$ rpki-client -vvf rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft File: 5S3osZGTOKPiVWZOiASKVpihINA.mft (raw, json) Hash identifier: oju6Rb0kbYJGJQIOy257s609OVkZIW+OJkm3Kdv3S1w= Subject key identifier: 5E:52:BE:6D:74:5F:FE:65:6E:8F:DC:10:67:A0:E1:24:E5:06:A2:5B Authority key identifier: E5:2D:E8:B1:91:93:38:A3:E2:55:66:4E:88:04:8A:56:98:A1:20:D0 Certificate issuer: /CN=A9160701/serialNumber=E52DE8B1919338A3E255664E88048A5698A120D0 Certificate serial: 0BBC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft Manifest number: 0BB2 Signing time: Sat 18 Oct 2025 19:46:59 +0000 Manifest this update: Sat 18 Oct 2025 19:46:58 +0000 Manifest next update: Sat 25 Oct 2025 19:46:58 +0000 Files and hashes: 1: 5S3osZGTOKPiVWZOiASKVpihINA.crl (hash: Wjc1dhwr3//82PANlNIzF89wWgiPLzLDJ5qJYRI5+qc=) 2: 6DCC06C231BC11EA9AACCA4BC4F9AE02.roa (hash: 3rmLILbAM/KMJx9b9ZtmiW/UU8JiAcyOhmtpDcFmRPg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.crl rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3004 (0xbbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160701, serialNumber=E52DE8B1919338A3E255664E88048A5698A120D0 Validity Not Before: Oct 18 19:46:58 2025 GMT Not After : Oct 25 19:46:58 2025 GMT Subject: CN=68f3eeb3-3177 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:34:ae:85:6a:c2:34:ce:9f:b7:fe:e6:46:76: 0d:a5:9c:f5:7c:d1:0d:7d:25:c0:07:56:b1:c1:2e: 1d:cb:61:d5:6d:e7:46:7e:26:ae:1e:d0:c1:fb:1b: 40:6a:f0:b8:15:7b:6a:5f:94:bb:9d:c1:4f:57:23: 25:2b:6b:52:4f:38:dc:5e:ab:89:d8:c5:03:fd:bd: fc:b1:33:56:93:d6:9f:1f:e5:54:05:58:13:8e:cb: c7:3b:74:8f:db:69:7a:98:ff:90:22:c5:50:8d:cb: d0:34:89:24:97:40:31:74:ec:e4:53:21:5d:b0:c7: 6e:04:ee:4d:8d:6d:07:a9:ef:72:54:e3:4c:e1:47: f8:85:e5:02:3b:83:54:3c:04:48:89:32:6c:7f:54: 65:50:f5:90:8c:d9:61:fd:0a:64:5f:ce:87:b4:1f: 99:0d:44:ea:83:96:66:a0:5d:17:7e:5d:bd:60:c8: a5:e6:6e:f2:35:cc:7d:15:22:6d:bf:fd:42:e0:d5: 52:07:ec:25:20:60:05:11:95:bf:2a:69:c2:1f:9b: d4:65:78:92:2a:c2:0b:0d:4a:a1:7d:80:bb:7f:01: 8e:0b:46:81:db:06:6e:7d:d7:ec:59:58:25:5d:49: 15:3f:f9:44:25:b9:4e:f6:38:7d:63:80:05:79:b3: 6f:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:52:BE:6D:74:5F:FE:65:6E:8F:DC:10:67:A0:E1:24:E5:06:A2:5B X509v3 Authority Key Identifier: keyid:E5:2D:E8:B1:91:93:38:A3:E2:55:66:4E:88:04:8A:56:98:A1:20:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S3osZGTOKPiVWZOiASKVpihINA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160701/5400C418303011EAA72F367AC4F9AE02/5S3osZGTOKPiVWZOiASKVpihINA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:d7:90:ee:c8:2b:f7:15:fb:19:08:e7:0a:af:d2:72:b3:e9: 49:08:6d:15:29:ea:fc:9d:80:c1:98:b1:96:99:8c:ee:af:64: 95:16:e9:65:19:f9:ee:23:22:db:eb:e3:00:0a:92:27:a4:a9: 4c:4c:39:d5:31:b4:22:b3:a6:56:46:5a:0d:7b:ee:73:bf:d2: bb:52:88:76:22:4a:29:13:2a:0f:6f:46:4f:2a:4d:17:73:d7: 69:6c:52:4a:b9:a7:b0:59:b3:fc:dc:5e:36:f1:2a:e1:92:8b: a4:34:3f:c9:72:0c:b8:5b:6b:21:f5:89:82:48:29:bd:46:4b: 1a:07:2e:ca:5d:11:af:77:1f:eb:7b:ae:01:74:27:df:7d:53: 6e:2e:67:79:8c:79:17:96:63:92:4b:c2:22:87:a7:de:7c:40: ac:72:cb:89:31:19:cd:33:dc:db:67:37:55:66:71:75:86:86: 38:63:bb:3a:7e:e4:08:f7:24:92:48:bd:de:4c:a7:b0:38:90: aa:e8:4a:3b:63:7e:1d:d7:ea:34:74:ca:6a:b6:a7:b7:31:50: 42:06:b1:79:08:fb:7a:14:83:b0:16:c4:30:77:72:72:bf:eb: 26:e1:63:e5:91:63:ed:87:87:6c:4d:c9:2b:1a:39:2c:d4:5c: 90:cf:53:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA3MDExMTAvBgNVBAUTKEU1MkRFOEIxOTE5MzM4QTNFMjU1NjY0RTg4MDQ4QTU2 OThBMTIwRDAwHhcNMjUxMDE4MTk0NjU4WhcNMjUxMDI1MTk0NjU4WjAYMRYwFAYD VQQDEw02OGYzZWViMy0zMTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTSuhWrCNM6ft/7mRnYNpZz1fNENfSXAB1axwS4dy2HVbedGfiauHtDB+xtA avC4FXtqX5S7ncFPVyMlK2tSTzjcXquJ2MUD/b38sTNWk9afH+VUBVgTjsvHO3SP 22l6mP+QIsVQjcvQNIkkl0AxdOzkUyFdsMduBO5NjW0Hqe9yVONM4Uf4heUCO4NU PARIiTJsf1RlUPWQjNlh/QpkX86HtB+ZDUTqg5ZmoF0Xfl29YMil5m7yNcx9FSJt v/1C4NVSB+wlIGAFEZW/KmnCH5vUZXiSKsILDUqhfYC7fwGOC0aB2wZufdfsWVgl XUkVP/lEJblO9jh9Y4AFebNv+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF5Svm10 X/5lbo/cEGeg4STlBqJbMB8GA1UdIwQYMBaAFOUt6LGRkzij4lVmTogEilaYoSDQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDcwMS81NDAwQzQxODMw MzAxMUVBQTcyRjM2N0FDNEY5QUUwMi81UzNvc1pHVE9LUGlWV1pPaUFTS1ZwaWhJ TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVTM29zWkdUT0tQaVZXWk9pQVNLVnBpaElOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDcwMS81NDAwQzQxODMwMzAxMUVBQTcyRjM2N0FDNEY5QUUwMi81UzNvc1pHVE9L UGlWV1pPaUFTS1ZwaWhJTkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBR15DuyCv3FfsZCOcKr9Jys+lJCG0VKer8nYDBmLGWmYzur2SVFull GfnuIyLb6+MACpInpKlMTDnVMbQis6ZWRloNe+5zv9K7Uoh2IkopEyoPb0ZPKk0X c9dpbFJKuaewWbP83F428SrhkoukND/Jcgy4W2sh9YmCSCm9RksaBy7KXRGvdx/r e64BdCfffVNuLmd5jHkXlmOSS8Iih6fefECscsuJMRnNM9zbZzdVZnF1hoY4Y7s6 fuQI9ySSSL3eTKewOJCq6Eo7Y34d1+o0dMpqtqe3MVBCBrF5CPt6FIOwFsQwd3Jy v+sm4WPlkWPth4dsTckrGjks1FyQz1Nl -----END CERTIFICATE-----Generated at Mon Oct 20 04:08:22 2025 by rpki-client