$ rpki-client -vvf rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.mft File: 0Q5D4Fk97x241_RMbxzRPnPC8jA.mft (raw, json) Hash identifier: dKjXz1nbbrpMTXzs39fo7pjSpdxb7qo6WmxvrJ8GQvQ= Subject key identifier: 75:F9:41:16:D6:A1:C2:35:2A:36:53:41:55:46:7F:2C:00:07:FA:21 Authority key identifier: D1:0E:43:E0:59:3D:EF:1D:B8:D7:F4:4C:6F:1C:D1:3E:73:C2:F2:30 Certificate issuer: /CN=A91325DC/serialNumber=D10E43E0593DEF1DB8D7F44C6F1CD13E73C2F230 Certificate serial: 0B5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Q5D4Fk97x241_RMbxzRPnPC8jA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.mft Manifest number: 0B4C Signing time: Mon 20 Oct 2025 19:54:02 +0000 Manifest this update: Mon 20 Oct 2025 19:54:01 +0000 Manifest next update: Mon 27 Oct 2025 19:54:01 +0000 Files and hashes: 1: 0Q5D4Fk97x241_RMbxzRPnPC8jA.crl (hash: DEp8W2y/aMiB+MQDeXQ20WsNEYX6bmAuxqcjnaVyHtU=) 2: A2DE5B44AE1C11EAA46DAF7FC4F9AE02.roa (hash: V6+vy3CAemLZlLXO9CQsgxzuypWLmdriyqfxb6TbA2w=) 3: 3FC1B85E431811EA84E68121C4F9AE02.roa (hash: UC5fAcuOiaup4uE6RhB6Ul5GKkjN2FqHQr3rrq2JOA4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.crl rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Q5D4Fk97x241_RMbxzRPnPC8jA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 19:54:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2907 (0xb5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91325DC, serialNumber=D10E43E0593DEF1DB8D7F44C6F1CD13E73C2F230 Validity Not Before: Oct 20 19:54:01 2025 GMT Not After : Oct 27 19:54:01 2025 GMT Subject: CN=68f6935a-8192 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:95:98:a1:b6:4f:7f:05:bf:44:82:98:45:bb: 7f:35:1f:7c:ba:d9:0d:55:35:30:da:36:4e:fd:24: 81:be:09:a4:44:ef:02:b7:3e:88:c1:34:45:93:bf: a3:ea:15:26:57:d6:01:fc:f9:19:50:6e:c4:1b:c3: 41:82:10:2a:25:5e:0f:e5:4b:1a:dc:f3:e0:ca:98: 2e:bc:15:24:e1:0d:a6:fd:b6:1d:f6:43:b2:64:61: d2:7c:0c:2a:50:47:ad:04:0c:f5:ce:cc:4e:7d:10: 0e:d4:d6:f5:90:47:f4:86:1d:bb:13:cf:24:22:19: 9a:26:d8:6b:db:e7:93:19:6e:75:a3:78:db:11:b4: a8:9d:60:21:86:5f:d0:46:9a:4f:19:26:cd:69:4b: c4:90:0b:9e:4c:51:46:d2:c7:3a:6b:3e:cc:f8:6d: b0:cc:3d:63:d7:e3:d6:33:64:84:8e:0a:e9:be:a0: 23:38:7f:5f:16:56:a2:6a:92:aa:fb:19:29:67:b2: ec:46:67:3d:5f:dd:89:af:c6:c3:3e:17:8b:bc:93: 2f:3f:0e:e2:4f:63:b9:5d:23:71:5c:e3:74:97:bd: e0:5b:e5:8c:a6:4f:f6:2d:87:ad:55:bf:d3:77:8a: 2e:9b:a9:cf:d2:95:04:66:1a:94:a4:9b:4a:a4:1f: e2:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:F9:41:16:D6:A1:C2:35:2A:36:53:41:55:46:7F:2C:00:07:FA:21 X509v3 Authority Key Identifier: keyid:D1:0E:43:E0:59:3D:EF:1D:B8:D7:F4:4C:6F:1C:D1:3E:73:C2:F2:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Q5D4Fk97x241_RMbxzRPnPC8jA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:35:5d:a9:4f:7e:8e:69:37:33:80:31:06:ec:95:84:2b:49: d9:27:07:71:47:04:f4:60:2f:14:37:f9:5c:15:f4:08:95:29: bb:35:e9:1d:fc:63:ed:a2:e6:7a:c2:16:cb:ac:df:ea:28:fc: de:38:99:fe:85:4a:a2:85:a7:6a:b8:2a:fb:3d:eb:31:87:7b: 93:f4:25:02:03:9b:45:fc:a5:d5:bc:9e:a2:1f:05:80:fe:c7: 2c:28:9f:2f:10:f6:98:a0:e0:e9:33:df:1b:e2:d3:37:37:85: 02:f2:1a:9b:b8:14:5b:09:e2:43:f7:6d:0e:fa:81:59:86:49: f1:3f:92:90:1f:b5:17:74:0a:4d:6e:e9:72:a6:3a:a8:a1:e8: 49:82:ce:fa:bc:b9:81:bb:cb:d0:8c:5e:ac:81:8b:ba:d1:eb: 8b:0a:01:3a:4f:59:b1:ca:e6:91:d4:25:1e:8c:4d:21:f0:75: 15:0d:c3:e8:40:b0:05:6d:bd:bd:75:16:22:cc:31:ff:4e:40: f6:12:25:fb:fa:1f:86:42:76:c4:15:63:e0:e3:5f:70:f7:b8: 3e:eb:c5:7c:37:b8:fb:e5:df:b8:d5:3c:55:6d:0d:0f:0c:e8: 50:b5:ae:a4:22:59:a9:0a:35:0c:b9:61:da:7b:c5:0a:7e:3f: bc:e4:5c:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI1REMxMTAvBgNVBAUTKEQxMEU0M0UwNTkzREVGMURCOEQ3RjQ0QzZGMUNEMTNF NzNDMkYyMzAwHhcNMjUxMDIwMTk1NDAxWhcNMjUxMDI3MTk1NDAxWjAYMRYwFAYD VQQDEw02OGY2OTM1YS04MTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJWYobZPfwW/RIKYRbt/NR98utkNVTUw2jZO/SSBvgmkRO8Ctz6IwTRFk7+j 6hUmV9YB/PkZUG7EG8NBghAqJV4P5Usa3PPgypguvBUk4Q2m/bYd9kOyZGHSfAwq UEetBAz1zsxOfRAO1Nb1kEf0hh27E88kIhmaJthr2+eTGW51o3jbEbSonWAhhl/Q RppPGSbNaUvEkAueTFFG0sc6az7M+G2wzD1j1+PWM2SEjgrpvqAjOH9fFlaiapKq +xkpZ7LsRmc9X92Jr8bDPheLvJMvPw7iT2O5XSNxXON0l73gW+WMpk/2LYetVb/T d4oum6nP0pUEZhqUpJtKpB/itwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHX5QRbW ocI1KjZTQVVGfywAB/ohMB8GA1UdIwQYMBaAFNEOQ+BZPe8duNf0TG8c0T5zwvIw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjVEQy80NjEyRDUxRTQz MTYxMUVBQjI2Mjc4MURDNEY5QUUwMi8wUTVENEZrOTd4MjQxX1JNYnh6UlBuUEM4 akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBRNUQ0Rms5N3gyNDFfUk1ieHpSUG5QQzhqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjVEQy80NjEyRDUxRTQzMTYxMUVBQjI2Mjc4MURDNEY5QUUwMi8wUTVENEZrOTd4 MjQxX1JNYnh6UlBuUEM4akEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvNV2pT36OaTczgDEG7JWEK0nZJwdxRwT0YC8UN/lcFfQIlSm7Nekd /GPtouZ6whbLrN/qKPzeOJn+hUqihadquCr7Pesxh3uT9CUCA5tF/KXVvJ6iHwWA /scsKJ8vEPaYoODpM98b4tM3N4UC8hqbuBRbCeJD920O+oFZhknxP5KQH7UXdApN bulypjqooehJgs76vLmBu8vQjF6sgYu60euLCgE6T1mxyuaR1CUejE0h8HUVDcPo QLAFbb29dRYizDH/TkD2EiX7+h+GQnbEFWPg419w97g+68V8N7j75d+41TxVbQ0P DOhQta6kIlmpCjUMuWHae8UKfj+85FyI -----END CERTIFICATE-----Generated at Wed Oct 22 12:13:34 2025 by rpki-client