$ rpki-client -vvf rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft File: b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft (raw, json) Hash identifier: bbSP6igSxK9cwsYuSSoN7/BIlH0wCC+5Tg435dFnSRY= Subject key identifier: D5:B3:86:55:7E:DA:5C:79:96:BC:A8:6B:80:82:96:78:92:52:1A:D2 Authority key identifier: 6F:91:C7:6A:4F:74:66:41:00:DD:8D:EB:D1:78:51:42:E1:37:80:2D Certificate issuer: /CN=A918D2CA/serialNumber=6F91C76A4F74664100DD8DEBD1785142E137802D Certificate serial: 54 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b5HHak90ZkEA3Y3r0XhRQuE3gC0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft Manifest number: 52 Signing time: Sun 19 Oct 2025 10:41:30 +0000 Manifest this update: Sun 19 Oct 2025 10:41:29 +0000 Manifest next update: Sun 26 Oct 2025 10:41:29 +0000 Files and hashes: 1: b5HHak90ZkEA3Y3r0XhRQuE3gC0.crl (hash: 7XCkhdkc8x19cW9NbgHfWnI1C7HmscUDFTO/bGoOn5g=) 2: 8C9E2B18354711F09FCEEE25C4F9AE02.roa (hash: Rm2y9XYNOuLaJLPo5EgOIcrmYm6wYWaPwijgwTBKrVM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.crl rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b5HHak90ZkEA3Y3r0XhRQuE3gC0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:41:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D2CA, serialNumber=6F91C76A4F74664100DD8DEBD1785142E137802D Validity Not Before: Oct 19 10:41:29 2025 GMT Not After : Oct 26 10:41:29 2025 GMT Subject: CN=68f4c05a-7d70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d0:05:06:04:2f:6c:66:ef:8c:7f:14:db:ff: 72:a0:8e:bd:c7:e1:ba:5e:53:75:d3:aa:04:0b:6b: d6:c5:c1:3d:ad:30:66:36:44:a7:17:09:45:31:9c: 10:1c:02:68:d0:f7:47:27:45:35:fb:7c:e1:5a:0e: 24:b3:84:a1:ef:2b:9e:23:81:59:72:32:29:5b:c8: 4e:3a:d5:18:bc:34:cb:f3:80:c2:7b:b4:64:de:5d: 26:75:2d:89:3d:ae:14:ad:38:47:a2:f2:db:fd:30: 78:8c:1b:2a:43:20:a7:f5:00:ed:c7:6d:5d:73:af: 06:c3:79:c1:5b:fb:25:e7:ce:4c:8c:4a:80:05:ef: cf:09:6d:61:b9:18:70:9d:5a:46:82:08:3d:6a:bd: 5f:d5:08:31:b6:a1:46:a1:d2:53:14:0b:0b:6a:f3: ef:aa:4f:39:d5:1b:3f:a9:68:8d:d1:e3:93:c6:4f: 09:13:f3:33:e5:46:cf:2b:f7:b4:16:5a:81:14:95: 6d:69:bb:0d:54:90:b9:76:7f:5f:73:7b:51:a6:3a: 37:79:af:09:9f:3d:2b:18:4a:92:cd:59:1b:63:d3: 9b:25:3f:4f:df:a1:b5:09:6e:81:03:c1:11:b5:94: 73:b8:fe:5a:5d:c1:fb:b9:dc:fa:79:e1:12:d1:11: 3f:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:B3:86:55:7E:DA:5C:79:96:BC:A8:6B:80:82:96:78:92:52:1A:D2 X509v3 Authority Key Identifier: keyid:6F:91:C7:6A:4F:74:66:41:00:DD:8D:EB:D1:78:51:42:E1:37:80:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b5HHak90ZkEA3Y3r0XhRQuE3gC0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D2CA/09F74EF6354711F08103BE24C4F9AE02/b5HHak90ZkEA3Y3r0XhRQuE3gC0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:f7:dc:39:7f:64:6c:fd:b7:4d:40:12:ad:0a:00:94:12:5a: 09:f8:b2:2a:f8:29:70:fd:58:bc:db:39:05:1b:71:80:74:05: 1b:23:36:43:34:60:1c:1a:a3:54:7d:c9:4e:8c:5f:22:12:bd: 36:de:5a:6e:17:fe:56:4a:84:79:54:d4:3c:24:7e:7b:8b:c8: 8b:5d:ac:92:cb:bd:a5:32:ff:8b:06:95:3f:1d:b9:40:f7:76: 93:2a:bf:67:60:69:6a:cd:bb:bf:60:03:6f:18:a9:09:31:fd: 96:f9:49:c7:a9:5d:44:30:69:4d:c6:99:9a:ac:c8:de:3f:3d: c9:ce:b7:a0:53:d4:09:0a:9f:27:9b:0f:95:32:64:96:a5:0f: 35:c6:2e:8b:4f:90:1d:27:d8:ba:14:7c:b3:a3:c3:b7:c5:a1: 8b:b0:49:a1:b3:91:c5:ea:ee:0d:78:db:40:12:1a:a6:83:c1: ff:d5:b2:f0:11:4a:73:e4:11:c3:12:9e:0b:df:1d:65:92:03: a6:0e:b7:9c:67:c8:2d:b5:f9:c8:39:f3:b8:d9:a4:c2:f0:28: 5b:02:5d:b4:c7:58:45:e3:b1:8f:17:6f:a0:da:a3:61:c7:fd: 3c:97:9d:a3:6a:1c:f7:be:bf:92:a9:e6:03:f4:d4:39:97:a7: d6:dd:b9:0a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RDJDQTExMC8GA1UEBRMoNkY5MUM3NkE0Rjc0NjY0MTAwREQ4REVCRDE3ODUxNDJF MTM3ODAyRDAeFw0yNTEwMTkxMDQxMjlaFw0yNTEwMjYxMDQxMjlaMBgxFjAUBgNV BAMTDTY4ZjRjMDVhLTdkNzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDV0AUGBC9sZu+MfxTb/3Kgjr3H4bpeU3XTqgQLa9bFwT2tMGY2RKcXCUUxnBAc AmjQ90cnRTX7fOFaDiSzhKHvK54jgVlyMilbyE461Ri8NMvzgMJ7tGTeXSZ1LYk9 rhStOEei8tv9MHiMGypDIKf1AO3HbV1zrwbDecFb+yXnzkyMSoAF788JbWG5GHCd WkaCCD1qvV/VCDG2oUah0lMUCwtq8++qTznVGz+paI3R45PGTwkT8zPlRs8r97QW WoEUlW1puw1UkLl2f19ze1GmOjd5rwmfPSsYSpLNWRtj05slP0/fobUJboEDwRG1 lHO4/lpdwfu53Pp54RLRET9tAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1bOGVX7a XHmWvKhrgIKWeJJSGtIwHwYDVR0jBBgwFoAUb5HHak90ZkEA3Y3r0XhRQuE3gC0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThEMkNBLzA5Rjc0RUY2MzU0 NzExRjA4MTAzQkUyNEM0RjlBRTAyL2I1SEhhazkwWmtFQTNZM3IwWGhSUXVFM2dD MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYjVISGFrOTBaa0VBM1kzcjBYaFJRdUUzZ0MwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThE MkNBLzA5Rjc0RUY2MzU0NzExRjA4MTAzQkUyNEM0RjlBRTAyL2I1SEhhazkwWmtF QTNZM3IwWGhSUXVFM2dDMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI333Dl/ZGz9t01AEq0KAJQSWgn4sir4KXD9WLzbOQUbcYB0BRsjNkM0 YBwao1R9yU6MXyISvTbeWm4X/lZKhHlU1DwkfnuLyItdrJLLvaUy/4sGlT8duUD3 dpMqv2dgaWrNu79gA28YqQkx/Zb5ScepXUQwaU3GmZqsyN4/PcnOt6BT1AkKnyeb D5UyZJalDzXGLotPkB0n2LoUfLOjw7fFoYuwSaGzkcXq7g1420ASGqaDwf/VsvAR SnPkEcMSngvfHWWSA6YOt5xnyC21+cg587jZpMLwKFsCXbTHWEXjsY8Xb6Dao2HH /TyXnaNqHPe+v5Kp5gP01DmXp9bduQo= -----END CERTIFICATE-----Generated at Tue Oct 21 08:14:01 2025 by rpki-client