$ rpki-client -vvf rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft File: 5k3PxJR4oTweMa6HKi-sEL-4lTE.mft (raw, json) Hash identifier: s+roaYq64v2ZiwxGq38RR9n81imh3HO126Du57Y4ZjE= Subject key identifier: 29:0E:C8:6F:8D:D8:4A:CA:33:CA:03:26:8A:3C:10:29:20:D4:A4:E4 Authority key identifier: E6:4D:CF:C4:94:78:A1:3C:1E:31:AE:87:2A:2F:AC:10:BF:B8:95:31 Certificate issuer: /CN=A915F67F/serialNumber=E64DCFC49478A13C1E31AE872A2FAC10BFB89531 Certificate serial: 34D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k3PxJR4oTweMa6HKi-sEL-4lTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft Manifest number: 34D7 Signing time: Tue 04 Nov 2025 14:35:28 +0000 Manifest this update: Tue 04 Nov 2025 14:35:28 +0000 Manifest next update: Tue 11 Nov 2025 14:35:28 +0000 Files and hashes: 1: 5k3PxJR4oTweMa6HKi-sEL-4lTE.crl (hash: IlFAQiDz16p0G5JkbQGhhPIWEdhVy20oDySWZGs23f0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.crl rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k3PxJR4oTweMa6HKi-sEL-4lTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:35:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13527 (0x34d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F67F, serialNumber=E64DCFC49478A13C1E31AE872A2FAC10BFB89531 Validity Not Before: Nov 4 14:35:28 2025 GMT Not After : Nov 11 14:35:28 2025 GMT Subject: CN=690a0f30-20d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:6e:62:c3:91:ca:2d:4e:4e:e9:46:bc:b3:0f: 47:be:bf:6b:d0:24:9d:f3:a4:c5:98:c1:6e:25:7c: 37:74:31:da:68:b5:53:52:f1:bf:f0:53:ff:ca:e3: b4:98:b8:3e:df:cf:74:c5:03:6f:e6:f1:cc:33:bf: 93:c9:26:d2:17:90:00:0f:e5:0e:dc:b7:bf:e5:42: ce:a6:18:91:ce:5e:c5:17:c6:43:f6:3b:c3:90:fb: b0:7a:de:72:7f:cd:86:99:c4:73:fa:08:78:68:8c: ba:c1:22:b4:72:1f:fe:fd:4e:ed:a7:2d:43:f3:8b: 14:22:cc:b5:86:ab:dd:41:0d:8d:33:97:ee:38:ea: 0f:28:e8:d9:33:37:79:4b:79:64:6a:9f:75:10:91: e3:5c:fd:33:df:56:27:98:7e:42:15:9b:4a:25:9c: 2e:0f:74:71:fc:a5:aa:36:91:e1:16:89:23:b0:d7: 28:3c:3a:a6:20:aa:4b:dd:7c:68:2f:a3:4d:1b:76: bd:84:ab:e3:ed:ac:b9:3e:81:5c:9c:d9:8c:3b:36: 82:6b:63:e6:c4:41:7c:70:ae:57:77:8a:0d:21:74: 95:e3:4f:95:06:42:30:f5:36:64:3b:6c:8c:0c:ae: 75:21:ac:8c:6d:29:c2:f3:00:9b:99:f9:74:e8:0e: c9:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:0E:C8:6F:8D:D8:4A:CA:33:CA:03:26:8A:3C:10:29:20:D4:A4:E4 X509v3 Authority Key Identifier: keyid:E6:4D:CF:C4:94:78:A1:3C:1E:31:AE:87:2A:2F:AC:10:BF:B8:95:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k3PxJR4oTweMa6HKi-sEL-4lTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:5f:57:38:98:89:dc:1b:7e:d3:fd:c1:54:e9:47:90:41:a8: a9:d7:82:d9:f9:a6:e3:3d:6f:ca:c4:46:d1:27:11:8e:fb:c4: 34:cc:01:04:61:e3:04:d7:1a:4f:88:21:be:e5:c7:f1:45:42: 0a:b2:07:d0:47:bf:6f:d7:96:1a:3d:57:a5:b2:94:1f:3c:b3: 07:cf:1e:13:94:76:a8:7e:7a:70:65:80:53:c6:9e:44:63:78: 8b:b7:0a:f3:1c:2c:24:58:df:79:aa:f8:9b:43:93:80:fd:31: 97:34:eb:5c:74:6c:b6:68:95:75:f4:63:06:bc:87:bc:13:2d: de:20:05:81:48:b4:79:73:fb:62:a5:29:6e:ee:17:be:8f:dc: d0:9a:98:1c:80:c7:22:06:7e:90:35:a4:87:7a:a2:0b:9f:50: 99:97:62:c0:40:63:a6:2b:e0:90:9e:a8:a4:01:e5:98:fe:16: 04:73:a8:1d:7f:ff:fe:ce:ef:3c:48:2d:54:e9:16:8f:3f:84: 7d:b2:04:d1:a1:db:ee:59:90:80:24:4b:35:7a:16:61:57:ba: 87:bc:5e:bd:35:55:55:7a:b7:1c:86:46:4f:36:9f:99:7f:f9: b5:f9:36:c9:0a:b5:1e:61:c0:9a:60:bd:af:4f:b2:5f:90:57: 75:7f:ff:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUY2N0YxMTAvBgNVBAUTKEU2NERDRkM0OTQ3OEExM0MxRTMxQUU4NzJBMkZBQzEw QkZCODk1MzEwHhcNMjUxMTA0MTQzNTI4WhcNMjUxMTExMTQzNTI4WjAYMRYwFAYD VQQDEw02OTBhMGYzMC0yMGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAum5iw5HKLU5O6Ua8sw9Hvr9r0CSd86TFmMFuJXw3dDHaaLVTUvG/8FP/yuO0 mLg+3890xQNv5vHMM7+TySbSF5AAD+UO3Le/5ULOphiRzl7FF8ZD9jvDkPuwet5y f82GmcRz+gh4aIy6wSK0ch/+/U7tpy1D84sUIsy1hqvdQQ2NM5fuOOoPKOjZMzd5 S3lkap91EJHjXP0z31YnmH5CFZtKJZwuD3Rx/KWqNpHhFokjsNcoPDqmIKpL3Xxo L6NNG3a9hKvj7ay5PoFcnNmMOzaCa2PmxEF8cK5Xd4oNIXSV40+VBkIw9TZkO2yM DK51IayMbSnC8wCbmfl06A7JEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCkOyG+N 2ErKM8oDJoo8ECkg1KTkMB8GA1UdIwQYMBaAFOZNz8SUeKE8HjGuhyovrBC/uJUx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RjY3Ri85MUI5ODNDODFE OEExMUUyQjBFNDk0RTQwOEIwMkNEMi81azNQeEpSNG9Ud2VNYTZIS2ktc0VMLTRs VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVrM1B4SlI0b1R3ZU1hNkhLaS1zRUwtNGxURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RjY3Ri85MUI5ODNDODFEOEExMUUyQjBFNDk0RTQwOEIwMkNEMi81azNQeEpSNG9U d2VNYTZIS2ktc0VMLTRsVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMX1c4mIncG37T/cFU6UeQQaip14LZ+abjPW/KxEbRJxGO+8Q0zAEE YeME1xpPiCG+5cfxRUIKsgfQR79v15YaPVelspQfPLMHzx4TlHaofnpwZYBTxp5E Y3iLtwrzHCwkWN95qvibQ5OA/TGXNOtcdGy2aJV19GMGvIe8Ey3eIAWBSLR5c/ti pSlu7he+j9zQmpgcgMciBn6QNaSHeqILn1CZl2LAQGOmK+CQnqikAeWY/hYEc6gd f//+zu88SC1U6RaPP4R9sgTRodvuWZCAJEs1ehZhV7qHvF69NVVVercchkZPNp+Z f/m1+TbJCrUeYcCaYL2vT7JfkFd1f/+P -----END CERTIFICATE-----Generated at Wed Nov 5 19:28:31 2025 by rpki-client