$ rpki-client -vvf rpki.apnic.net/member_repository/A918F646/CECE8C9AF48E11E8B14A341EC4F9AE02/C5sr_BxrLAlndq91fTrxRUfkPnI.mft File: C5sr_BxrLAlndq91fTrxRUfkPnI.mft (raw, json) Hash identifier: rwhcWnx/BB1dOK65lBYwOyhsNRykz6UOzPp61HrCN20= Subject key identifier: E9:45:C5:10:02:7E:2D:90:95:E0:8E:B7:6C:B8:C6:B9:51:7C:B5:5E Authority key identifier: 0B:9B:2B:FC:1C:6B:2C:09:67:76:AF:75:7D:3A:F1:45:47:E4:3E:72 Certificate issuer: /CN=A918F646/serialNumber=0B9B2BFC1C6B2C096776AF757D3AF14547E43E72 Certificate serial: 1216 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C5sr_BxrLAlndq91fTrxRUfkPnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F646/CECE8C9AF48E11E8B14A341EC4F9AE02/C5sr_BxrLAlndq91fTrxRUfkPnI.mft Manifest number: 1201 Signing time: Sat 18 Oct 2025 17:41:00 +0000 Manifest this update: Sat 18 Oct 2025 17:40:59 +0000 Manifest next update: Sat 25 Oct 2025 17:40:59 +0000 Files and hashes: 1: C5sr_BxrLAlndq91fTrxRUfkPnI.crl (hash: BerG+thE8U5bjs2Y3EgMjxELHMMeakuHnrLD9aF43Ak=) 2: 60FCDED2F48F11E89651151FC4F9AE02.roa (hash: TiqURCOWDtFV1lphAi7QXXgszXNq/kYQUGQ1WC3OpiM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F646/CECE8C9AF48E11E8B14A341EC4F9AE02/C5sr_BxrLAlndq91fTrxRUfkPnI.crl rsync://rpki.apnic.net/member_repository/A918F646/CECE8C9AF48E11E8B14A341EC4F9AE02/C5sr_BxrLAlndq91fTrxRUfkPnI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C5sr_BxrLAlndq91fTrxRUfkPnI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:40:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4630 (0x1216) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F646, serialNumber=0B9B2BFC1C6B2C096776AF757D3AF14547E43E72 Validity Not Before: Oct 18 17:40:59 2025 GMT Not After : Oct 25 17:40:59 2025 GMT Subject: CN=68f3d12c-68f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:9c:51:f1:cd:e6:d4:03:cb:3e:35:1d:6e:34: fa:ee:c0:48:5b:ca:c5:f8:da:b7:c9:c3:6e:b3:c1: 8c:97:24:72:6d:72:79:e7:72:ee:ce:8d:6f:8f:c5: 08:11:0b:27:11:e1:fc:fa:52:c1:5d:49:34:3e:e6: 99:50:25:96:5d:20:49:34:03:6a:2e:5f:19:c2:20: dc:e8:69:95:68:76:4e:47:0e:67:9c:dc:fe:85:0c: 34:1f:dd:bd:4e:32:59:1f:31:98:68:47:29:36:e7: c0:f0:33:2d:8d:ef:91:1c:05:ab:a5:e9:6a:f1:b3: 24:b0:96:28:fb:33:31:eb:82:d8:42:6b:b5:7c:4b: 53:1b:df:a6:6c:1f:89:a3:e6:46:3a:4b:22:ec:45: d3:ee:84:6a:3e:e0:d4:79:04:68:94:20:26:5d:12: 27:47:72:19:02:d6:01:9d:ae:63:1d:d8:b4:d2:34: 75:ed:b0:c0:7c:d4:02:e1:01:fe:97:6e:cb:a4:53: e3:a5:a1:5b:fb:6a:7f:75:6a:67:aa:a9:26:b2:2a: a8:3a:4d:75:ab:2e:21:a6:ed:dc:aa:ce:ff:e8:91: 6c:b9:18:10:05:07:0f:11:43:a0:c2:bb:b3:1b:07: 0b:50:47:4e:40:b8:62:8e:e7:f9:62:ca:e0:8b:84: c6:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:45:C5:10:02:7E:2D:90:95:E0:8E:B7:6C:B8:C6:B9:51:7C:B5:5E X509v3 Authority Key Identifier: keyid:0B:9B:2B:FC:1C:6B:2C:09:67:76:AF:75:7D:3A:F1:45:47:E4:3E:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F646/CECE8C9AF48E11E8B14A341EC4F9AE02/C5sr_BxrLAlndq91fTrxRUfkPnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C5sr_BxrLAlndq91fTrxRUfkPnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F646/CECE8C9AF48E11E8B14A341EC4F9AE02/C5sr_BxrLAlndq91fTrxRUfkPnI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:4b:26:d1:95:4b:61:0d:68:33:99:82:f8:b1:54:6a:2f:c7: b4:5a:0a:51:b2:49:2c:03:ab:d0:81:ea:94:19:4e:60:a9:94: 5c:48:b7:c6:1f:f4:29:92:b9:47:76:6a:8d:4a:24:01:63:b0: 60:b4:91:fe:b2:97:68:15:0d:a4:aa:ec:0f:0a:0e:0a:96:c4: 61:6f:f4:41:87:3b:9c:b8:5d:4f:b7:ac:a0:ce:18:5c:6c:29: 50:c5:65:c2:af:ba:6f:58:1b:8e:a6:91:13:9b:bf:f0:f5:26: 6b:d3:87:dc:a3:58:a2:f6:7a:1c:58:a7:61:53:26:d3:88:ad: 1b:a9:a2:f6:49:93:a0:81:f1:71:ed:12:0f:80:1b:28:a1:04: ba:4e:64:74:9d:6b:6f:d7:61:a5:f9:a0:e5:b9:61:5f:20:80: f4:8e:9e:9a:e3:fb:b6:8c:b8:f9:a3:41:94:9c:3b:27:2f:5e: 9c:63:49:37:86:ec:82:fb:8f:85:6b:b6:ad:74:b8:09:db:1d: 43:1c:6b:33:ba:18:f0:be:c1:12:26:81:50:f4:d9:69:c2:33: 3c:20:26:66:f4:0e:f0:98:51:82:61:15:7c:96:48:c7:b5:28: 6f:46:88:d7:f2:d1:dc:b2:7f:05:06:75:c5:c5:89:4f:ae:26: c5:89:a2:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY2NDYxMTAvBgNVBAUTKDBCOUIyQkZDMUM2QjJDMDk2Nzc2QUY3NTdEM0FGMTQ1 NDdFNDNFNzIwHhcNMjUxMDE4MTc0MDU5WhcNMjUxMDI1MTc0MDU5WjAYMRYwFAYD VQQDEw02OGYzZDEyYy02OGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1JxR8c3m1APLPjUdbjT67sBIW8rF+Nq3ycNus8GMlyRybXJ553Luzo1vj8UI EQsnEeH8+lLBXUk0PuaZUCWWXSBJNANqLl8ZwiDc6GmVaHZORw5nnNz+hQw0H929 TjJZHzGYaEcpNufA8DMtje+RHAWrpelq8bMksJYo+zMx64LYQmu1fEtTG9+mbB+J o+ZGOksi7EXT7oRqPuDUeQRolCAmXRInR3IZAtYBna5jHdi00jR17bDAfNQC4QH+ l27LpFPjpaFb+2p/dWpnqqkmsiqoOk11qy4hpu3cqs7/6JFsuRgQBQcPEUOgwruz GwcLUEdOQLhijuf5Ysrgi4TGhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOlFxRAC fi2QleCOt2y4xrlRfLVeMB8GA1UdIwQYMBaAFAubK/wcaywJZ3avdX068UVH5D5y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjY0Ni9DRUNFOEM5QUY0 OEUxMUU4QjE0QTM0MUVDNEY5QUUwMi9DNXNyX0J4ckxBbG5kcTkxZlRyeFJVZmtQ bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0M1c3JfQnhyTEFsbmRxOTFmVHJ4UlVma1BuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RjY0Ni9DRUNFOEM5QUY0OEUxMUU4QjE0QTM0MUVDNEY5QUUwMi9DNXNyX0J4ckxB bG5kcTkxZlRyeFJVZmtQbkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXSybRlUthDWgzmYL4sVRqL8e0WgpRskksA6vQgeqUGU5gqZRcSLfG H/QpkrlHdmqNSiQBY7BgtJH+spdoFQ2kquwPCg4KlsRhb/RBhzucuF1Pt6ygzhhc bClQxWXCr7pvWBuOppETm7/w9SZr04fco1ii9nocWKdhUybTiK0bqaL2SZOggfFx 7RIPgBsooQS6TmR0nWtv12Gl+aDluWFfIID0jp6a4/u2jLj5o0GUnDsnL16cY0k3 huyC+4+Fa7atdLgJ2x1DHGszuhjwvsESJoFQ9NlpwjM8ICZm9A7wmFGCYRV8lkjH tShvRojX8tHcsn8FBnXFxYlPribFiaIS -----END CERTIFICATE-----Generated at Mon Oct 20 18:39:19 2025 by rpki-client