$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.mft File: 5KlM-o0vn1s570Y1BZHOMS5RT7M.mft (raw, json) Hash identifier: 5EtgWha2/nEvGki4kClX1ShSnn5Up2DwifBUwBIj6Hg= Subject key identifier: EB:AE:D3:B5:A6:D4:65:25:C7:FC:71:D7:6C:D9:48:2E:C2:AD:F4:29 Authority key identifier: E4:A9:4C:FA:8D:2F:9F:5B:39:EF:46:35:05:91:CE:31:2E:51:4F:B3 Certificate issuer: /CN=A91A3AB3/serialNumber=E4A94CFA8D2F9F5B39EF46350591CE312E514FB3 Certificate serial: 02D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5KlM-o0vn1s570Y1BZHOMS5RT7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.mft Manifest number: 02BC Signing time: Thu 23 Oct 2025 02:58:17 +0000 Manifest this update: Thu 23 Oct 2025 02:58:17 +0000 Manifest next update: Thu 30 Oct 2025 02:58:17 +0000 Files and hashes: 1: 5KlM-o0vn1s570Y1BZHOMS5RT7M.crl (hash: rvVWeC4w9rSVSFrzAhvEY+ZyLFyGGDY5agY3sg5yn0c=) 2: F3997FACE21D11EFA5819B7EC4F9AE02.roa (hash: YJknqh8T+qXW11AGQpkWixPSeb/oim2jtPvDZDC0Y5M=) 3: 5B69CE3A474A11EF8624EE6DC4F9AE02.roa (hash: 0d7okG44VFnG4nuLf3zjFz92ZcS33/9Y18izFVAiNWk=) 4: 3D331986E17211EFA5959B2FC4F9AE02.roa (hash: pOsL4nJKiT9Wc01cD2wPZO+WlYtBX9ZtStyQuOwRJu4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.crl rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5KlM-o0vn1s570Y1BZHOMS5RT7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 02:58:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 722 (0x2d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3AB3, serialNumber=E4A94CFA8D2F9F5B39EF46350591CE312E514FB3 Validity Not Before: Oct 23 02:58:17 2025 GMT Not After : Oct 30 02:58:17 2025 GMT Subject: CN=68f999c9-7cfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:2e:fa:af:7f:57:6a:39:15:ac:c6:ad:8e:1e: bd:09:e0:9a:ef:3c:aa:28:79:61:4d:b4:ac:5d:04: d4:3a:51:c5:c6:61:d4:6b:a6:c2:bd:71:34:ac:2b: c0:ab:e3:3d:df:06:45:f5:9c:de:85:55:fa:20:31: d3:99:92:19:5f:08:d4:6f:23:d8:ea:f5:9a:68:83: 68:a8:15:37:53:8b:84:1d:5a:54:bb:69:b3:26:a1: b1:aa:50:9c:ec:56:55:61:51:e1:ff:c0:3f:08:93: 2c:c8:f6:e2:d4:9c:1f:28:eb:10:c1:46:5a:da:72: bc:4a:e6:bd:90:9c:dc:5c:ad:c4:18:e6:14:ac:e8: 90:00:71:e7:ed:bf:59:94:8d:b4:fa:fb:3a:b8:18: 70:88:1c:05:63:90:2b:c9:85:fb:19:e7:e5:bc:a8: f9:12:1d:d9:23:0f:ec:53:84:cf:62:d1:f0:c3:55: 47:6a:34:c2:df:3c:b5:f9:66:43:c4:3a:89:ef:4f: 77:13:93:f1:0b:6f:94:9a:ce:aa:2f:47:5d:aa:11: 3b:c8:e2:60:c2:0a:14:94:fe:21:1a:7c:d9:9f:b0: 7b:d4:62:2a:60:9c:06:d6:64:d8:9b:47:28:d0:b8: 22:67:db:e6:2d:9a:dc:33:83:33:fc:cf:1c:e3:18: a2:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:AE:D3:B5:A6:D4:65:25:C7:FC:71:D7:6C:D9:48:2E:C2:AD:F4:29 X509v3 Authority Key Identifier: keyid:E4:A9:4C:FA:8D:2F:9F:5B:39:EF:46:35:05:91:CE:31:2E:51:4F:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5KlM-o0vn1s570Y1BZHOMS5RT7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:ed:38:06:98:8a:9b:6c:40:e0:0f:aa:04:eb:cb:fd:11:0c: d7:40:99:c9:1e:cf:90:cf:0e:f2:a8:1a:31:0e:4a:ce:64:ba: 10:f3:a1:22:9f:85:e7:b4:d1:dc:98:2c:11:81:77:58:16:f2: 81:ab:79:04:df:46:af:4d:36:37:6f:60:a3:14:88:bc:9b:5d: c9:24:35:f0:86:39:43:96:40:0c:81:9a:6b:83:22:12:5e:05: 98:3f:57:d0:ff:13:13:1f:3b:6e:ec:25:40:63:f2:14:0a:e9: 15:35:94:d1:73:76:3e:59:6d:96:a9:90:19:c9:a5:72:7a:9e: b3:9d:6c:13:98:72:83:6b:00:93:28:07:f8:ac:f3:c7:d5:1d: a9:c3:2e:fd:10:29:ec:ca:2e:61:47:d8:7d:61:f1:fc:20:87: 50:a7:73:f8:4b:67:21:20:3e:fc:8c:c1:24:37:1d:e9:14:29: e0:16:17:70:c7:c1:1c:dc:23:2e:62:23:9a:75:b7:bd:c2:15: 33:65:5c:34:c5:51:89:ff:46:bd:a8:3e:98:91:a8:12:df:d2: 25:91:0d:2b:cd:ae:6d:59:e5:b9:cd:0d:d8:3e:9b:14:e6:9e: 93:af:f1:21:4b:5c:1c:d3:66:80:06:54:86:e2:d1:e4:50:f5: 37:96:6e:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNBQjMxMTAvBgNVBAUTKEU0QTk0Q0ZBOEQyRjlGNUIzOUVGNDYzNTA1OTFDRTMx MkU1MTRGQjMwHhcNMjUxMDIzMDI1ODE3WhcNMjUxMDMwMDI1ODE3WjAYMRYwFAYD VQQDEw02OGY5OTljOS03Y2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuS76r39XajkVrMatjh69CeCa7zyqKHlhTbSsXQTUOlHFxmHUa6bCvXE0rCvA q+M93wZF9ZzehVX6IDHTmZIZXwjUbyPY6vWaaINoqBU3U4uEHVpUu2mzJqGxqlCc 7FZVYVHh/8A/CJMsyPbi1JwfKOsQwUZa2nK8Sua9kJzcXK3EGOYUrOiQAHHn7b9Z lI20+vs6uBhwiBwFY5AryYX7GeflvKj5Eh3ZIw/sU4TPYtHww1VHajTC3zy1+WZD xDqJ7093E5PxC2+Ums6qL0ddqhE7yOJgwgoUlP4hGnzZn7B71GIqYJwG1mTYm0co 0LgiZ9vmLZrcM4Mz/M8c4xii8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOuu07Wm 1GUlx/xx12zZSC7CrfQpMB8GA1UdIwQYMBaAFOSpTPqNL59bOe9GNQWRzjEuUU+z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0FCMy8wNUVEOTRDRTE5 NEMxMUVEQUQzOEYyMkJDNEY5QUUwMi81S2xNLW8wdm4xczU3MFkxQlpIT01TNVJU N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVLbE0tbzB2bjFzNTcwWTFCWkhPTVM1UlQ3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0FCMy8wNUVEOTRDRTE5NEMxMUVEQUQzOEYyMkJDNEY5QUUwMi81S2xNLW8wdm4x czU3MFkxQlpIT01TNVJUN00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZ7TgGmIqbbEDgD6oE68v9EQzXQJnJHs+Qzw7yqBoxDkrOZLoQ86Ei n4XntNHcmCwRgXdYFvKBq3kE30avTTY3b2CjFIi8m13JJDXwhjlDlkAMgZprgyIS XgWYP1fQ/xMTHztu7CVAY/IUCukVNZTRc3Y+WW2WqZAZyaVyep6znWwTmHKDawCT KAf4rPPH1R2pwy79ECnsyi5hR9h9YfH8IIdQp3P4S2chID78jMEkNx3pFCngFhdw x8Ec3CMuYiOadbe9whUzZVw0xVGJ/0a9qD6YkagS39IlkQ0rza5tWeW5zQ3YPpsU 5p6Tr/EhS1wc02aABlSG4tHkUPU3lm7T -----END CERTIFICATE-----Generated at Sat Oct 25 00:42:36 2025 by rpki-client