$ rpki-client -vvf rpki.apnic.net/member_repository/A91652F7/7CC45FAEBAAF11EAA6DD1A3DC4F9AE02/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.mft File: 5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.mft (raw, json) Hash identifier: bk1rcY6XFA6csf5JeYO2m47mbrkkNnys4+U3Ssb0aUg= Subject key identifier: 4C:5D:0B:90:4E:B0:3F:8A:D9:D6:CD:84:E5:FD:4D:F0:C5:40:E2:73 Authority key identifier: E5:02:75:7C:61:7C:21:D4:7B:1B:35:59:C0:9D:6E:A7:C3:AF:E4:03 Certificate issuer: /CN=A91652F7/serialNumber=E502757C617C21D47B1B3559C09D6EA7C3AFE403 Certificate serial: 08F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91652F7/7CC45FAEBAAF11EAA6DD1A3DC4F9AE02/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.mft Manifest number: 08E8 Signing time: Wed 22 Oct 2025 21:06:01 +0000 Manifest this update: Wed 22 Oct 2025 21:06:00 +0000 Manifest next update: Wed 29 Oct 2025 21:06:00 +0000 Files and hashes: 1: 5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.crl (hash: DVjAe12qAhP3vVjQyxfiTS7fFFJqBg0Q+DASxq0D158=) 2: A12DD18E2F1C11EDA3E29B09C4F9AE02.roa (hash: JY394gUy9qqM6BqtEt3A+TeeEC3ZSaP+KRzIxp12INs=) 3: A29A66FE2F1C11EDA3E29B09C4F9AE02.roa (hash: pwrQo06SW1WaZHmpSMN3Di6drTMadsg0IhrZWaRW7r4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91652F7/7CC45FAEBAAF11EAA6DD1A3DC4F9AE02/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.crl rsync://rpki.apnic.net/member_repository/A91652F7/7CC45FAEBAAF11EAA6DD1A3DC4F9AE02/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 21:05:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2291 (0x8f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91652F7, serialNumber=E502757C617C21D47B1B3559C09D6EA7C3AFE403 Validity Not Before: Oct 22 21:06:00 2025 GMT Not After : Oct 29 21:06:00 2025 GMT Subject: CN=68f94738-cd96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:ca:56:54:c9:b6:36:a1:15:6b:7b:9c:61:e0: 4f:2e:aa:26:d2:68:31:d3:7d:39:c7:d0:95:6e:e1: 80:1b:87:53:fc:ef:95:f0:02:3c:ee:9b:39:94:76: 3d:1d:73:fd:4e:fa:5b:f9:96:4b:7c:12:cc:6e:d7: 57:08:28:2a:b0:71:97:ca:2d:4d:50:f3:9a:70:3b: 2d:57:65:77:2a:b1:3b:2f:a5:35:38:04:79:ab:99: 9a:12:42:90:e4:5d:d6:12:ef:64:07:e2:d9:78:c8: dd:1d:f3:dd:a8:c0:fa:9a:20:22:0c:9d:40:4e:ce: 88:8f:ca:eb:09:39:93:d2:5c:77:25:9d:0f:12:dc: e6:9c:14:7b:bc:e5:f8:23:a5:a7:35:c5:0f:8f:80: 31:52:91:8c:78:31:d6:7d:19:98:5b:7f:d7:a9:d6: 23:ff:05:eb:50:af:e3:7a:d2:98:34:14:b5:5f:c2: 68:d2:15:17:56:f4:e3:95:ab:e5:3e:6f:87:f8:71: 7d:94:09:0c:ea:d3:9b:fa:04:d1:02:de:7b:c6:a1: 96:4e:65:cc:45:a1:25:00:1a:c6:9b:ae:fa:bf:66: a0:93:41:e6:80:47:dd:10:ee:a4:c8:26:78:e7:1e: 21:92:26:1c:1b:b0:64:b5:c6:5b:a5:c2:c7:e5:1d: ac:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:5D:0B:90:4E:B0:3F:8A:D9:D6:CD:84:E5:FD:4D:F0:C5:40:E2:73 X509v3 Authority Key Identifier: keyid:E5:02:75:7C:61:7C:21:D4:7B:1B:35:59:C0:9D:6E:A7:C3:AF:E4:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91652F7/7CC45FAEBAAF11EAA6DD1A3DC4F9AE02/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91652F7/7CC45FAEBAAF11EAA6DD1A3DC4F9AE02/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:7b:27:b2:6e:87:3c:6a:3c:08:f0:74:23:a3:dc:b1:a2:7a: 1c:68:f4:81:f7:bf:e8:9d:9c:37:93:c3:30:d6:c2:b7:06:d3: ea:06:ee:6c:9d:d4:2d:90:4f:13:cb:1b:f8:ff:24:3b:c5:5a: 1c:aa:e9:0c:37:8b:14:27:37:10:e0:ed:b2:5d:08:9e:04:fd: 6c:04:b3:37:c4:1b:5b:02:64:91:22:67:d1:1b:1c:e7:69:6c: 63:85:0c:67:2a:66:1f:1d:26:f5:50:47:9c:3b:6f:9b:f4:1b: 0d:be:ee:ad:67:27:60:92:bf:63:e3:de:4c:50:ef:0b:c9:63: b7:4c:b5:99:00:8c:8c:13:f4:e5:a6:57:d2:89:44:37:bf:06: 81:9c:f3:4f:82:58:8e:b9:20:a6:7a:2a:02:dc:f2:ad:a5:2e: 1f:ae:53:49:3f:44:97:0c:95:1d:24:5f:b5:07:e8:d4:7c:30: 3a:e2:8d:2c:bb:b0:fa:ef:a3:2c:6a:b5:48:50:8f:c0:70:db: 49:d8:43:db:df:7b:68:17:2e:da:64:4c:ea:fe:84:56:28:19: 82:df:e2:ef:a7:52:e4:d9:b2:2f:f2:21:47:de:5d:4c:c0:51: e7:db:83:9b:4f:93:05:7b:b3:bc:91:f8:2b:4e:fa:36:67:47: c7:c1:4d:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUyRjcxMTAvBgNVBAUTKEU1MDI3NTdDNjE3QzIxRDQ3QjFCMzU1OUMwOUQ2RUE3 QzNBRkU0MDMwHhcNMjUxMDIyMjEwNjAwWhcNMjUxMDI5MjEwNjAwWjAYMRYwFAYD VQQDEw02OGY5NDczOC1jZDk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmMpWVMm2NqEVa3ucYeBPLqom0mgx0305x9CVbuGAG4dT/O+V8AI87ps5lHY9 HXP9Tvpb+ZZLfBLMbtdXCCgqsHGXyi1NUPOacDstV2V3KrE7L6U1OAR5q5maEkKQ 5F3WEu9kB+LZeMjdHfPdqMD6miAiDJ1ATs6Ij8rrCTmT0lx3JZ0PEtzmnBR7vOX4 I6WnNcUPj4AxUpGMeDHWfRmYW3/XqdYj/wXrUK/jetKYNBS1X8Jo0hUXVvTjlavl Pm+H+HF9lAkM6tOb+gTRAt57xqGWTmXMRaElABrGm676v2agk0HmgEfdEO6kyCZ4 5x4hkiYcG7BktcZbpcLH5R2s2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFExdC5BO sD+K2dbNhOX9TfDFQOJzMB8GA1UdIwQYMBaAFOUCdXxhfCHUexs1WcCdbqfDr+QD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTJGNy83Q0M0NUZBRUJB QUYxMUVBQTZERDFBM0RDNEY5QUUwMi81UUoxZkdGOElkUjdHelZad0oxdXA4T3Y1 QU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVRSjFmR0Y4SWRSN0d6Vlp3SjF1cDhPdjVBTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTJGNy83Q0M0NUZBRUJBQUYxMUVBQTZERDFBM0RDNEY5QUUwMi81UUoxZkdGOElk UjdHelZad0oxdXA4T3Y1QU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCReyeyboc8ajwI8HQjo9yxonocaPSB97/onZw3k8Mw1sK3BtPqBu5s ndQtkE8Tyxv4/yQ7xVocqukMN4sUJzcQ4O2yXQieBP1sBLM3xBtbAmSRImfRGxzn aWxjhQxnKmYfHSb1UEecO2+b9BsNvu6tZydgkr9j495MUO8LyWO3TLWZAIyME/Tl plfSiUQ3vwaBnPNPgliOuSCmeioC3PKtpS4frlNJP0SXDJUdJF+1B+jUfDA64o0s u7D676MsarVIUI/AcNtJ2EPb33toFy7aZEzq/oRWKBmC3+Lvp1Lk2bIv8iFH3l1M wFHn24ObT5MFe7O8kfgrTvo2Z0fHwU0V -----END CERTIFICATE-----Generated at Thu Oct 23 08:22:07 2025 by rpki-client