$ rpki-client -vvf rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.mft File: -tm5N3fQzrort6a3jVB_d5CSHAY.mft (raw, json) Hash identifier: MeX5Mf/PD3pUrHuPwbA/8chf50L6Itnf8DMJbm/Ww5I= Subject key identifier: A3:61:FB:EA:ED:43:62:CC:0E:8C:E9:E7:78:BD:D6:83:14:BC:3D:2E Authority key identifier: FA:D9:B9:37:77:D0:CE:BA:2B:B7:A6:B7:8D:50:7F:77:90:92:1C:06 Certificate issuer: /CN=A91557F2/serialNumber=FAD9B93777D0CEBA2BB7A6B78D507F7790921C06 Certificate serial: 072F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tm5N3fQzrort6a3jVB_d5CSHAY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.mft Manifest number: 08C2 Signing time: Sat 18 Oct 2025 23:09:55 +0000 Manifest this update: Sat 18 Oct 2025 23:09:54 +0000 Manifest next update: Sat 25 Oct 2025 23:09:54 +0000 Files and hashes: 1: -tm5N3fQzrort6a3jVB_d5CSHAY.crl (hash: ZSqIDFnQPjJDAodJeh/Dh+yNi41FBtI/DFwfZmXd/Zs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.crl rsync://rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tm5N3fQzrort6a3jVB_d5CSHAY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:09:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1839 (0x72f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91557F2, serialNumber=FAD9B93777D0CEBA2BB7A6B78D507F7790921C06 Validity Not Before: Oct 18 23:09:54 2025 GMT Not After : Oct 25 23:09:54 2025 GMT Subject: CN=68f41e43-85ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:37:82:bb:1a:16:6b:1e:e5:d9:bb:1a:7b:a8: 58:c8:9b:99:5c:2d:c7:65:46:f4:7a:de:08:c1:0c: f4:2e:2e:89:b1:d2:96:34:ab:18:df:6f:4a:aa:30: ae:87:3f:77:2d:17:cf:b4:45:8e:25:42:a8:7b:ed: 6b:fa:5b:47:62:9b:eb:da:35:f4:b5:02:d8:a4:68: 19:17:66:af:01:35:72:82:e4:4e:d0:65:02:e8:44: 15:88:69:c8:76:39:2b:35:65:c9:ce:38:f1:23:6b: 00:98:40:5a:56:34:79:57:a1:35:f5:27:b8:87:b5: 2a:40:51:d4:4c:b4:2c:1c:c8:53:55:dc:a0:7a:6d: 47:bd:13:27:71:54:d2:10:2f:08:b7:b0:dd:fd:1a: 20:af:0d:62:4f:72:c2:4c:9b:fa:7e:03:db:2d:88: c9:2b:84:1c:99:a9:5d:db:a4:1a:42:c3:3b:c1:09: be:4e:96:53:98:e8:d1:48:9c:77:67:18:95:1b:1b: 33:46:db:55:5e:9c:ab:a6:be:90:41:1f:7d:01:8b: 5b:ef:26:51:60:ab:49:c4:7d:c2:0b:00:ba:59:a8: 52:4a:92:60:ea:38:a4:f5:42:be:b9:42:9a:ac:1e: 3f:bf:c4:65:a7:c6:2b:ff:8d:eb:fa:04:c5:c1:5a: a5:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:61:FB:EA:ED:43:62:CC:0E:8C:E9:E7:78:BD:D6:83:14:BC:3D:2E X509v3 Authority Key Identifier: keyid:FA:D9:B9:37:77:D0:CE:BA:2B:B7:A6:B7:8D:50:7F:77:90:92:1C:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tm5N3fQzrort6a3jVB_d5CSHAY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91557F2/233504A44FCC11EB9DBE7F5DC4F9AE02/-tm5N3fQzrort6a3jVB_d5CSHAY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:d1:af:75:26:aa:59:13:84:a3:f3:9c:a6:4e:8a:c8:47:14: ee:ce:17:d1:a1:28:0d:09:91:01:8c:5a:cd:9e:24:65:ed:81: d4:37:ed:ab:4a:e4:97:76:a4:0e:29:75:17:36:36:b2:9b:09: 93:aa:d4:96:d9:d1:33:d4:dc:4a:2f:95:f7:c0:b3:a4:d2:fa: 3f:1c:d5:d5:ac:08:8e:01:b8:2e:e7:48:7a:f1:c1:1b:d8:68: db:b5:ca:0d:90:8f:30:c6:e1:8b:87:02:e2:aa:9b:df:f8:98: 28:1c:4d:2f:6b:8f:0d:45:d4:5b:ce:40:50:da:dc:53:6b:d9: 39:56:85:21:92:5f:69:79:8d:66:4e:3f:fe:cb:ae:16:0e:dc: 7f:d1:83:52:a6:76:92:a8:7b:17:5c:cc:3c:bc:13:0b:ac:71: fa:85:e0:a8:98:a5:8b:63:ff:03:42:a1:1d:83:28:09:8d:35: a4:1d:a4:4e:dc:93:89:e6:11:f4:83:a4:45:27:eb:07:30:98: 4f:e7:fd:a3:c1:f0:f9:60:a2:99:35:13:67:d7:d2:6c:16:33: 33:11:19:c6:2d:86:48:8b:18:c7:78:5a:7a:4d:95:fc:58:49: f0:48:58:23:a1:a3:19:54:09:95:2e:3f:91:64:9f:64:2e:22: 66:8f:6e:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBy8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU3RjIxMTAvBgNVBAUTKEZBRDlCOTM3NzdEMENFQkEyQkI3QTZCNzhENTA3Rjc3 OTA5MjFDMDYwHhcNMjUxMDE4MjMwOTU0WhcNMjUxMDI1MjMwOTU0WjAYMRYwFAYD VQQDEw02OGY0MWU0My04NWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzTeCuxoWax7l2bsae6hYyJuZXC3HZUb0et4IwQz0Li6JsdKWNKsY329KqjCu hz93LRfPtEWOJUKoe+1r+ltHYpvr2jX0tQLYpGgZF2avATVyguRO0GUC6EQViGnI djkrNWXJzjjxI2sAmEBaVjR5V6E19Se4h7UqQFHUTLQsHMhTVdygem1HvRMncVTS EC8It7Dd/Rogrw1iT3LCTJv6fgPbLYjJK4Qcmald26QaQsM7wQm+TpZTmOjRSJx3 ZxiVGxszRttVXpyrpr6QQR99AYtb7yZRYKtJxH3CCwC6WahSSpJg6jik9UK+uUKa rB4/v8Rlp8Yr/43r+gTFwVql0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKNh++rt Q2LMDozp53i91oMUvD0uMB8GA1UdIwQYMBaAFPrZuTd30M66K7emt41Qf3eQkhwG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTdGMi8yMzM1MDRBNDRG Q0MxMUVCOURCRTdGNURDNEY5QUUwMi8tdG01TjNmUXpyb3J0NmEzalZCX2Q1Q1NI QVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy10bTVOM2ZRenJvcnQ2YTNqVkJfZDVDU0hBWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTdGMi8yMzM1MDRBNDRGQ0MxMUVCOURCRTdGNURDNEY5QUUwMi8tdG01TjNmUXpy b3J0NmEzalZCX2Q1Q1NIQVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCG0a91JqpZE4Sj85ymTorIRxTuzhfRoSgNCZEBjFrNniRl7YHUN+2r SuSXdqQOKXUXNjaymwmTqtSW2dEz1NxKL5X3wLOk0vo/HNXVrAiOAbgu50h68cEb 2GjbtcoNkI8wxuGLhwLiqpvf+JgoHE0va48NRdRbzkBQ2txTa9k5VoUhkl9peY1m Tj/+y64WDtx/0YNSpnaSqHsXXMw8vBMLrHH6heComKWLY/8DQqEdgygJjTWkHaRO 3JOJ5hH0g6RFJ+sHMJhP5/2jwfD5YKKZNRNn19JsFjMzERnGLYZIixjHeFp6TZX8 WEnwSFgjoaMZVAmVLj+RZJ9kLiJmj27l -----END CERTIFICATE-----Generated at Mon Oct 20 12:55:41 2025 by rpki-client