$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.mft File: 5iLIEU8_JKpqgHyBQeOWS1UbuTA.mft (raw, json) Hash identifier: QigNu47ED/QxqRHW7rChTT/cQXvJ2VQwyMsouClZOrA= Subject key identifier: DD:1D:2A:DB:6D:67:A9:68:44:4D:DC:4C:86:B6:8E:9C:AD:26:2B:9F Authority key identifier: E6:22:C8:11:4F:3F:24:AA:6A:80:7C:81:41:E3:96:4B:55:1B:B9:30 Certificate issuer: /CN=A91EEEB8/serialNumber=E622C8114F3F24AA6A807C8141E3964B551BB930 Certificate serial: 3512 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.mft Manifest number: 34E9 Signing time: Sat 18 Oct 2025 15:13:48 +0000 Manifest this update: Sat 18 Oct 2025 15:13:47 +0000 Manifest next update: Sat 25 Oct 2025 15:13:47 +0000 Files and hashes: 1: 5iLIEU8_JKpqgHyBQeOWS1UbuTA.crl (hash: mZYy++wpRcQSgjMIoveGY19DsD++DCBJ73w5Ejc7frI=) 2: 32DFCCDCEB8011EAAB806163C4F9AE02.roa (hash: Vy0S41quK2iU71kwrTbOz/KoqscmH6wvDknm9n/QiBc=) 3: 9A4EE834EB8111EA87E2C165C4F9AE02.roa (hash: On/rjCt9+U6JtyKYuk47jkAjsn+YkzbVWBGb7O5oGfQ=) 4: FC75A532DBAC11EA9FF2FA1FC4F9AE02.roa (hash: Krev2+NvsTp5k57xzDaCtVpjuL2qov8uoa3n5krWGr0=) 5: 60DA0694D9E111EA82120960C4F9AE02.roa (hash: SQf0F6/ovS4nuhxwCqP0bzz663+tFfshESdr8FqByA0=) 6: 70B22B22950D11F0ACB76B28C4F9AE02.roa (hash: rEXx1IeVQBnFO7DidP5CAzoHoXBLOcJ2lUWGfIOm15E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.crl rsync://rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:13:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13586 (0x3512) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEEB8, serialNumber=E622C8114F3F24AA6A807C8141E3964B551BB930 Validity Not Before: Oct 18 15:13:47 2025 GMT Not After : Oct 25 15:13:47 2025 GMT Subject: CN=68f3aeab-422e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1b:74:4d:6e:0c:9a:76:50:b7:b7:6e:9d:2f: f9:45:ba:73:5f:ff:0d:7e:a2:0a:3d:c9:b3:67:e8: 70:34:fa:09:13:ae:a9:f9:c5:a0:88:f6:f5:63:82: 6d:a0:a0:26:76:7b:bd:ea:67:f2:80:a7:7c:74:4a: 81:38:61:e6:2f:00:d1:74:b7:2b:59:ce:48:3f:23: bb:f3:16:62:50:5b:a2:81:de:f6:84:74:6d:58:b4: 4d:74:cb:1a:21:43:83:37:0d:e2:26:12:f7:de:77: 51:73:40:7e:d3:76:50:e8:39:a7:86:1d:26:03:9a: b4:84:bd:3a:e4:54:1f:9e:a0:5c:83:0f:44:1f:6d: b8:9a:b1:f2:40:8c:be:70:71:4d:79:be:55:e3:30: 4b:fd:d9:b3:f1:b7:84:c9:1b:de:a1:cb:01:f4:69: ac:d5:a0:8c:35:87:6e:d5:1c:69:d2:d5:f7:d8:11: b1:be:ed:c6:0e:79:a1:03:f5:c1:88:9e:dd:62:96: c8:1b:f2:6b:87:16:cf:53:a4:26:66:7a:9f:00:6e: 1b:94:50:3a:41:07:00:a1:db:6a:a7:e8:e4:cb:7a: c3:09:7b:74:6e:a4:37:e5:7e:8f:bc:7a:57:c0:d2: 2a:05:df:9c:21:0b:ab:2e:56:4a:6b:27:05:aa:ff: 30:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:1D:2A:DB:6D:67:A9:68:44:4D:DC:4C:86:B6:8E:9C:AD:26:2B:9F X509v3 Authority Key Identifier: keyid:E6:22:C8:11:4F:3F:24:AA:6A:80:7C:81:41:E3:96:4B:55:1B:B9:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEEB8/8E0F2CB61DA111E2B906BC9308B02CD2/5iLIEU8_JKpqgHyBQeOWS1UbuTA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:bb:51:42:2c:6f:62:2f:a4:45:84:3e:ee:65:a3:fb:40:d7: 63:17:95:24:51:36:0d:45:56:50:9f:22:ad:5d:39:80:fa:d6: c9:7b:5d:29:e9:9f:87:16:7c:4a:40:98:d8:94:5d:ba:8b:77: 2a:c3:c7:b7:5a:d4:bd:f7:f5:3a:2d:41:56:a4:1b:33:99:19: 31:79:22:91:c9:ed:3f:b9:1d:f1:31:ad:8d:0a:e6:cd:b5:85: 83:32:e6:f9:c7:ad:83:0e:09:86:88:2d:c1:ad:52:60:20:95: 9e:a9:55:b8:db:1a:89:68:2b:f0:96:4d:02:fd:83:4a:37:13: 5e:01:3e:d0:6a:2c:66:d0:86:03:b7:fb:74:a5:9b:35:2d:9d: f5:24:34:e9:84:8f:f2:31:ea:09:c4:bb:66:2e:17:82:08:5c: c2:b0:8c:b4:d4:8d:6a:15:4a:15:18:1e:6e:e8:f1:ff:e7:5e: 5d:ec:cb:7e:84:ae:6c:34:a0:72:4e:20:35:b1:a3:85:20:f1: e5:7b:21:b5:bf:b2:e8:0d:93:5d:9e:77:2b:9e:c4:e3:0f:48: 30:0b:49:bf:88:d4:fb:60:2c:21:20:b9:7f:9e:c6:b0:42:d9: 41:cb:e7:bb:a8:79:33:70:2f:c4:96:bc:1a:49:6f:e0:0e:d0: 48:d9:7b:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNRIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVFQjgxMTAvBgNVBAUTKEU2MjJDODExNEYzRjI0QUE2QTgwN0M4MTQxRTM5NjRC NTUxQkI5MzAwHhcNMjUxMDE4MTUxMzQ3WhcNMjUxMDI1MTUxMzQ3WjAYMRYwFAYD VQQDEw02OGYzYWVhYi00MjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtBt0TW4MmnZQt7dunS/5RbpzX/8NfqIKPcmzZ+hwNPoJE66p+cWgiPb1Y4Jt oKAmdnu96mfygKd8dEqBOGHmLwDRdLcrWc5IPyO78xZiUFuigd72hHRtWLRNdMsa IUODNw3iJhL33ndRc0B+03ZQ6Dmnhh0mA5q0hL065FQfnqBcgw9EH224mrHyQIy+ cHFNeb5V4zBL/dmz8beEyRveocsB9Gms1aCMNYdu1Rxp0tX32BGxvu3GDnmhA/XB iJ7dYpbIG/JrhxbPU6QmZnqfAG4blFA6QQcAodtqp+jky3rDCXt0bqQ35X6PvHpX wNIqBd+cIQurLlZKaycFqv8wwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN0dKttt Z6loRE3cTIa2jpytJiufMB8GA1UdIwQYMBaAFOYiyBFPPySqaoB8gUHjlktVG7kw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUVCOC84RTBGMkNCNjFE QTExMUUyQjkwNkJDOTMwOEIwMkNEMi81aUxJRVU4X0pLcHFnSHlCUWVPV1MxVWJ1 VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVpTElFVThfSktwcWdIeUJRZU9XUzFVYnVUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RUVCOC84RTBGMkNCNjFEQTExMUUyQjkwNkJDOTMwOEIwMkNEMi81aUxJRVU4X0pL cHFnSHlCUWVPV1MxVWJ1VEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5u1FCLG9iL6RFhD7uZaP7QNdjF5UkUTYNRVZQnyKtXTmA+tbJe10p 6Z+HFnxKQJjYlF26i3cqw8e3WtS99/U6LUFWpBszmRkxeSKRye0/uR3xMa2NCubN tYWDMub5x62DDgmGiC3BrVJgIJWeqVW42xqJaCvwlk0C/YNKNxNeAT7Qaixm0IYD t/t0pZs1LZ31JDTphI/yMeoJxLtmLheCCFzCsIy01I1qFUoVGB5u6PH/515d7Mt+ hK5sNKByTiA1saOFIPHleyG1v7LoDZNdnncrnsTjD0gwC0m/iNT7YCwhILl/nsaw QtlBy+e7qHkzcC/ElrwaSW/gDtBI2XvK -----END CERTIFICATE-----Generated at Mon Oct 20 13:41:45 2025 by rpki-client