$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft File: 5dmsjXWxbbnyPICt2LO72OWLaHg.mft (raw, json) Hash identifier: nP0IfvdYmvtvJ2Rt4w0m2P9dzDPo19klOdxnvtmrFzo= Subject key identifier: D2:CC:CA:8C:9E:BD:47:4B:AF:97:AB:24:75:C9:0D:DD:3E:81:45:46 Authority key identifier: E5:D9:AC:8D:75:B1:6D:B9:F2:3C:80:AD:D8:B3:BB:D8:E5:8B:68:78 Certificate issuer: /CN=A91D8400/serialNumber=E5D9AC8D75B16DB9F23C80ADD8B3BBD8E58B6878 Certificate serial: 0444 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5dmsjXWxbbnyPICt2LO72OWLaHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft Manifest number: 043F Signing time: Sun 19 Oct 2025 02:08:44 +0000 Manifest this update: Sun 19 Oct 2025 02:08:44 +0000 Manifest next update: Sun 26 Oct 2025 02:08:44 +0000 Files and hashes: 1: 5dmsjXWxbbnyPICt2LO72OWLaHg.crl (hash: S4d8BwNz0/mjZtgWJ8W7/tymr6c+lvJ0eN0Np9LZLCw=) 2: 46C1646C781611ECADCDAB0EC4F9AE02.roa (hash: X0bJVDOuH3hxzxDqtFhaGE8zyPysnrk6jtT4gfdw6QQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.crl rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5dmsjXWxbbnyPICt2LO72OWLaHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:08:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1092 (0x444) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8400, serialNumber=E5D9AC8D75B16DB9F23C80ADD8B3BBD8E58B6878 Validity Not Before: Oct 19 02:08:44 2025 GMT Not After : Oct 26 02:08:44 2025 GMT Subject: CN=68f4482c-ae11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:23:e6:9c:b4:13:1d:3c:72:f9:fe:5e:9b:c2: 5c:b7:30:67:ef:ae:c0:31:af:27:48:27:e8:83:03: d0:71:0a:28:6c:9b:68:52:d6:7e:04:d4:32:9a:fd: 7e:63:6d:be:0f:40:14:f2:46:a5:a3:e1:96:38:ba: b6:46:0a:68:2e:63:f1:30:ed:fb:dc:3b:0d:d1:4d: fb:63:e9:13:ea:e5:bf:bb:6e:a4:b5:81:7e:19:42: 5a:39:70:1f:f6:12:da:79:5d:ad:98:af:dc:b5:24: 37:af:d0:23:da:90:95:14:82:50:65:21:da:e5:12: a2:9a:e6:fc:22:2d:cc:41:51:53:a8:83:3a:27:4d: 46:b6:02:ef:eb:7c:d0:80:50:c9:65:8d:ee:d9:60: 77:d0:fe:0a:59:60:45:ac:ea:6f:a2:9e:91:c8:b8: 54:41:6a:5f:55:23:55:57:1d:6d:76:24:c8:e6:49: 5f:42:76:99:72:bf:b6:3e:e8:4c:c6:07:8a:06:d8: 3c:6c:54:3d:39:df:67:9a:c9:6f:f2:8a:97:b9:bb: aa:c3:8a:fd:2d:41:0e:24:e2:1e:92:47:0c:9b:c4: 2c:1e:19:8c:68:74:21:20:b8:88:bf:95:47:28:9b: e4:9b:e0:eb:6e:27:3a:ef:56:92:7c:4e:55:ce:58: c2:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:CC:CA:8C:9E:BD:47:4B:AF:97:AB:24:75:C9:0D:DD:3E:81:45:46 X509v3 Authority Key Identifier: keyid:E5:D9:AC:8D:75:B1:6D:B9:F2:3C:80:AD:D8:B3:BB:D8:E5:8B:68:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5dmsjXWxbbnyPICt2LO72OWLaHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:b5:40:91:d8:9d:55:ab:0b:99:96:c5:a0:db:60:cf:32:66: 12:8e:2a:51:d4:c1:f3:7c:31:be:16:ec:44:32:80:f5:d5:20: 1b:b4:f8:36:9e:46:5b:f0:82:20:64:af:c0:db:79:4f:51:5a: 7e:b2:89:20:67:59:04:ab:eb:0d:1b:2f:1d:58:a9:49:23:e8: b9:ba:44:1d:96:45:a5:5e:a0:6d:94:e6:59:d9:7b:5c:64:3d: 8b:0a:b8:30:64:de:8e:06:4e:d0:59:78:69:29:d9:1e:eb:16: 07:c7:a3:39:b6:5f:ca:c7:67:db:51:21:d4:d4:f6:4c:60:8c: d8:b9:0b:98:cf:a9:ad:aa:00:1b:1e:50:4c:a3:74:5d:ca:09: 23:59:8b:61:4e:6c:11:10:54:02:a7:a2:0e:28:3a:f8:99:b4: 16:02:24:27:3a:4c:fb:2a:10:3f:55:03:e8:4b:54:70:72:1f: 0a:c0:bf:d1:49:c0:c0:39:d6:ee:7d:22:10:db:7f:fe:d0:a7: fc:52:1d:f2:00:a2:c7:a3:2c:cb:31:60:fd:e7:31:cc:5f:d3: 4f:52:fb:72:28:3a:11:e4:56:b1:32:c1:c3:44:0a:f0:ca:c5: 21:5c:01:a3:1f:48:e7:ff:64:52:f8:4e:95:bc:cc:32:4e:b8: f1:27:ca:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg0MDAxMTAvBgNVBAUTKEU1RDlBQzhENzVCMTZEQjlGMjNDODBBREQ4QjNCQkQ4 RTU4QjY4NzgwHhcNMjUxMDE5MDIwODQ0WhcNMjUxMDI2MDIwODQ0WjAYMRYwFAYD VQQDEw02OGY0NDgyYy1hZTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6iPmnLQTHTxy+f5em8JctzBn767AMa8nSCfogwPQcQoobJtoUtZ+BNQymv1+ Y22+D0AU8kalo+GWOLq2RgpoLmPxMO373DsN0U37Y+kT6uW/u26ktYF+GUJaOXAf 9hLaeV2tmK/ctSQ3r9Aj2pCVFIJQZSHa5RKimub8Ii3MQVFTqIM6J01GtgLv63zQ gFDJZY3u2WB30P4KWWBFrOpvop6RyLhUQWpfVSNVVx1tdiTI5klfQnaZcr+2PuhM xgeKBtg8bFQ9Od9nmslv8oqXubuqw4r9LUEOJOIekkcMm8QsHhmMaHQhILiIv5VH KJvkm+Drbic671aSfE5VzljCHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNLMyoye vUdLr5erJHXJDd0+gUVGMB8GA1UdIwQYMBaAFOXZrI11sW258jyArdizu9jli2h4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODQwMC9GNjgxQkJBNDc4 MTExMUVDQTM5N0QwMzRDNEY5QUUwMi81ZG1zalhXeGJibnlQSUN0MkxPNzJPV0xh SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVkbXNqWFd4YmJueVBJQ3QyTE83Mk9XTGFIZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODQwMC9GNjgxQkJBNDc4MTExMUVDQTM5N0QwMzRDNEY5QUUwMi81ZG1zalhXeGJi bnlQSUN0MkxPNzJPV0xhSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCtUCR2J1VqwuZlsWg22DPMmYSjipR1MHzfDG+FuxEMoD11SAbtPg2 nkZb8IIgZK/A23lPUVp+sokgZ1kEq+sNGy8dWKlJI+i5ukQdlkWlXqBtlOZZ2Xtc ZD2LCrgwZN6OBk7QWXhpKdke6xYHx6M5tl/Kx2fbUSHU1PZMYIzYuQuYz6mtqgAb HlBMo3RdygkjWYthTmwREFQCp6IOKDr4mbQWAiQnOkz7KhA/VQPoS1Rwch8KwL/R ScDAOdbufSIQ23/+0Kf8Uh3yAKLHoyzLMWD95zHMX9NPUvtyKDoR5FaxMsHDRArw ysUhXAGjH0jn/2RS+E6VvMwyTrjxJ8rL -----END CERTIFICATE-----Generated at Mon Oct 20 08:24:18 2025 by rpki-client