$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft File: 5dmsjXWxbbnyPICt2LO72OWLaHg.mft (raw, json) Hash identifier: lrd8tBpeK3GlZpF+oHkTDZJsW8UHW0fzuPG7vngWFLQ= Subject key identifier: 02:19:62:32:91:46:FF:37:8B:EB:F2:8A:63:29:B6:4A:3F:1E:59:FA Authority key identifier: E5:D9:AC:8D:75:B1:6D:B9:F2:3C:80:AD:D8:B3:BB:D8:E5:8B:68:78 Certificate issuer: /CN=A91D8400/serialNumber=E5D9AC8D75B16DB9F23C80ADD8B3BBD8E58B6878 Certificate serial: 044B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5dmsjXWxbbnyPICt2LO72OWLaHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft Manifest number: 0446 Signing time: Mon 03 Nov 2025 00:12:03 +0000 Manifest this update: Mon 03 Nov 2025 00:12:02 +0000 Manifest next update: Mon 10 Nov 2025 00:12:02 +0000 Files and hashes: 1: 5dmsjXWxbbnyPICt2LO72OWLaHg.crl (hash: Fu3t3XNlCCvRsjE5OpQsshc0Eo1hjzG1xpWmgnMd8nk=) 2: 46C1646C781611ECADCDAB0EC4F9AE02.roa (hash: X0bJVDOuH3hxzxDqtFhaGE8zyPysnrk6jtT4gfdw6QQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.crl rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5dmsjXWxbbnyPICt2LO72OWLaHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:12:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1099 (0x44b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8400, serialNumber=E5D9AC8D75B16DB9F23C80ADD8B3BBD8E58B6878 Validity Not Before: Nov 3 00:12:02 2025 GMT Not After : Nov 10 00:12:02 2025 GMT Subject: CN=6907f352-2cfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:63:48:34:b0:54:40:58:55:d6:2f:69:70:7d: d7:20:15:c0:20:33:f2:fb:fb:60:d7:3c:b5:27:00: 81:39:4a:d1:95:b8:23:7d:ad:c2:02:e2:33:3b:55: 6c:eb:1f:1b:bf:b9:e2:3a:7d:69:d1:81:36:e0:d3: 12:5e:50:66:4f:a3:b9:d2:b5:5f:6a:c7:d4:9e:34: 11:42:73:08:85:7e:c3:b6:f4:15:be:a9:fc:08:87: cc:b4:d3:91:2e:8d:3a:cc:b1:84:90:4e:61:8d:a9: 44:63:97:de:60:39:78:5d:af:ae:31:37:84:4f:ef: 25:cf:0c:71:86:7d:53:a0:d0:94:e8:1b:90:e1:d3: 10:99:0f:3f:d0:15:2b:26:d4:19:2d:b7:a6:9b:6f: ae:30:33:b2:ea:0f:cd:85:3f:71:1b:43:2d:cf:a3: 0c:ae:73:a7:7f:a0:77:81:76:04:ca:a6:67:e2:b3: b5:dd:c0:ce:d6:94:33:56:c9:31:ce:bb:ba:35:37: 55:9e:fc:f4:2b:f5:9f:e7:b9:b2:a2:20:04:df:56: 2d:8c:88:cc:17:85:77:dc:bc:ac:be:74:d5:43:61: b3:24:93:16:12:8e:7b:be:b9:6a:7c:a4:a4:ff:69: 08:5b:ae:4f:0b:5b:30:12:24:d1:f1:9c:ed:30:3a: 3f:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:19:62:32:91:46:FF:37:8B:EB:F2:8A:63:29:B6:4A:3F:1E:59:FA X509v3 Authority Key Identifier: keyid:E5:D9:AC:8D:75:B1:6D:B9:F2:3C:80:AD:D8:B3:BB:D8:E5:8B:68:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5dmsjXWxbbnyPICt2LO72OWLaHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:54:49:c8:d8:f0:14:3c:9c:ec:5c:d4:3b:2c:64:e2:6d:3c: dc:68:bf:81:40:97:18:fa:49:05:ac:a8:47:8f:84:2b:ec:12: d0:c3:9e:63:1c:36:c0:7b:f4:e4:c5:cf:3b:84:ce:a7:82:36: 7c:a2:0f:39:27:41:5c:38:cb:fe:16:64:43:19:6d:c0:29:c0: 83:c1:27:35:2d:68:97:63:b9:41:af:c1:a0:4b:fa:12:9c:dd: d7:60:85:51:b6:bf:21:95:e6:0e:2c:21:30:af:c6:7b:62:16: 61:b7:2b:50:6b:fa:fc:9e:df:5e:51:77:7b:e7:25:38:52:85: 80:75:e6:20:ab:b7:b8:55:1f:0d:65:9b:f2:de:71:f9:69:f9: a7:e3:6e:d0:4f:4d:ff:da:54:c8:62:14:f5:e2:00:56:18:a5: 62:ed:6b:c4:32:d8:62:45:33:d6:ea:3a:95:08:12:a4:30:48: d6:11:23:bc:5d:29:90:7a:71:f8:dc:11:17:fc:51:01:d5:e1: 82:f9:26:a5:85:f4:73:0a:3a:de:21:12:7e:a6:c3:75:09:0c: 4c:ca:62:79:d9:0e:91:eb:d0:5c:a4:1c:6c:04:c5:4f:76:93: 31:72:4d:05:26:8c:57:6e:95:cf:89:90:b7:7a:0a:f0:f8:3d: 62:09:1a:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg0MDAxMTAvBgNVBAUTKEU1RDlBQzhENzVCMTZEQjlGMjNDODBBREQ4QjNCQkQ4 RTU4QjY4NzgwHhcNMjUxMTAzMDAxMjAyWhcNMjUxMTEwMDAxMjAyWjAYMRYwFAYD VQQDEw02OTA3ZjM1Mi0yY2ZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq2NINLBUQFhV1i9pcH3XIBXAIDPy+/tg1zy1JwCBOUrRlbgjfa3CAuIzO1Vs 6x8bv7niOn1p0YE24NMSXlBmT6O50rVfasfUnjQRQnMIhX7DtvQVvqn8CIfMtNOR Lo06zLGEkE5hjalEY5feYDl4Xa+uMTeET+8lzwxxhn1ToNCU6BuQ4dMQmQ8/0BUr JtQZLbemm2+uMDOy6g/NhT9xG0Mtz6MMrnOnf6B3gXYEyqZn4rO13cDO1pQzVskx zru6NTdVnvz0K/Wf57myoiAE31YtjIjMF4V33LysvnTVQ2GzJJMWEo57vrlqfKSk /2kIW65PC1swEiTR8ZztMDo/NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAIZYjKR Rv83i+vyimMptko/Hln6MB8GA1UdIwQYMBaAFOXZrI11sW258jyArdizu9jli2h4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODQwMC9GNjgxQkJBNDc4 MTExMUVDQTM5N0QwMzRDNEY5QUUwMi81ZG1zalhXeGJibnlQSUN0MkxPNzJPV0xh SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVkbXNqWFd4YmJueVBJQ3QyTE83Mk9XTGFIZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODQwMC9GNjgxQkJBNDc4MTExMUVDQTM5N0QwMzRDNEY5QUUwMi81ZG1zalhXeGJi bnlQSUN0MkxPNzJPV0xhSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJVEnI2PAUPJzsXNQ7LGTibTzcaL+BQJcY+kkFrKhHj4Qr7BLQw55j HDbAe/Tkxc87hM6ngjZ8og85J0FcOMv+FmRDGW3AKcCDwSc1LWiXY7lBr8GgS/oS nN3XYIVRtr8hleYOLCEwr8Z7YhZhtytQa/r8nt9eUXd75yU4UoWAdeYgq7e4VR8N ZZvy3nH5afmn427QT03/2lTIYhT14gBWGKVi7WvEMthiRTPW6jqVCBKkMEjWESO8 XSmQenH43BEX/FEB1eGC+SalhfRzCjreIRJ+psN1CQxMymJ52Q6R69BcpBxsBMVP dpMxck0FJoxXbpXPiZC3egrw+D1iCRpu -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:14 2025 by rpki-client