$ rpki-client -vvf rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.mft File: 5IPa-2wrg71IK24pCn5AU1W1Ltk.mft (raw, json) Hash identifier: /cj8fB5cgxFSvTLFfepmvtM1zQzPFVuKRj0Bmi6oyUo= Subject key identifier: 26:F4:67:FD:60:70:B8:72:18:66:F1:F5:6E:C3:35:F4:A0:46:E7:46 Authority key identifier: E4:83:DA:FB:6C:2B:83:BD:48:2B:6E:29:0A:7E:40:53:55:B5:2E:D9 Certificate issuer: /CN=A919136B/serialNumber=E483DAFB6C2B83BD482B6E290A7E405355B52ED9 Certificate serial: 10AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5IPa-2wrg71IK24pCn5AU1W1Ltk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.mft Manifest number: 109E Signing time: Sun 02 Nov 2025 17:22:14 +0000 Manifest this update: Sun 02 Nov 2025 17:22:13 +0000 Manifest next update: Sun 09 Nov 2025 17:22:13 +0000 Files and hashes: 1: 5IPa-2wrg71IK24pCn5AU1W1Ltk.crl (hash: T54hWJrQzROwm0sHdEhqe9F6VubsomQWrxCWZyaAnS8=) 2: 99B6039C215311EA86E1E020C4F9AE02.roa (hash: GBYQ/lKi3z5roPUPwktfDVMLitw965pomXZAG5jfako=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.crl rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5IPa-2wrg71IK24pCn5AU1W1Ltk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:22:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4266 (0x10aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919136B, serialNumber=E483DAFB6C2B83BD482B6E290A7E405355B52ED9 Validity Not Before: Nov 2 17:22:13 2025 GMT Not After : Nov 9 17:22:13 2025 GMT Subject: CN=69079345-a779 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:80:1c:77:a3:c5:76:a7:b1:09:89:19:03:2b: 4f:3d:16:41:63:29:fb:bc:b6:02:3b:0b:2a:78:f9: 2f:5a:54:33:59:15:bc:b9:f7:fc:0b:d3:c5:a9:9e: f1:1b:46:64:bd:04:56:ef:31:cf:5f:80:4e:bd:51: 3d:1f:10:e3:ec:2d:00:00:5c:8c:87:b7:d2:41:1f: 5f:eb:44:22:1c:6b:0c:d1:0b:79:34:59:f2:e7:71: 1f:6f:ad:76:6a:2d:53:c8:a2:ba:60:9f:fa:fd:7b: ab:89:9c:72:34:7a:b8:bd:28:30:82:71:3a:88:65: 14:40:49:f5:81:a0:8a:6e:95:a4:c0:21:4a:2f:9b: 65:e3:f0:21:d7:aa:3d:c6:89:f5:6e:ce:56:83:a7: c1:e3:07:50:ee:5f:36:5c:e1:a5:ca:98:69:d3:59: bc:3e:2d:de:96:a4:4d:19:fd:2d:bb:53:6d:86:59: eb:6b:e1:bb:11:a3:1c:4b:ef:50:1a:81:05:cb:36: b2:27:83:af:54:2f:97:35:5a:e2:bc:45:50:ca:8c: 4d:f6:3a:e0:8e:0e:e7:9b:50:87:08:16:9b:d0:d9: 8f:c1:c0:46:ed:99:26:06:6d:7c:18:60:5d:7b:64: a9:55:33:fb:0c:75:e7:92:86:d7:f7:15:7a:8e:4e: 3d:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:F4:67:FD:60:70:B8:72:18:66:F1:F5:6E:C3:35:F4:A0:46:E7:46 X509v3 Authority Key Identifier: keyid:E4:83:DA:FB:6C:2B:83:BD:48:2B:6E:29:0A:7E:40:53:55:B5:2E:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5IPa-2wrg71IK24pCn5AU1W1Ltk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:e2:75:95:19:59:5e:d0:1f:66:89:a3:07:e1:af:bf:57:f0: 3e:7d:57:b9:8b:ba:1d:67:27:ec:ba:9f:dd:ca:a6:86:c0:0d: 31:15:2e:18:2b:d9:52:36:ac:b0:ef:57:f8:f7:a9:50:b3:f2: 17:99:13:bb:01:24:90:ff:ea:aa:43:d9:08:0a:a2:ff:0c:80: 6b:99:d5:64:70:11:56:9e:f4:b7:75:ba:3e:a1:eb:b8:5c:9f: 3e:1a:b2:cd:f8:88:f0:5d:5f:40:25:fa:fc:ac:4f:d9:f9:29: 73:a1:f7:ca:3c:82:d2:3e:40:0f:d1:21:fb:66:50:d0:25:e5: ec:90:a1:04:15:14:42:dd:c4:90:35:6d:8d:5a:3a:ad:9c:74: 43:2f:24:06:96:65:65:07:1b:1b:28:97:de:4b:9a:c2:35:b2: 3d:7d:d6:2f:d0:b4:d1:b7:b8:5d:a8:4a:db:0b:2b:9b:1f:c2: 40:f1:ee:3e:be:b8:fd:7c:6c:9c:77:a4:46:92:ad:a9:d4:4d: 70:0d:f6:e9:0d:c3:45:26:c7:f1:1e:14:1b:02:8e:f8:6d:d4: a6:b6:c0:33:4b:f1:aa:79:45:c7:2f:9f:de:5b:63:ea:1d:cd: 36:61:b8:7a:f8:e2:7d:f5:2f:91:08:df:5d:7f:f2:ae:51:44: b2:84:c8:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTEzNkIxMTAvBgNVBAUTKEU0ODNEQUZCNkMyQjgzQkQ0ODJCNkUyOTBBN0U0MDUz NTVCNTJFRDkwHhcNMjUxMTAyMTcyMjEzWhcNMjUxMTA5MTcyMjEzWjAYMRYwFAYD VQQDEw02OTA3OTM0NS1hNzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz4Acd6PFdqexCYkZAytPPRZBYyn7vLYCOwsqePkvWlQzWRW8uff8C9PFqZ7x G0ZkvQRW7zHPX4BOvVE9HxDj7C0AAFyMh7fSQR9f60QiHGsM0Qt5NFny53Efb612 ai1TyKK6YJ/6/XuriZxyNHq4vSgwgnE6iGUUQEn1gaCKbpWkwCFKL5tl4/Ah16o9 xon1bs5Wg6fB4wdQ7l82XOGlyphp01m8Pi3elqRNGf0tu1Nthlnra+G7EaMcS+9Q GoEFyzayJ4OvVC+XNVrivEVQyoxN9jrgjg7nm1CHCBab0NmPwcBG7ZkmBm18GGBd e2SpVTP7DHXnkobX9xV6jk49BwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCb0Z/1g cLhyGGbx9W7DNfSgRudGMB8GA1UdIwQYMBaAFOSD2vtsK4O9SCtuKQp+QFNVtS7Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTM2Qi9GN0M4N0U4NDNB N0IxMUU5QUNCQzZBMThDNEY5QUUwMi81SVBhLTJ3cmc3MUlLMjRwQ241QVUxVzFM dGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVJUGEtMndyZzcxSUsyNHBDbjVBVTFXMUx0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTM2Qi9GN0M4N0U4NDNBN0IxMUU5QUNCQzZBMThDNEY5QUUwMi81SVBhLTJ3cmc3 MUlLMjRwQ241QVUxVzFMdGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCI4nWVGVle0B9miaMH4a+/V/A+fVe5i7odZyfsup/dyqaGwA0xFS4Y K9lSNqyw71f496lQs/IXmRO7ASSQ/+qqQ9kICqL/DIBrmdVkcBFWnvS3dbo+oeu4 XJ8+GrLN+IjwXV9AJfr8rE/Z+SlzoffKPILSPkAP0SH7ZlDQJeXskKEEFRRC3cSQ NW2NWjqtnHRDLyQGlmVlBxsbKJfeS5rCNbI9fdYv0LTRt7hdqErbCyubH8JA8e4+ vrj9fGycd6RGkq2p1E1wDfbpDcNFJsfxHhQbAo74bdSmtsAzS/GqeUXHL5/eW2Pq Hc02Ybh6+OJ99S+RCN9df/KuUUSyhMgo -----END CERTIFICATE-----Generated at Mon Nov 3 18:19:20 2025 by rpki-client