$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft File: 5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft (raw, json) Hash identifier: 139PKgvBm8zeynghGwmzYIn1CoQBsbiD7KrK30+hdb8= Subject key identifier: E3:6F:BE:3F:2E:22:9E:FF:C7:93:E3:D9:F4:6B:66:23:AD:81:8B:3F Authority key identifier: E5:B1:CE:1D:45:39:18:19:5B:EB:5C:D9:0F:6D:87:9E:FE:99:10:A2 Certificate issuer: /CN=A91DE5E8/serialNumber=E5B1CE1D453918195BEB5CD90F6D879EFE9910A2 Certificate serial: 0202 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft Manifest number: 01FC Signing time: Thu 23 Oct 2025 03:55:44 +0000 Manifest this update: Thu 23 Oct 2025 03:55:43 +0000 Manifest next update: Thu 30 Oct 2025 03:55:43 +0000 Files and hashes: 1: 5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl (hash: hL2vxz+LbAPrVCJtc9PDFvsA6NxntcpIp0u4xPOsbrY=) 2: 785B44D6F2AF11EF97443030C4F9AE02.roa (hash: 3X8JQRJ56NXF/A25OQxe1Q8xkJiOt4/FMaPtZ+BwKik=) 3: B264EB66A30911ED99A82087C4F9AE02.roa (hash: tZEzhiKfHDteKh17cCbwci/tZYnVymPaW90yd5ZJ1q4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 03:55:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 514 (0x202) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE5E8, serialNumber=E5B1CE1D453918195BEB5CD90F6D879EFE9910A2 Validity Not Before: Oct 23 03:55:43 2025 GMT Not After : Oct 30 03:55:43 2025 GMT Subject: CN=68f9a73f-15ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:0a:2d:76:fa:fe:20:08:81:44:d7:b0:1d:9e: 9c:5e:ba:3a:23:f3:b7:33:28:00:98:82:ab:b9:7b: 15:06:fc:60:2e:9f:59:50:1a:86:b3:da:df:09:4c: 45:b7:ef:ae:c4:4f:bc:87:2a:2e:37:d0:a5:98:76: b5:a3:21:43:43:d7:26:a7:bb:3e:4d:db:ee:b1:b4: 01:31:3c:fa:a2:6d:0b:7e:7d:41:9d:2b:f1:ab:33: 81:8f:ac:13:4c:a8:74:fa:b8:16:a4:da:18:f1:a6: 5a:3b:94:d3:ef:67:05:37:a1:ec:58:47:c2:f4:94: 18:ff:ce:30:22:53:3c:76:11:03:bf:f2:17:9f:e7: 5d:e5:7d:75:ef:50:1f:06:26:dc:aa:e9:71:65:91: d0:7c:0d:fb:ef:64:b4:49:06:98:b7:72:8e:27:84: a4:78:3b:c4:df:dd:2c:c9:c0:21:d8:ba:bc:e1:1d: 59:43:d1:9c:61:c4:9e:25:a5:b9:1c:0d:e8:c7:7b: 1a:fb:0f:be:8e:da:70:c8:da:b0:87:c2:74:6a:cd: 9e:4f:0b:57:b7:25:36:15:89:15:92:9c:e8:70:4c: 20:3e:ae:40:64:71:73:9d:e8:55:a0:82:d7:91:02: d5:5e:b4:fe:cc:64:54:0d:07:60:8b:42:0e:40:50: 98:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:6F:BE:3F:2E:22:9E:FF:C7:93:E3:D9:F4:6B:66:23:AD:81:8B:3F X509v3 Authority Key Identifier: keyid:E5:B1:CE:1D:45:39:18:19:5B:EB:5C:D9:0F:6D:87:9E:FE:99:10:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:38:85:1c:95:1e:85:8f:54:4b:0a:d1:51:78:3a:2e:b0:2f: 16:d7:e8:5e:c3:48:19:5e:72:b1:70:b8:76:8f:87:77:cd:71: c0:d5:4a:cf:b4:f0:1e:ff:a6:cc:0c:ed:48:fb:8f:dd:83:23: e7:49:69:f9:01:0d:2f:92:ca:6d:3b:07:01:a9:6f:10:90:6e: 6c:66:19:53:4b:8c:8f:43:34:78:5a:13:9e:26:7d:00:36:d9: 2e:72:83:9a:37:8a:d8:95:1c:7c:cb:93:1e:2c:9e:ef:07:a2: c6:16:26:81:a2:23:3c:1d:8b:0a:43:60:18:14:73:f5:5d:10: 7b:06:a3:8a:1f:d9:98:c1:18:d8:b8:3a:cb:47:ef:ff:6f:99: f5:94:68:9d:26:db:92:f9:3c:37:27:20:3b:f4:a2:4f:bd:94: 3d:cb:38:ff:fe:a3:51:db:ae:73:c7:61:8e:50:1a:4e:38:95: 71:2f:ae:2f:49:7c:04:1b:39:ef:f1:a9:e3:4d:94:6c:d3:e6: ed:b1:07:0e:3f:77:4b:69:a2:50:f2:f1:b3:03:c4:68:07:59: 09:0e:b7:f7:59:72:d5:f3:db:e4:27:96:ba:33:d7:e3:9d:b4: b5:11:1f:77:66:f8:cd:93:87:68:22:11:4b:93:8d:3a:0d:dd: c2:d9:b0:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU1RTgxMTAvBgNVBAUTKEU1QjFDRTFENDUzOTE4MTk1QkVCNUNEOTBGNkQ4NzlF RkU5OTEwQTIwHhcNMjUxMDIzMDM1NTQzWhcNMjUxMDMwMDM1NTQzWjAYMRYwFAYD VQQDEw02OGY5YTczZi0xNWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Aotdvr+IAiBRNewHZ6cXro6I/O3MygAmIKruXsVBvxgLp9ZUBqGs9rfCUxF t++uxE+8hyouN9ClmHa1oyFDQ9cmp7s+TdvusbQBMTz6om0Lfn1BnSvxqzOBj6wT TKh0+rgWpNoY8aZaO5TT72cFN6HsWEfC9JQY/84wIlM8dhEDv/IXn+dd5X1171Af BibcqulxZZHQfA3772S0SQaYt3KOJ4SkeDvE390sycAh2Lq84R1ZQ9GcYcSeJaW5 HA3ox3sa+w++jtpwyNqwh8J0as2eTwtXtyU2FYkVkpzocEwgPq5AZHFznehVoILX kQLVXrT+zGRUDQdgi0IOQFCY8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFONvvj8u Ip7/x5Pj2fRrZiOtgYs/MB8GA1UdIwQYMBaAFOWxzh1FORgZW+tc2Q9th57+mRCi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTVFOC9FOUUxQkYyOEEz MDUxMUVEQUMxNEVFNkNDNEY5QUUwMi81YkhPSFVVNUdCbGI2MXpaRDIySG52NlpF S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzViSE9IVVU1R0JsYjYxelpEMjJIbnY2WkVLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTVFOC9FOUUxQkYyOEEzMDUxMUVEQUMxNEVFNkNDNEY5QUUwMi81YkhPSFVVNUdC bGI2MXpaRDIySG52NlpFS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjOIUclR6Fj1RLCtFReDousC8W1+hew0gZXnKxcLh2j4d3zXHA1UrP tPAe/6bMDO1I+4/dgyPnSWn5AQ0vksptOwcBqW8QkG5sZhlTS4yPQzR4WhOeJn0A NtkucoOaN4rYlRx8y5MeLJ7vB6LGFiaBoiM8HYsKQ2AYFHP1XRB7BqOKH9mYwRjY uDrLR+//b5n1lGidJtuS+Tw3JyA79KJPvZQ9yzj//qNR265zx2GOUBpOOJVxL64v SXwEGznv8anjTZRs0+btsQcOP3dLaaJQ8vGzA8RoB1kJDrf3WXLV89vkJ5a6M9fj nbS1ER93ZvjNk4doIhFLk406Dd3C2bDC -----END CERTIFICATE-----Generated at Fri Oct 24 00:01:16 2025 by rpki-client