$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft File: K5XY2CKKiRR9gBk9l3DrUK7du2s.mft (raw, json) Hash identifier: bbPofqdSEaPpBEwP0mc+xrTyucBNCAweRuoC8MsbHh4= Subject key identifier: F1:F9:F0:4E:91:86:5D:A3:33:8B:C0:B5:AE:32:6E:87:BF:1E:D7:4C Authority key identifier: 2B:95:D8:D8:22:8A:89:14:7D:80:19:3D:97:70:EB:50:AE:DD:BB:6B Certificate issuer: /CN=A91FF5A9/serialNumber=2B95D8D8228A89147D80193D9770EB50AEDDBB6B Certificate serial: 170F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft Manifest number: 16F6 Signing time: Thu 30 Oct 2025 16:37:45 +0000 Manifest this update: Thu 30 Oct 2025 16:37:44 +0000 Manifest next update: Thu 06 Nov 2025 16:37:44 +0000 Files and hashes: 1: K5XY2CKKiRR9gBk9l3DrUK7du2s.crl (hash: KRGxgAD74DswcLmn13+Yd+smlGytv8JPumt86bgfUDU=) 2: 07D665E0862711EBAC147872C4F9AE02.roa (hash: h1jWRhCaXCGscugt7m7NPkJTh1NUHltfWypGJXiPwZw=) 3: F9E21144D90F11EDB2DBEA49C4F9AE02.roa (hash: fP45NGSHNvdQShMBiD1rePe2Esz9p+VlDQo2vfi2cz0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.crl rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 16:37:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5903 (0x170f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5A9, serialNumber=2B95D8D8228A89147D80193D9770EB50AEDDBB6B Validity Not Before: Oct 30 16:37:44 2025 GMT Not After : Nov 6 16:37:44 2025 GMT Subject: CN=69039459-ca2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:63:ec:b1:43:9c:c4:f6:40:05:31:58:69:36: f2:0a:fe:cb:6c:fd:04:e4:7d:aa:5b:51:5d:c7:12: c5:05:f4:62:94:14:60:75:15:36:95:1e:40:c1:19: c8:24:4c:17:05:dd:a1:7d:00:68:8a:b3:f4:8e:85: f7:00:42:50:ff:3c:58:3f:e6:26:18:a2:ac:fd:24: b8:d5:7f:9b:7d:c6:48:b2:29:aa:52:e6:a7:cb:71: a6:02:da:a9:58:0f:97:ca:17:4e:f2:10:13:e7:ca: 4d:4a:04:cf:47:13:6d:9d:7c:4a:af:ae:41:9b:21: d4:a4:7c:8d:21:b1:4b:fb:e2:3f:b0:ae:fd:5a:b1: d5:49:ea:6c:3a:2b:9a:fd:f5:ec:2e:04:92:bc:45: 43:96:46:12:2f:43:37:60:c9:00:df:f3:61:ed:35: bc:50:bb:89:03:14:fd:ac:97:3b:b7:da:f9:fe:b5: 8f:4b:56:31:80:bd:ef:e3:72:78:9c:80:2f:bc:d2: f9:81:97:df:4e:fa:08:3c:ab:64:45:99:6f:60:2a: f5:8b:1d:19:79:26:af:e4:75:ff:1d:ea:43:6a:95: 7b:95:95:18:dd:36:32:c9:3e:19:5f:a7:c9:3a:10: ad:2d:80:15:3f:30:91:32:80:ac:90:1d:28:86:73: 94:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:F9:F0:4E:91:86:5D:A3:33:8B:C0:B5:AE:32:6E:87:BF:1E:D7:4C X509v3 Authority Key Identifier: keyid:2B:95:D8:D8:22:8A:89:14:7D:80:19:3D:97:70:EB:50:AE:DD:BB:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5XY2CKKiRR9gBk9l3DrUK7du2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5A9/00B7151CFD0811E7A428FF0FC4F9AE02/K5XY2CKKiRR9gBk9l3DrUK7du2s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:73:f1:a3:a3:44:6c:25:78:18:d6:57:c8:e1:79:6e:a5:25: d9:e0:b5:4d:f8:a1:11:a7:ed:73:a8:a4:b6:8d:49:61:63:47: 00:d1:83:a6:a2:23:96:a8:db:bd:04:99:c6:77:e2:d6:4e:3f: f8:92:bd:af:b5:b7:22:d9:c9:af:40:f7:d7:12:bd:51:62:37: c0:b3:d6:b5:eb:24:0b:1e:b8:77:18:40:ca:46:d8:88:91:d5: f7:31:77:ec:0b:21:d3:8b:5c:1c:72:06:1a:db:68:48:91:2b: 94:dd:65:04:43:b6:97:13:df:f0:07:86:b2:d2:a1:ea:e8:57: 25:6e:9d:08:14:89:47:10:9b:00:47:3c:7d:89:d7:04:20:10: 7c:7a:a8:da:54:80:b5:66:90:4e:63:25:e0:66:c1:9e:88:ff: de:a6:0e:85:5a:8c:7f:88:8b:dd:14:56:51:1f:e5:9c:0b:4d: f4:2f:18:3f:fe:9c:00:39:01:fc:c1:5a:ab:19:c2:94:66:17: 55:2e:75:8e:da:e6:31:d4:5e:9d:85:8c:be:89:07:dd:a3:6e: 99:a2:d4:04:48:b1:9b:76:d5:9f:e8:10:f4:5f:0a:8a:14:43: 2d:8b:b4:ef:18:07:2b:e3:50:38:a8:8a:a2:b8:f5:f0:6a:db: fb:60:1c:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFw8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1QTkxMTAvBgNVBAUTKDJCOTVEOEQ4MjI4QTg5MTQ3RDgwMTkzRDk3NzBFQjUw QUVEREJCNkIwHhcNMjUxMDMwMTYzNzQ0WhcNMjUxMTA2MTYzNzQ0WjAYMRYwFAYD VQQDEw02OTAzOTQ1OS1jYTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumPssUOcxPZABTFYaTbyCv7LbP0E5H2qW1FdxxLFBfRilBRgdRU2lR5AwRnI JEwXBd2hfQBoirP0joX3AEJQ/zxYP+YmGKKs/SS41X+bfcZIsimqUuany3GmAtqp WA+XyhdO8hAT58pNSgTPRxNtnXxKr65BmyHUpHyNIbFL++I/sK79WrHVSepsOiua /fXsLgSSvEVDlkYSL0M3YMkA3/Nh7TW8ULuJAxT9rJc7t9r5/rWPS1YxgL3v43J4 nIAvvNL5gZffTvoIPKtkRZlvYCr1ix0ZeSav5HX/HepDapV7lZUY3TYyyT4ZX6fJ OhCtLYAVPzCRMoCskB0ohnOU3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPH58E6R hl2jM4vAta4yboe/HtdMMB8GA1UdIwQYMBaAFCuV2NgiiokUfYAZPZdw61Cu3btr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVBOS8wMEI3MTUxQ0ZE MDgxMUU3QTQyOEZGMEZDNEY5QUUwMi9LNVhZMkNLS2lSUjlnQms5bDNEclVLN2R1 MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s1WFkyQ0tLaVJSOWdCazlsM0RyVUs3ZHUycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjVBOS8wMEI3MTUxQ0ZEMDgxMUU3QTQyOEZGMEZDNEY5QUUwMi9LNVhZMkNLS2lS UjlnQms5bDNEclVLN2R1MnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9c/Gjo0RsJXgY1lfI4XlupSXZ4LVN+KERp+1zqKS2jUlhY0cA0YOm oiOWqNu9BJnGd+LWTj/4kr2vtbci2cmvQPfXEr1RYjfAs9a16yQLHrh3GEDKRtiI kdX3MXfsCyHTi1wccgYa22hIkSuU3WUEQ7aXE9/wB4ay0qHq6Fclbp0IFIlHEJsA Rzx9idcEIBB8eqjaVIC1ZpBOYyXgZsGeiP/epg6FWox/iIvdFFZRH+WcC030Lxg/ /pwAOQH8wVqrGcKUZhdVLnWO2uYx1F6dhYy+iQfdo26ZotQESLGbdtWf6BD0XwqK FEMti7TvGAcr41A4qIqiuPXwatv7YBxn -----END CERTIFICATE-----Generated at Thu Oct 30 19:37:40 2025 by rpki-client