$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF064/FC2FF9C644E211EFB13F2214C4F9AE02/5jRJcTfNjgmazQdoyBzzu0QmUbo.mft File: 5jRJcTfNjgmazQdoyBzzu0QmUbo.mft (raw, json) Hash identifier: qSOqhjPW/B7WkbP7K/CfQpjN+laVB6lgb6N6ypeocaU= Subject key identifier: 4D:39:AB:7C:22:6B:69:F3:7F:7A:3F:A4:AB:7B:30:2F:21:22:C7:61 Authority key identifier: E6:34:49:71:37:CD:8E:09:9A:CD:07:68:C8:1C:F3:BB:44:26:51:BA Certificate issuer: /CN=A91CF064/serialNumber=E634497137CD8E099ACD0768C81CF3BB442651BA Certificate serial: F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5jRJcTfNjgmazQdoyBzzu0QmUbo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF064/FC2FF9C644E211EFB13F2214C4F9AE02/5jRJcTfNjgmazQdoyBzzu0QmUbo.mft Manifest number: F3 Signing time: Wed 05 Nov 2025 05:24:23 +0000 Manifest this update: Wed 05 Nov 2025 05:24:22 +0000 Manifest next update: Wed 12 Nov 2025 05:24:22 +0000 Files and hashes: 1: 5jRJcTfNjgmazQdoyBzzu0QmUbo.crl (hash: YXDPoJtrmJ760I7fmWwQ0lUa2EwP58lJhEnwEFU5Zic=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF064/FC2FF9C644E211EFB13F2214C4F9AE02/5jRJcTfNjgmazQdoyBzzu0QmUbo.crl rsync://rpki.apnic.net/member_repository/A91CF064/FC2FF9C644E211EFB13F2214C4F9AE02/5jRJcTfNjgmazQdoyBzzu0QmUbo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5jRJcTfNjgmazQdoyBzzu0QmUbo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:24:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 243 (0xf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF064, serialNumber=E634497137CD8E099ACD0768C81CF3BB442651BA Validity Not Before: Nov 5 05:24:22 2025 GMT Not After : Nov 12 05:24:22 2025 GMT Subject: CN=690adf87-f751 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f6:98:76:ec:48:e3:67:6e:ae:1b:f2:e2:8a: af:59:cd:84:9d:c1:29:f4:7b:ef:08:0e:d2:d1:e4: 4b:b3:65:e7:4b:b6:78:f1:92:de:78:6b:dd:d8:71: ce:7f:65:d7:c0:ba:93:41:aa:ac:c8:3d:96:31:d3: 3e:55:de:1d:fb:76:66:c7:b5:60:0a:83:23:16:bc: a0:5f:18:5a:94:b9:46:03:7d:4f:02:ad:ae:94:09: 8d:19:4a:7b:e1:11:78:b3:3b:d1:5d:ff:48:67:7b: 40:d2:47:e4:e5:19:50:7c:2f:03:6f:57:f0:19:c8: 6d:d5:ed:df:75:1c:dc:ca:63:dd:e2:53:44:49:62: e2:78:da:88:65:21:e2:2c:32:64:a7:45:92:a5:3f: 88:76:c8:f1:b9:01:2c:e0:b6:70:ac:65:bd:43:b6: a3:e6:2e:54:bb:56:3b:ee:ce:1e:3c:b7:c2:6f:5b: e7:19:c2:8b:89:f8:5b:b0:c7:3b:86:12:0d:63:b7: 1b:86:98:72:82:54:c4:0b:2a:cc:88:ba:36:67:a1: 8e:e7:72:09:85:19:24:a7:5a:1f:17:23:88:10:e8: 7f:35:df:e2:7e:cc:97:2b:fe:2a:bb:36:e7:95:3b: a5:a6:45:12:61:c8:aa:c4:05:05:23:dd:22:5a:09: 50:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:39:AB:7C:22:6B:69:F3:7F:7A:3F:A4:AB:7B:30:2F:21:22:C7:61 X509v3 Authority Key Identifier: keyid:E6:34:49:71:37:CD:8E:09:9A:CD:07:68:C8:1C:F3:BB:44:26:51:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF064/FC2FF9C644E211EFB13F2214C4F9AE02/5jRJcTfNjgmazQdoyBzzu0QmUbo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5jRJcTfNjgmazQdoyBzzu0QmUbo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF064/FC2FF9C644E211EFB13F2214C4F9AE02/5jRJcTfNjgmazQdoyBzzu0QmUbo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:09:81:97:7f:bc:1b:76:2b:ba:1c:5e:a2:2f:7d:3b:51:b6: 79:92:ca:72:94:3a:d1:b5:21:6f:86:44:9b:72:9a:9a:8c:56: c3:25:c2:72:f6:08:42:0a:0c:86:11:77:6f:74:95:d0:94:03: 6b:cf:73:e6:0d:35:9f:5f:a5:36:47:e1:9f:0c:56:5a:9d:3c: 5e:54:64:d4:fd:b2:cc:19:cb:30:66:06:4c:6a:91:6e:24:75: 91:de:25:9d:40:8a:45:4b:ed:81:71:6f:6e:9b:2d:9e:3f:41: 37:d6:ff:6d:b3:8f:43:60:8f:21:74:d0:06:65:e6:9c:5a:44: c7:ff:54:49:cf:81:58:c1:1e:60:35:74:5c:43:ad:38:2c:1d: 15:92:19:70:5c:4e:f4:a6:a8:ec:b9:df:dc:14:55:b3:6e:44: 26:40:f6:e4:1b:28:aa:16:65:fe:7a:c4:28:58:a4:e5:8e:dc: 2b:4d:70:d1:80:85:0b:1c:77:a1:1f:21:a8:b7:95:d0:b8:1d: c7:68:66:75:05:25:64:30:c1:fd:ab:df:a6:2a:5f:5e:9b:ce: 2e:16:c8:2d:e1:43:19:64:7d:5a:2e:dc:dc:ca:65:36:26:a9: fb:ed:4d:31:78:b2:29:b9:ea:09:ee:7d:51:70:4f:86:dd:f9: d7:1d:9c:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0YwNjQxMTAvBgNVBAUTKEU2MzQ0OTcxMzdDRDhFMDk5QUNEMDc2OEM4MUNGM0JC NDQyNjUxQkEwHhcNMjUxMTA1MDUyNDIyWhcNMjUxMTEyMDUyNDIyWjAYMRYwFAYD VQQDEw02OTBhZGY4Ny1mNzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzPaYduxI42durhvy4oqvWc2EncEp9HvvCA7S0eRLs2XnS7Z48ZLeeGvd2HHO f2XXwLqTQaqsyD2WMdM+Vd4d+3Zmx7VgCoMjFrygXxhalLlGA31PAq2ulAmNGUp7 4RF4szvRXf9IZ3tA0kfk5RlQfC8Db1fwGcht1e3fdRzcymPd4lNESWLieNqIZSHi LDJkp0WSpT+IdsjxuQEs4LZwrGW9Q7aj5i5Uu1Y77s4ePLfCb1vnGcKLifhbsMc7 hhINY7cbhphyglTECyrMiLo2Z6GO53IJhRkkp1ofFyOIEOh/Nd/ifsyXK/4quzbn lTulpkUSYciqxAUFI90iWglQDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE05q3wi a2nzf3o/pKt7MC8hIsdhMB8GA1UdIwQYMBaAFOY0SXE3zY4Jms0HaMgc87tEJlG6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjA2NC9GQzJGRjlDNjQ0 RTIxMUVGQjEzRjIyMTRDNEY5QUUwMi81alJKY1RmTmpnbWF6UWRveUJ6enUwUW1V Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVqUkpjVGZOamdtYXpRZG95Qnp6dTBRbVViby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjA2NC9GQzJGRjlDNjQ0RTIxMUVGQjEzRjIyMTRDNEY5QUUwMi81alJKY1RmTmpn bWF6UWRveUJ6enUwUW1VYm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMCYGXf7wbdiu6HF6iL307UbZ5kspylDrRtSFvhkSbcpqajFbDJcJy 9ghCCgyGEXdvdJXQlANrz3PmDTWfX6U2R+GfDFZanTxeVGTU/bLMGcswZgZMapFu JHWR3iWdQIpFS+2BcW9umy2eP0E31v9ts49DYI8hdNAGZeacWkTH/1RJz4FYwR5g NXRcQ604LB0VkhlwXE70pqjsud/cFFWzbkQmQPbkGyiqFmX+esQoWKTljtwrTXDR gIULHHehHyGot5XQuB3HaGZ1BSVkMMH9q9+mKl9em84uFsgt4UMZZH1aLtzcymU2 Jqn77U0xeLIpueoJ7n1RcE+G3fnXHZz6 -----END CERTIFICATE-----Generated at Wed Nov 5 18:09:20 2025 by rpki-client