$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft File: 5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft (raw, json) Hash identifier: Tky9MMxDtWji/LH56Jo7mRGUL7g8z/KXoieGOalYxiY= Subject key identifier: 9C:54:3B:5F:8A:A0:15:4C:58:AB:52:1B:FD:BE:D4:C7:BE:A4:55:63 Authority key identifier: E4:5F:61:EF:BC:B2:E7:B1:E4:14:B2:CB:DC:34:50:F7:F8:46:18:9D Certificate issuer: /CN=A91E4ED1/serialNumber=E45F61EFBCB2E7B1E414B2CBDC3450F7F846189D Certificate serial: 0C69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft Manifest number: 0C67 Signing time: Sat 18 Oct 2025 19:15:43 +0000 Manifest this update: Sat 18 Oct 2025 19:15:43 +0000 Manifest next update: Sat 25 Oct 2025 19:15:43 +0000 Files and hashes: 1: 5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl (hash: I1GTQicieZzoe5mpw7wor48mASrAJr8jU4lMs9Rb924=) 2: D77C5AC003E611F0A9F5535FC4F9AE02.roa (hash: C3dI3f47oUkTpODJD7lPzsLlPec49Cck1X3kjiuVXDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:15:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3177 (0xc69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4ED1, serialNumber=E45F61EFBCB2E7B1E414B2CBDC3450F7F846189D Validity Not Before: Oct 18 19:15:43 2025 GMT Not After : Oct 25 19:15:43 2025 GMT Subject: CN=68f3e75f-8a36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c7:38:fb:1c:9e:3e:44:99:38:5c:dd:ea:c4: 0f:aa:15:ff:fb:d9:e1:e5:67:cd:53:e5:dd:3e:fd: 6c:4f:9d:06:c0:b8:4f:36:e0:85:38:30:fc:54:5e: d7:41:f1:a0:83:a8:da:b4:ba:29:74:e3:80:18:4f: 55:c6:7e:96:09:b9:34:4f:d2:c5:72:b1:d9:73:c3: 63:95:af:61:41:bf:12:5e:f9:18:dd:2c:ef:ff:a2: b2:bf:ec:e9:3d:07:43:10:0a:6a:ad:aa:ec:07:87: 01:90:cb:05:f9:35:59:60:21:cd:b7:83:47:22:a3: d0:26:0a:e8:2c:85:19:6e:c9:e6:ef:9b:24:b0:f9: 5c:d0:88:de:15:78:c7:d5:33:ae:4a:54:8e:71:62: 5b:a2:5c:2e:86:0b:1d:76:30:c3:9c:37:9f:58:d6: c8:3d:d1:6f:3b:16:5f:69:5f:d2:79:73:03:ce:52: 66:6c:cd:d2:3a:bf:95:0a:e3:e3:b0:f0:ee:35:2b: d3:f0:c8:17:aa:06:b1:ec:b0:05:ea:1c:3e:9d:7b: 03:0b:41:29:9c:56:1f:4f:e6:89:eb:e0:3e:40:f7: 69:39:c7:b5:79:32:40:c7:98:64:a1:b5:6c:f6:1b: 23:4d:a5:c1:1c:f6:cb:50:d8:4b:ea:4d:0c:be:2e: f6:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:54:3B:5F:8A:A0:15:4C:58:AB:52:1B:FD:BE:D4:C7:BE:A4:55:63 X509v3 Authority Key Identifier: keyid:E4:5F:61:EF:BC:B2:E7:B1:E4:14:B2:CB:DC:34:50:F7:F8:46:18:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:62:10:a8:b4:f9:57:51:6a:08:91:fb:d3:1b:b3:0c:ea:27: e6:b6:82:88:1a:f8:df:f2:aa:5d:61:17:c4:54:fc:24:d2:2e: f5:22:f7:58:63:f8:db:ef:d7:16:58:53:ae:e5:82:1a:30:53: 0d:a8:24:19:38:38:e7:ea:c7:90:dd:13:15:85:bf:c3:0b:76: 7c:bf:58:82:23:2f:99:30:5e:f5:83:54:00:5a:1a:e6:83:de: 30:84:29:f5:f5:6c:69:e4:84:22:32:df:7e:cc:d9:31:79:77: 1e:03:c0:11:1c:6b:cb:3c:c7:c5:b1:c8:78:6b:ad:05:64:47: 22:7e:0c:48:da:b4:10:df:c5:22:c8:ba:85:4d:22:79:9d:c0: 7b:08:89:78:f9:bf:2f:9f:f2:61:ef:23:32:0e:75:61:6d:a5: dc:bf:f8:71:f7:40:7e:b5:9d:51:56:2b:40:6e:ba:1c:3e:e2: 51:a1:5d:c1:b9:1e:8c:60:c5:14:d9:8d:eb:aa:46:e6:ff:03: 08:91:42:63:bf:96:cb:9a:2b:34:96:8b:77:a0:65:17:46:e9: 47:6b:91:b8:93:95:d9:8a:a5:9a:ea:cb:60:ea:b5:03:42:de: d8:1d:0a:3d:f3:a5:c4:11:fe:11:f9:8f:c1:28:fb:94:e6:95: ac:00:34:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRFRDExMTAvBgNVBAUTKEU0NUY2MUVGQkNCMkU3QjFFNDE0QjJDQkRDMzQ1MEY3 Rjg0NjE4OUQwHhcNMjUxMDE4MTkxNTQzWhcNMjUxMDI1MTkxNTQzWjAYMRYwFAYD VQQDEw02OGYzZTc1Zi04YTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArMc4+xyePkSZOFzd6sQPqhX/+9nh5WfNU+XdPv1sT50GwLhPNuCFODD8VF7X QfGgg6jatLopdOOAGE9Vxn6WCbk0T9LFcrHZc8Njla9hQb8SXvkY3Szv/6Kyv+zp PQdDEApqrarsB4cBkMsF+TVZYCHNt4NHIqPQJgroLIUZbsnm75sksPlc0IjeFXjH 1TOuSlSOcWJbolwuhgsddjDDnDefWNbIPdFvOxZfaV/SeXMDzlJmbM3SOr+VCuPj sPDuNSvT8MgXqgax7LAF6hw+nXsDC0EpnFYfT+aJ6+A+QPdpOce1eTJAx5hkobVs 9hsjTaXBHPbLUNhL6k0Mvi72UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJxUO1+K oBVMWKtSG/2+1Me+pFVjMB8GA1UdIwQYMBaAFORfYe+8suex5BSyy9w0UPf4Rhid MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEVEMS81RkRENzhCMjBC NjQxMUVBOTA5MjMwNjZDNEY5QUUwMi81RjloNzd5eTU3SGtGTExMM0RSUTlfaEdH SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVGOWg3N3l5NTdIa0ZMTEwzRFJROV9oR0dKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEVEMS81RkRENzhCMjBCNjQxMUVBOTA5MjMwNjZDNEY5QUUwMi81RjloNzd5eTU3 SGtGTExMM0RSUTlfaEdHSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXYhCotPlXUWoIkfvTG7MM6ifmtoKIGvjf8qpdYRfEVPwk0i71IvdY Y/jb79cWWFOu5YIaMFMNqCQZODjn6seQ3RMVhb/DC3Z8v1iCIy+ZMF71g1QAWhrm g94whCn19Wxp5IQiMt9+zNkxeXceA8ARHGvLPMfFsch4a60FZEcifgxI2rQQ38Ui yLqFTSJ5ncB7CIl4+b8vn/Jh7yMyDnVhbaXcv/hx90B+tZ1RVitAbrocPuJRoV3B uR6MYMUU2Y3rqkbm/wMIkUJjv5bLmis0lot3oGUXRulHa5G4k5XZiqWa6stg6rUD Qt7YHQo986XEEf4R+Y/BKPuU5pWsADQ0 -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:01 2025 by rpki-client