$ rpki-client -vvf rpki.apnic.net/member_repository/A91D94CD/2CD7FD0E9EC811F08CD2AC7BC4F9AE02/5wYBKhBr0JRljmBMVgMFDxTcP0w.mft File: 5wYBKhBr0JRljmBMVgMFDxTcP0w.mft (raw, json) Hash identifier: 6zTC7aftJgJo+J6mWOe7j0TdjJELjTBIVihE5C46qTs= Subject key identifier: 95:20:0F:92:8C:C4:5D:7C:BB:B2:CB:47:D1:A2:1F:00:0E:DE:4A:84 Authority key identifier: E7:06:01:2A:10:6B:D0:94:65:8E:60:4C:56:03:05:0F:14:DC:3F:4C Certificate issuer: /CN=A91D94CD/serialNumber=E706012A106BD094658E604C5603050F14DC3F4C Certificate serial: 0D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5wYBKhBr0JRljmBMVgMFDxTcP0w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D94CD/2CD7FD0E9EC811F08CD2AC7BC4F9AE02/5wYBKhBr0JRljmBMVgMFDxTcP0w.mft Manifest number: 0B Signing time: Fri 17 Oct 2025 11:53:23 +0000 Manifest this update: Fri 17 Oct 2025 11:53:23 +0000 Manifest next update: Fri 24 Oct 2025 11:53:23 +0000 Files and hashes: 1: 5wYBKhBr0JRljmBMVgMFDxTcP0w.crl (hash: rlTHvCDPCcMEl8WQ05dRp12ySxm7CRhitK0nmQOvt3c=) 2: 67D535ACA32311F0A8D9D520C4F9AE02.roa (hash: ZY5NmPmVYKYD8Ao1eKkQAecn1eXKiXTVvX4cp2N0VAQ=) 3: 6767E894A32311F0A8D9D520C4F9AE02.roa (hash: qcRG/dop8kZF9v/2SljCJ8so+bQR2vG4pDOzpAMHKg4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D94CD/2CD7FD0E9EC811F08CD2AC7BC4F9AE02/5wYBKhBr0JRljmBMVgMFDxTcP0w.crl rsync://rpki.apnic.net/member_repository/A91D94CD/2CD7FD0E9EC811F08CD2AC7BC4F9AE02/5wYBKhBr0JRljmBMVgMFDxTcP0w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5wYBKhBr0JRljmBMVgMFDxTcP0w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 11:53:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D94CD, serialNumber=E706012A106BD094658E604C5603050F14DC3F4C Validity Not Before: Oct 17 11:53:23 2025 GMT Not After : Oct 24 11:53:23 2025 GMT Subject: CN=68f22e33-406a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:fb:12:ef:6e:0c:01:39:1f:97:a7:40:92:2e: b7:2c:67:4d:d0:e8:f3:41:1d:d1:ec:55:ff:14:77: d5:c5:d5:91:bb:16:9c:b5:b3:f1:b6:b2:38:00:cf: 3e:48:b4:31:d1:82:16:6b:55:7e:c1:a2:0b:c1:ec: 98:71:5f:53:30:c4:e8:aa:46:20:a6:78:b5:4b:a7: f7:65:57:29:1a:44:48:91:63:17:24:15:ba:33:93: 8d:3e:7a:07:f9:33:1f:de:b0:fe:68:68:d3:16:51: 30:08:e7:5c:07:94:f9:38:cb:83:96:2b:a7:c5:9e: 45:a7:0c:50:1a:d5:bb:ed:56:e6:81:f7:ba:7d:b3: 03:77:33:69:28:6a:5d:cb:cd:a0:4b:b3:a8:fb:60: 4b:59:6e:a5:78:22:c4:15:83:81:06:7f:70:5b:d8: e0:3a:77:fe:85:3f:47:9a:6f:42:44:02:f6:5c:52: c8:39:a2:e3:2e:7b:51:02:f0:f1:f8:02:6f:01:6f: 5c:aa:28:bc:f9:2a:b0:d2:3a:d3:31:bf:6b:06:4e: 42:21:1d:ee:8a:5c:7d:fc:5d:7b:75:d8:af:f7:6f: bc:d7:50:21:e4:7b:ab:f3:e3:ee:f3:33:0f:51:8a: 27:91:e7:6c:7a:24:34:36:c5:30:28:08:55:0f:4e: 33:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:20:0F:92:8C:C4:5D:7C:BB:B2:CB:47:D1:A2:1F:00:0E:DE:4A:84 X509v3 Authority Key Identifier: keyid:E7:06:01:2A:10:6B:D0:94:65:8E:60:4C:56:03:05:0F:14:DC:3F:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D94CD/2CD7FD0E9EC811F08CD2AC7BC4F9AE02/5wYBKhBr0JRljmBMVgMFDxTcP0w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5wYBKhBr0JRljmBMVgMFDxTcP0w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D94CD/2CD7FD0E9EC811F08CD2AC7BC4F9AE02/5wYBKhBr0JRljmBMVgMFDxTcP0w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:89:a1:62:c4:38:2a:25:2d:9d:02:77:67:95:b3:5b:3f:25: 97:4d:21:69:5c:ad:61:67:16:de:31:53:e1:2c:6c:64:9a:f7: f0:0f:06:37:10:e4:16:57:94:40:08:c2:e6:1f:3f:85:1f:ad: 74:20:19:da:58:ec:57:cd:e3:4f:6b:b4:c7:48:2a:00:a4:06: 35:30:9a:2d:06:f3:f7:a7:3e:4f:e0:b0:64:80:ac:9f:8b:ed: 02:f9:d2:5e:20:02:69:9a:d1:b5:e2:9e:22:05:e2:aa:b4:c6: 1c:48:d3:ec:51:42:9e:66:1c:7f:e0:5c:31:2e:0d:2e:36:2a: b2:2f:07:5b:cc:89:72:a6:bc:b2:31:c9:54:6e:ad:bd:33:d4: db:e1:a1:a1:82:f0:48:29:67:d5:25:f5:8f:ff:53:f2:5c:95: e4:c8:c8:6b:ff:f9:9c:30:d7:ab:c9:d4:59:7c:6c:fd:d9:3f: 87:bb:b5:5c:39:a9:26:82:8f:cd:30:f2:20:e3:c6:2f:e6:fa: dc:9c:bd:94:69:d8:6a:2f:c8:b5:e7:19:00:11:d4:a1:0c:f7: 73:b8:11:e3:e4:0b:1e:dd:38:89:c7:5c:ad:c2:89:70:ab:8e: 84:ed:7d:13:5b:6f:fe:e8:c7:72:91:0a:ab:0f:77:9f:bc:75: 85:fc:4a:3a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OTRDRDExMC8GA1UEBRMoRTcwNjAxMkExMDZCRDA5NDY1OEU2MDRDNTYwMzA1MEYx NERDM0Y0QzAeFw0yNTEwMTcxMTUzMjNaFw0yNTEwMjQxMTUzMjNaMBgxFjAUBgNV BAMTDTY4ZjIyZTMzLTQwNmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDI+xLvbgwBOR+Xp0CSLrcsZ03Q6PNBHdHsVf8Ud9XF1ZG7Fpy1s/G2sjgAzz5I tDHRghZrVX7BogvB7JhxX1MwxOiqRiCmeLVLp/dlVykaREiRYxckFbozk40+egf5 Mx/esP5oaNMWUTAI51wHlPk4y4OWK6fFnkWnDFAa1bvtVuaB97p9swN3M2koal3L zaBLs6j7YEtZbqV4IsQVg4EGf3Bb2OA6d/6FP0eab0JEAvZcUsg5ouMue1EC8PH4 Am8Bb1yqKLz5KrDSOtMxv2sGTkIhHe6KXH38XXt12K/3b7zXUCHke6vz4+7zMw9R iieR52x6JDQ2xTAoCFUPTjMDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUlSAPkozE XXy7sstH0aIfAA7eSoQwHwYDVR0jBBgwFoAU5wYBKhBr0JRljmBMVgMFDxTcP0ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5NENELzJDRDdGRDBFOUVD ODExRjA4Q0QyQUM3QkM0RjlBRTAyLzV3WUJLaEJyMEpSbGptQk1WZ01GRHhUY1Aw dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNXdZQktoQnIwSlJsam1CTVZnTUZEeFRjUDB3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5 NENELzJDRDdGRDBFOUVDODExRjA4Q0QyQUM3QkM0RjlBRTAyLzV3WUJLaEJyMEpS bGptQk1WZ01GRHhUY1Awdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAByJoWLEOColLZ0Cd2eVs1s/JZdNIWlcrWFnFt4xU+EsbGSa9/APBjcQ 5BZXlEAIwuYfP4UfrXQgGdpY7FfN409rtMdIKgCkBjUwmi0G8/enPk/gsGSArJ+L 7QL50l4gAmma0bXiniIF4qq0xhxI0+xRQp5mHH/gXDEuDS42KrIvB1vMiXKmvLIx yVRurb0z1NvhoaGC8EgpZ9Ul9Y//U/JcleTIyGv/+Zww16vJ1Fl8bP3ZP4e7tVw5 qSaCj80w8iDjxi/m+tycvZRp2GovyLXnGQAR1KEM93O4EePkCx7dOInHXK3CiXCr joTtfRNbb/7ox3KRCqsPd5+8dYX8Sjo= -----END CERTIFICATE-----Generated at Sat Oct 18 23:17:55 2025 by rpki-client