$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft File: SC5abgiWomapGkBmwG9LTtmEZJ0.mft (raw, json) Hash identifier: N/xbemfliw4NHeJHP+yylZlcKieh/kk8SulwCFMnJGs= Subject key identifier: A0:4C:2F:32:56:46:77:94:41:28:F2:4A:D5:EE:55:B3:E3:44:34:B3 Authority key identifier: 48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D Certificate issuer: /CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D Certificate serial: 0501 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft Manifest number: 0430 Signing time: Wed 05 Nov 2025 01:06:43 +0000 Manifest this update: Wed 05 Nov 2025 01:06:42 +0000 Manifest next update: Wed 12 Nov 2025 01:06:42 +0000 Files and hashes: 1: SC5abgiWomapGkBmwG9LTtmEZJ0.crl (hash: NJZACb+7egF1uwZr8wvlGDKxtuM9tH1jfIiLeIfMSuM=) 2: 1465D252621C11F0AAE4E551C4F9AE02.roa (hash: pE0TeYdIKCgc/QwPZRV1/6gtn2PDxZWuZWypXfqUCBk=) 3: 340E5DD0141B11F0922B6344C4F9AE02.roa (hash: 3+hYQrTmF+e7jJciHHC9Syz1XLKiAuOCDuMHFEIoOO8=) 4: 212DD5DEEFCB11EFBA51D367C4F9AE02.roa (hash: yoHxToNdVsEl2/mlXGoTSTZxsnICbltZ8OX7V22JdbQ=) 5: 70970B107C9811EEA876DA2DC4F9AE02.roa (hash: xMiHMYItwXrD425Qd67NbjvjX4HrJ3EnpnA8c/QF/4k=) 6: D97AC950ABDD11EDAE837666C4F9AE02.roa (hash: SilbnDSMyvFBaNxXZnHVsn7YIdcJKbT+9vzuxU+MumM=) 7: 15E5E344239111EF96EC1C11C4F9AE02.roa (hash: A8LP0mnaTBBKppNqPSMaDhPFCk6GGBkjSaBDc8dCjBI=) 8: F87B578CB5E611F08C07425AC4F9AE02.roa (hash: y7UxQPzEfI3HoqpYaog23DQiTZxRgqBo5bC5YqQdvKI=) 9: CF6343DE295D11F0B3C33614C4F9AE02.roa (hash: soHDXhn1e2qK0BUfZsT/7EMAgURekf6y4K6+rsJFtvU=) 10: E984676EB5E611F0BCCCFA59C4F9AE02.roa (hash: l0B97lYyMn0o989Hi/HPTZ+TBf/ToOdx3ELGptgmk6A=) 11: 423DBDA2BD3011EFBEFB5F49C4F9AE02.roa (hash: 9J2iOFdXW0WTaVQoSkjTpRubYQV1uYwslH5WX54SWS8=) 12: B6E083D46E2F11EEB9C12A34C4F9AE02.roa (hash: cEUErhxJhRs9Ayd1OjEDxa3aUEaS/H1Cn1wGLQy/Hdo=) 13: EE88C2F6580711F09A56942DC4F9AE02.roa (hash: OKC561ca7ASLfOkgXrHgKbplp4PP/4v4yOXE3sio9JA=) 14: DD12F48AEC2611EF94F85F09C4F9AE02.roa (hash: 5x3hwbD6OKSIDNRFPjnTH18AkwSHTg00pMz0FKOos+E=) 15: D3A8EA649F0911EE98065E23C4F9AE02.roa (hash: R2/WUKzxoHuFFd/QsgqeEUvYq+HCK78+7w9Z8fUIsWc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1281 (0x501) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FC75, serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D Validity Not Before: Nov 5 01:06:42 2025 GMT Not After : Nov 12 01:06:42 2025 GMT Subject: CN=690aa322-aa08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:bf:a4:1f:94:ae:51:d5:92:8a:c6:3e:7b:60: 25:8e:2f:6c:c7:5a:3e:8b:c7:93:24:2d:9f:34:27: c2:45:70:fc:cb:91:27:ef:7b:f2:c8:92:88:f2:08: 02:cd:ab:f5:d1:4f:20:a5:b6:0a:44:bd:60:79:c1: 35:fd:6b:da:1b:d5:bc:9d:9f:1c:a9:bf:40:92:63: 60:1b:8d:ad:5f:31:d4:83:c5:c4:28:32:76:63:bf: 89:63:59:02:33:dc:e7:6a:84:9b:97:2d:8d:5b:ef: 8e:67:37:07:a9:f6:0b:09:c2:85:c9:1e:35:51:1c: b0:f2:38:7d:d3:7d:d0:b6:da:4e:dc:cd:d0:fc:db: 32:d4:bc:05:ce:b8:8b:1a:25:5e:8d:79:27:ba:9f: 69:57:5e:19:03:14:c2:23:49:f5:3f:28:3c:fc:99: 22:91:74:b4:fe:d0:e5:5f:f8:4f:27:98:26:90:1b: 33:79:50:ee:95:93:83:ea:45:d3:a7:c7:c7:31:fa: 38:5c:b0:34:4e:75:79:4d:07:3a:a6:ef:7e:ed:4d: 19:28:f7:d5:3b:00:d6:71:60:6c:b1:1b:5b:64:bc: 51:54:bc:b1:f9:1e:59:5e:21:f1:2d:37:1c:2c:c8: e0:5a:fe:13:7d:87:21:57:53:01:23:a6:da:49:5c: 7d:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:4C:2F:32:56:46:77:94:41:28:F2:4A:D5:EE:55:B3:E3:44:34:B3 X509v3 Authority Key Identifier: keyid:48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:66:70:c4:a0:d5:24:6b:9d:45:bd:b1:da:3d:a5:3c:cf:54: 55:10:87:7e:89:dc:30:61:ad:6a:d8:44:68:0a:f7:36:56:42: ac:7f:6a:2f:73:8d:a2:f0:e0:43:12:25:85:1d:3c:65:21:51: 8f:c7:d0:81:18:3b:3a:92:27:65:05:0f:a6:97:d2:1c:e0:d5: 71:55:6a:ec:59:6c:0f:30:ac:a2:15:d8:49:1b:85:80:3d:8a: 4c:6a:97:25:55:a9:7f:98:38:ca:6b:59:e7:9a:d9:d5:0d:c6: 33:63:c1:4c:bf:c7:9c:8d:fd:78:46:42:ee:d9:e4:d2:fa:a3: 38:ba:9d:3b:f4:8d:dc:18:33:41:37:8d:99:50:09:5e:75:1a: 3e:f1:28:5e:71:38:5b:df:32:41:79:d2:9f:79:8d:be:4e:b3: d6:6e:9a:78:8a:ac:36:c9:f7:20:29:8c:2d:a1:64:ac:aa:fc: f4:3d:96:5f:a2:b0:94:de:7e:fd:53:d7:7a:0e:05:80:4b:69: 6b:ca:cf:cd:10:d6:f1:31:39:a2:1a:a8:de:7e:d2:06:30:96: 08:ab:28:b8:46:b0:94:0b:cb:bb:aa:95:01:f3:a4:19:8b:d1: f2:36:b3:f0:47:16:ae:a9:29:a8:9f:86:68:c5:5b:1b:e5:fd: de:7e:31:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDNzUxMTAvBgNVBAUTKDQ4MkU1QTZFMDg5NkEyNjZBOTFBNDA2NkMwNkY0QjRF RDk4NDY0OUQwHhcNMjUxMTA1MDEwNjQyWhcNMjUxMTEyMDEwNjQyWjAYMRYwFAYD VQQDEw02OTBhYTMyMi1hYTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsb+kH5SuUdWSisY+e2Alji9sx1o+i8eTJC2fNCfCRXD8y5En73vyyJKI8ggC zav10U8gpbYKRL1gecE1/WvaG9W8nZ8cqb9AkmNgG42tXzHUg8XEKDJ2Y7+JY1kC M9znaoSbly2NW++OZzcHqfYLCcKFyR41URyw8jh9033QttpO3M3Q/Nsy1LwFzriL GiVejXknup9pV14ZAxTCI0n1Pyg8/JkikXS0/tDlX/hPJ5gmkBszeVDulZOD6kXT p8fHMfo4XLA0TnV5TQc6pu9+7U0ZKPfVOwDWcWBssRtbZLxRVLyx+R5ZXiHxLTcc LMjgWv4TfYchV1MBI6baSVx97QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKBMLzJW RneUQSjyStXuVbPjRDSzMB8GA1UdIwQYMBaAFEguWm4IlqJmqRpAZsBvS07ZhGSd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM3NS8zQUE1REVFMERE NTgxMUVDODcwRkMyMERDNEY5QUUwMi9TQzVhYmdpV29tYXBHa0Jtd0c5TFR0bUVa SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NDNWFiZ2lXb21hcEdrQm13RzlMVHRtRVpKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkM3NS8zQUE1REVFMERENTgxMUVDODcwRkMyMERDNEY5QUUwMi9TQzVhYmdpV29t YXBHa0Jtd0c5TFR0bUVaSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0ZnDEoNUka51FvbHaPaU8z1RVEId+idwwYa1q2ERoCvc2VkKsf2ov c42i8OBDEiWFHTxlIVGPx9CBGDs6kidlBQ+ml9Ic4NVxVWrsWWwPMKyiFdhJG4WA PYpMapclVal/mDjKa1nnmtnVDcYzY8FMv8ecjf14RkLu2eTS+qM4up079I3cGDNB N42ZUAledRo+8ShecThb3zJBedKfeY2+TrPWbpp4iqw2yfcgKYwtoWSsqvz0PZZf orCU3n79U9d6DgWAS2lrys/NENbxMTmiGqjeftIGMJYIqyi4RrCUC8u7qpUB86QZ i9HyNrPwRxauqSmon4ZoxVsb5f3efjEA -----END CERTIFICATE-----Generated at Thu Nov 6 10:28:47 2025 by rpki-client