$ rpki-client -vvf rpki.apnic.net/member_repository/A917429C/0F172DD2302811EE934A8D0CC4F9AE02/P5mfuMEae4Z_G_n5nKHCaglVK34.mft File: P5mfuMEae4Z_G_n5nKHCaglVK34.mft (raw, json) Hash identifier: mMSh4wEckX8O4i9tShwn0zMjk9fLupqiFqKxaOEC9Eo= Subject key identifier: C7:54:62:CC:3E:CF:E2:8F:5A:0B:9F:77:E5:C2:14:24:2E:16:62:31 Authority key identifier: 3F:99:9F:B8:C1:1A:7B:86:7F:1B:F9:F9:9C:A1:C2:6A:09:55:2B:7E Certificate issuer: /CN=A917429C/serialNumber=3F999FB8C11A7B867F1BF9F99CA1C26A09552B7E Certificate serial: 01A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P5mfuMEae4Z_G_n5nKHCaglVK34.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917429C/0F172DD2302811EE934A8D0CC4F9AE02/P5mfuMEae4Z_G_n5nKHCaglVK34.mft Manifest number: 01A5 Signing time: Sun 19 Oct 2025 05:50:57 +0000 Manifest this update: Sun 19 Oct 2025 05:50:57 +0000 Manifest next update: Sun 26 Oct 2025 05:50:57 +0000 Files and hashes: 1: P5mfuMEae4Z_G_n5nKHCaglVK34.crl (hash: JHlUpVMSq74BpLlBB8EM5UuEXegVhPVZ6uAOx4eo35Q=) 2: D41F53D48DC011EEB2B3600BC4F9AE02.roa (hash: Q3p56EBz1xC365ZPw62kRQzqXww33xOtvu79Twkm2RE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917429C/0F172DD2302811EE934A8D0CC4F9AE02/P5mfuMEae4Z_G_n5nKHCaglVK34.crl rsync://rpki.apnic.net/member_repository/A917429C/0F172DD2302811EE934A8D0CC4F9AE02/P5mfuMEae4Z_G_n5nKHCaglVK34.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P5mfuMEae4Z_G_n5nKHCaglVK34.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:50:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 424 (0x1a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917429C, serialNumber=3F999FB8C11A7B867F1BF9F99CA1C26A09552B7E Validity Not Before: Oct 19 05:50:57 2025 GMT Not After : Oct 26 05:50:57 2025 GMT Subject: CN=68f47c41-1a36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:54:6c:eb:13:8a:e8:5a:eb:7e:30:fc:a7:80: b6:f0:38:5c:7f:ff:31:16:bc:c4:6d:db:36:19:0f: 8c:53:5d:99:e4:18:bc:b7:b1:d9:19:c0:5c:02:73: 66:58:3b:64:08:da:ac:30:45:15:b7:e0:8a:53:e3: 51:b6:72:4b:67:e3:78:14:6e:1f:83:88:f3:cb:c2: 6c:6e:ab:e2:4f:c4:81:f4:f2:d2:55:08:93:66:5a: 2d:e5:a4:a2:f4:07:14:07:7e:64:20:e2:d9:39:c9: 21:5e:51:84:06:49:5b:7c:cf:74:67:33:97:df:8e: 76:da:a2:5c:36:30:7e:32:5b:32:c9:37:a0:74:d0: 76:a1:29:4e:15:f6:b6:d7:30:de:42:93:e4:ae:a3: 4d:19:ad:e8:6d:e3:f8:dd:e6:ac:14:1c:7d:74:23: 5e:34:49:ec:98:68:39:03:d8:5f:72:99:4b:1c:b0: 57:48:40:e5:68:39:05:e8:88:3f:50:9a:d8:32:e0: f5:87:0b:75:11:f4:e1:69:63:79:f2:72:88:b0:f1: 42:1a:25:84:f9:1e:ca:9f:f4:b2:0e:e2:95:2b:42: bc:d3:2c:22:95:86:ea:c7:a4:59:da:80:4d:35:69: 16:fd:be:92:34:87:ef:3a:80:ae:40:a9:75:1b:52: a5:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:54:62:CC:3E:CF:E2:8F:5A:0B:9F:77:E5:C2:14:24:2E:16:62:31 X509v3 Authority Key Identifier: keyid:3F:99:9F:B8:C1:1A:7B:86:7F:1B:F9:F9:9C:A1:C2:6A:09:55:2B:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917429C/0F172DD2302811EE934A8D0CC4F9AE02/P5mfuMEae4Z_G_n5nKHCaglVK34.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P5mfuMEae4Z_G_n5nKHCaglVK34.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917429C/0F172DD2302811EE934A8D0CC4F9AE02/P5mfuMEae4Z_G_n5nKHCaglVK34.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:7b:e2:2d:1d:51:86:31:76:2a:c7:af:a9:0b:c8:c9:4f:a4: c3:2a:1f:5c:3a:c5:c4:d6:9f:98:93:97:12:73:4b:e8:3b:76: 46:14:24:1b:df:8a:30:83:27:8d:f0:4b:f3:0d:5e:84:35:9d: 39:3e:03:22:1c:19:6c:47:96:3a:a0:a4:87:a1:34:7e:47:e4: 80:e2:09:03:07:0c:63:82:5a:b1:3c:94:fb:02:fb:29:a9:9b: 52:51:d3:7b:aa:47:c5:ef:c5:83:ba:4f:e0:02:44:7c:98:26: 4d:e0:f9:05:52:c1:1f:24:bb:f2:39:80:80:17:c3:4b:4d:29: 43:4c:ca:71:18:1c:c6:a9:64:be:8f:5a:b6:a2:e7:8c:80:e4: 0e:9d:c9:b2:99:2e:97:90:29:f8:64:eb:fb:56:d4:c4:05:8f: ba:aa:ea:ac:21:1e:2e:1d:87:b5:ad:cc:84:0f:ac:6e:8a:57: 30:bf:17:c8:47:23:83:89:86:c7:a1:3b:84:8a:c1:7c:17:dd: f9:f8:8a:bb:70:d9:84:1c:d4:69:4f:f1:91:e9:ae:23:2a:b3: 98:0a:65:b4:b8:58:48:f9:ed:fd:2c:1a:c6:6b:d1:3e:b2:25: 5a:15:57:90:bc:f6:1b:06:e5:df:67:15:0e:14:01:b2:c9:ac: 37:93:d5:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQyOUMxMTAvBgNVBAUTKDNGOTk5RkI4QzExQTdCODY3RjFCRjlGOTlDQTFDMjZB MDk1NTJCN0UwHhcNMjUxMDE5MDU1MDU3WhcNMjUxMDI2MDU1MDU3WjAYMRYwFAYD VQQDEw02OGY0N2M0MS0xYTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw1Rs6xOK6FrrfjD8p4C28Dhcf/8xFrzEbds2GQ+MU12Z5Bi8t7HZGcBcAnNm WDtkCNqsMEUVt+CKU+NRtnJLZ+N4FG4fg4jzy8JsbqviT8SB9PLSVQiTZlot5aSi 9AcUB35kIOLZOckhXlGEBklbfM90ZzOX34522qJcNjB+MlsyyTegdNB2oSlOFfa2 1zDeQpPkrqNNGa3obeP43easFBx9dCNeNEnsmGg5A9hfcplLHLBXSEDlaDkF6Ig/ UJrYMuD1hwt1EfThaWN58nKIsPFCGiWE+R7Kn/SyDuKVK0K80ywilYbqx6RZ2oBN NWkW/b6SNIfvOoCuQKl1G1KlYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMdUYsw+ z+KPWgufd+XCFCQuFmIxMB8GA1UdIwQYMBaAFD+Zn7jBGnuGfxv5+ZyhwmoJVSt+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDI5Qy8wRjE3MkREMjMw MjgxMUVFOTM0QThEMENDNEY5QUUwMi9QNW1mdU1FYWU0Wl9HX241bktIQ2FnbFZL MzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A1bWZ1TUVhZTRaX0dfbjVuS0hDYWdsVkszNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDI5Qy8wRjE3MkREMjMwMjgxMUVFOTM0QThEMENDNEY5QUUwMi9QNW1mdU1FYWU0 Wl9HX241bktIQ2FnbFZLMzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASe+ItHVGGMXYqx6+pC8jJT6TDKh9cOsXE1p+Yk5cSc0voO3ZGFCQb 34owgyeN8EvzDV6ENZ05PgMiHBlsR5Y6oKSHoTR+R+SA4gkDBwxjglqxPJT7Avsp qZtSUdN7qkfF78WDuk/gAkR8mCZN4PkFUsEfJLvyOYCAF8NLTSlDTMpxGBzGqWS+ j1q2oueMgOQOncmymS6XkCn4ZOv7VtTEBY+6quqsIR4uHYe1rcyED6xuilcwvxfI RyODiYbHoTuEisF8F935+Iq7cNmEHNRpT/GR6a4jKrOYCmW0uFhI+e39LBrGa9E+ siVaFVeQvPYbBuXfZxUOFAGyyaw3k9Xw -----END CERTIFICATE-----Generated at Mon Oct 20 08:56:38 2025 by rpki-client