$ rpki-client -vvf rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft File: EK5_oM-c-qh-uthEzYxCasHDpec.mft (raw, json) Hash identifier: XZ9x6AZml3yWC49PoGvV5Q5JoECbPv54U9sXA8Tmoss= Subject key identifier: 69:34:D7:7B:A5:3C:9D:CE:CD:25:E5:69:86:61:CA:E1:2E:10:00:8B Authority key identifier: 10:AE:7F:A0:CF:9C:FA:A8:7E:BA:D8:44:CD:8C:42:6A:C1:C3:A5:E7 Certificate issuer: /CN=A9123BFF/serialNumber=10AE7FA0CF9CFAA87EBAD844CD8C426AC1C3A5E7 Certificate serial: 20C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EK5_oM-c-qh-uthEzYxCasHDpec.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft Manifest number: 20B9 Signing time: Sun 26 Oct 2025 16:05:31 +0000 Manifest this update: Sun 26 Oct 2025 16:05:30 +0000 Manifest next update: Sun 02 Nov 2025 16:05:30 +0000 Files and hashes: 1: EK5_oM-c-qh-uthEzYxCasHDpec.crl (hash: IaCQGlkrwzNbnR0gNM7EG7Sum22KRLTxv295PaGJ+rU=) 2: 449C08948D1211EBB9548186C4F9AE02.roa (hash: 4cmAc73Ya3K4uXCXYcHrxMilUHhYgfgcQY7RcTrdD4o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.crl rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EK5_oM-c-qh-uthEzYxCasHDpec.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Nov 2025 16:05:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8385 (0x20c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123BFF, serialNumber=10AE7FA0CF9CFAA87EBAD844CD8C426AC1C3A5E7 Validity Not Before: Oct 26 16:05:30 2025 GMT Not After : Nov 2 16:05:30 2025 GMT Subject: CN=68fe46cb-7436 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c8:e5:8a:fb:5f:a6:bd:47:e6:53:0b:b0:4b: b4:65:87:b0:be:b7:d3:4c:8e:9a:16:81:16:a3:f6: 7f:7f:6e:fd:1a:07:79:03:33:b1:e2:8f:09:de:53: ce:0a:27:61:6f:22:ea:1a:e4:20:0c:1e:cd:59:55: 43:e4:07:16:54:39:ed:3f:4a:22:3d:a1:ba:11:c7: 79:0f:f4:dc:91:44:fa:2d:db:2d:63:4b:00:69:15: 80:3b:85:33:db:b4:49:0e:bb:57:1d:51:5e:c5:e2: d0:c4:79:14:d7:e1:63:d3:1c:98:3d:d9:e4:4f:68: 3a:77:f7:e0:a4:b6:2a:9e:2d:1b:de:23:08:b6:fb: 4b:36:23:2c:39:ec:a4:c5:17:56:be:65:e9:b8:4e: e4:89:ee:05:bf:6c:c2:5e:c9:7e:00:d9:8d:01:2c: 24:1e:96:8f:1b:7a:86:86:b8:5f:07:9c:35:dd:0e: 19:17:99:96:79:75:7f:ee:73:ce:43:ba:34:0c:75: 86:db:8d:76:ee:c1:78:7d:59:54:db:ba:e5:41:f4: 8e:6e:c9:23:04:45:1a:82:df:b7:48:fc:8d:cb:75: b5:e0:d7:23:83:65:20:36:bc:7d:7f:00:b7:d0:2b: 26:d6:83:2d:72:3f:9c:43:5f:ce:1d:0d:5f:24:b4: b8:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:34:D7:7B:A5:3C:9D:CE:CD:25:E5:69:86:61:CA:E1:2E:10:00:8B X509v3 Authority Key Identifier: keyid:10:AE:7F:A0:CF:9C:FA:A8:7E:BA:D8:44:CD:8C:42:6A:C1:C3:A5:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EK5_oM-c-qh-uthEzYxCasHDpec.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:b5:ec:1c:8c:dc:71:4f:6b:48:dd:ec:a9:bd:c7:63:13:08: f1:ab:98:7e:e2:6d:73:58:d0:f6:f7:ac:9e:dc:0e:97:72:60: 4b:78:b9:87:89:11:4f:aa:90:0f:cd:d4:bc:79:3d:e0:ff:4e: 63:0e:4e:82:52:b5:e1:ee:9e:10:c1:f5:7a:f9:38:25:68:11: ab:27:7c:74:66:47:1a:33:7f:53:7a:1b:9d:94:e5:43:19:5a: 91:16:43:4f:7f:93:5a:66:96:20:95:ce:55:e0:5c:5c:28:b0: 4a:89:81:fe:24:24:f7:24:f2:f0:70:06:1e:5f:91:84:95:22: a5:99:15:9b:c3:7d:27:24:6c:4b:f9:9c:a7:6d:48:d6:e3:f4: 84:4f:d6:07:55:a6:2d:27:05:7f:8f:d9:1e:d7:24:bf:c7:ca: 03:c2:a9:95:31:25:55:87:79:22:dd:c8:c2:03:2b:3f:a9:82: 09:03:9a:f8:cb:75:91:c3:f5:0f:0c:f7:73:90:d9:58:07:24: d5:bb:e1:25:03:4e:0f:62:cb:50:de:a2:bd:ed:f4:0a:be:b1: 60:5f:e2:09:cb:85:2e:a9:19:ba:98:3d:6e:67:3e:90:24:67: 13:56:35:8e:f1:94:e9:d6:db:b3:b8:d7:b7:5f:85:44:af:ff: 67:d3:11:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNCRkYxMTAvBgNVBAUTKDEwQUU3RkEwQ0Y5Q0ZBQTg3RUJBRDg0NENEOEM0MjZB QzFDM0E1RTcwHhcNMjUxMDI2MTYwNTMwWhcNMjUxMTAyMTYwNTMwWjAYMRYwFAYD VQQDEw02OGZlNDZjYi03NDM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq8jlivtfpr1H5lMLsEu0ZYewvrfTTI6aFoEWo/Z/f279Ggd5AzOx4o8J3lPO CidhbyLqGuQgDB7NWVVD5AcWVDntP0oiPaG6Ecd5D/TckUT6LdstY0sAaRWAO4Uz 27RJDrtXHVFexeLQxHkU1+Fj0xyYPdnkT2g6d/fgpLYqni0b3iMItvtLNiMsOeyk xRdWvmXpuE7kie4Fv2zCXsl+ANmNASwkHpaPG3qGhrhfB5w13Q4ZF5mWeXV/7nPO Q7o0DHWG24127sF4fVlU27rlQfSObskjBEUagt+3SPyNy3W14Ncjg2UgNrx9fwC3 0Csm1oMtcj+cQ1/OHQ1fJLS4swIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGk013ul PJ3OzSXlaYZhyuEuEACLMB8GA1UdIwQYMBaAFBCuf6DPnPqofrrYRM2MQmrBw6Xn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0JGRi9GMjkwODI5QTEw REExMUU2ODVDNEJCM0RDNEY5QUUwMi9FSzVfb00tYy1xaC11dGhFell4Q2FzSERw ZWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VLNV9vTS1jLXFoLXV0aEV6WXhDYXNIRHBlYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0JGRi9GMjkwODI5QTEwREExMUU2ODVDNEJCM0RDNEY5QUUwMi9FSzVfb00tYy1x aC11dGhFell4Q2FzSERwZWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBstewcjNxxT2tI3eypvcdjEwjxq5h+4m1zWND296ye3A6XcmBLeLmH iRFPqpAPzdS8eT3g/05jDk6CUrXh7p4QwfV6+TglaBGrJ3x0ZkcaM39TehudlOVD GVqRFkNPf5NaZpYglc5V4FxcKLBKiYH+JCT3JPLwcAYeX5GElSKlmRWbw30nJGxL +ZynbUjW4/SET9YHVaYtJwV/j9ke1yS/x8oDwqmVMSVVh3ki3cjCAys/qYIJA5r4 y3WRw/UPDPdzkNlYByTVu+ElA04PYstQ3qK97fQKvrFgX+IJy4UuqRm6mD1uZz6Q JGcTVjWO8ZTp1tuzuNe3X4VEr/9n0xHg -----END CERTIFICATE-----Generated at Tue Oct 28 12:38:16 2025 by rpki-client