$ rpki-client -vvf rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft File: 5S3osZGTOKPiVWZOiASKVpihINA.mft (raw, json) Hash identifier: /UakEbgqV2wS+Nu/LjkcuUcqqfFZxmJVSn0w7+KNTFQ= Subject key identifier: 52:96:16:BC:4A:C8:77:DA:19:B4:4D:AA:62:24:FE:E6:F3:CC:06:53 Authority key identifier: E5:2D:E8:B1:91:93:38:A3:E2:55:66:4E:88:04:8A:56:98:A1:20:D0 Certificate issuer: /CN=A9160701/serialNumber=E52DE8B1919338A3E255664E88048A5698A120D0 Certificate serial: 0BC4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft Manifest number: 0BBA Signing time: Sun 02 Nov 2025 18:54:18 +0000 Manifest this update: Sun 02 Nov 2025 18:54:18 +0000 Manifest next update: Sun 09 Nov 2025 18:54:18 +0000 Files and hashes: 1: 5S3osZGTOKPiVWZOiASKVpihINA.crl (hash: 20CmTEX9tPVeaV64plZeU4DsT9ijC8iKgd//6xdVJtM=) 2: 6DCC06C231BC11EA9AACCA4BC4F9AE02.roa (hash: 3rmLILbAM/KMJx9b9ZtmiW/UU8JiAcyOhmtpDcFmRPg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.crl rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:54:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3012 (0xbc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160701, serialNumber=E52DE8B1919338A3E255664E88048A5698A120D0 Validity Not Before: Nov 2 18:54:18 2025 GMT Not After : Nov 9 18:54:18 2025 GMT Subject: CN=6907a8da-fe47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:81:c7:15:21:44:54:c6:5a:76:98:76:19:a0: 3d:36:14:76:41:13:9f:9e:7a:a9:3c:33:4c:8f:74: 9f:d4:44:dd:ad:4a:39:3d:fe:a7:32:37:b7:8f:df: 83:89:5b:99:1b:4b:38:9b:31:aa:38:48:58:14:04: 2e:a1:d8:7f:b8:cd:7e:a4:43:b5:a7:a0:0c:e2:6e: 9a:6f:e3:bc:3d:6f:51:42:d2:ad:88:55:9f:f4:2c: d9:a1:5f:e0:b8:92:40:88:04:1f:cc:37:3b:1d:05: 48:77:5f:c5:24:65:10:3f:4a:e6:93:00:49:d7:53: fa:1e:83:46:dc:56:12:92:92:e7:87:e7:e6:95:38: c9:cb:4f:15:db:0b:de:d5:d0:b7:08:0c:47:c9:37: fa:22:04:b8:4d:13:c5:73:f2:59:1d:da:ec:a2:16: f7:c8:3c:15:3e:2b:50:0c:4c:28:2a:46:81:01:e6: d5:bc:11:91:50:06:90:a5:92:a5:9d:fd:73:49:df: 5b:7d:3f:a0:ff:fc:5c:d3:62:ee:03:98:e4:64:fd: ef:a6:4c:cf:5b:36:18:69:6b:39:80:18:2c:8c:27: 9e:73:ea:43:3b:37:38:67:f7:46:42:01:ea:bd:0c: 84:f3:13:de:a8:4f:8f:72:f8:f0:5a:3f:2f:cd:50: 1d:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:96:16:BC:4A:C8:77:DA:19:B4:4D:AA:62:24:FE:E6:F3:CC:06:53 X509v3 Authority Key Identifier: keyid:E5:2D:E8:B1:91:93:38:A3:E2:55:66:4E:88:04:8A:56:98:A1:20:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:f9:18:32:1d:00:e0:8a:fc:7c:6c:3d:cb:5c:dd:0c:84:7a: 30:83:88:f6:eb:e1:f8:b5:4f:67:f7:59:5e:9e:83:fb:af:3b: d8:0d:b2:c8:51:a4:0f:8b:b4:0d:92:c8:d6:3d:dc:0e:02:e4: e7:32:7d:40:8c:e7:5c:f1:63:4f:e7:03:6e:71:36:76:1c:bd: fa:b2:66:09:9b:29:6b:d9:ce:b6:d0:4e:28:22:39:f0:f1:77: 0a:7c:55:5c:5c:18:5d:bb:cf:82:72:a0:ab:a3:24:ce:58:4d: 7a:01:8c:65:b9:aa:00:b7:c9:83:01:17:41:73:c2:f2:d6:ef: 43:bf:1a:80:8d:b9:a7:d1:2b:61:d4:9d:45:c8:59:68:79:11: 65:80:70:89:0c:85:4b:d9:a3:b8:29:2f:b7:61:67:28:96:bb: 20:72:1f:44:95:85:cb:2d:03:40:a3:0f:d7:93:29:52:d3:83: 0c:c4:bc:6a:d8:f3:d3:b3:c3:d8:a3:99:a9:f8:3f:b6:7b:88: 72:9d:0f:72:44:b8:21:f4:a4:81:9e:71:50:9b:28:de:71:ce: c2:66:a8:e2:38:83:7f:7a:89:9b:d2:09:ed:b3:bc:54:db:7c: 12:c7:b6:c5:59:07:81:86:f5:44:aa:63:da:1d:cb:7a:e8:e7: 81:53:b7:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA3MDExMTAvBgNVBAUTKEU1MkRFOEIxOTE5MzM4QTNFMjU1NjY0RTg4MDQ4QTU2 OThBMTIwRDAwHhcNMjUxMTAyMTg1NDE4WhcNMjUxMTA5MTg1NDE4WjAYMRYwFAYD VQQDEw02OTA3YThkYS1mZTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYHHFSFEVMZadph2GaA9NhR2QROfnnqpPDNMj3Sf1ETdrUo5Pf6nMje3j9+D iVuZG0s4mzGqOEhYFAQuodh/uM1+pEO1p6AM4m6ab+O8PW9RQtKtiFWf9CzZoV/g uJJAiAQfzDc7HQVId1/FJGUQP0rmkwBJ11P6HoNG3FYSkpLnh+fmlTjJy08V2wve 1dC3CAxHyTf6IgS4TRPFc/JZHdrsohb3yDwVPitQDEwoKkaBAebVvBGRUAaQpZKl nf1zSd9bfT+g//xc02LuA5jkZP3vpkzPWzYYaWs5gBgsjCeec+pDOzc4Z/dGQgHq vQyE8xPeqE+PcvjwWj8vzVAdswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFKWFrxK yHfaGbRNqmIk/ubzzAZTMB8GA1UdIwQYMBaAFOUt6LGRkzij4lVmTogEilaYoSDQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDcwMS81NDAwQzQxODMw MzAxMUVBQTcyRjM2N0FDNEY5QUUwMi81UzNvc1pHVE9LUGlWV1pPaUFTS1ZwaWhJ TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVTM29zWkdUT0tQaVZXWk9pQVNLVnBpaElOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDcwMS81NDAwQzQxODMwMzAxMUVBQTcyRjM2N0FDNEY5QUUwMi81UzNvc1pHVE9L UGlWV1pPaUFTS1ZwaWhJTkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAL+RgyHQDgivx8bD3LXN0MhHowg4j26+H4tU9n91lenoP7rzvYDbLI UaQPi7QNksjWPdwOAuTnMn1AjOdc8WNP5wNucTZ2HL36smYJmylr2c620E4oIjnw 8XcKfFVcXBhdu8+CcqCroyTOWE16AYxluaoAt8mDARdBc8Ly1u9DvxqAjbmn0Sth 1J1FyFloeRFlgHCJDIVL2aO4KS+3YWcolrsgch9ElYXLLQNAow/XkylS04MMxLxq 2PPTs8PYo5mp+D+2e4hynQ9yRLgh9KSBnnFQmyjecc7CZqjiOIN/eomb0gnts7xU 23wSx7bFWQeBhvVEqmPaHct66OeBU7ea -----END CERTIFICATE-----Generated at Mon Nov 3 18:09:57 2025 by rpki-client