$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft File: sBO5crQspa2fahYr87XHT5M8HgU.mft (raw, json) Hash identifier: tXettz0ah4VnBBNFYjGqEuaP69gC1GdvtgVihCR/bkk= Subject key identifier: AC:91:83:91:B7:39:B5:4F:75:78:16:BB:11:E7:80:AB:B4:3B:F6:EB Authority key identifier: B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 Certificate issuer: /CN=A91E2B66/serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Certificate serial: 05D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft Manifest number: 05C9 Signing time: Sun 19 Oct 2025 00:43:35 +0000 Manifest this update: Sun 19 Oct 2025 00:43:34 +0000 Manifest next update: Sun 26 Oct 2025 00:43:34 +0000 Files and hashes: 1: sBO5crQspa2fahYr87XHT5M8HgU.crl (hash: Pbx6+UFIOhM3L/ufsu8+v2eum+xgSD0HHeLW7yynnww=) 2: 5334D20CDA5E11EBA323F462C4F9AE02.roa (hash: grIWyyq0MDFCb7a6KfrpTu3LAH64VdoYs4KvoLwKfQg=) 3: 53AD6F32DA5E11EBA323F462C4F9AE02.roa (hash: /1rRME/YWECCYt6toeN715tq9fDj34iC1+mJGA+LM6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:43:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1491 (0x5d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2B66, serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Validity Not Before: Oct 19 00:43:34 2025 GMT Not After : Oct 26 00:43:34 2025 GMT Subject: CN=68f43437-dbfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:a8:57:07:68:8e:97:76:6f:56:35:5c:05:42: e3:5e:fa:85:41:3f:84:59:9b:a5:73:e5:dc:15:80: 9f:3b:d4:33:96:76:ba:c1:39:26:26:5a:ca:a1:a1: 85:20:02:d9:44:74:c4:fe:2c:c6:33:09:b2:c7:19: b8:5b:57:a5:22:88:96:03:a8:56:31:00:40:fe:17: c5:33:93:ff:db:5f:97:2a:ea:cc:6d:82:c1:bb:72: 80:3d:93:ec:19:7b:a7:00:0b:aa:56:33:08:d1:a0: aa:5b:2c:e8:79:c1:7a:85:96:71:71:27:c8:45:65: 15:de:74:d0:3c:2f:a4:9f:c5:01:2d:61:a7:f7:9c: c6:af:f4:3f:7e:5f:76:63:d8:b8:cc:4f:98:51:7a: a9:bc:03:07:5b:a2:99:fb:30:bc:dd:a2:9c:89:35: 6f:07:b8:8c:d9:6d:e0:f6:6d:16:4d:d1:28:83:8a: 7f:be:c3:51:bc:25:c2:2e:5c:2c:64:6e:43:dd:fb: 38:6a:88:e2:db:ce:16:27:70:eb:46:31:0e:41:f5: 04:c0:a0:40:a8:06:09:30:65:ab:6d:d3:95:08:a6: 97:1a:b1:33:bd:9a:45:32:52:74:7e:85:3e:56:83: 4e:15:54:ff:be:6b:d2:e2:14:f2:54:cc:1e:81:b8: db:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:91:83:91:B7:39:B5:4F:75:78:16:BB:11:E7:80:AB:B4:3B:F6:EB X509v3 Authority Key Identifier: keyid:B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:99:bc:33:aa:f9:be:f8:d4:60:07:a4:bd:86:28:a2:33:db: bc:4a:18:49:9b:7c:d8:0c:c0:50:40:33:54:ec:30:24:15:2c: 39:5e:92:86:a8:13:a8:47:88:c3:e8:40:e3:0e:71:00:99:1e: 87:88:79:86:28:de:bf:6b:e9:08:67:1c:e8:b2:cb:4c:6d:dd: a3:78:9e:33:2b:a0:cc:69:88:73:02:49:9c:9f:09:06:d3:3e: 2d:60:5a:c7:28:e0:04:0e:43:26:87:65:3e:b9:46:3a:a2:af: c0:a9:05:0f:f9:e6:c1:c4:a3:f7:e8:70:79:75:24:35:dd:e8: a1:49:b2:72:bd:b6:b3:fa:fd:bc:5b:16:bc:37:98:61:d5:e6: 60:ec:7b:db:27:dc:6e:9a:3b:a0:ce:71:62:ad:cb:87:d7:74: ae:87:3a:92:5e:a6:e9:db:27:70:aa:91:b1:3d:c7:25:71:f4: 65:f9:df:d7:3b:b0:52:19:02:88:c3:48:97:41:da:d5:83:90: e8:a5:50:32:2b:ad:13:dd:96:d3:d0:67:3b:4b:64:db:53:eb: f5:31:ae:01:04:2f:5b:31:55:dc:75:6b:27:1b:5a:46:bf:b1: c4:d5:c5:fd:da:14:1e:11:fe:83:be:dc:33:63:b5:7a:f7:13: 76:b4:f1:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJCNjYxMTAvBgNVBAUTKEIwMTNCOTcyQjQyQ0E1QUQ5RjZBMTYyQkYzQjVDNzRG OTMzQzFFMDUwHhcNMjUxMDE5MDA0MzM0WhcNMjUxMDI2MDA0MzM0WjAYMRYwFAYD VQQDEw02OGY0MzQzNy1kYmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6qhXB2iOl3ZvVjVcBULjXvqFQT+EWZulc+XcFYCfO9Qzlna6wTkmJlrKoaGF IALZRHTE/izGMwmyxxm4W1elIoiWA6hWMQBA/hfFM5P/21+XKurMbYLBu3KAPZPs GXunAAuqVjMI0aCqWyzoecF6hZZxcSfIRWUV3nTQPC+kn8UBLWGn95zGr/Q/fl92 Y9i4zE+YUXqpvAMHW6KZ+zC83aKciTVvB7iM2W3g9m0WTdEog4p/vsNRvCXCLlws ZG5D3fs4aoji284WJ3DrRjEOQfUEwKBAqAYJMGWrbdOVCKaXGrEzvZpFMlJ0foU+ VoNOFVT/vmvS4hTyVMwegbjbXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKyRg5G3 ObVPdXgWuxHngKu0O/brMB8GA1UdIwQYMBaAFLATuXK0LKWtn2oWK/O1x0+TPB4F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkI2Ni81M0U4RkJFQURB NUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3BhMmZhaFlyODdYSFQ1TThI Z1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NCTzVjclFzcGEyZmFoWXI4N1hIVDVNOEhnVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkI2Ni81M0U4RkJFQURBNUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3Bh MmZhaFlyODdYSFQ1TThIZ1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+mbwzqvm++NRgB6S9hiiiM9u8ShhJm3zYDMBQQDNU7DAkFSw5XpKG qBOoR4jD6EDjDnEAmR6HiHmGKN6/a+kIZxzosstMbd2jeJ4zK6DMaYhzAkmcnwkG 0z4tYFrHKOAEDkMmh2U+uUY6oq/AqQUP+ebBxKP36HB5dSQ13eihSbJyvbaz+v28 Wxa8N5hh1eZg7HvbJ9xumjugznFircuH13SuhzqSXqbp2ydwqpGxPcclcfRl+d/X O7BSGQKIw0iXQdrVg5DopVAyK60T3ZbT0Gc7S2TbU+v1Ma4BBC9bMVXcdWsnG1pG v7HE1cX92hQeEf6DvtwzY7V69xN2tPGX -----END CERTIFICATE-----Generated at Mon Oct 20 08:50:06 2025 by rpki-client