$ rpki-client -vvf rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.mft File: 5hI_ServZkwi-UzV67rqztOHoW8.mft (raw, json) Hash identifier: Wtmg0BT5y3R4Af+KJDC9Mtj7N7Lu5Qqj5yPPy7I/ddA= Subject key identifier: 45:CF:5C:FA:74:75:41:47:6D:56:FE:75:49:8E:1D:76:F0:A8:F1:61 Authority key identifier: E6:12:3F:49:EA:EF:66:4C:22:F9:4C:D5:EB:BA:EA:CE:D3:87:A1:6F Certificate issuer: /CN=A91B861D/serialNumber=E6123F49EAEF664C22F94CD5EBBAEACED387A16F Certificate serial: 064A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5hI_ServZkwi-UzV67rqztOHoW8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.mft Manifest number: 0643 Signing time: Sun 19 Oct 2025 00:14:59 +0000 Manifest this update: Sun 19 Oct 2025 00:14:59 +0000 Manifest next update: Sun 26 Oct 2025 00:14:59 +0000 Files and hashes: 1: 5hI_ServZkwi-UzV67rqztOHoW8.crl (hash: i87XRigS1Ak86O5M3DNBTWdbdJK2KGto21vhHOU6Gig=) 2: 1D0BA0FC57EB11F096357F7CC4F9AE02.roa (hash: Njg0pVJ4I7URnxza7bv42AK9X5Mt3J26B9EOz9eASoo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.crl rsync://rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5hI_ServZkwi-UzV67rqztOHoW8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:14:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1610 (0x64a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B861D, serialNumber=E6123F49EAEF664C22F94CD5EBBAEACED387A16F Validity Not Before: Oct 19 00:14:59 2025 GMT Not After : Oct 26 00:14:59 2025 GMT Subject: CN=68f42d83-1877 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:33:e7:6e:a0:6f:66:44:22:49:08:09:94:99: fa:c0:a0:ff:6c:e8:df:3f:f0:4a:87:47:aa:69:d0: fd:7c:bd:7d:9a:36:75:58:94:d8:71:f3:27:79:fa: 76:02:53:39:f3:3d:d3:c0:36:71:df:67:bc:a8:e3: 65:5f:5a:46:ff:3a:c2:8d:92:e0:5c:80:39:39:13: c4:ed:e8:83:aa:00:27:d1:1c:87:6f:3b:78:a6:8e: 27:38:ee:10:d6:13:1a:ba:23:5a:85:d8:25:42:8d: ad:66:3c:2e:49:dd:b0:2d:36:8e:16:6f:c2:27:0e: 0d:21:14:ff:07:af:8a:a4:98:15:8d:75:05:6f:15: a3:7d:83:5d:95:6e:6a:b6:ee:09:f7:37:92:89:01: fc:71:df:d6:96:1d:34:79:79:d9:e8:e3:6f:4d:96: da:ce:83:74:15:a2:2c:6d:b7:ef:9d:1c:9a:eb:dd: 88:58:8e:8d:83:42:49:f3:de:12:c0:02:a4:bc:9f: b9:15:15:69:f8:bf:f8:6f:64:37:b0:0c:be:78:b0: fe:e3:b6:fb:3c:cf:d3:76:29:eb:34:37:d6:39:fd: 1c:45:4d:f0:70:e0:2b:2a:7d:97:3b:d0:4c:9c:94: e0:fa:82:60:01:bf:9d:e3:9d:93:4f:bb:dc:71:8d: 6d:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:CF:5C:FA:74:75:41:47:6D:56:FE:75:49:8E:1D:76:F0:A8:F1:61 X509v3 Authority Key Identifier: keyid:E6:12:3F:49:EA:EF:66:4C:22:F9:4C:D5:EB:BA:EA:CE:D3:87:A1:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5hI_ServZkwi-UzV67rqztOHoW8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B861D/D2997F60ABE311EB9C2B1156C4F9AE02/5hI_ServZkwi-UzV67rqztOHoW8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:40:ef:9c:58:8a:69:5e:30:2f:19:a5:5b:a3:09:42:99:24: 85:72:d0:18:3b:5b:58:f3:c6:6e:12:38:7a:32:0d:04:71:f9: 39:c3:db:ae:31:87:37:b1:31:a5:74:e8:c8:e8:d9:01:69:53: 80:e7:c8:3d:f7:27:f2:c4:1a:22:bc:71:a0:92:00:f7:e0:7e: 7d:d5:07:bb:05:aa:b3:ac:6b:52:d9:20:9c:0d:05:77:e8:a3: ce:de:6e:ef:f8:ed:35:d6:c2:34:dd:3e:34:ac:7a:d2:a2:d3: be:1c:a8:c7:0c:1d:07:36:68:33:47:d4:0d:12:fb:ff:4b:8e: f3:6e:31:20:1f:fb:96:c0:10:d1:da:e6:90:53:de:06:3c:d7: 3c:43:85:6c:68:28:04:74:dd:6c:6b:ed:e4:08:25:6d:83:78: 93:dc:1a:b6:38:ce:1f:76:f5:23:72:a7:6a:e1:cb:74:d3:5a: aa:eb:3c:75:d1:69:6b:eb:61:db:33:3f:ee:81:89:8e:5d:a8: 57:0d:e6:71:29:16:83:e0:7d:bb:76:ee:d0:88:89:79:c9:8c: 5e:a3:21:53:c3:50:63:33:95:30:57:ff:25:4e:36:8a:44:53: 1a:53:d6:16:06:21:c0:a6:33:d2:1d:7b:4d:5a:f6:3d:da:5f: c8:3b:86:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjg2MUQxMTAvBgNVBAUTKEU2MTIzRjQ5RUFFRjY2NEMyMkY5NENENUVCQkFFQUNF RDM4N0ExNkYwHhcNMjUxMDE5MDAxNDU5WhcNMjUxMDI2MDAxNDU5WjAYMRYwFAYD VQQDEw02OGY0MmQ4My0xODc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0TPnbqBvZkQiSQgJlJn6wKD/bOjfP/BKh0eqadD9fL19mjZ1WJTYcfMnefp2 AlM58z3TwDZx32e8qONlX1pG/zrCjZLgXIA5ORPE7eiDqgAn0RyHbzt4po4nOO4Q 1hMauiNahdglQo2tZjwuSd2wLTaOFm/CJw4NIRT/B6+KpJgVjXUFbxWjfYNdlW5q tu4J9zeSiQH8cd/Wlh00eXnZ6ONvTZbazoN0FaIsbbfvnRya692IWI6Ng0JJ894S wAKkvJ+5FRVp+L/4b2Q3sAy+eLD+47b7PM/TdinrNDfWOf0cRU3wcOArKn2XO9BM nJTg+oJgAb+d452TT7vccY1tiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEXPXPp0 dUFHbVb+dUmOHXbwqPFhMB8GA1UdIwQYMBaAFOYSP0nq72ZMIvlM1eu66s7Th6Fv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODYxRC9EMjk5N0Y2MEFC RTMxMUVCOUMyQjExNTZDNEY5QUUwMi81aElfU2Vydlprd2ktVXpWNjdycXp0T0hv VzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVoSV9TZXJ2Wmt3aS1VelY2N3JxenRPSG9XOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODYxRC9EMjk5N0Y2MEFCRTMxMUVCOUMyQjExNTZDNEY5QUUwMi81aElfU2Vydlpr d2ktVXpWNjdycXp0T0hvVzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRQO+cWIppXjAvGaVbowlCmSSFctAYO1tY88ZuEjh6Mg0Ecfk5w9uu MYc3sTGldOjI6NkBaVOA58g99yfyxBoivHGgkgD34H591Qe7BaqzrGtS2SCcDQV3 6KPO3m7v+O011sI03T40rHrSotO+HKjHDB0HNmgzR9QNEvv/S47zbjEgH/uWwBDR 2uaQU94GPNc8Q4VsaCgEdN1sa+3kCCVtg3iT3Bq2OM4fdvUjcqdq4ct001qq6zx1 0Wlr62HbMz/ugYmOXahXDeZxKRaD4H27du7QiIl5yYxeoyFTw1BjM5UwV/8lTjaK RFMaU9YWBiHApjPSHXtNWvY92l/IO4Yt -----END CERTIFICATE-----Generated at Mon Oct 20 10:16:07 2025 by rpki-client