$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft File: 5TfQw0j9fcSfX8OwBmoxxYT64as.mft (raw, json) Hash identifier: zxvqVDkx8Snq9fja9CZIppnjp2JiZLgwAlxmVaYQVUU= Subject key identifier: D8:89:6C:EF:5E:93:B6:E8:68:35:54:D0:6D:2D:3D:7F:8B:C1:0A:34 Authority key identifier: E5:37:D0:C3:48:FD:7D:C4:9F:5F:C3:B0:06:6A:31:C5:84:FA:E1:AB Certificate issuer: /CN=A91D4345/serialNumber=E537D0C348FD7DC49F5FC3B0066A31C584FAE1AB Certificate serial: 0CA7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft Manifest number: 0C9A Signing time: Sun 02 Nov 2025 18:19:59 +0000 Manifest this update: Sun 02 Nov 2025 18:19:58 +0000 Manifest next update: Sun 09 Nov 2025 18:19:58 +0000 Files and hashes: 1: 5TfQw0j9fcSfX8OwBmoxxYT64as.crl (hash: LRZAi8Q7NfqX6rS6TPSW3soGMt0Wd0tOvUwi05E2oyU=) 2: F3529CDCAE1511EE92D99E46C4F9AE02.roa (hash: hTD7DjMK2EnPCWqJypUdiJk7jUHRPt10GcfYU8sN4po=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.crl rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:19:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3239 (0xca7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4345, serialNumber=E537D0C348FD7DC49F5FC3B0066A31C584FAE1AB Validity Not Before: Nov 2 18:19:58 2025 GMT Not After : Nov 9 18:19:58 2025 GMT Subject: CN=6907a0cf-e50f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:a5:64:62:3b:0f:c6:20:ef:0c:29:04:55:cb: 6f:4a:6b:cb:71:53:e6:47:8b:c0:20:6d:a1:78:12: d0:6c:f7:13:38:11:1a:ca:74:7b:33:28:2a:43:1b: 65:b5:f2:9c:38:97:bd:98:08:3a:27:ae:fa:93:a6: 6a:50:4f:67:37:e5:a5:e5:bd:30:57:07:49:62:5a: 11:22:af:72:d6:9c:0a:35:89:9b:5f:7b:6a:76:99: f5:dc:71:82:bc:cd:49:72:b1:14:0e:68:83:33:d6: d6:fc:78:99:e8:8b:d6:32:1b:1e:26:d8:96:08:59: 1f:e5:c9:a6:e3:d1:84:ce:b5:ad:4a:f3:ab:ad:d6: 4a:06:8c:4a:e0:76:b0:24:b2:50:55:db:f9:d6:41: 8b:88:bf:3c:d1:ff:2c:56:ad:2f:ce:21:d6:7d:53: dc:ba:54:95:ce:6d:8d:5c:09:39:56:ba:0d:45:67: e2:ed:92:cc:7f:7a:13:e5:12:a0:1a:30:0a:fe:f8: 5d:eb:01:4f:54:5a:3c:33:cf:58:b1:6a:bd:9d:25: dc:2d:bc:ca:37:94:3e:79:9b:41:1b:e1:c1:16:6c: f1:86:54:7e:73:95:c0:31:09:6e:4c:ab:26:33:f2: 52:47:fe:bd:7f:d6:38:27:6e:93:16:e4:cb:69:78: 6d:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:89:6C:EF:5E:93:B6:E8:68:35:54:D0:6D:2D:3D:7F:8B:C1:0A:34 X509v3 Authority Key Identifier: keyid:E5:37:D0:C3:48:FD:7D:C4:9F:5F:C3:B0:06:6A:31:C5:84:FA:E1:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:cd:f7:ca:73:a2:3e:b9:63:a8:e1:70:87:df:b1:34:01:2b: 9d:08:02:89:12:65:bb:71:3b:d3:db:8d:05:a0:9e:fb:80:01: ab:c6:ee:94:ea:d2:30:fb:1f:9d:8e:f8:05:fa:12:8d:ec:98: be:45:de:5f:d8:1a:f3:2a:e8:b4:8a:57:9a:c9:78:81:45:9f: 85:0e:ec:cc:23:42:cf:2a:b4:73:76:c8:5e:8a:eb:d2:a4:0c: 05:5b:79:99:4b:9e:9a:14:c8:d6:e9:ff:6f:25:43:eb:17:10: ce:79:a9:23:e7:af:33:49:11:c1:ba:4d:41:70:15:4a:20:66: ed:78:58:b5:55:31:ca:e5:9b:73:18:6c:0d:d6:4f:31:38:2c: 64:91:b3:f6:ae:f3:61:9a:64:9e:70:e0:34:f6:cf:b0:20:11: 6d:19:5b:34:17:84:b8:35:74:ee:01:e3:e6:9d:b0:ff:32:8a: 1c:ce:63:04:8c:b3:f8:33:00:7d:d4:f7:c8:d8:d1:c4:e3:83: a8:79:f8:45:44:9b:a0:26:dc:f4:0c:f8:68:51:62:56:b8:d6: fc:2c:f1:3a:75:18:ac:c6:54:0a:3b:39:15:bf:b9:1a:2a:61: 42:a0:8d:b9:91:7e:cf:35:54:b2:28:c6:eb:03:87:eb:5a:bb: 64:87:6d:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQzNDUxMTAvBgNVBAUTKEU1MzdEMEMzNDhGRDdEQzQ5RjVGQzNCMDA2NkEzMUM1 ODRGQUUxQUIwHhcNMjUxMTAyMTgxOTU4WhcNMjUxMTA5MTgxOTU4WjAYMRYwFAYD VQQDEw02OTA3YTBjZi1lNTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6aVkYjsPxiDvDCkEVctvSmvLcVPmR4vAIG2heBLQbPcTOBEaynR7MygqQxtl tfKcOJe9mAg6J676k6ZqUE9nN+Wl5b0wVwdJYloRIq9y1pwKNYmbX3tqdpn13HGC vM1JcrEUDmiDM9bW/HiZ6IvWMhseJtiWCFkf5cmm49GEzrWtSvOrrdZKBoxK4Haw JLJQVdv51kGLiL880f8sVq0vziHWfVPculSVzm2NXAk5VroNRWfi7ZLMf3oT5RKg GjAK/vhd6wFPVFo8M89YsWq9nSXcLbzKN5Q+eZtBG+HBFmzxhlR+c5XAMQluTKsm M/JSR/69f9Y4J26TFuTLaXhtrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNiJbO9e k7boaDVU0G0tPX+LwQo0MB8GA1UdIwQYMBaAFOU30MNI/X3En1/DsAZqMcWE+uGr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDM0NS9FQzc4Q0REQTA1 MzgxMUVBQjU4OTc2NjhDNEY5QUUwMi81VGZRdzBqOWZjU2ZYOE93Qm1veHhZVDY0 YXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVUZlF3MGo5ZmNTZlg4T3dCbW94eFlUNjRhcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDM0NS9FQzc4Q0REQTA1MzgxMUVBQjU4OTc2NjhDNEY5QUUwMi81VGZRdzBqOWZj U2ZYOE93Qm1veHhZVDY0YXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnzffKc6I+uWOo4XCH37E0ASudCAKJEmW7cTvT240FoJ77gAGrxu6U 6tIw+x+djvgF+hKN7Ji+Rd5f2BrzKui0ileayXiBRZ+FDuzMI0LPKrRzdsheiuvS pAwFW3mZS56aFMjW6f9vJUPrFxDOeakj568zSRHBuk1BcBVKIGbteFi1VTHK5Ztz GGwN1k8xOCxkkbP2rvNhmmSecOA09s+wIBFtGVs0F4S4NXTuAePmnbD/MooczmME jLP4MwB91PfI2NHE44OoefhFRJugJtz0DPhoUWJWuNb8LPE6dRisxlQKOzkVv7ka KmFCoI25kX7PNVSyKMbrA4frWrtkh23R -----END CERTIFICATE-----Generated at Tue Nov 4 01:07:27 2025 by rpki-client