$ rpki-client -vvf rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft File: 5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft (raw, json) Hash identifier: lgmSJKarnddZbuiJbLcHG/3aIBQ4XIjJUlZIOZIWQQU= Subject key identifier: D7:D8:80:66:B6:30:D0:75:63:C1:3B:0C:EF:A4:FD:C0:8E:8E:58:F8 Authority key identifier: E4:62:3C:FD:44:3E:62:32:F2:6C:23:E8:1F:DF:97:58:B2:6F:3B:2C Certificate issuer: /CN=A914F3BA/serialNumber=E4623CFD443E6232F26C23E81FDF9758B26F3B2C Certificate serial: 07F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft Manifest number: 07F2 Signing time: Sat 18 Oct 2025 22:14:43 +0000 Manifest this update: Sat 18 Oct 2025 22:14:42 +0000 Manifest next update: Sat 25 Oct 2025 22:14:42 +0000 Files and hashes: 1: 5GI8_UQ-YjLybCPoH9-XWLJvOyw.crl (hash: SIIIToID1jgJtEUkkxOwK5S8XuGYoAHieUypd2rZ4oM=) 2: D0D7EE48343211EFBF2C280DC4F9AE02.roa (hash: hbQmOshNkorS1/g78QiEhSVwbWUn9A8H0a6ZSzOWB98=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.crl rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:14:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2037 (0x7f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F3BA, serialNumber=E4623CFD443E6232F26C23E81FDF9758B26F3B2C Validity Not Before: Oct 18 22:14:42 2025 GMT Not After : Oct 25 22:14:42 2025 GMT Subject: CN=68f41153-8d79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:89:fc:d9:be:ce:8f:3f:71:a8:0c:99:31:ea: a9:17:49:37:23:9d:0b:da:0d:b6:f9:97:c0:a3:22: 15:09:03:e3:df:4f:e2:91:cc:3a:85:5a:64:ab:8c: a0:4e:3d:18:48:58:cf:bd:8b:8c:f3:ea:b7:aa:67: 01:f9:32:88:22:3d:53:95:47:d5:7f:07:b3:d7:91: 50:20:7d:42:8c:fb:9d:2c:56:18:dd:8c:6b:ce:2c: 83:8e:ad:e5:f5:41:d3:04:37:f0:2b:c0:16:92:37: 7a:b6:7c:ad:43:c1:89:63:64:cd:d6:d6:c5:ff:95: 69:17:21:3d:dd:67:fe:1b:aa:35:77:f4:b9:5b:d0: 12:f4:2a:f1:af:e7:a3:06:27:eb:52:4d:31:b4:86: 16:e8:01:cd:07:f1:25:d9:a4:27:b1:e5:af:f4:a2: 21:fb:22:6a:8d:b0:25:6c:2e:f8:bb:97:30:d7:50: 38:2b:c3:6e:11:ef:f7:8e:32:fe:b9:c2:ce:0e:00: c5:cb:15:59:45:aa:3d:25:32:5c:8c:fc:82:5a:75: ad:c5:11:4f:4f:fa:d8:a8:dc:77:bb:71:aa:8a:00: f8:8a:d7:cb:64:65:1a:89:fb:27:a1:86:9e:55:e2: ea:f5:a5:b4:ca:9d:ec:42:43:27:2f:d5:23:ee:c4: c3:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:D8:80:66:B6:30:D0:75:63:C1:3B:0C:EF:A4:FD:C0:8E:8E:58:F8 X509v3 Authority Key Identifier: keyid:E4:62:3C:FD:44:3E:62:32:F2:6C:23:E8:1F:DF:97:58:B2:6F:3B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:46:9b:fe:ee:7d:df:be:a1:a8:ae:56:ff:5f:32:20:31:a9: 60:4b:6d:76:ba:99:e2:40:70:d0:2c:fc:65:d5:66:73:9c:9e: c9:33:7e:c4:ed:94:16:8c:71:0f:e8:ba:b3:bf:a5:59:24:6d: 39:55:3c:7a:a2:fa:45:b3:c6:61:a8:26:d4:d1:91:e1:63:e5: cb:be:24:75:8a:41:f8:d5:45:96:23:fd:e7:bd:ca:86:d6:ec: 8c:b2:d0:0d:a1:40:8b:36:9e:2c:ac:8e:f0:26:f5:ff:12:6a: 20:1e:db:8f:8f:5c:9b:f6:89:33:e1:1a:52:a1:6c:1e:87:b8: e9:e9:b1:c9:2c:10:ae:a5:c6:85:fc:02:11:17:ed:57:a4:2d: af:fb:c2:cf:fb:32:ef:19:8a:01:84:ea:a3:96:5c:55:25:6b: ba:45:db:3c:f0:c6:8d:51:50:b2:2d:9f:02:d0:2e:f5:7d:f5: 78:6b:b7:dd:2b:ac:f7:c8:f5:46:d7:5c:69:ba:94:50:42:5f: c7:06:7f:17:05:08:a3:78:39:42:ea:55:6d:97:51:54:2e:c5: 3a:9f:ea:e0:eb:15:a7:78:fa:77:0b:72:f7:2f:42:7f:37:55: 8d:8a:55:50:73:fa:da:36:03:64:17:7c:41:e4:d9:ab:ce:81: a2:80:14:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYzQkExMTAvBgNVBAUTKEU0NjIzQ0ZENDQzRTYyMzJGMjZDMjNFODFGREY5NzU4 QjI2RjNCMkMwHhcNMjUxMDE4MjIxNDQyWhcNMjUxMDI1MjIxNDQyWjAYMRYwFAYD VQQDEw02OGY0MTE1My04ZDc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuYn82b7Ojz9xqAyZMeqpF0k3I50L2g22+ZfAoyIVCQPj30/ikcw6hVpkq4yg Tj0YSFjPvYuM8+q3qmcB+TKIIj1TlUfVfwez15FQIH1CjPudLFYY3YxrziyDjq3l 9UHTBDfwK8AWkjd6tnytQ8GJY2TN1tbF/5VpFyE93Wf+G6o1d/S5W9AS9Crxr+ej BifrUk0xtIYW6AHNB/El2aQnseWv9KIh+yJqjbAlbC74u5cw11A4K8NuEe/3jjL+ ucLODgDFyxVZRao9JTJcjPyCWnWtxRFPT/rYqNx3u3GqigD4itfLZGUaifsnoYae VeLq9aW0yp3sQkMnL9Uj7sTDmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNfYgGa2 MNB1Y8E7DO+k/cCOjlj4MB8GA1UdIwQYMBaAFORiPP1EPmIy8mwj6B/fl1iybzss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjNCQS9GRjIwRUJEQzAx M0QxMUVCQTAwMDEyNkJDNEY5QUUwMi81R0k4X1VRLVlqTHliQ1BvSDktWFdMSnZP eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVHSThfVVEtWWpMeWJDUG9IOS1YV0xKdk95dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjNCQS9GRjIwRUJEQzAxM0QxMUVCQTAwMDEyNkJDNEY5QUUwMi81R0k4X1VRLVlq THliQ1BvSDktWFdMSnZPeXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKRpv+7n3fvqGorlb/XzIgMalgS212upniQHDQLPxl1WZznJ7JM37E 7ZQWjHEP6Lqzv6VZJG05VTx6ovpFs8ZhqCbU0ZHhY+XLviR1ikH41UWWI/3nvcqG 1uyMstANoUCLNp4srI7wJvX/EmogHtuPj1yb9okz4RpSoWweh7jp6bHJLBCupcaF /AIRF+1XpC2v+8LP+zLvGYoBhOqjllxVJWu6Rds88MaNUVCyLZ8C0C71ffV4a7fd K6z3yPVG11xpupRQQl/HBn8XBQijeDlC6lVtl1FULsU6n+rg6xWnePp3C3L3L0J/ N1WNilVQc/raNgNkF3xB5NmrzoGigBQ1 -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:56 2025 by rpki-client