$ rpki-client -vvf rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft File: 5HE8G511dZKVr2TN-6YrcNuaBTc.mft (raw, json) Hash identifier: Low0iVKR9cO1b/sNlUvd7YFzU+R+IMPFd31ccB/M7TM= Subject key identifier: C4:4A:F2:21:69:9A:34:3C:C3:83:5C:50:51:A6:83:8C:50:6C:1C:7D Authority key identifier: E4:71:3C:1B:9D:75:75:92:95:AF:64:CD:FB:A6:2B:70:DB:9A:05:37 Certificate issuer: /CN=A91561B7/serialNumber=E4713C1B9D75759295AF64CDFBA62B70DB9A0537 Certificate serial: 1DF5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft Manifest number: 1DE0 Signing time: Sat 18 Oct 2025 16:24:15 +0000 Manifest this update: Sat 18 Oct 2025 16:24:15 +0000 Manifest next update: Sat 25 Oct 2025 16:24:15 +0000 Files and hashes: 1: 5HE8G511dZKVr2TN-6YrcNuaBTc.crl (hash: cEJjmychpGfcEUBD8rLYFeTAFZPbfuXn9svb0udp0Cw=) 2: 4865DD00A13B11E687921078C4F9AE02.roa (hash: MaFWYkY2HcnSI16cq7zrf3Xg1TMrKe+K2OOU5n2vPcU=) 3: 1D57FF40A01311E684546521C4F9AE02.roa (hash: 8kLRR6g7/NXM5uPCUqU+X4Qb9woBVi0kDN/Wkxs+ARo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.crl rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7669 (0x1df5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91561B7, serialNumber=E4713C1B9D75759295AF64CDFBA62B70DB9A0537 Validity Not Before: Oct 18 16:24:15 2025 GMT Not After : Oct 25 16:24:15 2025 GMT Subject: CN=68f3bf2f-de50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:85:70:44:8c:7c:2b:98:c1:41:6e:25:ad:61: 8a:d9:1e:53:74:4b:25:e5:11:65:c8:f3:03:98:16: d1:57:d8:07:ca:38:95:40:ae:87:c3:1f:dd:7f:f9: 77:00:a8:ec:70:06:85:ba:39:45:c4:68:43:da:60: 27:4d:ec:57:ff:91:a7:ba:d4:10:8e:0a:2c:2c:ee: 9d:65:9a:f3:38:ad:3f:bc:e5:fa:d5:85:82:19:17: e2:e9:34:fe:19:a7:13:50:3f:0d:b0:19:1b:13:79: 2a:fd:ae:c7:23:6a:0c:b8:e1:12:66:99:0e:a9:c9: 74:33:a7:6c:f0:55:92:31:c5:b7:de:96:d8:23:dd: af:15:fb:a8:71:7d:4a:aa:b0:1c:91:5e:e7:f3:05: 51:47:ec:c6:a8:10:e8:3f:e8:ca:37:c9:e8:db:12: c8:0a:2b:b2:3a:e4:91:68:71:e8:d4:16:3a:13:fc: b3:45:70:0c:f9:88:af:57:7e:92:6e:be:ea:47:60: 43:78:06:97:ac:2e:20:6c:fd:30:37:5e:43:ed:a8: d3:dd:52:32:bf:90:56:2e:9d:4c:41:ef:c7:07:f5: 33:11:87:7e:34:36:a4:fc:e6:a9:29:f6:24:05:c8: 6a:7c:cd:6d:df:fe:c0:c1:e6:55:8d:f0:1d:5e:72: d7:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:4A:F2:21:69:9A:34:3C:C3:83:5C:50:51:A6:83:8C:50:6C:1C:7D X509v3 Authority Key Identifier: keyid:E4:71:3C:1B:9D:75:75:92:95:AF:64:CD:FB:A6:2B:70:DB:9A:05:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HE8G511dZKVr2TN-6YrcNuaBTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91561B7/5FA1ED309EF011E681102733C4F9AE02/5HE8G511dZKVr2TN-6YrcNuaBTc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:4c:54:b8:cb:bb:2a:e4:d5:a0:d0:5f:99:0b:a3:12:76:7d: 61:d9:73:07:bb:5b:d6:ee:b2:7f:35:bc:4e:0d:7a:a0:1c:13: 2d:fc:96:0d:ba:50:00:1c:d4:ee:67:b1:8d:1f:95:79:14:87: 30:71:a3:63:bd:bd:f8:ae:c3:b2:a8:fe:be:33:4c:d0:5d:4d: 0e:3f:56:c7:3f:cb:9c:6f:e9:6b:07:1f:b5:30:48:c6:40:97: 73:58:14:3f:ff:9f:44:67:6c:ba:0e:77:26:8b:e8:62:2f:0f: 32:db:bc:44:f2:66:d4:1d:af:48:2a:57:1a:e5:07:ff:87:6b: dc:fb:46:32:6b:31:65:bb:21:d2:5e:3a:e0:da:0f:1b:9f:b5: 69:dd:c6:b4:23:0a:6e:e1:a7:b8:43:1e:7c:57:b1:86:2c:8a: 56:04:d8:4c:34:31:43:c3:0e:d9:11:ab:2d:b4:01:dd:c8:d0: ba:d7:f2:25:52:57:cb:42:13:89:c5:9f:ce:d5:bc:42:86:57: 54:43:e1:bc:df:42:90:ec:21:d8:71:86:97:00:c6:ef:0d:49: 89:f5:a8:dd:d3:46:f5:97:d5:3c:d2:14:8c:10:22:bf:53:04: eb:f9:99:44:87:b9:6f:d8:58:d7:91:d2:c6:0d:8c:cc:9f:4c: 77:9a:31:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYxQjcxMTAvBgNVBAUTKEU0NzEzQzFCOUQ3NTc1OTI5NUFGNjRDREZCQTYyQjcw REI5QTA1MzcwHhcNMjUxMDE4MTYyNDE1WhcNMjUxMDI1MTYyNDE1WjAYMRYwFAYD VQQDEw02OGYzYmYyZi1kZTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuoVwRIx8K5jBQW4lrWGK2R5TdEsl5RFlyPMDmBbRV9gHyjiVQK6Hwx/df/l3 AKjscAaFujlFxGhD2mAnTexX/5GnutQQjgosLO6dZZrzOK0/vOX61YWCGRfi6TT+ GacTUD8NsBkbE3kq/a7HI2oMuOESZpkOqcl0M6ds8FWSMcW33pbYI92vFfuocX1K qrAckV7n8wVRR+zGqBDoP+jKN8no2xLICiuyOuSRaHHo1BY6E/yzRXAM+YivV36S br7qR2BDeAaXrC4gbP0wN15D7ajT3VIyv5BWLp1MQe/HB/UzEYd+NDak/OapKfYk BchqfM1t3/7AweZVjfAdXnLXUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMRK8iFp mjQ8w4NcUFGmg4xQbBx9MB8GA1UdIwQYMBaAFORxPBuddXWSla9kzfumK3DbmgU3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjFCNy81RkExRUQzMDlF RjAxMUU2ODExMDI3MzNDNEY5QUUwMi81SEU4RzUxMWRaS1ZyMlROLTZZcmNOdWFC VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVIRThHNTExZFpLVnIyVE4tNllyY051YUJUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjFCNy81RkExRUQzMDlFRjAxMUU2ODExMDI3MzNDNEY5QUUwMi81SEU4RzUxMWRa S1ZyMlROLTZZcmNOdWFCVGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxTFS4y7sq5NWg0F+ZC6MSdn1h2XMHu1vW7rJ/NbxODXqgHBMt/JYN ulAAHNTuZ7GNH5V5FIcwcaNjvb34rsOyqP6+M0zQXU0OP1bHP8ucb+lrBx+1MEjG QJdzWBQ//59EZ2y6Dncmi+hiLw8y27xE8mbUHa9IKlca5Qf/h2vc+0YyazFluyHS Xjrg2g8bn7Vp3ca0Iwpu4ae4Qx58V7GGLIpWBNhMNDFDww7ZEasttAHdyNC61/Il UlfLQhOJxZ/O1bxChldUQ+G830KQ7CHYcYaXAMbvDUmJ9ajd00b1l9U80hSMECK/ UwTr+ZlEh7lv2FjXkdLGDYzMn0x3mjED -----END CERTIFICATE-----Generated at Mon Oct 20 04:25:35 2025 by rpki-client