$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft File: 5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft (raw, json) Hash identifier: qPVnAzs+fL1BiEX2SZiAx5xvz393fi6y38ZTCBobYXs= Subject key identifier: AE:2D:14:74:03:5D:36:6F:59:35:E0:42:04:D4:D6:21:7D:0D:A6:F3 Authority key identifier: E4:5F:61:EF:BC:B2:E7:B1:E4:14:B2:CB:DC:34:50:F7:F8:46:18:9D Certificate issuer: /CN=A91E4ED1/serialNumber=E45F61EFBCB2E7B1E414B2CBDC3450F7F846189D Certificate serial: 0C67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft Manifest number: 0C65 Signing time: Tue 14 Oct 2025 19:26:05 +0000 Manifest this update: Tue 14 Oct 2025 19:26:04 +0000 Manifest next update: Tue 21 Oct 2025 19:26:04 +0000 Files and hashes: 1: 5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl (hash: 0z21ZSonXYJ0RlZxB9UlfletrC2Ue4sjEH/gmYMmiSI=) 2: D77C5AC003E611F0A9F5535FC4F9AE02.roa (hash: C3dI3f47oUkTpODJD7lPzsLlPec49Cck1X3kjiuVXDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 19:26:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3175 (0xc67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4ED1, serialNumber=E45F61EFBCB2E7B1E414B2CBDC3450F7F846189D Validity Not Before: Oct 14 19:26:04 2025 GMT Not After : Oct 21 19:26:04 2025 GMT Subject: CN=68eea3cd-991c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e7:d3:cb:f2:b3:36:0d:ea:0b:4e:1d:78:59: c0:02:b0:35:a2:4a:44:b2:4b:de:06:87:f1:64:b0: ff:b7:6c:d6:2b:9a:40:9d:63:83:8e:8b:d4:58:c7: f8:8f:3c:e0:6e:76:80:ec:0d:8d:42:f2:7d:18:ad: 68:35:20:b9:51:09:62:b3:5b:64:36:d8:0b:8a:c9: c1:ec:fa:6b:94:59:49:c3:1d:17:3f:70:dd:70:52: 76:18:81:21:58:e4:22:14:e1:e9:e9:96:a3:d0:df: 12:aa:a9:9b:6d:2f:13:2f:69:2a:d5:1f:8e:01:0c: a6:64:73:e9:2f:56:88:d0:62:cb:7a:f6:fa:7c:ec: 4c:f4:24:c8:6a:19:d7:19:0e:30:a2:78:9d:60:9f: 58:61:dd:c1:88:44:37:a9:e4:f9:0c:59:33:55:03: bd:22:bf:53:ca:79:e3:64:79:38:4f:66:2e:10:8c: 04:31:16:7e:c1:6a:ac:ea:13:c8:e5:58:ce:e7:ca: d1:6f:af:e2:bf:9c:77:4c:00:a2:38:47:48:e0:cf: 6f:06:cf:e7:c8:76:e7:37:16:3d:ec:43:b7:d4:92: b5:e9:f1:d5:e0:0b:c9:26:05:b7:8d:5b:4c:cf:e2: f1:5a:1e:7f:6c:95:b6:ed:b3:59:63:f7:9d:0f:ca: c2:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:2D:14:74:03:5D:36:6F:59:35:E0:42:04:D4:D6:21:7D:0D:A6:F3 X509v3 Authority Key Identifier: keyid:E4:5F:61:EF:BC:B2:E7:B1:E4:14:B2:CB:DC:34:50:F7:F8:46:18:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:a7:0e:35:13:87:a8:cb:b4:5d:db:33:7d:a2:fb:ee:e0:89: 2b:e6:01:68:0f:33:fb:a8:55:94:4c:5d:b2:f9:bc:af:ae:ce: ea:81:c0:e3:1a:c9:a2:0d:aa:9f:d4:24:8f:1f:09:42:8c:24: 21:26:f1:72:11:e3:c4:fc:a0:bd:e0:22:0c:db:65:ba:bd:88: b3:08:17:18:0a:fd:49:a1:f9:b5:2e:8b:83:09:00:8f:ba:f8: 14:03:ee:fe:db:b8:c4:69:14:87:69:d5:74:df:5e:21:29:90: 20:35:28:96:a8:65:ad:e4:a9:3f:5d:13:c1:4f:d1:1d:f5:75: de:05:04:01:44:c7:c0:88:4d:54:30:34:8a:54:8d:17:69:9d: 78:b2:a7:17:3d:ef:59:0b:6f:4b:00:b0:59:a3:be:5d:71:18: c9:73:d5:df:52:5e:c8:e6:8d:9d:02:34:7f:40:5d:ff:4a:46: 05:e4:ff:ca:9d:a6:46:a8:e3:1a:56:83:ba:58:87:fa:cc:fc: ae:8f:f2:3f:2e:d6:7a:8a:41:37:f2:54:96:42:7a:d8:d6:ce: 7b:23:d4:c8:e5:d7:3a:50:0a:8f:4a:30:85:84:01:0e:47:93: 88:ed:57:19:53:18:e4:9c:3f:ba:19:fe:ba:fb:da:48:3c:ac: e4:98:5e:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRFRDExMTAvBgNVBAUTKEU0NUY2MUVGQkNCMkU3QjFFNDE0QjJDQkRDMzQ1MEY3 Rjg0NjE4OUQwHhcNMjUxMDE0MTkyNjA0WhcNMjUxMDIxMTkyNjA0WjAYMRYwFAYD VQQDEw02OGVlYTNjZC05OTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxOfTy/KzNg3qC04deFnAArA1okpEskveBofxZLD/t2zWK5pAnWODjovUWMf4 jzzgbnaA7A2NQvJ9GK1oNSC5UQlis1tkNtgLisnB7PprlFlJwx0XP3DdcFJ2GIEh WOQiFOHp6Zaj0N8SqqmbbS8TL2kq1R+OAQymZHPpL1aI0GLLevb6fOxM9CTIahnX GQ4wonidYJ9YYd3BiEQ3qeT5DFkzVQO9Ir9TynnjZHk4T2YuEIwEMRZ+wWqs6hPI 5VjO58rRb6/iv5x3TACiOEdI4M9vBs/nyHbnNxY97EO31JK16fHV4AvJJgW3jVtM z+LxWh5/bJW27bNZY/edD8rCBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK4tFHQD XTZvWTXgQgTU1iF9DabzMB8GA1UdIwQYMBaAFORfYe+8suex5BSyy9w0UPf4Rhid MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEVEMS81RkRENzhCMjBC NjQxMUVBOTA5MjMwNjZDNEY5QUUwMi81RjloNzd5eTU3SGtGTExMM0RSUTlfaEdH SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVGOWg3N3l5NTdIa0ZMTEwzRFJROV9oR0dKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEVEMS81RkRENzhCMjBCNjQxMUVBOTA5MjMwNjZDNEY5QUUwMi81RjloNzd5eTU3 SGtGTExMM0RSUTlfaEdHSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzpw41E4eoy7Rd2zN9ovvu4Ikr5gFoDzP7qFWUTF2y+byvrs7qgcDj GsmiDaqf1CSPHwlCjCQhJvFyEePE/KC94CIM22W6vYizCBcYCv1Jofm1LouDCQCP uvgUA+7+27jEaRSHadV0314hKZAgNSiWqGWt5Kk/XRPBT9Ed9XXeBQQBRMfAiE1U MDSKVI0XaZ14sqcXPe9ZC29LALBZo75dcRjJc9XfUl7I5o2dAjR/QF3/SkYF5P/K naZGqOMaVoO6WIf6zPyuj/I/LtZ6ikE38lSWQnrY1s57I9TI5dc6UAqPSjCFhAEO R5OI7VcZUxjknD+6Gf66+9pIPKzkmF42 -----END CERTIFICATE-----Generated at Tue Oct 14 21:35:37 2025 by rpki-client