$ rpki-client -vvf rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft File: 5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft (raw, json) Hash identifier: b53yZvC8xoYiTtSDAHaxC+szpn5LE5AdbW+M0Pe1KJ8= Subject key identifier: 55:84:27:1F:A9:EB:1F:47:66:52:41:E5:03:39:92:92:BB:35:14:6A Authority key identifier: 5D:70:7B:0D:35:69:62:24:32:B4:BD:CB:FD:32:0F:9A:8B:6D:DC:7B Certificate issuer: /CN=A91DD5100000/serialNumber=5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B Certificate serial: 385C559E76E2EF55024528B10427D81C39A53A75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft Manifest number: 01B7 Signing time: Tue 04 Nov 2025 09:04:32 +0000 Manifest this update: Tue 04 Nov 2025 08:59:32 +0000 Manifest next update: Wed 05 Nov 2025 11:27:32 +0000 Files and hashes: 1: 34332e3235322e32302e302f32342d3234203d3e203136353039.roa (hash: 2pHYFNhpresl2Qe+bmQCdeuqTmZNLu6JpjLmSUgR1DM=) 2: 34332e3235322e32312e302f32342d3234203d3e203530333835.roa (hash: baGBWXcDrtK+cAVKGJBMAmZee53ol0gPCj9NO0O551w=) 3: 34332e3235322e32322e302f32342d3234203d3e203438323636.roa (hash: lh0a38K8JAllhrAcZvOqWh+3NCJyyj25skARvaE+EWo=) 4: 5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl (hash: J947neluaWNLFYYo878STbVhGbgU1vWMAegV8qHZ2PE=) 5: 34332e3235322e32332e302f32342d3234203d3e203239383032.roa (hash: LfF8fU+QkX6d5K08nkQmulF4/9qGZmobs40531E0EuE=) 6: 34332e3235322e32302e302f32342d3234203d3e203134363138.roa (hash: POeaLZ7jyGbDhNwka17vD8hm5iiL/jnjTj3d8a5jHPw=) Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 11:27:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:5c:55:9e:76:e2:ef:55:02:45:28:b1:04:27:d8:1c:39:a5:3a:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD5100000, serialNumber=5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B Validity Not Before: Nov 4 08:59:32 2025 GMT Not After : Nov 5 11:27:32 2025 GMT Subject: CN=5584271FA9EB1F47665241E503399292BB35146A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:56:c8:b5:0b:b7:8b:39:b6:55:58:9c:c7:9a: 5c:f0:e6:9f:95:65:de:14:a9:e1:2a:f4:6d:cb:64: 90:5a:36:24:42:5f:1f:6f:f9:d7:a0:84:66:4a:13: 63:7a:66:4d:d3:2c:75:cc:c7:97:ad:28:bc:09:ef: ad:3c:69:ce:bf:83:3c:65:ed:3e:fd:b3:0c:a1:87: f4:49:36:41:3d:6e:77:f9:ea:d4:5a:6a:1f:16:11: bb:a3:dc:5d:32:56:1f:43:71:f6:0e:fe:2b:71:08: ce:2f:83:b2:17:5a:9e:ac:12:27:94:f0:60:b3:46: 33:65:50:b6:48:44:c1:e7:0a:c0:f1:4c:f3:dd:a5: 24:1c:94:00:a2:20:8c:8c:a1:02:88:d8:be:f3:17: 5f:f7:5b:4b:63:9a:d4:ff:b8:9c:03:85:87:53:3c: 2c:d6:f0:25:5c:ab:5e:85:8e:65:d7:0a:39:0e:a7: f5:59:c0:f3:e0:e0:61:9d:ca:fd:5d:c2:bd:5a:2d: dd:53:ac:12:fc:6f:9f:57:04:96:92:d4:4b:67:d1: 12:4b:30:ad:5a:63:b1:ca:a5:e4:3a:70:e3:8d:f8: e1:48:49:3f:a0:70:ca:d0:8e:64:32:9d:22:4b:70: 4e:36:f9:c3:d1:36:eb:4d:c4:95:e1:69:e3:82:e9: 32:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:84:27:1F:A9:EB:1F:47:66:52:41:E5:03:39:92:92:BB:35:14:6A X509v3 Authority Key Identifier: keyid:5D:70:7B:0D:35:69:62:24:32:B4:BD:CB:FD:32:0F:9A:8B:6D:DC:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:11:ce:ed:43:e7:3c:5f:2e:ed:7a:f6:06:cb:e0:cf:85:80: a8:70:68:12:14:41:3c:75:d6:e8:ab:e1:74:2b:7e:17:eb:26: 78:c4:8e:34:d1:e6:ea:fb:c2:41:4f:fe:74:ac:12:1e:28:fc: 44:c0:f1:b5:fc:89:a4:7d:78:fa:43:81:8f:f1:0b:ff:ef:db: cb:51:28:9b:93:e8:3f:9b:7e:55:aa:ea:5f:d5:d2:45:1a:56: 38:f4:b4:67:cd:88:e9:f5:e1:0b:17:2e:0c:f0:ec:af:b3:08: 47:ec:2f:56:f9:bc:e5:3a:30:a1:fc:ce:55:90:76:5e:20:29: 6b:de:85:ef:80:be:77:0f:39:ed:0e:44:3c:a0:f5:f3:13:5e: d3:ea:76:8f:10:ca:b3:96:25:cb:c1:f0:3b:af:b5:6c:19:52: ca:2c:bb:0c:0d:3c:a7:e4:ec:ff:ab:58:47:f0:00:7f:cd:4a: d6:92:c1:71:4f:2c:3c:8f:b2:be:8a:f4:81:3f:fd:42:aa:f1: c7:e0:cc:0d:88:fe:e6:84:a1:b1:ae:ea:3c:6c:57:81:dd:9f: bb:c2:0d:2e:f7:2b:b5:06:e1:ae:da:be:88:9f:54:5c:4c:54: 73:31:22:ab:d0:a7:81:be:ec:5f:14:04:cf:77:ff:36:fd:92: 1f:65:8b:05 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUOFxVnnbi71UCRSixBCfYHDmlOnUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxREQ1MTAwMDAwMTEwLwYDVQQFEyg1RDcwN0IwRDM1 Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdCMB4XDTI1MTEwNDA4NTkzMloX DTI1MTEwNTExMjczMlowMzExMC8GA1UEAxMoNTU4NDI3MUZBOUVCMUY0NzY2NTI0 MUU1MDMzOTkyOTJCQjM1MTQ2QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJdWyLULt4s5tlVYnMeaXPDmn5Vl3hSp4Sr0bctkkFo2JEJfH2/516CEZkoT Y3pmTdMsdczHl60ovAnvrTxpzr+DPGXtPv2zDKGH9Ek2QT1ud/nq1FpqHxYRu6Pc XTJWH0Nx9g7+K3EIzi+DshdanqwSJ5TwYLNGM2VQtkhEwecKwPFM892lJByUAKIg jIyhAojYvvMXX/dbS2Oa1P+4nAOFh1M8LNbwJVyrXoWOZdcKOQ6n9VnA8+DgYZ3K /V3CvVot3VOsEvxvn1cElpLUS2fREkswrVpjscql5Dpw44344UhJP6BwytCOZDKd IktwTjb5w9E2603EleFp44LpMrcCAwEAAaOCAhswggIXMB0GA1UdDgQWBBRVhCcf qesfR2ZSQeUDOZKSuzUUajAfBgNVHSMEGDAWgBRdcHsNNWliJDK0vcv9Mg+ai23c ezAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFERDUxMDAwMDAvMC81RDcwN0Iw RDM1Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdCLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9YWEI3RFRWcFlp UXl0TDNMX1RJUG1vdHQzSHMuY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcw C4ZhcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFERDUx MDAwMDAvMC81RDcwN0IwRDM1Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdC Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw EDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG 9w0BAQsFAAOCAQEAhhHO7UPnPF8u7Xr2Bsvgz4WAqHBoEhRBPHXW6KvhdCt+F+sm eMSONNHm6vvCQU/+dKwSHij8RMDxtfyJpH14+kOBj/EL/+/by1Eom5PoP5t+Varq X9XSRRpWOPS0Z82I6fXhCxcuDPDsr7MIR+wvVvm85TowofzOVZB2XiApa96F74C+ dw857Q5EPKD18xNe0+p2jxDKs5Yly8HwO6+1bBlSyiy7DA08p+Ts/6tYR/AAf81K 1pLBcU8sPI+yvor0gT/9Qqrxx+DMDYj+5oShsa7qPGxXgd2fu8INLvcrtQbhrtq+ iJ9UXExUczEiq9Cngb7sXxQEz3f/Nv2SH2WLBQ== -----END CERTIFICATE-----Generated at Tue Nov 4 21:08:38 2025 by rpki-client