$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft File: cx5XsN_ep5G6TV1xly2oEF3JPos.mft (raw, json) Hash identifier: /+upr85UVO9AVPKv9ArI7WoR7zDfrsAtGJazF2X4Dfk= Subject key identifier: 9D:0C:E0:7A:A4:E4:E1:FF:D1:0C:73:FF:6A:26:82:34:7B:B0:48:99 Authority key identifier: 73:1E:57:B0:DF:DE:A7:91:BA:4D:5D:71:97:2D:A8:10:5D:C9:3E:8B Certificate issuer: /CN=A91AA444/serialNumber=731E57B0DFDEA791BA4D5D71972DA8105DC93E8B Certificate serial: 014F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx5XsN_ep5G6TV1xly2oEF3JPos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft Manifest number: 014D Signing time: Sun 19 Oct 2025 06:59:09 +0000 Manifest this update: Sun 19 Oct 2025 06:59:08 +0000 Manifest next update: Sun 26 Oct 2025 06:59:08 +0000 Files and hashes: 1: cx5XsN_ep5G6TV1xly2oEF3JPos.crl (hash: ebcktj9B3j8F3Thg80gh10VY3jinSwD8OgpVWQQ9lbk=) 2: 24DD519CEEA311EFA5EDDD76C4F9AE02.roa (hash: +mEj5z+agEcnRzWZMjR0oYobGLfQGCXmi+n1VzU085s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.crl rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx5XsN_ep5G6TV1xly2oEF3JPos.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:59:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 335 (0x14f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA444, serialNumber=731E57B0DFDEA791BA4D5D71972DA8105DC93E8B Validity Not Before: Oct 19 06:59:08 2025 GMT Not After : Oct 26 06:59:08 2025 GMT Subject: CN=68f48c3d-55fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:50:88:a4:fa:81:3e:35:cc:78:bd:40:d0:cf: dc:68:89:24:6d:c0:55:ec:51:ee:87:3c:99:34:05: 19:df:be:1c:5d:e7:2c:e4:49:39:db:ae:f3:60:0a: 88:43:1f:38:a1:a6:dd:3a:80:61:bb:19:79:f3:25: f7:b7:78:a1:57:df:fb:7c:aa:d8:6d:f8:b6:35:c0: 64:4b:d2:e3:4e:81:77:be:29:d7:6f:d8:80:5e:c5: 6e:5d:de:ff:0f:ef:cc:44:bb:a5:98:24:06:7f:4b: 57:29:ff:f3:4b:99:e5:91:db:e7:ce:00:5c:cc:32: 10:2d:7a:5f:83:35:2c:57:80:5a:f3:2f:36:4e:ef: c0:8d:f6:85:71:0d:31:ac:e0:fa:94:44:78:10:e1: 68:c6:87:52:34:a8:48:ba:15:c2:d0:a3:94:c0:8e: 94:26:46:c7:13:60:cb:15:50:e8:3d:7c:16:68:7e: f1:a9:c2:02:36:94:c3:c6:71:57:22:1d:71:7d:62: 9f:e8:2e:5a:01:ac:3c:80:cb:e3:d3:7f:00:3e:4b: 11:52:89:a5:9d:41:ac:4e:5f:7c:4f:a3:7a:85:10: 9d:de:3e:58:46:b2:dc:58:9c:1b:be:f5:96:a4:aa: 07:2b:bc:7f:2c:42:69:6e:f8:b2:25:5a:d8:75:fd: 64:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:0C:E0:7A:A4:E4:E1:FF:D1:0C:73:FF:6A:26:82:34:7B:B0:48:99 X509v3 Authority Key Identifier: keyid:73:1E:57:B0:DF:DE:A7:91:BA:4D:5D:71:97:2D:A8:10:5D:C9:3E:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx5XsN_ep5G6TV1xly2oEF3JPos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:69:87:d8:a7:fc:94:5b:73:0a:1a:e3:5f:77:13:e5:39:fc: 7c:d0:66:32:87:68:83:99:bc:8a:16:32:ee:f1:34:40:bb:78: 51:8e:47:70:76:df:d6:cb:7e:4d:e7:05:09:4f:bf:21:d8:83: 57:92:9b:91:bb:7a:b6:62:ae:39:6a:05:04:8f:e1:12:48:10: 8c:c1:74:3c:23:94:6b:bb:d1:85:f5:bf:0d:dd:ae:ac:d7:30: 2f:db:e4:24:53:e6:68:ee:d3:af:6c:fa:e2:75:f9:67:16:31: d5:e4:7a:5d:fa:ac:e3:e6:5e:07:a1:c8:14:dd:c3:11:b5:b6: 9a:97:30:46:9b:c8:54:14:9d:87:62:dc:83:09:3d:1b:16:c0: be:a4:3b:d6:9e:18:82:d9:76:87:74:1b:8a:3d:27:18:02:f2: bf:3b:65:77:7d:ee:d9:c5:8f:2f:c3:bb:2e:fd:bc:ab:bc:5d: 8d:74:e4:45:ba:c3:43:f8:8b:dd:7a:d9:dc:2d:77:be:0f:40: 5b:fb:7c:bf:cb:21:07:2e:e4:81:42:2d:3c:f2:d5:8d:cb:b9: 73:34:d2:f8:83:83:a3:8f:f8:27:d5:d4:c2:cf:d3:eb:66:b1: 70:74:c9:8d:91:32:b7:c1:83:c4:69:56:3d:7a:25:49:b6:d7: 78:f1:59:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE0NDQxMTAvBgNVBAUTKDczMUU1N0IwREZERUE3OTFCQTRENUQ3MTk3MkRBODEw NURDOTNFOEIwHhcNMjUxMDE5MDY1OTA4WhcNMjUxMDI2MDY1OTA4WjAYMRYwFAYD VQQDEw02OGY0OGMzZC01NWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAklCIpPqBPjXMeL1A0M/caIkkbcBV7FHuhzyZNAUZ374cXecs5Ek5267zYAqI Qx84oabdOoBhuxl58yX3t3ihV9/7fKrYbfi2NcBkS9LjToF3vinXb9iAXsVuXd7/ D+/MRLulmCQGf0tXKf/zS5nlkdvnzgBczDIQLXpfgzUsV4Ba8y82Tu/AjfaFcQ0x rOD6lER4EOFoxodSNKhIuhXC0KOUwI6UJkbHE2DLFVDoPXwWaH7xqcICNpTDxnFX Ih1xfWKf6C5aAaw8gMvj038APksRUomlnUGsTl98T6N6hRCd3j5YRrLcWJwbvvWW pKoHK7x/LEJpbviyJVrYdf1klwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ0M4Hqk 5OH/0Qxz/2omgjR7sEiZMB8GA1UdIwQYMBaAFHMeV7Df3qeRuk1dcZctqBBdyT6L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTQ0NC84RENFMjc0QUIx MUQxMUVFQTMzNjMzMTlDNEY5QUUwMi9jeDVYc05fZXA1RzZUVjF4bHkyb0VGM0pQ b3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N4NVhzTl9lcDVHNlRWMXhseTJvRUYzSlBvcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTQ0NC84RENFMjc0QUIxMUQxMUVFQTMzNjMzMTlDNEY5QUUwMi9jeDVYc05fZXA1 RzZUVjF4bHkyb0VGM0pQb3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRaYfYp/yUW3MKGuNfdxPlOfx80GYyh2iDmbyKFjLu8TRAu3hRjkdw dt/Wy35N5wUJT78h2INXkpuRu3q2Yq45agUEj+ESSBCMwXQ8I5Rru9GF9b8N3a6s 1zAv2+QkU+Zo7tOvbPridflnFjHV5Hpd+qzj5l4HocgU3cMRtbaalzBGm8hUFJ2H YtyDCT0bFsC+pDvWnhiC2XaHdBuKPScYAvK/O2V3fe7ZxY8vw7su/byrvF2NdORF usND+IvdetncLXe+D0Bb+3y/yyEHLuSBQi088tWNy7lzNNL4g4Ojj/gn1dTCz9Pr ZrFwdMmNkTK3wYPEaVY9eiVJttd48VmT -----END CERTIFICATE-----Generated at Mon Oct 20 04:48:17 2025 by rpki-client