$ rpki-client -vvf rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft File: 5HfTiqrEo3zG3xZlvxyICvmbe08.mft (raw, json) Hash identifier: P0Ko/B8fPrqX3oKPOXhLSYYhQghYfdwWqZUvgi5kvzw= Subject key identifier: 4B:4C:36:F4:F1:25:B4:7A:6F:6C:E9:41:1C:F8:4A:23:C5:CD:8E:87 Authority key identifier: E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F Certificate issuer: /CN=A91E504E/serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Certificate serial: 040E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft Manifest number: 0400 Signing time: Mon 27 Oct 2025 01:41:20 +0000 Manifest this update: Mon 27 Oct 2025 01:41:19 +0000 Manifest next update: Mon 03 Nov 2025 01:41:19 +0000 Files and hashes: 1: 5HfTiqrEo3zG3xZlvxyICvmbe08.crl (hash: ogNN/LkK5oxe/lmJbWJkPJcvRl14pr5YUXkrru1W3xE=) 2: 5F9FA12E0CA411ED96936D79C4F9AE02.roa (hash: 1kY42j3eWLAd8yp1AvznjQwJBoHaBnQrkaPK6EtSCdQ=) 3: 06820D08961011ECA540626AC4F9AE02.roa (hash: XbxtLk1+2CfWndcMlMOnwCxgbfEchquqUDJGfTWj61E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 01:41:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1038 (0x40e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E504E, serialNumber=E477D38AAAC4A37CC6DF1665BF1C880AF99B7B4F Validity Not Before: Oct 27 01:41:19 2025 GMT Not After : Nov 3 01:41:19 2025 GMT Subject: CN=68fecdbf-0e8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:14:90:31:08:e3:fe:f8:ac:41:5c:ce:3b:9d: a4:2f:57:f3:aa:41:19:b8:9e:b0:aa:60:de:eb:27: 40:39:26:b8:5c:eb:b8:a9:4c:f8:ff:59:91:7f:bd: d5:25:ff:32:7a:02:bf:dc:06:b0:ae:e0:b6:4d:09: 4a:b2:af:31:22:12:de:2c:e7:c2:ab:42:25:28:45: cd:db:74:51:5d:78:10:8d:b2:5f:33:96:ec:7a:da: 23:2a:4c:c3:d7:c2:62:f3:7a:9c:3c:20:e0:fc:c0: 39:e3:8e:f9:ac:57:8a:d4:c2:81:0d:3a:fc:e3:e8: f9:28:af:3d:b6:f0:1a:54:bf:b1:e2:2e:09:5e:e3: 82:af:d6:35:c7:31:02:0b:de:64:51:bb:2e:46:a8: 89:98:88:49:75:7f:ac:db:98:35:c4:88:2d:73:97: 80:89:23:7e:c7:c5:ee:d2:e8:85:4c:27:0f:2e:7e: ec:52:39:11:36:2d:c9:49:22:cf:ba:39:40:02:19: 56:bd:45:34:5f:68:49:60:27:d4:43:97:2b:56:80: 0e:39:28:b1:20:b1:c6:10:5a:bc:ed:66:c0:22:f1: 9c:42:4b:21:3d:48:3c:c9:d3:10:fb:e7:cf:c3:4e: 31:b9:36:98:f4:cb:a8:8d:0d:d6:88:77:98:ac:f9: d8:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:4C:36:F4:F1:25:B4:7A:6F:6C:E9:41:1C:F8:4A:23:C5:CD:8E:87 X509v3 Authority Key Identifier: keyid:E4:77:D3:8A:AA:C4:A3:7C:C6:DF:16:65:BF:1C:88:0A:F9:9B:7B:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5HfTiqrEo3zG3xZlvxyICvmbe08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E504E/4E3E367E960811ECA04A0086C4F9AE02/5HfTiqrEo3zG3xZlvxyICvmbe08.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:42:d4:1d:06:59:6c:58:0f:a7:6a:7f:25:45:79:44:9c:a6: 06:3a:05:32:26:a3:03:18:fa:a2:01:a6:19:21:5d:67:1a:ae: 7d:d7:36:a3:78:37:e0:77:0e:a0:e3:3a:ee:d6:4d:36:a7:b0: 65:27:1f:32:22:51:cf:e4:62:e8:60:27:ba:de:e6:da:15:7d: 33:89:a3:35:c0:fb:b4:76:3a:8e:42:30:cc:e1:74:a5:df:c4: c7:81:82:49:a4:54:ca:83:cf:39:2d:89:2a:15:7b:31:d2:fc: 06:60:0d:b6:ac:97:cb:b1:ed:04:ac:e6:ea:71:71:9d:ee:c2: 6d:58:bd:e9:f7:17:72:a1:a4:c7:7c:62:12:a6:f0:8b:86:3b: c4:c2:21:59:99:6a:19:d1:b0:a8:c7:70:b0:48:d7:48:9c:0b: e4:51:33:d3:dd:75:1c:98:a2:10:5d:70:cb:5e:d3:77:21:38: cc:6d:10:6b:95:0c:66:26:20:83:63:8e:69:1b:75:bd:9d:e9: db:74:43:14:dd:e4:4c:bf:59:8e:0d:cd:0e:c2:c4:ee:17:48: 2f:18:1f:c9:8d:be:45:a0:31:55:6e:d7:74:5f:6c:4d:81:ac: 60:6d:9e:03:90:bd:d8:92:20:a0:61:6a:29:d1:52:24:6e:5d: 85:3a:fb:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBA4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUwNEUxMTAvBgNVBAUTKEU0NzdEMzhBQUFDNEEzN0NDNkRGMTY2NUJGMUM4ODBB Rjk5QjdCNEYwHhcNMjUxMDI3MDE0MTE5WhcNMjUxMTAzMDE0MTE5WjAYMRYwFAYD VQQDEw02OGZlY2RiZi0wZThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhSQMQjj/visQVzOO52kL1fzqkEZuJ6wqmDe6ydAOSa4XOu4qUz4/1mRf73V Jf8yegK/3AawruC2TQlKsq8xIhLeLOfCq0IlKEXN23RRXXgQjbJfM5bsetojKkzD 18Ji83qcPCDg/MA54475rFeK1MKBDTr84+j5KK89tvAaVL+x4i4JXuOCr9Y1xzEC C95kUbsuRqiJmIhJdX+s25g1xIgtc5eAiSN+x8Xu0uiFTCcPLn7sUjkRNi3JSSLP ujlAAhlWvUU0X2hJYCfUQ5crVoAOOSixILHGEFq87WbAIvGcQkshPUg8ydMQ++fP w04xuTaY9MuojQ3WiHeYrPnYDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEtMNvTx JbR6b2zpQRz4SiPFzY6HMB8GA1UdIwQYMBaAFOR304qqxKN8xt8WZb8ciAr5m3tP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTA0RS80RTNFMzY3RTk2 MDgxMUVDQTA0QTAwODZDNEY5QUUwMi81SGZUaXFyRW8zekczeFpsdnh5SUN2bWJl MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVIZlRpcXJFbzN6RzN4Wmx2eHlJQ3ZtYmUwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTA0RS80RTNFMzY3RTk2MDgxMUVDQTA0QTAwODZDNEY5QUUwMi81SGZUaXFyRW8z ekczeFpsdnh5SUN2bWJlMDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsQtQdBllsWA+nan8lRXlEnKYGOgUyJqMDGPqiAaYZIV1nGq591zaj eDfgdw6g4zru1k02p7BlJx8yIlHP5GLoYCe63ubaFX0ziaM1wPu0djqOQjDM4XSl 38THgYJJpFTKg885LYkqFXsx0vwGYA22rJfLse0ErObqcXGd7sJtWL3p9xdyoaTH fGISpvCLhjvEwiFZmWoZ0bCox3CwSNdInAvkUTPT3XUcmKIQXXDLXtN3ITjMbRBr lQxmJiCDY45pG3W9nenbdEMU3eRMv1mODc0OwsTuF0gvGB/Jjb5FoDFVbtd0X2xN gaxgbZ4DkL3YkiCgYWop0VIkbl2FOvuA -----END CERTIFICATE-----Generated at Tue Oct 28 05:24:56 2025 by rpki-client