$ rpki-client -vvf rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft File: 5esYDNbcUWxm01KwR7npxaUCcOM.mft (raw, json) Hash identifier: iZUx9xac1NWlH+cVRQhchxzfqZx19K3SOANrEx04BYI= Subject key identifier: FC:33:4B:9B:2F:DB:CF:A7:AC:69:E9:5A:F6:05:04:6B:88:17:49:CA Authority key identifier: E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 Certificate issuer: /CN=A91ABFD9/serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Certificate serial: 0913 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft Manifest number: 08F2 Signing time: Sun 26 Oct 2025 20:57:41 +0000 Manifest this update: Sun 26 Oct 2025 20:57:40 +0000 Manifest next update: Sun 02 Nov 2025 20:57:40 +0000 Files and hashes: 1: 5esYDNbcUWxm01KwR7npxaUCcOM.crl (hash: xL+wtSXuJPFG6kVpL7s4rC9Vp7e/0TGKWW8B48b5MGk=) 2: E2E21364C4F811EAB8D31113C4F9AE02.roa (hash: DP8lG9el46NF03CMOLzrMzttp6pe74xkZuZziqnxmJ4=) 3: F1A54AC47A5611EB876D281FC4F9AE02.roa (hash: mYMneOcMzVSjWOSfz2l4H7HMRndq3Nml1V+jd7+ZSu8=) 4: 36945EC2232711EBA0F14F17C4F9AE02.roa (hash: EeEFahw1S1xzRQMqYweCJnCU9S+/LW0T/PuPJ3E+UWM=) 5: 6AE50E1C21E011EBBF36CD21C4F9AE02.roa (hash: LdDw24/Or3M92peybKBWsStvdJIFCX02q7LqBzB3QW8=) 6: E22ECDEAC4F811EAB8D31113C4F9AE02.roa (hash: 1QX8DyT1A4CiikAaWBicwaY94hYcJgWNUoKN7UlLwiU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Nov 2025 20:57:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2323 (0x913) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ABFD9, serialNumber=E5EB180CD6DC516C66D352B047B9E9C5A50270E3 Validity Not Before: Oct 26 20:57:40 2025 GMT Not After : Nov 2 20:57:40 2025 GMT Subject: CN=68fe8b45-78d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:83:ee:b1:73:66:d8:20:d2:11:51:04:31:6c: d3:df:f8:a1:f4:d7:da:76:f9:96:c6:b3:c3:b0:b6: a6:0a:c4:45:e2:b3:68:7a:22:24:60:56:0d:54:a7: 33:4f:bf:29:f8:aa:ed:5e:54:e2:75:29:ba:6e:49: 02:fc:61:e5:2a:26:cf:fd:ef:e3:74:50:41:76:21: c2:11:1e:b3:55:35:ea:db:24:a2:d6:a2:58:b2:3c: 4a:38:24:6b:e7:91:b3:b9:69:fb:72:2b:7d:d7:8a: c3:64:ec:71:92:1d:d7:63:0d:00:2b:62:44:a8:10: 38:2d:61:a1:de:dd:8c:85:e0:a5:b1:ee:90:83:63: 03:97:58:2f:f3:80:58:c0:0a:b8:ec:b5:8f:50:b6: 32:8e:cb:a9:57:18:86:8a:5b:89:c5:df:c5:67:b5: b4:32:43:a3:ac:f4:60:f7:fd:a6:52:a6:ac:71:2c: 43:ef:4c:c9:a5:98:8a:0f:3a:2c:46:e1:28:59:de: da:d9:c1:76:82:e9:72:8c:bd:99:53:9b:42:96:24: 59:bb:63:19:8e:dc:0b:e8:ae:44:e5:2a:84:09:23: 14:87:80:b0:57:8e:db:a7:6b:49:2d:b7:ae:18:01: 14:b2:43:78:c2:87:cb:31:dc:d3:d8:de:2e:6e:34: 54:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:33:4B:9B:2F:DB:CF:A7:AC:69:E9:5A:F6:05:04:6B:88:17:49:CA X509v3 Authority Key Identifier: keyid:E5:EB:18:0C:D6:DC:51:6C:66:D3:52:B0:47:B9:E9:C5:A5:02:70:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5esYDNbcUWxm01KwR7npxaUCcOM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ABFD9/4AE8041EB9D711EA9CF51E5FC4F9AE02/5esYDNbcUWxm01KwR7npxaUCcOM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:99:1b:8a:d3:37:c8:3b:f2:5f:a7:62:19:58:6e:26:fa:5c: 35:d5:e5:67:4a:fc:c8:80:7f:0d:94:79:df:11:6f:3a:e2:41: f5:39:e0:1d:9a:58:b2:04:17:b0:de:80:3f:55:df:27:5f:e1: a9:f8:b5:b2:e2:19:cc:70:ec:a3:e1:65:01:ee:af:10:99:e6: 2c:76:f8:b9:91:f8:bb:61:7d:43:e2:be:14:f5:7f:41:50:fb: 19:68:f0:2a:d9:a5:b8:a3:8d:df:9e:32:9c:72:ae:e5:24:68: 13:85:16:d8:a2:4d:93:94:70:29:db:0d:ee:bc:67:cf:bc:86: db:40:13:ce:cf:00:61:e2:c6:20:42:e6:c1:3e:9c:94:57:88: 4c:63:b0:7c:6c:91:97:4a:0a:16:86:5c:91:23:30:c0:a6:39: 2b:53:6b:93:35:5d:5a:ed:19:c2:58:25:8f:56:65:bd:4b:21: 8c:d8:7c:f5:7d:f5:65:bf:4c:0d:64:88:d6:65:2c:5a:61:81: eb:bd:aa:f1:16:c0:be:91:2a:de:ff:e4:98:b7:8f:e2:8d:64: 51:68:23:ac:ea:63:8f:5e:ea:ce:29:2d:ca:0c:ec:84:43:02: ab:1c:07:a7:67:e5:a4:26:5f:75:d0:3f:70:42:49:be:08:92: 6f:90:01:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUJGRDkxMTAvBgNVBAUTKEU1RUIxODBDRDZEQzUxNkM2NkQzNTJCMDQ3QjlFOUM1 QTUwMjcwRTMwHhcNMjUxMDI2MjA1NzQwWhcNMjUxMTAyMjA1NzQwWjAYMRYwFAYD VQQDEw02OGZlOGI0NS03OGQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA14PusXNm2CDSEVEEMWzT3/ih9NfadvmWxrPDsLamCsRF4rNoeiIkYFYNVKcz T78p+KrtXlTidSm6bkkC/GHlKibP/e/jdFBBdiHCER6zVTXq2ySi1qJYsjxKOCRr 55GzuWn7cit914rDZOxxkh3XYw0AK2JEqBA4LWGh3t2MheClse6Qg2MDl1gv84BY wAq47LWPULYyjsupVxiGiluJxd/FZ7W0MkOjrPRg9/2mUqascSxD70zJpZiKDzos RuEoWd7a2cF2gulyjL2ZU5tCliRZu2MZjtwL6K5E5SqECSMUh4CwV47bp2tJLbeu GAEUskN4wofLMdzT2N4ubjRUowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPwzS5sv 28+nrGnpWvYFBGuIF0nKMB8GA1UdIwQYMBaAFOXrGAzW3FFsZtNSsEe56cWlAnDj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQkZEOS80QUU4MDQxRUI5 RDcxMUVBOUNGNTFFNUZDNEY5QUUwMi81ZXNZRE5iY1VXeG0wMUt3UjducHhhVUNj T00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVlc1lETmJjVVd4bTAxS3dSN25weGFVQ2NPTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QkZEOS80QUU4MDQxRUI5RDcxMUVBOUNGNTFFNUZDNEY5QUUwMi81ZXNZRE5iY1VX eG0wMUt3UjducHhhVUNjT00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbmRuK0zfIO/Jfp2IZWG4m+lw11eVnSvzIgH8NlHnfEW864kH1OeAd mliyBBew3oA/Vd8nX+Gp+LWy4hnMcOyj4WUB7q8QmeYsdvi5kfi7YX1D4r4U9X9B UPsZaPAq2aW4o43fnjKccq7lJGgThRbYok2TlHAp2w3uvGfPvIbbQBPOzwBh4sYg QubBPpyUV4hMY7B8bJGXSgoWhlyRIzDApjkrU2uTNV1a7RnCWCWPVmW9SyGM2Hz1 ffVlv0wNZIjWZSxaYYHrvarxFsC+kSre/+SYt4/ijWRRaCOs6mOPXurOKS3KDOyE QwKrHAenZ+WkJl910D9wQkm+CJJvkAH8 -----END CERTIFICATE-----Generated at Tue Oct 28 00:35:06 2025 by rpki-client