$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft File: 5D3SMzFr8OKboG0g3sJdtMwRbgg.mft (raw, json) Hash identifier: c4mZ42KdVCsLJqNDkS1Km4tS8T5UB/EDXqLJAt1C/+8= Subject key identifier: 0F:55:64:B3:9F:CD:C7:61:29:FC:72:4A:AF:81:32:DF:43:92:DD:40 Authority key identifier: E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 Certificate issuer: /CN=A9120AC1/serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Certificate serial: 0506 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft Manifest number: 04FA Signing time: Sun 19 Oct 2025 01:28:15 +0000 Manifest this update: Sun 19 Oct 2025 01:28:15 +0000 Manifest next update: Sun 26 Oct 2025 01:28:15 +0000 Files and hashes: 1: 5D3SMzFr8OKboG0g3sJdtMwRbgg.crl (hash: brHj/2Yfbzl+GEFXMFxz2pf1hiMYZBniAwS84i2Np8w=) 2: 3A2A80AE3C8311ECA86D031EC4F9AE02.roa (hash: aUDrwRtGsUzrY00Rmj3XgznPDP2fmFZxHTp5GIqGdmE=) 3: 579B33AE886F11F0A02D4009C4F9AE02.roa (hash: YP1QtoS6tJ0tfsbd9mqDdJjDX65W26gYVq3o6iBYRuU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:28:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1286 (0x506) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Validity Not Before: Oct 19 01:28:15 2025 GMT Not After : Oct 26 01:28:15 2025 GMT Subject: CN=68f43eaf-fd36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:c9:8f:74:d2:b1:84:48:37:d5:e6:d6:c2:8d: 56:3c:38:c7:72:61:5e:7c:ed:ba:7f:2e:f8:59:a7: 32:28:34:dc:3c:07:08:70:04:22:8c:a9:08:0d:9f: 0c:20:5f:17:d4:2d:7a:fa:6e:e5:e0:8d:15:94:e7: 84:3f:3d:55:5e:2c:71:a4:4c:e1:4e:8b:74:76:35: 2e:35:6a:e7:60:e5:98:ba:29:5f:48:c7:77:02:f5: 31:00:e9:54:d0:b6:98:8c:f5:12:82:3c:e0:a2:e5: 7d:16:fb:41:bc:72:cb:94:1e:db:31:71:ca:4d:6c: 37:b3:1e:7a:49:fa:c0:38:6d:da:88:81:32:13:bc: 65:fc:f7:25:81:13:9a:3e:5b:5d:20:85:7d:9b:bf: 63:93:95:ae:7e:dc:1b:2d:8f:69:d6:cd:44:30:23: 4b:cd:77:a3:2f:8b:36:ab:1a:98:3b:b6:af:52:6d: e2:60:47:fa:98:23:06:41:5b:c5:80:c0:58:d9:be: f6:fa:2f:f7:f7:e0:6d:04:1b:03:22:88:48:fc:d8: 68:c5:35:c8:0a:58:9c:d1:b3:8d:6a:8d:08:7c:53: 2e:e4:be:93:2d:7a:d2:ae:04:e1:9a:01:be:4c:ac: c6:7c:87:d7:27:a7:79:5a:77:54:cf:c4:59:c5:4d: 31:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:55:64:B3:9F:CD:C7:61:29:FC:72:4A:AF:81:32:DF:43:92:DD:40 X509v3 Authority Key Identifier: keyid:E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:b5:05:46:2a:18:7a:52:b3:cc:85:5f:39:c1:b8:38:de:34: de:3f:71:35:8f:13:84:c7:4b:ab:07:26:08:40:9d:7c:29:cb: bb:df:25:c5:d9:c7:8e:3a:93:9a:cd:7a:c1:fa:9f:fc:d3:71: b3:ca:61:0a:22:de:92:ea:c6:b1:30:eb:0a:77:03:c1:a0:87: ad:eb:3a:f9:8b:18:d5:97:ce:b8:70:d0:8b:40:d3:a7:8d:5f: 80:a0:70:c4:5a:59:29:94:71:2b:34:e5:63:bf:47:97:e8:a3: 2d:1e:da:7c:80:aa:c4:8c:7b:d3:e4:a0:39:0d:0a:be:6d:27: 5a:6c:b6:5f:00:60:05:ec:4f:51:f0:cc:d1:bc:fb:6e:17:29: d2:ca:72:45:10:35:2a:e8:93:43:64:18:9d:fa:41:b1:9d:5e: 95:dc:0b:1b:1b:a5:3b:9d:71:b5:cc:1f:a6:c9:6e:61:25:b8: 79:12:e1:4f:a6:a5:35:5f:b8:7d:e0:5d:f0:b8:05:41:c6:55: 32:18:09:dd:e4:08:f3:c3:3f:5a:d4:80:8c:92:4c:a5:f4:3e: 14:ed:ab:0e:a6:fd:54:ec:8d:46:f0:37:8c:c9:fe:ed:12:d9: 32:1c:98:32:4a:66:4d:cd:e8:0a:3a:ec:81:b7:88:5d:e2:76: f0:36:48:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKEU0M0REMjMzMzE2QkYwRTI5QkEwNkQyMERFQzI1REI0 Q0MxMTZFMDgwHhcNMjUxMDE5MDEyODE1WhcNMjUxMDI2MDEyODE1WjAYMRYwFAYD VQQDEw02OGY0M2VhZi1mZDM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2cmPdNKxhEg31ebWwo1WPDjHcmFefO26fy74WacyKDTcPAcIcAQijKkIDZ8M IF8X1C16+m7l4I0VlOeEPz1VXixxpEzhTot0djUuNWrnYOWYuilfSMd3AvUxAOlU 0LaYjPUSgjzgouV9FvtBvHLLlB7bMXHKTWw3sx56SfrAOG3aiIEyE7xl/PclgROa PltdIIV9m79jk5WuftwbLY9p1s1EMCNLzXejL4s2qxqYO7avUm3iYEf6mCMGQVvF gMBY2b72+i/39+BtBBsDIohI/NhoxTXIClic0bONao0IfFMu5L6TLXrSrgThmgG+ TKzGfIfXJ6d5WndUz8RZxU0xKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA9VZLOf zcdhKfxySq+BMt9Dkt1AMB8GA1UdIwQYMBaAFOQ90jMxa/Dim6BtIN7CXbTMEW4I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zRTlBNEFFMDMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhPS2JvRzBnM3NKZHRNd1Ji Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVEM1NNekZyOE9LYm9HMGczc0pkdE13UmJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zRTlBNEFFMDMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhP S2JvRzBnM3NKZHRNd1JiZ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOtQVGKhh6UrPMhV85wbg43jTeP3E1jxOEx0urByYIQJ18Kcu73yXF 2ceOOpOazXrB+p/803GzymEKIt6S6saxMOsKdwPBoIet6zr5ixjVl864cNCLQNOn jV+AoHDEWlkplHErNOVjv0eX6KMtHtp8gKrEjHvT5KA5DQq+bSdabLZfAGAF7E9R 8MzRvPtuFynSynJFEDUq6JNDZBid+kGxnV6V3AsbG6U7nXG1zB+myW5hJbh5EuFP pqU1X7h94F3wuAVBxlUyGAnd5Ajzwz9a1ICMkkyl9D4U7asOpv1U7I1G8DeMyf7t EtkyHJgySmZNzegKOuyBt4hd4nbwNkij -----END CERTIFICATE-----Generated at Mon Oct 20 19:49:18 2025 by rpki-client