$ rpki-client -vvf rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft File: 5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft (raw, json) Hash identifier: FmrDjqlb8c/ANun0t+ZPXLx99TDF42YEZMlcCBAoGlU= Subject key identifier: 74:1E:92:44:9E:C1:53:EB:9E:C0:AA:83:F3:72:A6:23:E5:80:9B:94 Authority key identifier: E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 Certificate issuer: /CN=A91B59E5/serialNumber=E47BF70254532697D20D0D3110F625370D65FA83 Certificate serial: 021B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft Manifest number: 01ED Signing time: Mon 03 Nov 2025 03:18:26 +0000 Manifest this update: Mon 03 Nov 2025 03:18:26 +0000 Manifest next update: Mon 10 Nov 2025 03:18:26 +0000 Files and hashes: 1: 5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl (hash: 5fRZPmJXs1KrUMygFHsOgyOTLDZTAuiQpRiIpK6B3mw=) 2: 9EEE3C44D94F11EF916BCF23C4F9AE02.roa (hash: MOCyDx3MMCgJ0iKiHYJPId15Yf0kFHcGhSay9PLqfd4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:18:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 539 (0x21b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B59E5, serialNumber=E47BF70254532697D20D0D3110F625370D65FA83 Validity Not Before: Nov 3 03:18:26 2025 GMT Not After : Nov 10 03:18:26 2025 GMT Subject: CN=69081f02-950e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:68:7b:2b:d9:e6:47:1d:dd:5e:cc:47:51:e7: ec:d7:aa:a1:ec:3b:37:db:dc:1d:ca:93:17:81:01: 45:9d:89:f4:bf:09:98:1e:65:6e:a4:64:e6:0f:b3: 9c:26:15:a9:00:b5:f5:5d:ce:36:ce:44:c1:dd:4d: 6a:d1:33:66:7b:4b:f1:01:73:65:41:09:4b:17:b6: 28:b5:8b:1d:99:05:42:88:02:e2:78:83:8f:be:5c: 2d:57:b6:f2:1b:52:c3:0e:bd:a0:7f:f2:d7:af:64: fb:69:6e:08:ba:b4:68:9e:7f:16:4a:48:46:ce:e7: ad:9d:2c:e9:8c:4a:c0:c4:59:5d:d4:6a:59:f8:31: da:6a:4b:69:93:7b:e8:be:1d:47:11:2c:f7:2d:ee: 65:87:8c:41:13:0e:28:fe:cb:e9:c8:6a:5e:ca:f3: e1:d7:8a:7f:bc:69:9f:b1:8c:84:a8:f2:02:93:ff: a4:09:1c:17:c0:95:b7:03:0a:2e:d4:c4:3c:52:fc: 5a:a6:b6:77:1d:8c:a7:14:95:bc:c5:bb:6d:74:79: e6:df:21:6d:61:ae:f1:97:d1:f7:cb:cb:45:69:b6: bd:15:e9:bb:b2:45:dd:32:b3:22:ef:4d:3d:a3:c4: 14:36:20:45:49:74:2e:1c:59:af:36:73:ca:e6:95: 92:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:1E:92:44:9E:C1:53:EB:9E:C0:AA:83:F3:72:A6:23:E5:80:9B:94 X509v3 Authority Key Identifier: keyid:E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:9c:0c:c7:44:ac:28:da:e5:dd:e8:c7:e7:86:f5:6c:7e:5d: d4:0b:3a:f0:da:96:e8:14:0a:a5:49:d2:bc:f3:63:41:cb:0b: fe:cb:43:e3:c7:8b:a9:ee:fb:eb:73:f5:ba:31:03:39:de:f7: 92:d5:7c:e8:18:6e:3d:47:c3:87:c0:72:f3:21:0b:f1:ba:41: b4:1b:50:a7:8b:70:71:4a:e4:cf:1a:6a:5d:7f:4e:46:d9:04: 94:ca:8b:6c:8e:eb:b1:23:34:5d:8e:c3:c7:34:1d:8b:ab:15: 54:e6:ab:66:fa:f5:80:6b:74:69:ff:87:6e:02:a1:c9:33:34: 84:1b:4b:ee:b0:b2:87:62:0b:f2:12:25:4a:ee:a7:a0:d7:d0: a1:e5:7b:dd:ac:56:b2:c8:15:01:a7:f4:bf:13:4a:53:90:03: c6:40:37:7d:df:91:b3:11:38:54:d5:fe:da:74:a1:f9:4e:9e: 79:60:61:38:a8:35:ec:f6:c4:4d:e7:4e:b7:a2:86:ff:7e:30: c2:7d:93:09:6a:0a:d1:e2:a7:08:cc:db:d6:65:e7:a3:cd:27: 79:24:86:f2:9a:77:92:38:42:22:2b:76:7c:8c:bf:08:bf:20: d9:d3:e6:30:1f:5a:f9:15:85:e0:c9:6b:3a:30:b1:26:7f:0f: 9b:fc:a0:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU5RTUxMTAvBgNVBAUTKEU0N0JGNzAyNTQ1MzI2OTdEMjBEMEQzMTEwRjYyNTM3 MEQ2NUZBODMwHhcNMjUxMTAzMDMxODI2WhcNMjUxMTEwMDMxODI2WjAYMRYwFAYD VQQDEw02OTA4MWYwMi05NTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2h7K9nmRx3dXsxHUefs16qh7Ds329wdypMXgQFFnYn0vwmYHmVupGTmD7Oc JhWpALX1Xc42zkTB3U1q0TNme0vxAXNlQQlLF7YotYsdmQVCiALieIOPvlwtV7by G1LDDr2gf/LXr2T7aW4IurRonn8WSkhGzuetnSzpjErAxFld1GpZ+DHaaktpk3vo vh1HESz3Le5lh4xBEw4o/svpyGpeyvPh14p/vGmfsYyEqPICk/+kCRwXwJW3Awou 1MQ8UvxaprZ3HYynFJW8xbttdHnm3yFtYa7xl9H3y8tFaba9Fem7skXdMrMi7009 o8QUNiBFSXQuHFmvNnPK5pWS4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHQekkSe wVPrnsCqg/NypiPlgJuUMB8GA1UdIwQYMBaAFOR79wJUUyaX0g0NMRD2JTcNZfqD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTlFNS9ERDlGMUY3QzND MDExMUVFOTFDQkUxNTdDNEY5QUUwMi81SHYzQWxSVEpwZlNEUTB4RVBZbE53MWwt b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVIdjNBbFJUSnBmU0RRMHhFUFlsTncxbC1vTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTlFNS9ERDlGMUY3QzNDMDExMUVFOTFDQkUxNTdDNEY5QUUwMi81SHYzQWxSVEpw ZlNEUTB4RVBZbE53MWwtb00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpnAzHRKwo2uXd6MfnhvVsfl3UCzrw2pboFAqlSdK882NBywv+y0Pj x4up7vvrc/W6MQM53veS1XzoGG49R8OHwHLzIQvxukG0G1Cni3BxSuTPGmpdf05G 2QSUyotsjuuxIzRdjsPHNB2LqxVU5qtm+vWAa3Rp/4duAqHJMzSEG0vusLKHYgvy EiVK7qeg19Ch5XvdrFayyBUBp/S/E0pTkAPGQDd935GzEThU1f7adKH5Tp55YGE4 qDXs9sRN5063oob/fjDCfZMJagrR4qcIzNvWZeejzSd5JIbymneSOEIiK3Z8jL8I vyDZ0+YwH1r5FYXgyWs6MLEmfw+b/KB9 -----END CERTIFICATE-----Generated at Tue Nov 4 08:28:03 2025 by rpki-client