$ rpki-client -vvf rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft File: 5vEsD995brDfK2AuWsQsy4OyLhg.mft (raw, json) Hash identifier: qffDQreT2/nHe+5rz/ZrWpLo2d3+zGKL3gXWgKuxykY= Subject key identifier: E6:8C:9F:5F:CF:EC:A0:3A:CA:C3:E1:D4:F0:2A:B8:1C:9C:32:B5:4B Authority key identifier: E6:F1:2C:0F:DF:79:6E:B0:DF:2B:60:2E:5A:C4:2C:CB:83:B2:2E:18 Certificate issuer: /CN=A914E3B7/serialNumber=E6F12C0FDF796EB0DF2B602E5AC42CCB83B22E18 Certificate serial: 34CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vEsD995brDfK2AuWsQsy4OyLhg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft Manifest number: 34C8 Signing time: Sat 18 Oct 2025 15:18:17 +0000 Manifest this update: Sat 18 Oct 2025 15:18:17 +0000 Manifest next update: Sat 25 Oct 2025 15:18:17 +0000 Files and hashes: 1: 5vEsD995brDfK2AuWsQsy4OyLhg.crl (hash: lS9JX6oFrMx8KESyfM/sRSATp4I8Fpl+Q/p0T8CdxE4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.crl rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vEsD995brDfK2AuWsQsy4OyLhg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:18:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13515 (0x34cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E3B7, serialNumber=E6F12C0FDF796EB0DF2B602E5AC42CCB83B22E18 Validity Not Before: Oct 18 15:18:17 2025 GMT Not After : Oct 25 15:18:17 2025 GMT Subject: CN=68f3afb9-755c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:5d:44:f9:2c:51:10:91:89:a9:e8:65:d5:eb: 68:21:ff:4f:83:31:16:b6:b0:70:a0:3d:33:0d:50: c4:54:80:67:32:67:d6:20:e3:6c:1e:e0:ae:fe:45: 20:9e:bf:8a:6e:e9:4b:e6:a4:e7:eb:3c:ae:69:77: fd:62:8d:74:11:47:51:22:de:cd:78:4a:c6:b5:14: f9:af:7f:df:85:4a:0d:80:ba:79:13:a5:4f:01:19: 96:8f:fe:ff:61:a0:fc:1c:91:c4:b9:94:74:d5:df: d5:97:d4:c3:c3:35:f0:70:a0:4c:1e:1c:9f:9c:0f: 3b:4f:22:97:c3:96:66:09:db:fa:c0:1e:e9:aa:fd: 71:1d:b5:e3:7f:ac:e9:99:78:20:72:71:3d:4d:57: f8:d7:a5:c6:0b:5e:a2:65:e0:77:37:8e:17:cc:f4: 57:79:29:d6:c8:99:e2:21:7b:60:c2:eb:00:e3:55: d9:3d:5f:74:92:61:40:cb:fc:88:0a:c7:c4:93:9c: 3c:82:53:d1:2b:b3:cc:03:50:f4:87:a9:fe:9b:08: ed:a5:af:80:3d:e8:4d:0a:99:b8:18:d5:49:eb:f4: 72:90:cc:76:6f:8b:c7:6b:54:b4:4a:ca:77:c1:d1: a5:3d:c7:b3:82:1c:97:25:e2:75:f2:c0:ac:80:6a: 6c:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:8C:9F:5F:CF:EC:A0:3A:CA:C3:E1:D4:F0:2A:B8:1C:9C:32:B5:4B X509v3 Authority Key Identifier: keyid:E6:F1:2C:0F:DF:79:6E:B0:DF:2B:60:2E:5A:C4:2C:CB:83:B2:2E:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vEsD995brDfK2AuWsQsy4OyLhg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E3B7/9FAE84FA1DA411E2AC2BAF9A08B02CD2/5vEsD995brDfK2AuWsQsy4OyLhg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:a1:31:d2:63:f4:f8:9a:32:c3:07:23:38:a1:51:fd:82:ef: df:27:78:66:09:c8:3e:65:a9:91:59:f2:98:71:fc:59:2b:e8: 9f:67:71:b1:9d:c1:d8:65:11:8d:6b:f4:6e:e8:c8:ac:19:69: 70:6c:76:a6:95:94:62:52:4a:3c:8b:ed:64:09:3f:69:fe:4e: 5d:49:22:74:79:0f:32:59:ef:f3:02:34:5c:c5:65:35:25:3c: 20:67:28:6a:c1:15:d7:a1:e3:7d:f8:bf:55:35:39:53:90:8d: 0a:de:28:a1:17:b2:cf:f3:3e:2e:0e:e8:cf:76:9b:14:fd:cc: 4b:93:b8:5f:20:66:2a:66:bd:c4:7c:00:80:81:87:f9:ca:78: 67:1f:5c:d4:bf:6d:2b:97:5e:34:1a:77:7f:0c:6d:1f:93:8c: 1e:09:85:51:72:29:fc:bd:ff:03:15:67:2f:09:e0:47:cd:ad: da:f1:34:52:46:bb:05:02:fa:49:dc:bb:06:3c:6e:06:ff:b0: 22:0a:7e:45:64:a6:ee:00:dd:bc:ee:cb:f5:c8:22:1b:02:f8: 36:fc:91:5d:75:cc:17:f3:d1:4e:4c:47:d7:d1:69:97:09:ac: 07:2e:86:43:58:c1:a3:de:bb:23:46:fc:e8:90:a8:e0:9c:4d: 53:bf:7c:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUzQjcxMTAvBgNVBAUTKEU2RjEyQzBGREY3OTZFQjBERjJCNjAyRTVBQzQyQ0NC ODNCMjJFMTgwHhcNMjUxMDE4MTUxODE3WhcNMjUxMDI1MTUxODE3WjAYMRYwFAYD VQQDEw02OGYzYWZiOS03NTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8F1E+SxREJGJqehl1etoIf9PgzEWtrBwoD0zDVDEVIBnMmfWIONsHuCu/kUg nr+KbulL5qTn6zyuaXf9Yo10EUdRIt7NeErGtRT5r3/fhUoNgLp5E6VPARmWj/7/ YaD8HJHEuZR01d/Vl9TDwzXwcKBMHhyfnA87TyKXw5ZmCdv6wB7pqv1xHbXjf6zp mXggcnE9TVf416XGC16iZeB3N44XzPRXeSnWyJniIXtgwusA41XZPV90kmFAy/yI CsfEk5w8glPRK7PMA1D0h6n+mwjtpa+APehNCpm4GNVJ6/RykMx2b4vHa1S0Ssp3 wdGlPcezghyXJeJ18sCsgGpsEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOaMn1/P 7KA6ysPh1PAquBycMrVLMB8GA1UdIwQYMBaAFObxLA/feW6w3ytgLlrELMuDsi4Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTNCNy85RkFFODRGQTFE QTQxMUUyQUMyQkFGOUEwOEIwMkNEMi81dkVzRDk5NWJyRGZLMkF1V3NRc3k0T3lM aGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV2RXNEOTk1YnJEZksyQXVXc1FzeTRPeUxoZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTNCNy85RkFFODRGQTFEQTQxMUUyQUMyQkFGOUEwOEIwMkNEMi81dkVzRDk5NWJy RGZLMkF1V3NRc3k0T3lMaGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkoTHSY/T4mjLDByM4oVH9gu/fJ3hmCcg+ZamRWfKYcfxZK+ifZ3Gx ncHYZRGNa/Ru6MisGWlwbHamlZRiUko8i+1kCT9p/k5dSSJ0eQ8yWe/zAjRcxWU1 JTwgZyhqwRXXoeN9+L9VNTlTkI0K3iihF7LP8z4uDujPdpsU/cxLk7hfIGYqZr3E fACAgYf5ynhnH1zUv20rl140Gnd/DG0fk4weCYVRcin8vf8DFWcvCeBHza3a8TRS RrsFAvpJ3LsGPG4G/7AiCn5FZKbuAN287sv1yCIbAvg2/JFddcwX89FOTEfX0WmX CawHLoZDWMGj3rsjRvzokKjgnE1Tv3xm -----END CERTIFICATE-----Generated at Mon Oct 20 05:38:11 2025 by rpki-client