$ rpki-client -vvf rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.mft File: D5mx_s-lcAT2Q9gr9RHN1HR4baA.mft (raw, json) Hash identifier: fcRCI0w4dflZhdHaqgdaFAY/pIuxzDqKJN0OzEAsG4c= Subject key identifier: F1:2E:72:B1:28:07:C6:F2:91:E3:DE:D3:C6:62:D6:99:53:D4:89:9A Authority key identifier: 0F:99:B1:FE:CF:A5:70:04:F6:43:D8:2B:F5:11:CD:D4:74:78:6D:A0 Certificate issuer: /CN=A9185413/serialNumber=0F99B1FECFA57004F643D82BF511CDD474786DA0 Certificate serial: 0161 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5mx_s-lcAT2Q9gr9RHN1HR4baA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.mft Manifest number: 015D Signing time: Wed 05 Nov 2025 04:15:23 +0000 Manifest this update: Wed 05 Nov 2025 04:15:23 +0000 Manifest next update: Wed 12 Nov 2025 04:15:23 +0000 Files and hashes: 1: D5mx_s-lcAT2Q9gr9RHN1HR4baA.crl (hash: DAzvFla8k8cd8oFl997AOPOBgE65SaIHGu8nfu6equE=) 2: C1D49C12AEDF11EE96155C68C4F9AE02.roa (hash: EH9Ecs3l16GCiHR30STE9VxjfuPqLau85IhtMpZldhM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.crl rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5mx_s-lcAT2Q9gr9RHN1HR4baA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:15:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 353 (0x161) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185413, serialNumber=0F99B1FECFA57004F643D82BF511CDD474786DA0 Validity Not Before: Nov 5 04:15:23 2025 GMT Not After : Nov 12 04:15:23 2025 GMT Subject: CN=690acf5b-f8b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:77:11:58:db:1a:5b:ad:be:36:b0:2c:87:76: e8:a9:87:e1:0e:32:55:5d:f3:bd:28:1d:8a:da:ec: 37:1f:04:d9:fd:24:cc:26:d6:8c:7e:7d:66:0f:26: a9:63:6c:d1:5a:e4:21:cf:70:9c:ce:20:1f:2a:0d: 6f:f7:41:cc:f4:46:32:b1:4e:df:93:72:09:1c:f3: 85:b5:18:78:30:5f:b4:56:38:04:5a:f1:8a:47:65: e6:4b:c4:32:60:3f:7a:5d:0a:7b:c0:ce:f8:f2:2f: 17:af:29:05:76:28:29:f3:e1:03:93:3c:b7:06:18: 6a:17:65:29:ec:a7:99:0d:20:00:2c:c2:3b:85:44: fa:f6:2f:4f:34:24:61:1a:ca:3c:bb:cf:f2:0d:3d: 49:ac:7f:6d:b3:76:04:73:bb:cf:50:86:4b:3d:1e: f7:e1:69:cd:7b:59:bb:f1:9c:f5:25:84:a8:3b:26: 79:fb:6e:ef:d4:e5:88:ac:b0:c9:66:48:38:fc:3b: 1b:4c:56:dd:68:42:2d:5f:16:0b:e9:fd:56:90:31: 79:98:d2:41:cc:9e:ea:7e:12:ee:fe:00:cb:1b:98: 44:73:ca:35:cf:f3:f5:fe:e5:c5:42:0f:d4:b6:51: 2f:f1:d2:76:b9:05:59:b9:7a:7b:ae:4f:d8:a0:59: be:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:2E:72:B1:28:07:C6:F2:91:E3:DE:D3:C6:62:D6:99:53:D4:89:9A X509v3 Authority Key Identifier: keyid:0F:99:B1:FE:CF:A5:70:04:F6:43:D8:2B:F5:11:CD:D4:74:78:6D:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5mx_s-lcAT2Q9gr9RHN1HR4baA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:24:4f:9e:d1:8e:7b:75:5b:3a:a9:ff:4b:7e:ed:61:b4:13: b9:cd:d8:72:7f:87:38:8c:b0:35:5c:3e:aa:64:57:94:c0:5c: 2f:9b:1c:f9:96:bd:91:5b:93:2d:bc:cb:d3:b6:f2:ca:2e:5e: 9c:f2:c0:c8:d5:d7:cb:82:97:fe:aa:2b:e7:46:fb:2e:e7:cb: 65:6d:f7:65:6f:95:c1:bf:49:b1:a7:c7:8b:de:d9:6f:25:51: 62:a4:8c:eb:48:aa:71:7c:98:69:49:75:17:e3:38:f8:7b:58: 61:a3:6f:e9:00:0d:36:df:f3:4a:9a:e6:42:31:56:9a:b5:f7: f2:26:5b:66:69:c4:b0:f3:ca:45:89:e1:60:49:e6:59:3c:f3: c2:c1:9d:f1:72:a4:eb:66:ef:aa:99:f4:50:3c:a6:7b:0a:b9: d2:e2:dc:24:4e:a1:6f:43:49:81:5e:08:ee:7d:d0:48:c3:55: 20:1b:bd:af:c9:8f:83:f4:4f:67:e7:55:85:74:a2:ce:d8:20: 47:7a:c1:e6:8f:88:bd:a5:77:f6:5e:d5:a8:dc:89:b6:a6:a6: d3:4d:62:59:8e:df:0e:8f:4f:66:79:4b:ad:e5:d6:6f:2e:64: 00:92:76:4c:55:24:dc:de:67:07:e0:56:b7:11:70:b6:e9:23: 68:de:d2:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU0MTMxMTAvBgNVBAUTKDBGOTlCMUZFQ0ZBNTcwMDRGNjQzRDgyQkY1MTFDREQ0 NzQ3ODZEQTAwHhcNMjUxMTA1MDQxNTIzWhcNMjUxMTEyMDQxNTIzWjAYMRYwFAYD VQQDEw02OTBhY2Y1Yi1mOGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9XcRWNsaW62+NrAsh3boqYfhDjJVXfO9KB2K2uw3HwTZ/STMJtaMfn1mDyap Y2zRWuQhz3CcziAfKg1v90HM9EYysU7fk3IJHPOFtRh4MF+0VjgEWvGKR2XmS8Qy YD96XQp7wM748i8XrykFdigp8+EDkzy3BhhqF2Up7KeZDSAALMI7hUT69i9PNCRh Gso8u8/yDT1JrH9ts3YEc7vPUIZLPR734WnNe1m78Zz1JYSoOyZ5+27v1OWIrLDJ Zkg4/DsbTFbdaEItXxYL6f1WkDF5mNJBzJ7qfhLu/gDLG5hEc8o1z/P1/uXFQg/U tlEv8dJ2uQVZuXp7rk/YoFm+QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPEucrEo B8bykePe08Zi1plT1ImaMB8GA1UdIwQYMBaAFA+Zsf7PpXAE9kPYK/URzdR0eG2g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTQxMy83NTlBRDI0Q0FC OUUxMUVFOTYzRDMxN0RDNEY5QUUwMi9ENW14X3MtbGNBVDJROWdyOVJITjFIUjRi YUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q1bXhfcy1sY0FUMlE5Z3I5UkhOMUhSNGJhQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTQxMy83NTlBRDI0Q0FCOUUxMUVFOTYzRDMxN0RDNEY5QUUwMi9ENW14X3MtbGNB VDJROWdyOVJITjFIUjRiYUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXJE+e0Y57dVs6qf9Lfu1htBO5zdhyf4c4jLA1XD6qZFeUwFwvmxz5 lr2RW5MtvMvTtvLKLl6c8sDI1dfLgpf+qivnRvsu58tlbfdlb5XBv0mxp8eL3tlv JVFipIzrSKpxfJhpSXUX4zj4e1hho2/pAA023/NKmuZCMVaatffyJltmacSw88pF ieFgSeZZPPPCwZ3xcqTrZu+qmfRQPKZ7CrnS4twkTqFvQ0mBXgjufdBIw1UgG72v yY+D9E9n51WFdKLO2CBHesHmj4i9pXf2XtWo3Im2pqbTTWJZjt8Oj09meUut5dZv LmQAknZMVSTc3mcH4Fa3EXC26SNo3tJq -----END CERTIFICATE-----Generated at Wed Nov 5 13:55:43 2025 by rpki-client