$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft File: 5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft (raw, json) Hash identifier: LwX2yjLGDTJyF+n17PNbauWAhQETHoq5zQoe+Uj38Ow= Subject key identifier: 3C:3F:90:2D:B1:82:E8:C1:7F:69:A2:D4:35:97:E6:AD:20:4E:6C:24 Authority key identifier: E4:D6:2D:31:29:7F:17:E4:9C:42:FA:7A:7B:66:23:62:4A:D9:41:75 Certificate issuer: /CN=A91B9B0D/serialNumber=E4D62D31297F17E49C42FA7A7B6623624AD94175 Certificate serial: 06A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft Manifest number: 0699 Signing time: Sat 18 Oct 2025 23:50:32 +0000 Manifest this update: Sat 18 Oct 2025 23:50:31 +0000 Manifest next update: Sat 25 Oct 2025 23:50:31 +0000 Files and hashes: 1: 5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl (hash: rHaWYf0UodFsi9lxgX5JIjQL+EEj9nrlcYM7KKygslk=) 2: 3F9CDA68179911EDB9008D18C4F9AE02.roa (hash: tNq0wofO9dQz+k+RyZIdbIOpj1vNXpBAnuEbiTZO6hQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:50:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1696 (0x6a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9B0D, serialNumber=E4D62D31297F17E49C42FA7A7B6623624AD94175 Validity Not Before: Oct 18 23:50:31 2025 GMT Not After : Oct 25 23:50:31 2025 GMT Subject: CN=68f427c8-08e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e5:9d:84:88:70:47:23:98:14:a2:de:0f:73: 37:9d:2b:9d:d3:40:4b:ca:79:85:be:c4:f3:12:49: 17:f2:06:94:8c:84:27:85:1c:33:eb:77:b3:76:41: 29:bc:c0:b7:25:90:df:b9:c3:4e:e6:73:da:58:dd: 3c:f2:c0:fd:99:75:43:9d:7b:96:55:1a:7c:18:14: 42:ef:c2:ad:81:c4:98:9a:74:98:10:16:b4:87:d6: 43:fd:4d:77:3f:07:5b:b1:9a:4c:96:38:5f:f2:b8: 54:9d:05:02:09:8b:b5:61:62:27:ea:a4:15:18:87: 71:cb:19:b0:de:43:6b:27:8b:4e:5f:86:51:03:ea: 3d:7d:30:db:55:09:1c:21:32:76:1b:3f:c1:7e:c6: a5:75:69:af:1b:2f:fb:7c:0f:db:cf:46:a2:2d:5e: 09:97:e7:0c:e3:49:dc:b7:f7:6d:d0:5f:c5:5a:b2: c1:20:52:bb:41:cc:30:b4:87:cd:7e:28:e2:02:27: db:3f:88:6d:89:c8:9a:27:8d:d8:8f:e3:a8:21:fe: 48:3f:6d:86:5f:ac:2c:2a:c0:f4:66:d1:d4:95:89: bd:a0:1b:d0:6b:83:e2:fd:31:a4:79:24:a2:dc:a5: ea:f8:bf:e7:dd:69:3d:0f:12:20:b0:b9:80:46:e1: a2:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:3F:90:2D:B1:82:E8:C1:7F:69:A2:D4:35:97:E6:AD:20:4E:6C:24 X509v3 Authority Key Identifier: keyid:E4:D6:2D:31:29:7F:17:E4:9C:42:FA:7A:7B:66:23:62:4A:D9:41:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:a6:3f:ae:52:8e:62:97:d4:56:90:b5:3a:cb:eb:ab:9e:d2: cd:b6:43:c1:ff:4f:24:83:0c:e4:4f:9d:9d:ef:37:6c:01:87: bf:0d:d1:22:11:a3:d1:59:25:b8:b1:94:33:ed:a5:83:a5:e4: 38:91:81:df:e1:3e:bb:36:be:66:c1:8b:08:29:e2:80:70:48: ee:cb:46:80:fe:0b:05:d6:d9:db:ee:91:19:51:32:e7:17:d9: 5c:cb:97:09:a7:9f:38:53:70:49:81:5d:02:fb:ef:28:ad:a3: 8e:ae:85:eb:d6:02:6b:19:5d:a6:0d:cc:46:1a:a1:d9:6c:44: 8a:23:8a:12:47:ab:6e:21:a5:07:47:9a:ca:4c:9a:00:26:a5: af:16:8c:1a:08:f7:ef:20:43:71:f0:21:af:09:dd:3a:78:0f: 3f:56:97:50:01:4f:e7:91:c2:6a:4f:89:4d:2a:ed:d9:87:20: 3c:ab:8e:25:59:90:eb:c0:18:c4:cc:b4:d4:6a:3a:3e:7e:42: 2e:46:88:7c:dc:80:e8:a7:cf:97:d1:01:24:c0:f8:d7:85:d2: 40:81:50:2c:54:06:f4:71:bd:1c:a0:a1:8a:ad:4b:9a:c5:c2: 61:8f:5b:b5:f5:df:ff:26:dc:9c:a3:a5:e1:20:3e:5e:12:27: 88:55:cc:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlCMEQxMTAvBgNVBAUTKEU0RDYyRDMxMjk3RjE3RTQ5QzQyRkE3QTdCNjYyMzYy NEFEOTQxNzUwHhcNMjUxMDE4MjM1MDMxWhcNMjUxMDI1MjM1MDMxWjAYMRYwFAYD VQQDEw02OGY0MjdjOC0wOGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwOWdhIhwRyOYFKLeD3M3nSud00BLynmFvsTzEkkX8gaUjIQnhRwz63ezdkEp vMC3JZDfucNO5nPaWN088sD9mXVDnXuWVRp8GBRC78KtgcSYmnSYEBa0h9ZD/U13 PwdbsZpMljhf8rhUnQUCCYu1YWIn6qQVGIdxyxmw3kNrJ4tOX4ZRA+o9fTDbVQkc ITJ2Gz/BfsaldWmvGy/7fA/bz0aiLV4Jl+cM40nct/dt0F/FWrLBIFK7QcwwtIfN fijiAifbP4hticiaJ43Yj+OoIf5IP22GX6wsKsD0ZtHUlYm9oBvQa4Pi/TGkeSSi 3KXq+L/n3Wk9DxIgsLmARuGiwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDw/kC2x gujBf2mi1DWX5q0gTmwkMB8GA1UdIwQYMBaAFOTWLTEpfxfknEL6entmI2JK2UF1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUIwRC9BMjhFQ0JDMDhB QjYxMUVCODIzN0Q0MTRDNEY5QUUwMi81Tll0TVNsX0YtU2NRdnA2ZTJZallrclpR WFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVOWXRNU2xfRi1TY1F2cDZlMllqWWtyWlFYVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUIwRC9BMjhFQ0JDMDhBQjYxMUVCODIzN0Q0MTRDNEY5QUUwMi81Tll0TVNsX0Yt U2NRdnA2ZTJZallrclpRWFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6pj+uUo5il9RWkLU6y+urntLNtkPB/08kgwzkT52d7zdsAYe/DdEi EaPRWSW4sZQz7aWDpeQ4kYHf4T67Nr5mwYsIKeKAcEjuy0aA/gsF1tnb7pEZUTLn F9lcy5cJp584U3BJgV0C++8oraOOroXr1gJrGV2mDcxGGqHZbESKI4oSR6tuIaUH R5rKTJoAJqWvFowaCPfvIENx8CGvCd06eA8/VpdQAU/nkcJqT4lNKu3ZhyA8q44l WZDrwBjEzLTUajo+fkIuRoh83IDop8+X0QEkwPjXhdJAgVAsVAb0cb0coKGKrUua xcJhj1u19d//Jtyco6XhID5eEieIVcyJ -----END CERTIFICATE-----Generated at Mon Oct 20 10:43:51 2025 by rpki-client