$ rpki-client -vvf rpki.apnic.net/member_repository/A91867F1/809D715C591A11EA9692AA3CC4F9AE02/s5MbVo8uudLtLKTWS-vAhvuduJo.mft File: s5MbVo8uudLtLKTWS-vAhvuduJo.mft (raw, json) Hash identifier: jzYwqvrZT71tjrhL/qZgGARi3LmpnSPlSAxalswCwQg= Subject key identifier: 3F:2B:E7:98:1B:92:60:3B:A5:06:7F:E6:CF:DF:48:C9:86:7A:7F:05 Authority key identifier: B3:93:1B:56:8F:2E:B9:D2:ED:2C:A4:D6:4B:EB:C0:86:FB:9D:B8:9A Certificate issuer: /CN=A91867F1/serialNumber=B3931B568F2EB9D2ED2CA4D64BEBC086FB9DB89A Certificate serial: 0ADF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5MbVo8uudLtLKTWS-vAhvuduJo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91867F1/809D715C591A11EA9692AA3CC4F9AE02/s5MbVo8uudLtLKTWS-vAhvuduJo.mft Manifest number: 0AD8 Signing time: Sat 18 Oct 2025 20:22:46 +0000 Manifest this update: Sat 18 Oct 2025 20:22:45 +0000 Manifest next update: Sat 25 Oct 2025 20:22:45 +0000 Files and hashes: 1: s5MbVo8uudLtLKTWS-vAhvuduJo.crl (hash: mnf/aAp2MNvTk4M2Jhm1PS1dxzTlhvpxWhGT7RBusMs=) 2: 6FEF33E05C2B11EAAE63403FC4F9AE02.roa (hash: OjmKjbirK1HOaPuAuxNpB1VjEustiEgzLqIxeeZ+0sM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91867F1/809D715C591A11EA9692AA3CC4F9AE02/s5MbVo8uudLtLKTWS-vAhvuduJo.crl rsync://rpki.apnic.net/member_repository/A91867F1/809D715C591A11EA9692AA3CC4F9AE02/s5MbVo8uudLtLKTWS-vAhvuduJo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5MbVo8uudLtLKTWS-vAhvuduJo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:22:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2783 (0xadf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91867F1, serialNumber=B3931B568F2EB9D2ED2CA4D64BEBC086FB9DB89A Validity Not Before: Oct 18 20:22:45 2025 GMT Not After : Oct 25 20:22:45 2025 GMT Subject: CN=68f3f715-9b65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d5:90:fa:2b:54:e3:2e:52:82:88:4a:c3:67: 8b:ee:84:c3:a9:a6:8d:df:0c:9f:b1:4d:64:d9:f2: 1a:c8:03:4c:1f:ed:3d:32:7c:69:0d:51:90:b4:d7: 76:d4:bf:5e:77:45:0e:cd:36:e2:9f:64:3b:7e:7d: b3:f7:86:16:71:55:c8:2f:95:c2:9b:1f:f1:bf:4b: d2:28:8e:a3:c4:bd:a8:c8:44:8f:be:6a:94:01:45: e8:8f:fb:a5:26:4b:4e:02:85:e7:e3:77:0c:e6:5a: 70:73:10:5e:71:d6:8e:3f:4e:5b:fa:e0:56:55:cf: 66:f4:f9:dd:33:66:8e:82:de:a8:88:9f:10:10:6e: 1c:c0:05:ef:31:f2:b8:63:58:5e:57:78:bd:5f:29: 5b:f2:7d:93:0a:57:bf:83:b2:52:9b:70:7b:9a:13: ce:2a:90:e5:1a:20:09:59:62:69:d8:e8:25:cc:14: 3e:1f:a3:46:55:ba:26:f4:61:72:8a:6d:96:c9:22: 37:ac:89:95:a8:18:64:dc:ea:4e:fb:44:a7:f2:1e: ba:72:13:5b:31:78:63:57:2b:54:e2:d0:56:27:48: a1:7b:fd:55:fe:63:a6:32:05:0f:ab:21:ca:46:d2: c3:06:19:10:d0:c0:3a:b0:15:04:3b:9a:e1:87:5d: ac:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:2B:E7:98:1B:92:60:3B:A5:06:7F:E6:CF:DF:48:C9:86:7A:7F:05 X509v3 Authority Key Identifier: keyid:B3:93:1B:56:8F:2E:B9:D2:ED:2C:A4:D6:4B:EB:C0:86:FB:9D:B8:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91867F1/809D715C591A11EA9692AA3CC4F9AE02/s5MbVo8uudLtLKTWS-vAhvuduJo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5MbVo8uudLtLKTWS-vAhvuduJo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91867F1/809D715C591A11EA9692AA3CC4F9AE02/s5MbVo8uudLtLKTWS-vAhvuduJo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:61:2e:69:1a:8c:14:09:a1:4f:77:52:7b:5e:58:60:5c:a1: cf:0e:c3:30:93:14:83:33:03:b8:e5:7d:08:19:bb:25:d3:3b: 7f:8e:93:38:5d:30:cc:58:54:a3:49:83:4b:d3:bd:3b:f9:5b: 7b:96:ce:5d:17:46:4f:44:20:dc:2d:7f:b6:e3:a9:80:c4:03: 5f:e6:1c:c3:db:76:92:13:d1:30:6e:53:58:04:f9:a4:9f:63: 2c:af:d3:ce:d8:6e:fb:7c:73:d8:ea:a6:81:de:d5:6d:be:e8: 05:58:59:bc:58:45:8b:40:5d:7e:90:33:f6:e1:0c:a1:09:4c: 41:58:2f:12:56:a4:ae:b5:f7:58:ad:7e:62:23:3c:d5:cf:74: c9:28:5f:0e:b8:38:4b:7a:65:ee:8c:ea:18:f3:0f:40:3a:9a: d6:ef:ac:f7:33:e3:10:e2:b1:20:6e:c1:82:2d:03:d4:fa:3c: 8a:51:47:6b:8e:b2:a5:99:9f:19:71:44:62:94:bf:ce:92:05: bb:35:96:2f:4d:d2:dc:84:23:9f:12:93:66:07:bc:d3:df:41: bb:4e:ba:eb:ee:6d:fe:8c:9f:d7:8b:b3:9a:8d:35:6f:06:cf: ee:f8:7e:90:10:a6:7a:75:04:aa:d0:bd:62:b1:b1:c7:9a:34: 99:70:3e:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCt8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY3RjExMTAvBgNVBAUTKEIzOTMxQjU2OEYyRUI5RDJFRDJDQTRENjRCRUJDMDg2 RkI5REI4OUEwHhcNMjUxMDE4MjAyMjQ1WhcNMjUxMDI1MjAyMjQ1WjAYMRYwFAYD VQQDEw02OGYzZjcxNS05YjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0tWQ+itU4y5SgohKw2eL7oTDqaaN3wyfsU1k2fIayANMH+09MnxpDVGQtNd2 1L9ed0UOzTbin2Q7fn2z94YWcVXIL5XCmx/xv0vSKI6jxL2oyESPvmqUAUXoj/ul JktOAoXn43cM5lpwcxBecdaOP05b+uBWVc9m9PndM2aOgt6oiJ8QEG4cwAXvMfK4 Y1heV3i9Xylb8n2TCle/g7JSm3B7mhPOKpDlGiAJWWJp2OglzBQ+H6NGVbom9GFy im2WySI3rImVqBhk3OpO+0Sn8h66chNbMXhjVytU4tBWJ0ihe/1V/mOmMgUPqyHK RtLDBhkQ0MA6sBUEO5rhh12siwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD8r55gb kmA7pQZ/5s/fSMmGen8FMB8GA1UdIwQYMBaAFLOTG1aPLrnS7Syk1kvrwIb7nbia MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjdGMS84MDlENzE1QzU5 MUExMUVBOTY5MkFBM0NDNEY5QUUwMi9zNU1iVm84dXVkTHRMS1RXUy12QWh2dWR1 Sm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M1TWJWbzh1dWRMdExLVFdTLXZBaHZ1ZHVKby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjdGMS84MDlENzE1QzU5MUExMUVBOTY5MkFBM0NDNEY5QUUwMi9zNU1iVm84dXVk THRMS1RXUy12QWh2dWR1Sm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWYS5pGowUCaFPd1J7XlhgXKHPDsMwkxSDMwO45X0IGbsl0zt/jpM4 XTDMWFSjSYNL0707+Vt7ls5dF0ZPRCDcLX+246mAxANf5hzD23aSE9EwblNYBPmk n2Msr9PO2G77fHPY6qaB3tVtvugFWFm8WEWLQF1+kDP24QyhCUxBWC8SVqSutfdY rX5iIzzVz3TJKF8OuDhLemXujOoY8w9AOprW76z3M+MQ4rEgbsGCLQPU+jyKUUdr jrKlmZ8ZcURilL/OkgW7NZYvTdLchCOfEpNmB7zT30G7Trrr7m3+jJ/Xi7OajTVv Bs/u+H6QEKZ6dQSq0L1isbHHmjSZcD6T -----END CERTIFICATE-----Generated at Mon Oct 20 05:38:12 2025 by rpki-client