$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft File: 5D3SMzFr8OKboG0g3sJdtMwRbgg.mft (raw, json) Hash identifier: p6qNtyd/oOJFx8/XzrW5IbxaosbFRqFQtpwzqmBsdkI= Subject key identifier: F0:C6:15:BF:16:D4:50:46:4B:9B:C4:93:0A:A9:FA:40:B0:8C:87:76 Authority key identifier: E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 Certificate issuer: /CN=A9120AC1/serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Certificate serial: 0509 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft Manifest number: 04FD Signing time: Mon 27 Oct 2025 00:41:33 +0000 Manifest this update: Mon 27 Oct 2025 00:41:32 +0000 Manifest next update: Mon 03 Nov 2025 00:41:32 +0000 Files and hashes: 1: 5D3SMzFr8OKboG0g3sJdtMwRbgg.crl (hash: 4hAoJl+osgdb7eQA8nTJwBs5quiaegfP/VT0uXY8PcA=) 2: 3A2A80AE3C8311ECA86D031EC4F9AE02.roa (hash: aUDrwRtGsUzrY00Rmj3XgznPDP2fmFZxHTp5GIqGdmE=) 3: 579B33AE886F11F0A02D4009C4F9AE02.roa (hash: YP1QtoS6tJ0tfsbd9mqDdJjDX65W26gYVq3o6iBYRuU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 00:41:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1289 (0x509) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Validity Not Before: Oct 27 00:41:32 2025 GMT Not After : Nov 3 00:41:32 2025 GMT Subject: CN=68febfbd-a700 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:97:83:fc:ab:63:b0:66:8b:64:a5:8f:07:a8: 04:c0:2f:93:c6:62:a9:a9:be:d7:05:4e:70:32:0a: 8d:ca:6d:23:6f:9f:e7:23:96:6c:b5:bb:a3:8a:b1: 8d:57:49:76:f6:7d:c8:80:42:2c:b7:7e:65:ec:dd: bd:5e:be:e4:74:be:69:d8:6c:65:1c:f1:ab:8d:7b: 52:70:68:e3:3c:5f:4a:d6:1b:7a:ed:37:fe:fb:2e: 78:9c:9d:7f:70:5c:c5:12:f1:be:4c:55:b4:34:7b: 2c:87:d7:7d:fe:97:68:d7:31:e6:b3:57:c6:a2:95: 80:e3:d0:ef:d0:32:fa:45:df:7a:a3:42:6c:14:9a: 93:3c:2a:84:51:b9:f4:40:bb:51:60:fc:a8:51:dc: 16:32:91:1e:1c:9a:f3:79:8a:33:28:78:9e:1e:02: d7:9e:a0:05:32:52:e7:77:35:dd:30:d5:44:18:e9: 77:35:f7:bf:2d:5a:81:85:e8:3c:80:50:af:84:c3: 08:a7:97:0a:f3:aa:e9:85:68:d2:75:9e:20:62:2b: ae:2f:0f:56:f6:d3:f5:49:b1:7d:28:b7:97:13:83: 68:e8:42:92:47:50:7a:77:f3:b5:dd:3b:6b:4f:a3: 16:47:0f:21:ab:df:39:63:97:04:7c:7c:b6:81:ae: 30:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:C6:15:BF:16:D4:50:46:4B:9B:C4:93:0A:A9:FA:40:B0:8C:87:76 X509v3 Authority Key Identifier: keyid:E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:2e:ba:99:66:f7:73:6f:cb:4c:96:09:36:ae:58:db:83:6e: 2e:1f:19:26:95:ab:49:f2:30:cb:28:6d:ca:7b:34:68:75:13: d9:0e:f6:49:b0:eb:a2:a6:e1:e4:d2:15:93:66:23:99:2b:f9: 1b:37:9d:f7:15:b3:b6:24:6c:cd:0e:52:32:73:b2:2d:27:94: 37:af:b6:56:d7:37:89:66:ca:ea:40:ee:ba:03:39:03:6d:68: ed:b5:89:60:3d:aa:79:7d:bc:5d:49:8c:0e:c4:70:6d:76:a9: 49:44:cf:f8:e9:19:df:39:d7:84:de:c8:01:ac:2c:24:c3:6e: 24:4e:75:ac:af:8a:70:21:52:e6:da:4a:ce:db:22:56:f0:5a: d5:17:a7:06:e4:70:b2:98:f0:71:69:da:30:bf:d5:54:59:70: 8b:f7:1c:59:9c:8c:fe:08:60:42:f8:89:7f:e3:92:b4:1d:dd: b6:1a:31:70:39:19:7c:3a:fa:d5:f3:93:d5:e8:f2:2c:cb:ea: 68:1f:95:9b:05:dc:ba:f6:aa:aa:20:cf:59:47:32:6b:b8:ba: b3:ff:64:e3:dc:9f:18:ad:b8:0b:3a:eb:63:aa:e3:38:e9:0a: 2e:6e:09:b3:87:21:40:fe:38:ec:af:ee:b0:96:ad:e3:0c:d2: 57:44:80:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKEU0M0REMjMzMzE2QkYwRTI5QkEwNkQyMERFQzI1REI0 Q0MxMTZFMDgwHhcNMjUxMDI3MDA0MTMyWhcNMjUxMTAzMDA0MTMyWjAYMRYwFAYD VQQDEw02OGZlYmZiZC1hNzAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxZeD/KtjsGaLZKWPB6gEwC+TxmKpqb7XBU5wMgqNym0jb5/nI5ZstbujirGN V0l29n3IgEIst35l7N29Xr7kdL5p2GxlHPGrjXtScGjjPF9K1ht67Tf++y54nJ1/ cFzFEvG+TFW0NHssh9d9/pdo1zHms1fGopWA49Dv0DL6Rd96o0JsFJqTPCqEUbn0 QLtRYPyoUdwWMpEeHJrzeYozKHieHgLXnqAFMlLndzXdMNVEGOl3Nfe/LVqBheg8 gFCvhMMIp5cK86rphWjSdZ4gYiuuLw9W9tP1SbF9KLeXE4No6EKSR1B6d/O13Ttr T6MWRw8hq985Y5cEfHy2ga4wkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPDGFb8W 1FBGS5vEkwqp+kCwjId2MB8GA1UdIwQYMBaAFOQ90jMxa/Dim6BtIN7CXbTMEW4I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zRTlBNEFFMDMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhPS2JvRzBnM3NKZHRNd1Ji Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVEM1NNekZyOE9LYm9HMGczc0pkdE13UmJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zRTlBNEFFMDMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhP S2JvRzBnM3NKZHRNd1JiZ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCALrqZZvdzb8tMlgk2rljbg24uHxkmlatJ8jDLKG3KezRodRPZDvZJ sOuipuHk0hWTZiOZK/kbN533FbO2JGzNDlIyc7ItJ5Q3r7ZW1zeJZsrqQO66AzkD bWjttYlgPap5fbxdSYwOxHBtdqlJRM/46RnfOdeE3sgBrCwkw24kTnWsr4pwIVLm 2krO2yJW8FrVF6cG5HCymPBxadowv9VUWXCL9xxZnIz+CGBC+Il/45K0Hd22GjFw ORl8OvrV85PV6PIsy+poH5WbBdy69qqqIM9ZRzJruLqz/2Tj3J8YrbgLOutjquM4 6QoubgmzhyFA/jjsr+6wlq3jDNJXRIBv -----END CERTIFICATE-----Generated at Tue Oct 28 12:56:35 2025 by rpki-client