:da:eb:07:8f: 64:b2:80:2c:a9:d9:df:3c:c7:0a:ee:04:2c:f7:73:d0:31:5f: 09:c0:5f:0a:82:b9:62:07:eb:8e:81:48:81:c2:b7:b4:1a:cf: c3:89:ed:26:25:01:31:b5:ee:14:7c:4e:a1:9e:c5:90:fa:d5: 49:b7:b1:b6:11:53:0a:10:72:ae:ad:9a:44:8a:e0:cf:78:f5: bd:42:18:b5:00:75:83:dc:d9:e1:74:65:54:3e:d4:dd:90:66: 28:a3:a5:e1:c4:4c:f0:98:45:e5:b2:1b:ac:c4:3f:a1:3d:97: de:80:bd:69:73:60:3e:a7:18:24:f9:1a:55:1e:77:17:2d:5a: 53:0b:6e:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFxEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1QTkxMTAvBgNVBAUTKDJCOTVEOEQ4MjI4QTg5MTQ3RDgwMTkzRDk3NzBFQjUw QUVEREJCNkIwHhcNMjUxMTAyMTYzNzM0WhcNMjUxMTA5MTYzNzM0WjAYMRYwFAYD VQQDEw02OTA3ODhjZS1jODlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtcQILzdHaqfepbWxFBG3UmuUFlvAt3mHB3fsRolD3QEzFmpQGYDAINnLQuwc bGAchJh+egAhkZNqseGMKQFabe/FYgq6j/CKu720ooOJjkq3C5EWXo2tqi39DJRW /1hrJIZqN37jCcLMMXqYTHjrq2SM2/Qf+nmazwkvdbCuOk/Yir1729aQpBBay6cA L7hG5LBJkQXMnSChjdxK1xnnfozV0Y/QUVSK7jPIKSCOsbX+NLT5Skuk5FHTfntq +SynbwtPwHTD3Du4hTnnJ85uwSV1t3ijVrnXJzEEOpxpoiysc7nCdYAQdVW4GEXi 0OJP4O9TOeWtd2WuDX8OUvR9RwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAD+7Tqt zM/40/ms0yUPiffqFW0qMB8GA1UdIwQYMBaAFCuV2NgiiokUfYAZPZdw61Cu3btr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVBOS8wMEI3MTUxQ0ZE MDgxMUU3QTQyOEZGMEZDNEY5QUUwMi9LNVhZMkNLS2lSUjlnQms5bDNEclVLN2R1 MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s1WFkyQ0tLaVJSOWdCazlsM0RyVUs3ZHUycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjVBOS8wMEI3MTUxQ0ZEMDgxMUU3QTQyOEZGMEZDNEY5QUUwMi9LNVhZMkNLS2lS UjlnQms5bDNEclVLN2R1MnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBi+iIS/jyBx+C49BVQCHzxp4mhoFp8HoOKM/AGEe8bKsmhPgbckZy0 zefv+MsRxkofSVp1eNZ9DufZNsdxw8q7AE9T+2WKahsE88SWcpVkXUEANDS2DePu 70YrGV3RNgF7uqjlXSV+88B7iC7fBr21+VHdNJ6gtjJDe9rrB49ksoAsqdnfPMcK 7gQs93PQMV8JwF8KgrliB+uOgUiBwre0Gs/Die0mJQExte4UfE6hnsWQ+tVJt7G2 EVMKEHKurZpEiuDPePW9Qhi1AHWD3NnhdGVUPtTdkGYoo6XhxEzwmEXlshusxD+h PZfegL1pc2A+pxgk+RpVHncXLVpTC24L -----END CERTIFICATE-----Generated at Tue Nov 4 12:34:50 2025 by rpki-client