$ rpki-client -vvf rpki.apnic.net/member_repository/A914530B/9E75DDB6B79A11EFA0D6975DC4F9AE02/53p5hBmz84yLAlkKKUx7NffDREw.mft File: 53p5hBmz84yLAlkKKUx7NffDREw.mft (raw, json) Hash identifier: WfoNOhq55gogEkK6MaW0pqcuakotauQ55E1wtRtGCcY= Subject key identifier: 5E:7C:DA:60:2A:CB:27:FF:87:29:1E:A6:BC:DC:14:D6:4E:D4:D7:36 Authority key identifier: E7:7A:79:84:19:B3:F3:8C:8B:02:59:0A:29:4C:7B:35:F7:C3:44:4C Certificate issuer: /CN=A914530B/serialNumber=E77A798419B3F38C8B02590A294C7B35F7C3444C Certificate serial: A4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/53p5hBmz84yLAlkKKUx7NffDREw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914530B/9E75DDB6B79A11EFA0D6975DC4F9AE02/53p5hBmz84yLAlkKKUx7NffDREw.mft Manifest number: A2 Signing time: Sun 19 Oct 2025 09:32:28 +0000 Manifest this update: Sun 19 Oct 2025 09:32:27 +0000 Manifest next update: Sun 26 Oct 2025 09:32:27 +0000 Files and hashes: 1: 53p5hBmz84yLAlkKKUx7NffDREw.crl (hash: tR30YrOula2SUBa9a5g1szfUCFLABNbNj5P7t3uEEkU=) 2: 87A33C66B79D11EF9A384C65C4F9AE02.roa (hash: PmWdGEFbgxUM5JARv+3955i+yLCgnSi8KLnrb7A4Hd0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914530B/9E75DDB6B79A11EFA0D6975DC4F9AE02/53p5hBmz84yLAlkKKUx7NffDREw.crl rsync://rpki.apnic.net/member_repository/A914530B/9E75DDB6B79A11EFA0D6975DC4F9AE02/53p5hBmz84yLAlkKKUx7NffDREw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/53p5hBmz84yLAlkKKUx7NffDREw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:32:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 164 (0xa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914530B, serialNumber=E77A798419B3F38C8B02590A294C7B35F7C3444C Validity Not Before: Oct 19 09:32:27 2025 GMT Not After : Oct 26 09:32:27 2025 GMT Subject: CN=68f4b02c-7dc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:77:19:c7:a5:8b:db:31:a7:d1:14:ff:d5:e7: 8e:b2:6e:9b:fd:00:ce:41:ce:b9:96:3a:e2:fe:77: f2:f5:e6:c1:0d:3b:9a:72:1c:0f:c0:93:cd:18:1b: 25:87:e7:ed:c3:ec:d8:86:11:1c:3a:b5:5e:45:14: 2e:d3:f0:03:85:f8:3a:1b:95:72:85:81:33:b5:b2: 55:35:06:06:dc:18:b3:26:7f:87:ff:a4:cc:79:36: f0:27:72:52:c2:f5:b9:89:3b:6e:1f:47:78:f1:71: 1a:51:f7:45:50:9d:da:bd:ab:5a:1b:8f:e3:21:e1: e4:f6:61:20:a8:f9:1b:ca:5b:74:7c:c9:40:22:9e: 9e:9c:8e:aa:4e:39:c8:8c:30:aa:40:11:e0:c5:f6: b5:a3:46:18:5d:4e:72:69:6d:c3:85:35:14:b1:f3: 9c:7b:3b:a4:df:27:8e:ec:73:52:c2:85:1e:94:7b: 9a:b4:85:80:83:fe:e8:92:92:a5:6f:82:d1:76:8a: 0a:3f:3a:f2:f0:34:55:57:1a:12:64:4f:de:6d:0f: 2e:13:e9:01:4e:74:1b:14:d7:1e:ee:5b:59:97:7f: 68:c5:74:bc:4b:3f:83:3c:91:84:0d:cc:c4:c0:3b: 19:20:6f:37:5b:2b:ae:bd:79:25:ea:f5:1e:ab:50: af:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:7C:DA:60:2A:CB:27:FF:87:29:1E:A6:BC:DC:14:D6:4E:D4:D7:36 X509v3 Authority Key Identifier: keyid:E7:7A:79:84:19:B3:F3:8C:8B:02:59:0A:29:4C:7B:35:F7:C3:44:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914530B/9E75DDB6B79A11EFA0D6975DC4F9AE02/53p5hBmz84yLAlkKKUx7NffDREw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/53p5hBmz84yLAlkKKUx7NffDREw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914530B/9E75DDB6B79A11EFA0D6975DC4F9AE02/53p5hBmz84yLAlkKKUx7NffDREw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:71:29:80:19:00:90:17:dd:f7:e0:15:1f:51:16:e2:c9:8d: 32:90:2f:4e:87:f8:0f:85:f2:45:99:49:8c:f0:23:f9:cc:ef: 65:a4:66:21:d3:78:c8:94:e6:8e:ad:0b:a9:1b:8e:31:db:6c: 7d:82:9a:f3:f9:9b:72:0d:6d:47:e6:8a:db:39:62:c5:8e:82: 6d:e8:ac:a9:ee:a4:81:f3:03:5a:90:9c:71:a6:34:8b:b5:e4: 3e:5f:98:c7:7c:0f:a7:f2:26:c6:aa:8e:bc:40:c0:9d:7b:b5: c2:9b:5b:c0:be:85:38:cd:08:eb:73:9e:f2:20:50:de:94:97: 08:6f:56:b4:af:9d:bb:b2:6c:1d:86:53:f1:9c:62:94:19:aa: 43:f5:3a:83:bf:f9:0e:cb:da:91:77:93:d8:fa:cc:c9:38:31: 5f:88:fe:f7:b3:81:4b:49:47:9b:88:bd:c7:63:96:dd:6f:2c: 43:8f:71:b4:db:a5:ab:f7:b5:ce:1a:55:8a:49:95:02:61:a0: 39:97:4e:bc:7c:fb:98:13:c4:88:d2:f6:13:81:fb:44:b6:23: c1:16:11:19:1e:2b:3d:3e:87:ce:97:60:fa:44:28:8f:0c:99: ea:21:55:e3:55:67:46:eb:40:3c:68:ba:a6:00:15:a4:25:39: dc:0a:79:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDUzMEIxMTAvBgNVBAUTKEU3N0E3OTg0MTlCM0YzOEM4QjAyNTkwQTI5NEM3QjM1 RjdDMzQ0NEMwHhcNMjUxMDE5MDkzMjI3WhcNMjUxMDI2MDkzMjI3WjAYMRYwFAYD VQQDEw02OGY0YjAyYy03ZGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1HcZx6WL2zGn0RT/1eeOsm6b/QDOQc65ljri/nfy9ebBDTuachwPwJPNGBsl h+ftw+zYhhEcOrVeRRQu0/ADhfg6G5VyhYEztbJVNQYG3BizJn+H/6TMeTbwJ3JS wvW5iTtuH0d48XEaUfdFUJ3avataG4/jIeHk9mEgqPkbylt0fMlAIp6enI6qTjnI jDCqQBHgxfa1o0YYXU5yaW3DhTUUsfOcezuk3yeO7HNSwoUelHuatIWAg/7okpKl b4LRdooKPzry8DRVVxoSZE/ebQ8uE+kBTnQbFNce7ltZl39oxXS8Sz+DPJGEDczE wDsZIG83WyuuvXkl6vUeq1CvtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF582mAq yyf/hykeprzcFNZO1Nc2MB8GA1UdIwQYMBaAFOd6eYQZs/OMiwJZCilMezX3w0RM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTMwQi85RTc1RERCNkI3 OUExMUVGQTBENjk3NURDNEY5QUUwMi81M3A1aEJtejg0eUxBbGtLS1V4N05mZkRS RXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzUzcDVoQm16ODR5TEFsa0tLVXg3TmZmRFJFdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTMwQi85RTc1RERCNkI3OUExMUVGQTBENjk3NURDNEY5QUUwMi81M3A1aEJtejg0 eUxBbGtLS1V4N05mZkRSRXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXcSmAGQCQF9334BUfURbiyY0ykC9Oh/gPhfJFmUmM8CP5zO9lpGYh 03jIlOaOrQupG44x22x9gprz+ZtyDW1H5orbOWLFjoJt6Kyp7qSB8wNakJxxpjSL teQ+X5jHfA+n8ibGqo68QMCde7XCm1vAvoU4zQjrc57yIFDelJcIb1a0r527smwd hlPxnGKUGapD9TqDv/kOy9qRd5PY+szJODFfiP73s4FLSUebiL3HY5bdbyxDj3G0 26Wr97XOGlWKSZUCYaA5l068fPuYE8SI0vYTgftEtiPBFhEZHis9PofOl2D6RCiP DJnqIVXjVWdG60A8aLqmABWkJTncCnma -----END CERTIFICATE-----Generated at Mon Oct 20 13:56:10 2025 by rpki-client