$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft File: 5bRMaejecz32GWYFbn5BXsfHDSo.mft (raw, json) Hash identifier: 5Lv/vYJhenmgT0IuiOSsWPL0Z9lkqOYiodZypwNRzIw= Subject key identifier: EA:F1:CC:66:50:EE:8E:12:36:09:9D:24:8D:F0:5C:63:BC:91:44:25 Authority key identifier: E5:B4:4C:69:E8:DE:73:3D:F6:19:66:05:6E:7E:41:5E:C7:C7:0D:2A Certificate issuer: /CN=A91B4873/serialNumber=E5B44C69E8DE733DF61966056E7E415EC7C70D2A Certificate serial: F8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft Manifest number: F5 Signing time: Sun 19 Oct 2025 08:11:31 +0000 Manifest this update: Sun 19 Oct 2025 08:11:31 +0000 Manifest next update: Sun 26 Oct 2025 08:11:31 +0000 Files and hashes: 1: 5bRMaejecz32GWYFbn5BXsfHDSo.crl (hash: U4cCmnlRq1j/9p3GGXaKarheBZH2Q95fw6zp1pQzIUk=) 2: F9AAE6F8994011F097180C40C4F9AE02.roa (hash: RU5OhSVcdir8OrT3E9J1urB5y05ack2UMndknf/XUMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.crl rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:11:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 248 (0xf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4873, serialNumber=E5B44C69E8DE733DF61966056E7E415EC7C70D2A Validity Not Before: Oct 19 08:11:31 2025 GMT Not After : Oct 26 08:11:31 2025 GMT Subject: CN=68f49d33-9c15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:15:1e:47:5e:53:46:ed:b4:b4:94:f0:93:b5: e4:40:c5:f2:07:fc:4a:fc:1d:a3:42:d3:3f:60:9b: 4f:70:77:ee:a8:3d:59:d2:81:28:9e:56:d7:a1:b1: bc:c9:f1:47:70:38:ac:24:d4:78:99:3b:23:88:69: 63:c4:5e:29:78:88:c6:e6:3d:8f:88:a8:8d:75:cf: bb:c2:e9:96:57:e6:f8:c1:43:e8:22:9e:c1:87:ed: 10:51:04:98:27:ac:ce:a5:b9:0f:32:ea:fc:91:c3: bd:b5:bd:b0:13:dc:a2:68:8a:0d:f0:a5:6f:22:86: 24:60:2f:ed:69:ee:fe:2d:08:eb:f4:1b:1a:e9:3e: 63:db:21:4f:4f:9c:9e:32:c0:da:18:ab:cd:80:5b: 4c:23:65:0f:ee:d1:d5:49:f2:3a:b6:5c:69:3a:66: 86:7f:96:64:29:d4:df:07:9d:74:8d:e8:b6:e4:6c: 8a:98:83:07:d1:f0:56:ec:87:2c:9f:b0:42:69:21: 66:2a:70:41:ae:45:fa:71:c2:a6:27:79:89:47:f4: 44:be:ad:13:be:85:38:d5:46:4b:fa:59:9c:14:88: 56:a6:bb:14:37:0f:19:c5:fb:79:90:e8:83:8e:29: ff:98:d6:b6:c3:2d:3b:03:1e:d0:a9:e8:2f:ad:b3: 09:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:F1:CC:66:50:EE:8E:12:36:09:9D:24:8D:F0:5C:63:BC:91:44:25 X509v3 Authority Key Identifier: keyid:E5:B4:4C:69:E8:DE:73:3D:F6:19:66:05:6E:7E:41:5E:C7:C7:0D:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:9c:3d:ed:fa:85:f9:79:6d:64:a2:7d:ab:06:72:22:d2:e7: 78:91:9f:35:1a:b4:03:90:a1:f9:44:e2:a8:f4:79:6b:9c:21: 73:c5:05:96:d7:7b:ec:a6:10:48:16:92:7b:69:54:36:a5:9f: ec:85:a5:36:ef:de:2a:6a:ce:d5:d6:0d:d2:99:92:79:00:01: 6a:f9:61:e2:8b:32:ef:15:7a:94:dc:c6:5f:5b:9b:94:1f:9d: 76:7d:3f:09:5e:20:8e:7f:10:bb:81:8b:ce:90:ee:32:f2:07: c1:9a:66:93:73:86:ae:ff:94:58:6d:16:d2:41:dc:6a:d2:eb: e4:21:b5:9e:c9:37:4f:92:cf:cf:b0:8d:f1:23:47:47:79:28: fd:61:cb:bb:d1:c2:69:28:9d:52:a9:6f:f4:93:42:8c:fd:8c: 88:9b:71:29:50:c5:93:65:1a:fd:d5:0a:42:d5:83:fc:fe:16: 68:3f:6d:54:7e:23:b7:13:78:0c:13:60:6f:1b:43:d9:29:29: 02:e9:09:02:89:66:7b:70:f6:4f:2f:83:8f:55:ab:93:19:ce: d5:5f:10:7c:2a:96:cf:41:d0:2b:a1:b4:21:93:9c:64:6f:70: 49:c6:cd:65:5d:29:16:2a:d2:3f:75:b2:47:75:fd:15:d1:d4: 08:bf:48:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ4NzMxMTAvBgNVBAUTKEU1QjQ0QzY5RThERTczM0RGNjE5NjYwNTZFN0U0MTVF QzdDNzBEMkEwHhcNMjUxMDE5MDgxMTMxWhcNMjUxMDI2MDgxMTMxWjAYMRYwFAYD VQQDEw02OGY0OWQzMy05YzE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyxUeR15TRu20tJTwk7XkQMXyB/xK/B2jQtM/YJtPcHfuqD1Z0oEonlbXobG8 yfFHcDisJNR4mTsjiGljxF4peIjG5j2PiKiNdc+7wumWV+b4wUPoIp7Bh+0QUQSY J6zOpbkPMur8kcO9tb2wE9yiaIoN8KVvIoYkYC/tae7+LQjr9Bsa6T5j2yFPT5ye MsDaGKvNgFtMI2UP7tHVSfI6tlxpOmaGf5ZkKdTfB510jei25GyKmIMH0fBW7Ics n7BCaSFmKnBBrkX6ccKmJ3mJR/REvq0TvoU41UZL+lmcFIhWprsUNw8Zxft5kOiD jin/mNa2wy07Ax7QqegvrbMJbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOrxzGZQ 7o4SNgmdJI3wXGO8kUQlMB8GA1UdIwQYMBaAFOW0TGno3nM99hlmBW5+QV7Hxw0q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDg3My80RTI1QzhCQzM4 RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi81YlJNYWVqZWN6MzJHV1lGYm41QlhzZkhE U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzViUk1hZWplY3ozMkdXWUZibjVCWHNmSERTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDg3My80RTI1QzhCQzM4RTcxMUVGODQ0QjRGNjVDNEY5QUUwMi81YlJNYWVqZWN6 MzJHV1lGYm41QlhzZkhEU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAanD3t+oX5eW1kon2rBnIi0ud4kZ81GrQDkKH5ROKo9HlrnCFzxQWW 13vsphBIFpJ7aVQ2pZ/shaU2794qas7V1g3SmZJ5AAFq+WHiizLvFXqU3MZfW5uU H512fT8JXiCOfxC7gYvOkO4y8gfBmmaTc4au/5RYbRbSQdxq0uvkIbWeyTdPks/P sI3xI0dHeSj9Ycu70cJpKJ1SqW/0k0KM/YyIm3EpUMWTZRr91QpC1YP8/hZoP21U fiO3E3gME2BvG0PZKSkC6QkCiWZ7cPZPL4OPVauTGc7VXxB8KpbPQdArobQhk5xk b3BJxs1lXSkWKtI/dbJHdf0V0dQIv0gw -----END CERTIFICATE-----Generated at Tue Oct 21 02:25:38 2025 by rpki-client