$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1E1C/25222D80920011EF9E0C3D6BC4F9AE02/5CHll4Srb9cADNFZcQHsNg3ZQGY.mft File: 5CHll4Srb9cADNFZcQHsNg3ZQGY.mft (raw, json) Hash identifier: p0v5EmvgQCdJ4SzKibQ+hHXSC0eLmsqpTnUy6wr2/I0= Subject key identifier: 79:33:0B:CF:A7:C8:11:0D:34:0C:8C:68:D4:E1:24:DE:3B:72:39:32 Authority key identifier: E4:21:E5:97:84:AB:6F:D7:00:0C:D1:59:71:01:EC:36:0D:D9:40:66 Certificate issuer: /CN=A91A1E1C/serialNumber=E421E59784AB6FD7000CD1597101EC360DD94066 Certificate serial: BD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5CHll4Srb9cADNFZcQHsNg3ZQGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1E1C/25222D80920011EF9E0C3D6BC4F9AE02/5CHll4Srb9cADNFZcQHsNg3ZQGY.mft Manifest number: BB Signing time: Sun 19 Oct 2025 09:08:09 +0000 Manifest this update: Sun 19 Oct 2025 09:08:09 +0000 Manifest next update: Sun 26 Oct 2025 09:08:09 +0000 Files and hashes: 1: 5CHll4Srb9cADNFZcQHsNg3ZQGY.crl (hash: o9oNNjM7MIF5YCMVHwfQB3a64P78QlA1h8jtkSG3CiE=) 2: 5BC18D6C9A6C11EF8C656668C4F9AE02.roa (hash: 1ljn9MSckdlGvWQ7HkpY2v8ly/0oxPt9z/n6V7MEeDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1E1C/25222D80920011EF9E0C3D6BC4F9AE02/5CHll4Srb9cADNFZcQHsNg3ZQGY.crl rsync://rpki.apnic.net/member_repository/A91A1E1C/25222D80920011EF9E0C3D6BC4F9AE02/5CHll4Srb9cADNFZcQHsNg3ZQGY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5CHll4Srb9cADNFZcQHsNg3ZQGY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:08:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1E1C, serialNumber=E421E59784AB6FD7000CD1597101EC360DD94066 Validity Not Before: Oct 19 09:08:09 2025 GMT Not After : Oct 26 09:08:09 2025 GMT Subject: CN=68f4aa79-fcdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:26:fb:d8:80:13:a5:25:3f:06:8a:b9:5f:3d: b3:31:91:c6:7a:b9:f6:60:33:11:c1:2e:51:a7:2b: e2:c8:6f:9a:6b:a3:5d:8d:93:71:a9:c1:25:c8:99: e8:91:60:b8:9c:6a:ea:73:2a:54:20:a8:2c:c4:f7: ab:99:05:91:ce:8b:08:d3:12:01:c8:45:5f:f6:5d: 78:77:78:23:2d:e4:d3:4d:cb:44:35:1b:a3:f5:2d: 64:0a:86:fa:9e:c7:49:55:80:dd:13:79:12:85:43: 0d:be:27:05:59:a3:c9:4c:f8:6b:84:aa:7e:80:c6: ac:d3:ae:cf:48:72:ec:e4:d4:f5:15:0e:00:4a:2f: 24:60:27:ac:46:ef:76:e9:37:02:f6:73:ea:bd:cb: 78:76:b0:f1:18:40:b3:d1:b6:c6:6f:bd:42:15:cb: 92:16:7d:fe:7c:00:44:99:16:6d:28:af:db:cb:36: 2b:47:00:a1:34:80:05:f3:0c:0e:53:10:e5:5f:0d: 80:ac:f1:b4:d2:06:b2:95:68:8c:19:69:e3:7b:de: 2b:5f:5e:ad:ca:cc:ed:26:b6:05:07:26:d1:bd:9a: 90:74:67:69:ec:04:1e:db:ce:8b:b4:56:4d:21:c7: c4:e7:48:5d:dd:40:5f:93:5b:7c:c2:91:9f:c4:9b: df:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:33:0B:CF:A7:C8:11:0D:34:0C:8C:68:D4:E1:24:DE:3B:72:39:32 X509v3 Authority Key Identifier: keyid:E4:21:E5:97:84:AB:6F:D7:00:0C:D1:59:71:01:EC:36:0D:D9:40:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1E1C/25222D80920011EF9E0C3D6BC4F9AE02/5CHll4Srb9cADNFZcQHsNg3ZQGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5CHll4Srb9cADNFZcQHsNg3ZQGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1E1C/25222D80920011EF9E0C3D6BC4F9AE02/5CHll4Srb9cADNFZcQHsNg3ZQGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:ef:99:cb:b5:22:a1:7f:cf:2b:00:c4:52:60:23:7f:4f:f2: e1:8a:5e:b4:0e:c0:b0:1a:33:bb:2f:7f:1a:92:08:be:cc:42: 64:e6:a2:a6:da:0b:fd:b5:fc:51:8a:49:77:d8:ac:f2:ff:29: 3d:07:15:16:96:18:97:8f:f2:6b:c4:8f:06:0d:d4:ca:dd:03: 7d:32:e2:0b:b8:30:51:7b:bf:cd:8a:db:04:a9:c0:9b:62:bb: 11:d0:b9:a7:ac:48:5f:09:33:a2:82:7a:4e:9f:7b:ef:36:ae: 9f:11:45:03:c1:f9:a7:ef:05:6e:91:10:01:a8:42:ed:42:74: 7b:d2:6c:4a:58:12:90:71:40:1a:06:6b:12:80:e0:22:29:c0: dd:92:54:b6:7c:08:17:cf:d0:36:30:80:b7:e8:07:bb:56:8c: 74:a8:c5:1a:db:4e:d6:16:91:a3:2a:31:0c:ad:5f:c0:2a:65: e4:c1:37:a3:18:59:33:2e:39:f7:ec:fe:59:58:2e:b1:cd:3c: 19:ae:84:8b:90:51:ff:ba:01:1c:06:43:13:74:d0:15:3b:d1: e2:16:19:cb:50:06:fe:28:a7:64:de:e1:e7:41:ab:b7:fe:89: bb:28:81:3a:d0:7d:79:38:1e:66:46:32:df:b4:e9:17:fe:ce: 64:15:e5:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFFMUMxMTAvBgNVBAUTKEU0MjFFNTk3ODRBQjZGRDcwMDBDRDE1OTcxMDFFQzM2 MEREOTQwNjYwHhcNMjUxMDE5MDkwODA5WhcNMjUxMDI2MDkwODA5WjAYMRYwFAYD VQQDEw02OGY0YWE3OS1mY2RiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwCb72IATpSU/Boq5Xz2zMZHGern2YDMRwS5RpyviyG+aa6NdjZNxqcElyJno kWC4nGrqcypUIKgsxPermQWRzosI0xIByEVf9l14d3gjLeTTTctENRuj9S1kCob6 nsdJVYDdE3kShUMNvicFWaPJTPhrhKp+gMas067PSHLs5NT1FQ4ASi8kYCesRu92 6TcC9nPqvct4drDxGECz0bbGb71CFcuSFn3+fABEmRZtKK/byzYrRwChNIAF8wwO UxDlXw2ArPG00gaylWiMGWnje94rX16tysztJrYFBybRvZqQdGdp7AQe286LtFZN IcfE50hd3UBfk1t8wpGfxJvfOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHkzC8+n yBENNAyMaNThJN47cjkyMB8GA1UdIwQYMBaAFOQh5ZeEq2/XAAzRWXEB7DYN2UBm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUUxQy8yNTIyMkQ4MDky MDAxMUVGOUUwQzNENkJDNEY5QUUwMi81Q0hsbDRTcmI5Y0FETkZaY1FIc05nM1pR R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVDSGxsNFNyYjljQURORlpjUUhzTmczWlFHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUUxQy8yNTIyMkQ4MDkyMDAxMUVGOUUwQzNENkJDNEY5QUUwMi81Q0hsbDRTcmI5 Y0FETkZaY1FIc05nM1pRR1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBg75nLtSKhf88rAMRSYCN/T/Lhil60DsCwGjO7L38akgi+zEJk5qKm 2gv9tfxRikl32Kzy/yk9BxUWlhiXj/JrxI8GDdTK3QN9MuILuDBRe7/NitsEqcCb YrsR0LmnrEhfCTOignpOn3vvNq6fEUUDwfmn7wVukRABqELtQnR70mxKWBKQcUAa BmsSgOAiKcDdklS2fAgXz9A2MIC36Ae7Vox0qMUa207WFpGjKjEMrV/AKmXkwTej GFkzLjn37P5ZWC6xzTwZroSLkFH/ugEcBkMTdNAVO9HiFhnLUAb+KKdk3uHnQau3 /om7KIE60H15OB5mRjLftOkX/s5kFeWB -----END CERTIFICATE-----Generated at Wed Oct 22 18:40:01 2025 by rpki-client