$ rpki-client -vvf rpki.apnic.net/member_repository/A917530D/DD7E091CB64B11EE91463760C4F9AE02/s5kvDUm69qNv2mWOW0WUaVIeW0Q.mft File: s5kvDUm69qNv2mWOW0WUaVIeW0Q.mft (raw, json) Hash identifier: bJVlZRUyrU0Y8mDtWowFLt9HL4gv0BocMCugSyXYEpY= Subject key identifier: 7E:02:87:27:9A:4E:24:FC:86:5D:1D:C0:39:8A:5D:56:7A:AC:D8:CD Authority key identifier: B3:99:2F:0D:49:BA:F6:A3:6F:DA:65:8E:5B:45:94:69:52:1E:5B:44 Certificate issuer: /CN=A917530D/serialNumber=B3992F0D49BAF6A36FDA658E5B459469521E5B44 Certificate serial: 016A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s5kvDUm69qNv2mWOW0WUaVIeW0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917530D/DD7E091CB64B11EE91463760C4F9AE02/s5kvDUm69qNv2mWOW0WUaVIeW0Q.mft Manifest number: 015E Signing time: Mon 03 Nov 2025 04:12:56 +0000 Manifest this update: Mon 03 Nov 2025 04:12:55 +0000 Manifest next update: Mon 10 Nov 2025 04:12:55 +0000 Files and hashes: 1: s5kvDUm69qNv2mWOW0WUaVIeW0Q.crl (hash: 9rDcUrdLEIRPrOce9GZdx+FBeCR84y35tcrEGwsncbk=) 2: 762CACD0B04311EF95390327C4F9AE02.roa (hash: 7lH097TnqT2Frr0JL7F0/A/6TnFN0hBEwwqzvbNC3Tc=) 3: A97CBD42A06611EFA888B57DC4F9AE02.roa (hash: iA4PiBqhCGu6j+QREktQJZZ0YDevgINmDR162rqZIpg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917530D/DD7E091CB64B11EE91463760C4F9AE02/s5kvDUm69qNv2mWOW0WUaVIeW0Q.crl rsync://rpki.apnic.net/member_repository/A917530D/DD7E091CB64B11EE91463760C4F9AE02/s5kvDUm69qNv2mWOW0WUaVIeW0Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s5kvDUm69qNv2mWOW0WUaVIeW0Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:12:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 362 (0x16a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917530D, serialNumber=B3992F0D49BAF6A36FDA658E5B459469521E5B44 Validity Not Before: Nov 3 04:12:55 2025 GMT Not After : Nov 10 04:12:55 2025 GMT Subject: CN=69082bc8-f489 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:19:f2:5b:3d:f7:e3:83:42:cd:1a:2c:c3:0c: 32:e3:d4:35:ec:c8:90:4c:1d:d5:26:e6:a9:30:a1: 09:fa:1c:ec:92:76:f3:dc:9e:5e:3b:ec:b7:34:c3: 4e:3f:73:d2:51:52:26:43:ba:50:f5:0b:6d:38:9c: fa:cd:d0:b2:4d:cf:e6:0b:af:06:7b:b5:fc:cc:68: 36:50:52:d6:7a:de:ec:f6:d0:62:3e:00:4f:8b:0c: d0:04:29:93:ab:3a:f4:66:62:db:38:2c:ee:6b:b9: e2:1f:66:b0:2e:03:1e:1f:81:86:ab:dc:3b:de:5b: 1c:24:38:62:df:7a:e1:e5:4f:2f:f9:7e:c9:bb:0b: 5e:7b:18:29:a9:fd:18:be:04:10:17:13:3e:a6:bc: 3f:20:4d:10:82:a3:04:27:4f:c7:b2:b7:4c:e2:d2: 2d:d3:1b:e0:70:14:73:e1:c4:72:2c:f3:c4:22:bc: fb:c3:d5:60:e5:dd:2d:fc:b4:27:d0:b6:a7:ae:2e: 2e:59:01:61:95:e4:dd:f9:78:61:6e:64:62:7d:da: b4:6f:6d:76:38:28:a6:63:f1:b8:40:27:89:de:46: 8b:a7:46:de:9a:de:98:2c:8d:99:be:f6:fb:67:1f: 0e:73:69:bb:ce:de:72:b1:f9:3a:09:05:7b:ac:9c: fc:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:02:87:27:9A:4E:24:FC:86:5D:1D:C0:39:8A:5D:56:7A:AC:D8:CD X509v3 Authority Key Identifier: keyid:B3:99:2F:0D:49:BA:F6:A3:6F:DA:65:8E:5B:45:94:69:52:1E:5B:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917530D/DD7E091CB64B11EE91463760C4F9AE02/s5kvDUm69qNv2mWOW0WUaVIeW0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s5kvDUm69qNv2mWOW0WUaVIeW0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917530D/DD7E091CB64B11EE91463760C4F9AE02/s5kvDUm69qNv2mWOW0WUaVIeW0Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:be:a9:9b:b5:61:07:46:36:80:1d:32:78:57:c7:31:55:a4: 23:42:af:b5:a5:35:2a:4e:fb:16:8c:02:73:bc:ac:fa:b1:03: c8:3a:49:8c:7e:24:36:7b:4b:72:5e:f6:07:e8:f2:6b:9b:bd: e8:17:c8:af:7d:cd:61:a8:4e:f0:85:df:fc:43:32:1b:93:e0: ca:da:41:c2:a4:47:9f:83:ec:90:43:fe:59:a1:fd:0a:0b:64: e7:49:fd:48:bb:50:92:97:98:68:55:b6:e4:66:7c:16:fa:72: d9:9e:10:38:b7:bd:58:cd:68:55:09:68:42:0c:20:8b:38:e3: b2:54:0c:a6:1c:59:42:d3:b7:56:f3:ce:e9:3a:ea:08:e3:f3: e5:45:49:24:33:85:73:30:c6:1b:83:ae:6b:fd:1c:cb:8e:05: 28:2b:3b:3a:af:91:43:df:19:7a:51:4c:97:53:ae:25:1f:8c: a9:98:32:6d:e7:65:2f:f2:fc:d1:8d:b1:78:5c:e9:17:b3:a5: 97:32:15:ad:e2:08:2b:b9:c4:1c:1e:9f:db:73:fa:db:8a:ac: 7c:15:30:6d:66:79:ea:f0:bd:e2:53:f0:87:be:ad:59:33:5d: 34:f9:58:d5:4d:0e:b8:6c:24:35:52:82:eb:df:17:19:dd:a8: 4c:3b:b2:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUzMEQxMTAvBgNVBAUTKEIzOTkyRjBENDlCQUY2QTM2RkRBNjU4RTVCNDU5NDY5 NTIxRTVCNDQwHhcNMjUxMTAzMDQxMjU1WhcNMjUxMTEwMDQxMjU1WjAYMRYwFAYD VQQDEw02OTA4MmJjOC1mNDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6RnyWz3344NCzRoswwwy49Q17MiQTB3VJuapMKEJ+hzsknbz3J5eO+y3NMNO P3PSUVImQ7pQ9QttOJz6zdCyTc/mC68Ge7X8zGg2UFLWet7s9tBiPgBPiwzQBCmT qzr0ZmLbOCzua7niH2awLgMeH4GGq9w73lscJDhi33rh5U8v+X7Juwteexgpqf0Y vgQQFxM+prw/IE0QgqMEJ0/HsrdM4tIt0xvgcBRz4cRyLPPEIrz7w9Vg5d0t/LQn 0Lanri4uWQFhleTd+XhhbmRifdq0b212OCimY/G4QCeJ3kaLp0bemt6YLI2Zvvb7 Zx8Oc2m7zt5ysfk6CQV7rJz8UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH4Chyea TiT8hl0dwDmKXVZ6rNjNMB8GA1UdIwQYMBaAFLOZLw1Juvajb9pljltFlGlSHltE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTMwRC9ERDdFMDkxQ0I2 NEIxMUVFOTE0NjM3NjBDNEY5QUUwMi9zNWt2RFVtNjlxTnYybVdPVzBXVWFWSWVX MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3M1a3ZEVW02OXFOdjJtV09XMFdVYVZJZVcwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTMwRC9ERDdFMDkxQ0I2NEIxMUVFOTE0NjM3NjBDNEY5QUUwMi9zNWt2RFVtNjlx TnYybVdPVzBXVWFWSWVXMFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2vqmbtWEHRjaAHTJ4V8cxVaQjQq+1pTUqTvsWjAJzvKz6sQPIOkmM fiQ2e0tyXvYH6PJrm73oF8ivfc1hqE7whd/8QzIbk+DK2kHCpEefg+yQQ/5Zof0K C2TnSf1Iu1CSl5hoVbbkZnwW+nLZnhA4t71YzWhVCWhCDCCLOOOyVAymHFlC07dW 887pOuoI4/PlRUkkM4VzMMYbg65r/RzLjgUoKzs6r5FD3xl6UUyXU64lH4ypmDJt 52Uv8vzRjbF4XOkXs6WXMhWt4ggrucQcHp/bc/rbiqx8FTBtZnnq8L3iU/CHvq1Z M100+VjVTQ64bCQ1UoLr3xcZ3ahMO7K6 -----END CERTIFICATE-----Generated at Tue Nov 4 16:06:16 2025 by rpki-client