$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.mft File: 5CK_AmFA0gPv1r_eruJoqosEZtU.mft (raw, json) Hash identifier: x1fhVdPvrgv6MpVv9bD77PhhVfIO9f5PGlZdM3PP/5M= Subject key identifier: 76:45:44:EF:45:51:A8:CE:0C:CE:87:8C:C9:AE:84:14:9E:A9:FC:E7 Authority key identifier: E4:22:BF:02:61:40:D2:03:EF:D6:BF:DE:AE:E2:68:AA:8B:04:66:D5 Certificate issuer: /CN=A91C3174/serialNumber=E422BF026140D203EFD6BFDEAEE268AA8B0466D5 Certificate serial: 0316 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CK_AmFA0gPv1r_eruJoqosEZtU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.mft Manifest number: 0311 Signing time: Sun 19 Oct 2025 03:14:51 +0000 Manifest this update: Sun 19 Oct 2025 03:14:50 +0000 Manifest next update: Sun 26 Oct 2025 03:14:50 +0000 Files and hashes: 1: 5CK_AmFA0gPv1r_eruJoqosEZtU.crl (hash: gIaxOhGrKSqkMSWlE7W5UU7sbarwEM2NHd02J7tcz3E=) 2: 9A4B6146EED111EC9BDD4C49C4F9AE02.roa (hash: KkExhLw32KhJNP1vh+cfX+3O2VUbbBLKFmBZMRijetQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.crl rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CK_AmFA0gPv1r_eruJoqosEZtU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:14:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 790 (0x316) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3174, serialNumber=E422BF026140D203EFD6BFDEAEE268AA8B0466D5 Validity Not Before: Oct 19 03:14:50 2025 GMT Not After : Oct 26 03:14:50 2025 GMT Subject: CN=68f457ab-26cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:3c:ab:e6:d5:5b:e7:39:28:57:55:00:32:9f: fd:7f:b3:8d:46:d1:48:75:e1:b2:8c:24:f1:7d:be: 6e:22:95:7b:5b:34:8a:52:a9:00:28:4f:57:37:b5: d6:75:e2:3c:15:c6:ea:a6:b3:e9:98:9b:6c:ed:1b: b9:fd:28:9c:b0:ef:ef:28:ff:fa:8c:0a:e6:72:8d: 5d:2e:15:7e:45:87:ff:a9:46:6c:b7:d7:18:cd:07: 0b:63:af:e0:a0:93:09:60:e9:26:34:a8:d9:22:ed: 4a:d2:84:de:94:ba:44:3e:0d:10:23:8b:2c:57:fa: 07:82:26:f2:0a:c4:ad:29:fa:98:84:13:f9:d4:a1: a8:15:fa:4a:f1:6b:c2:08:c2:8c:4f:7b:6c:c3:e1: c2:bf:68:ec:48:0e:2b:3c:90:f6:0c:08:b0:11:0f: 71:e8:d0:19:97:d1:8d:08:b8:c5:c3:48:b6:e4:c6: c5:56:3e:18:ed:0f:af:7c:3f:d4:ea:2d:87:84:92: 24:b1:f4:8f:67:0b:7e:5b:98:f5:a1:60:e5:49:1c: b1:d3:b9:c2:48:d2:fa:79:1c:57:47:b6:16:cc:0e: 97:83:56:94:90:6d:fc:c9:dd:00:00:95:44:40:72: 70:7a:95:f5:02:dc:f5:b8:5f:39:b8:05:2d:40:6d: 81:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:45:44:EF:45:51:A8:CE:0C:CE:87:8C:C9:AE:84:14:9E:A9:FC:E7 X509v3 Authority Key Identifier: keyid:E4:22:BF:02:61:40:D2:03:EF:D6:BF:DE:AE:E2:68:AA:8B:04:66:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CK_AmFA0gPv1r_eruJoqosEZtU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3174/B131F89CEECD11EC8CF4471EC4F9AE02/5CK_AmFA0gPv1r_eruJoqosEZtU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:d6:41:ff:c4:67:8d:70:d0:90:2b:be:b2:df:22:09:0b:24: 6f:12:aa:c2:e6:fb:f2:db:f6:4e:28:ee:bd:e7:00:5c:41:c3: 79:ba:82:df:59:97:d2:61:ed:20:1d:be:49:23:f6:15:a7:cb: 2b:e9:2d:c4:9e:e4:e0:d5:67:ca:f2:43:b9:af:af:81:1c:ec: 03:ac:f3:51:50:6f:7d:19:7f:1b:f5:66:6d:96:03:ef:25:54: 34:ed:9d:66:ec:ea:0d:5f:90:12:7b:5f:e3:1a:40:38:ce:91: a3:b2:9f:ed:45:6c:13:c9:5e:e3:ed:a2:7a:7d:3d:08:57:f5: e6:57:cc:ef:4b:6b:37:83:a5:97:ae:4d:83:41:d6:a9:b4:0c: 68:d4:09:f5:fe:3e:8f:70:58:de:b9:9f:3b:08:d4:30:55:82: 00:6f:cf:5b:f7:ee:4f:31:c5:bc:41:c7:2c:01:0b:b7:6a:80: de:32:bf:27:59:c5:11:26:6c:85:cd:cb:3c:83:8a:29:31:bb: f8:19:e7:b6:97:45:9a:8c:e2:b9:af:56:1d:49:8f:c4:fa:be: c7:45:d8:9a:02:58:aa:93:3b:96:da:e1:b0:f1:ab:3e:17:22: 99:a9:31:2a:7e:68:79:62:17:fa:87:c1:e2:15:49:ad:b6:e4: 0e:e5:bb:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAxYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMxNzQxMTAvBgNVBAUTKEU0MjJCRjAyNjE0MEQyMDNFRkQ2QkZERUFFRTI2OEFB OEIwNDY2RDUwHhcNMjUxMDE5MDMxNDUwWhcNMjUxMDI2MDMxNDUwWjAYMRYwFAYD VQQDEw02OGY0NTdhYi0yNmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwzyr5tVb5zkoV1UAMp/9f7ONRtFIdeGyjCTxfb5uIpV7WzSKUqkAKE9XN7XW deI8FcbqprPpmJts7Ru5/SicsO/vKP/6jArmco1dLhV+RYf/qUZst9cYzQcLY6/g oJMJYOkmNKjZIu1K0oTelLpEPg0QI4ssV/oHgibyCsStKfqYhBP51KGoFfpK8WvC CMKMT3tsw+HCv2jsSA4rPJD2DAiwEQ9x6NAZl9GNCLjFw0i25MbFVj4Y7Q+vfD/U 6i2HhJIksfSPZwt+W5j1oWDlSRyx07nCSNL6eRxXR7YWzA6Xg1aUkG38yd0AAJVE QHJwepX1Atz1uF85uAUtQG2B+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHZFRO9F UajODM6HjMmuhBSeqfznMB8GA1UdIwQYMBaAFOQivwJhQNID79a/3q7iaKqLBGbV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzE3NC9CMTMxRjg5Q0VF Q0QxMUVDOENGNDQ3MUVDNEY5QUUwMi81Q0tfQW1GQTBnUHYxcl9lcnVKb3Fvc0Va dFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVDS19BbUZBMGdQdjFyX2VydUpvcW9zRVp0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MzE3NC9CMTMxRjg5Q0VFQ0QxMUVDOENGNDQ3MUVDNEY5QUUwMi81Q0tfQW1GQTBn UHYxcl9lcnVKb3Fvc0VadFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAj1kH/xGeNcNCQK76y3yIJCyRvEqrC5vvy2/ZOKO695wBcQcN5uoLf WZfSYe0gHb5JI/YVp8sr6S3EnuTg1WfK8kO5r6+BHOwDrPNRUG99GX8b9WZtlgPv JVQ07Z1m7OoNX5ASe1/jGkA4zpGjsp/tRWwTyV7j7aJ6fT0IV/XmV8zvS2s3g6WX rk2DQdaptAxo1An1/j6PcFjeuZ87CNQwVYIAb89b9+5PMcW8QccsAQu3aoDeMr8n WcURJmyFzcs8g4opMbv4Gee2l0WajOK5r1YdSY/E+r7HRdiaAliqkzuW2uGw8as+ FyKZqTEqfmh5Yhf6h8HiFUmttuQO5bv5 -----END CERTIFICATE-----Generated at Mon Oct 20 07:45:02 2025 by rpki-client