$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.mft File: N5dDcUzgEiMKqXi7GqjHkOcGZ6s.mft (raw, json) Hash identifier: YCx6p+2fHG+LJKlJ6/++hQek6xLlSJQWttlB0RUjt6A= Subject key identifier: F8:51:4C:EC:1A:DF:4D:4D:CF:A7:54:86:1E:01:D7:48:69:67:1C:EF Authority key identifier: 37:97:43:71:4C:E0:12:23:0A:A9:78:BB:1A:A8:C7:90:E7:06:67:AB Certificate issuer: /CN=A91E3E33/serialNumber=379743714CE012230AA978BB1AA8C790E70667AB Certificate serial: 125C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.mft Manifest number: 123A Signing time: Sat 18 Oct 2025 17:39:25 +0000 Manifest this update: Sat 18 Oct 2025 17:39:24 +0000 Manifest next update: Sat 25 Oct 2025 17:39:24 +0000 Files and hashes: 1: N5dDcUzgEiMKqXi7GqjHkOcGZ6s.crl (hash: jWUiswyGR4PXMGcrLYidJVC2lmNF6xZToicT40PN7Zc=) 2: D0B8C09E1BBF11EAA64ECF70C4F9AE02.roa (hash: IlsMtwiQzSq4LTeLK5xGeprYL7keFREC86Udlg/108c=) 3: 29ED0D46839011EE946C5E63C4F9AE02.roa (hash: Ra6HDO1XoeogbYK2SKPiF6ZGlKvyMdWPBrFkbBpAK0o=) 4: 4551BE2CD19D11EAA120EE14C4F9AE02.roa (hash: hm02D0CoN1wXYmBN20AJ0Eit445l76gPSN2cqsUGYq0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.crl rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:39:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4700 (0x125c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E33, serialNumber=379743714CE012230AA978BB1AA8C790E70667AB Validity Not Before: Oct 18 17:39:24 2025 GMT Not After : Oct 25 17:39:24 2025 GMT Subject: CN=68f3d0cc-f8fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:e9:f1:78:42:80:0d:c1:3e:c4:6f:c4:81:26: 61:ce:6b:ed:19:26:ff:eb:d6:59:7b:87:83:2e:10: 63:eb:fd:d0:68:b2:47:8e:da:a2:8d:c6:15:ff:5a: 8f:d3:04:c9:df:9c:a4:17:8e:a2:a0:1e:67:68:22: af:22:04:ee:47:9e:dc:14:16:fb:e9:cf:e7:20:cc: 11:90:bf:9e:ff:da:0e:d8:4a:df:7b:d6:c0:a5:05: 22:36:62:cf:95:c2:16:8c:1c:8c:29:e8:39:98:84: 6c:b6:a8:7b:fc:6f:8e:55:ce:81:b4:10:f6:af:9e: 08:23:48:9b:b5:c9:1b:3e:4e:14:79:1b:d3:a7:52: 3f:eb:b2:67:cb:77:ea:9f:73:54:81:e0:55:2b:89: bb:cc:90:4a:e2:0c:5f:87:f2:c6:4c:3b:50:0f:3a: 95:ce:7d:f8:a7:c0:67:66:c1:45:6a:e8:68:e0:ed: fa:26:d1:69:ae:79:74:58:28:a0:25:08:0b:02:5c: 57:0a:72:42:0e:8e:f8:40:3a:7b:44:60:bd:e4:09: 2e:14:e2:48:cb:7e:1e:da:cf:b3:8b:1d:a3:3e:b1: 33:4d:1b:03:d4:ba:b7:f2:67:6b:2a:ea:4a:0b:c7: a4:fa:52:90:4c:83:bd:33:65:b3:02:29:43:6c:1e: ca:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:51:4C:EC:1A:DF:4D:4D:CF:A7:54:86:1E:01:D7:48:69:67:1C:EF X509v3 Authority Key Identifier: keyid:37:97:43:71:4C:E0:12:23:0A:A9:78:BB:1A:A8:C7:90:E7:06:67:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:77:f7:ce:07:3f:7c:5d:ba:3c:8f:a7:42:79:01:41:ca:7e: 93:94:b7:53:c1:a2:a6:fc:26:9b:c8:77:bf:bf:98:14:83:71: e3:f0:c7:0a:2e:27:be:72:f8:a2:93:f1:fb:58:77:4c:9b:2e: 17:f1:62:7d:54:6e:a8:cd:29:82:a0:b3:80:87:13:46:18:a3: c9:4e:08:58:50:62:b2:e2:08:a8:3c:8c:f9:d3:a0:16:15:bc: 28:65:b8:e0:bb:84:cb:41:bf:d2:2f:b6:35:b2:14:f3:11:92: df:d8:b9:ce:8b:99:19:80:a8:58:a8:8a:0d:3e:61:92:26:c4: 5c:7b:c4:75:d2:5a:ef:67:07:96:61:df:10:fe:a5:04:18:62: af:65:47:e6:d9:81:85:e0:81:82:23:12:85:49:2a:31:a4:a2: 5a:34:5f:08:86:be:ad:dc:45:0a:d8:3f:78:bf:56:96:7f:f6: 3a:96:5d:85:8b:4c:70:3e:cd:0a:35:18:26:0d:de:2c:93:12: 17:5a:a7:90:84:29:72:e1:19:d1:71:51:ac:1f:e1:e0:8c:2e: 8a:5b:64:23:6d:99:56:67:21:c8:dd:16:4e:de:05:61:cb:01: 79:2f:41:95:c2:b8:ca:0e:d8:1f:c4:94:d6:67:e1:73:ca:9c: 73:85:ee:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICElwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNFMzMxMTAvBgNVBAUTKDM3OTc0MzcxNENFMDEyMjMwQUE5NzhCQjFBQThDNzkw RTcwNjY3QUIwHhcNMjUxMDE4MTczOTI0WhcNMjUxMDI1MTczOTI0WjAYMRYwFAYD VQQDEw02OGYzZDBjYy1mOGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6+nxeEKADcE+xG/EgSZhzmvtGSb/69ZZe4eDLhBj6/3QaLJHjtqijcYV/1qP 0wTJ35ykF46ioB5naCKvIgTuR57cFBb76c/nIMwRkL+e/9oO2Erfe9bApQUiNmLP lcIWjByMKeg5mIRstqh7/G+OVc6BtBD2r54II0ibtckbPk4UeRvTp1I/67Jny3fq n3NUgeBVK4m7zJBK4gxfh/LGTDtQDzqVzn34p8BnZsFFauho4O36JtFprnl0WCig JQgLAlxXCnJCDo74QDp7RGC95AkuFOJIy34e2s+zix2jPrEzTRsD1Lq38mdrKupK C8ek+lKQTIO9M2WzAilDbB7K9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPhRTOwa 301Nz6dUhh4B10hpZxzvMB8GA1UdIwQYMBaAFDeXQ3FM4BIjCql4uxqox5DnBmer MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0UzMy84NzdBNzlCNkU5 RDExMUU4QUM4OTI3NzBDNEY5QUUwMi9ONWREY1V6Z0VpTUtxWGk3R3FqSGtPY0da NnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL041ZERjVXpnRWlNS3FYaTdHcWpIa09jR1o2cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0UzMy84NzdBNzlCNkU5RDExMUU4QUM4OTI3NzBDNEY5QUUwMi9ONWREY1V6Z0Vp TUtxWGk3R3FqSGtPY0daNnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/d/fOBz98Xbo8j6dCeQFByn6TlLdTwaKm/CabyHe/v5gUg3Hj8McK Lie+cviik/H7WHdMmy4X8WJ9VG6ozSmCoLOAhxNGGKPJTghYUGKy4gioPIz506AW FbwoZbjgu4TLQb/SL7Y1shTzEZLf2LnOi5kZgKhYqIoNPmGSJsRce8R10lrvZweW Yd8Q/qUEGGKvZUfm2YGF4IGCIxKFSSoxpKJaNF8Ihr6t3EUK2D94v1aWf/Y6ll2F i0xwPs0KNRgmDd4skxIXWqeQhCly4RnRcVGsH+HgjC6KW2QjbZlWZyHI3RZO3gVh ywF5L0GVwrjKDtgfxJTWZ+Fzypxzhe4+ -----END CERTIFICATE-----Generated at Mon Oct 20 13:34:13 2025 by rpki-client