$ rpki-client -vvf rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft File: 5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft (raw, json) Hash identifier: RduwnILa57EQ0xyta27P9ozbtDXc1uxR3jDosuvA7Vc= Subject key identifier: 0B:67:9B:54:E9:2E:7F:40:BA:2C:1C:BE:81:25:34:FD:51:F3:1F:DA Authority key identifier: 5D:70:7B:0D:35:69:62:24:32:B4:BD:CB:FD:32:0F:9A:8B:6D:DC:7B Certificate issuer: /CN=A91DD5100000/serialNumber=5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B Certificate serial: 497EF61D0B099F6B921DFB1D7763EDBA112EA5F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer Subject info access: rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft Manifest number: 01A2 Signing time: Sun 19 Oct 2025 18:44:07 +0000 Manifest this update: Sun 19 Oct 2025 18:39:07 +0000 Manifest next update: Mon 20 Oct 2025 18:44:07 +0000 Files and hashes: 1: 34332e3235322e32322e302f32342d3234203d3e203438323636.roa (hash: lh0a38K8JAllhrAcZvOqWh+3NCJyyj25skARvaE+EWo=) 2: 34332e3235322e32332e302f32342d3234203d3e203239383032.roa (hash: LfF8fU+QkX6d5K08nkQmulF4/9qGZmobs40531E0EuE=) 3: 5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl (hash: HbTB7xHFttyAC+ml3SEQY03cMri8dJ+mZBJ9WOV+kBQ=) 4: 34332e3235322e32312e302f32342d3234203d3e203530333835.roa (hash: baGBWXcDrtK+cAVKGJBMAmZee53ol0gPCj9NO0O551w=) 5: 34332e3235322e32302e302f32342d3234203d3e203134363138.roa (hash: POeaLZ7jyGbDhNwka17vD8hm5iiL/jnjTj3d8a5jHPw=) 6: 34332e3235322e32302e302f32342d3234203d3e203136353039.roa (hash: 2pHYFNhpresl2Qe+bmQCdeuqTmZNLu6JpjLmSUgR1DM=) Validation: OK Signature path: rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 18:44:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:7e:f6:1d:0b:09:9f:6b:92:1d:fb:1d:77:63:ed:ba:11:2e:a5:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD5100000, serialNumber=5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B Validity Not Before: Oct 19 18:39:07 2025 GMT Not After : Oct 20 18:44:07 2025 GMT Subject: CN=0B679B54E92E7F40BA2C1CBE812534FD51F31FDA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:27:e1:c4:4c:7d:73:54:c1:3b:f0:6e:a3:47: 24:bd:37:01:5d:95:c1:2a:7d:71:84:47:01:8b:77: 56:ff:41:72:81:05:e6:ae:b9:9a:f6:e5:2b:77:fd: a3:bf:fa:e1:fb:c3:e1:2c:4e:69:d6:c1:c0:7b:2a: 08:f4:e3:59:e4:0a:5e:37:4e:f1:93:23:43:e6:ad: 1e:35:97:b7:f8:2e:18:68:d7:78:e7:1b:d4:82:cd: f1:e3:82:c2:dc:10:8e:1a:5b:8e:61:52:cd:c0:03: 15:3b:38:67:f0:09:3b:57:78:18:99:a2:6c:4e:bd: 62:af:77:bc:05:a4:34:b6:4b:78:9d:39:ff:18:fb: 89:b3:1b:6c:03:e1:ad:7d:da:c9:0b:81:19:a5:4c: 44:6f:76:f2:69:41:9f:e8:81:6a:40:63:5d:ed:ae: 3f:d3:88:37:07:64:74:c4:84:eb:04:3a:e2:94:6f: 90:92:00:12:e8:5f:9b:bd:f7:86:6b:18:df:b3:ba: 81:ab:29:d2:a8:df:77:11:4b:b4:44:51:6e:a4:98: 8a:ed:27:ab:33:22:54:04:fe:90:38:5d:ba:cf:c8: f2:8e:d9:ac:65:81:4a:40:d9:9d:34:d4:e0:ed:3f: af:3f:2d:fd:36:04:d5:5a:50:f2:21:67:90:6d:dc: ce:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:67:9B:54:E9:2E:7F:40:BA:2C:1C:BE:81:25:34:FD:51:F3:1F:DA X509v3 Authority Key Identifier: keyid:5D:70:7B:0D:35:69:62:24:32:B4:BD:CB:FD:32:0F:9A:8B:6D:DC:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XXB7DTVpYiQytL3L_TIPmott3Hs.cer Subject Information Access: Signed Object - URI:rsync://rpki.sub.apnic.net/repository/A91DD5100000/0/5D707B0D3569622432B4BDCBFD320F9A8B6DDC7B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c0:1e:ef:2a:0e:8f:12:a1:c4:46:21:13:c9:9c:13:68:26:58: b5:9c:64:23:c5:1c:3e:5a:e1:3c:f6:dc:68:f2:0f:63:66:f5: 14:eb:24:6b:e3:f7:ac:11:cd:ca:17:b9:f7:ee:fd:dd:14:4c: ea:5f:14:6d:c6:59:82:19:68:91:6f:d1:12:60:00:23:5d:f4: 32:d9:52:b4:f5:4d:d3:9d:66:ac:f2:c6:00:0f:42:13:e7:d4: b4:6c:b8:fb:33:57:66:e5:f7:bc:a6:f4:ff:bc:69:24:0e:4b: 65:66:b6:66:34:f2:d5:c1:73:fe:f4:04:e2:d0:15:d9:a1:1c: 6e:2b:3a:84:fb:38:c3:94:56:92:43:b4:ec:db:e7:42:22:da: 58:6a:af:6f:85:e9:9e:d9:73:5b:b4:92:f6:cd:cc:b7:07:93: 01:76:3d:42:62:2d:1c:61:ee:c0:03:4f:4e:ef:f0:38:e5:7b: a2:9c:75:57:74:4e:37:16:45:0b:67:3c:03:23:a7:0f:17:fe: de:00:0f:60:91:a4:a2:ca:e5:ea:c9:17:8e:c0:2d:25:c4:5d: 47:7c:6a:d9:5d:3f:61:35:30:d0:33:fa:6a:f2:ba:8d:c5:94: c7:1a:11:11:e2:d7:14:ae:e2:89:1e:57:c4:f7:3a:f9:6f:e9: b6:fd:6a:1a -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUSX72HQsJn2uSHfsdd2PtuhEupfEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxREQ1MTAwMDAwMTEwLwYDVQQFEyg1RDcwN0IwRDM1 Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdCMB4XDTI1MTAxOTE4MzkwN1oX DTI1MTAyMDE4NDQwN1owMzExMC8GA1UEAxMoMEI2NzlCNTRFOTJFN0Y0MEJBMkMx Q0JFODEyNTM0RkQ1MUYzMUZEQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO0n4cRMfXNUwTvwbqNHJL03AV2VwSp9cYRHAYt3Vv9BcoEF5q65mvblK3f9 o7/64fvD4SxOadbBwHsqCPTjWeQKXjdO8ZMjQ+atHjWXt/guGGjXeOcb1ILN8eOC wtwQjhpbjmFSzcADFTs4Z/AJO1d4GJmibE69Yq93vAWkNLZLeJ05/xj7ibMbbAPh rX3ayQuBGaVMRG928mlBn+iBakBjXe2uP9OINwdkdMSE6wQ64pRvkJIAEuhfm733 hmsY37O6gasp0qjfdxFLtERRbqSYiu0nqzMiVAT+kDhdus/I8o7ZrGWBSkDZnTTU 4O0/rz8t/TYE1VpQ8iFnkG3czgsCAwEAAaOCAhswggIXMB0GA1UdDgQWBBQLZ5tU 6S5/QLosHL6BJTT9UfMf2jAfBgNVHSMEGDAWgBRdcHsNNWliJDK0vcv9Mg+ai23c ezAOBgNVHQ8BAf8EBAMCB4AwcgYDVR0fBGswaTBnoGWgY4ZhcnN5bmM6Ly9ycGtp LnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFERDUxMDAwMDAvMC81RDcwN0Iw RDM1Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdCLmNybDB+BggrBgEFBQcB AQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3Np dG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9YWEI3RFRWcFlp UXl0TDNMX1RJUG1vdHQzSHMuY2VyMH0GCCsGAQUFBwELBHEwbzBtBggrBgEFBQcw C4ZhcnN5bmM6Ly9ycGtpLnN1Yi5hcG5pYy5uZXQvcmVwb3NpdG9yeS9BOTFERDUx MDAwMDAvMC81RDcwN0IwRDM1Njk2MjI0MzJCNEJEQ0JGRDMyMEY5QThCNkREQzdC Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIw EDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG 9w0BAQsFAAOCAQEAwB7vKg6PEqHERiETyZwTaCZYtZxkI8UcPlrhPPbcaPIPY2b1 FOska+P3rBHNyhe59+793RRM6l8UbcZZghlokW/REmAAI130MtlStPVN051mrPLG AA9CE+fUtGy4+zNXZuX3vKb0/7xpJA5LZWa2ZjTy1cFz/vQE4tAV2aEcbis6hPs4 w5RWkkO07NvnQiLaWGqvb4XpntlzW7SS9s3MtweTAXY9QmItHGHuwANPTu/wOOV7 opx1V3RONxZFC2c8AyOnDxf+3gAPYJGkosrl6skXjsAtJcRdR3xq2V0/YTUw0DP6 avK6jcWUxxoREeLXFK7iiR5XxPc6+W/ptv1qGg== -----END CERTIFICATE-----Generated at Mon Oct 20 02:35:27 2025 by rpki-client