$ rpki-client -vvf rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft File: q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft (raw, json) Hash identifier: LnxkIulISqu0lS2Dqkw/ngp/jCOeNOK2Qp79vnqc3Vs= Subject key identifier: 41:36:88:8E:C9:25:AD:BB:4F:44:A0:DF:7F:43:5C:44:8A:8D:BC:00 Authority key identifier: AB:90:5D:DC:0A:FB:BD:15:49:F6:6E:FE:81:17:AE:15:00:0A:5E:0F Certificate issuer: /CN=A918B5FE/serialNumber=AB905DDC0AFBBD1549F66EFE8117AE15000A5E0F Certificate serial: 0709 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft Manifest number: 06F4 Signing time: Thu 30 Oct 2025 21:57:16 +0000 Manifest this update: Thu 30 Oct 2025 21:57:16 +0000 Manifest next update: Thu 06 Nov 2025 21:57:16 +0000 Files and hashes: 1: q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.crl (hash: T0QEt79RmR6jv3/v97fF5pnL0Qw3SbVw56Cotk3cdKI=) 2: DAE15A7248F911EC9F04C439C4F9AE02.roa (hash: uL1H0QbwRjNu//kzatppv+a2Zrx1mIfoO1yF/DRChCo=) 3: DBB4BB6A48F911EC9F04C439C4F9AE02.roa (hash: /T58KApZQd0ra/XBIJpEnSI47L1LMtselRFt+bUqiz8=) 4: DCC969B048F911EC9F04C439C4F9AE02.roa (hash: JdA5JlwXLIa+e4Ydsq+HvnuHIMVtQwL6RUUhoUIWZBE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.crl rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 21:57:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1801 (0x709) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B5FE, serialNumber=AB905DDC0AFBBD1549F66EFE8117AE15000A5E0F Validity Not Before: Oct 30 21:57:16 2025 GMT Not After : Nov 6 21:57:16 2025 GMT Subject: CN=6903df3c-b6da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e8:25:67:30:8b:6f:3e:ef:58:58:c7:d9:58: 76:c2:a1:f1:8a:d3:1c:aa:a3:35:de:96:89:a3:c1: 73:03:50:da:74:1f:71:c3:4a:13:6a:a7:19:b2:3e: 52:83:c3:98:68:ea:70:16:45:72:7f:ff:b6:09:a8: f5:59:74:5f:df:1a:c5:85:18:60:11:84:32:b1:42: 95:38:56:dc:26:58:60:b5:66:81:ee:da:e9:16:e3: 48:fd:84:8c:52:07:04:d5:dd:d8:cb:3f:69:cd:68: 7b:55:12:71:41:73:65:b0:00:33:c7:14:42:17:d4: ef:0f:9e:26:8a:8a:62:a0:f2:f8:1c:8e:f5:0e:02: 44:03:16:ab:9d:5c:5e:f2:93:dd:72:8e:43:4d:19: eb:25:7f:48:3c:fa:af:7a:a1:af:87:10:f6:ad:22: 8a:19:f1:16:e2:49:8c:2d:63:61:2f:7c:60:ff:56: 8a:23:91:31:48:e7:47:87:35:3b:4c:4a:35:bc:30: c6:b8:3c:65:85:5a:b7:50:d6:a8:59:f0:e9:de:e2: 54:c7:87:09:a6:b1:72:f4:02:e1:f9:64:ef:b3:06: 5d:ac:bd:cf:a6:59:53:4b:1a:0d:1c:23:e7:e0:7d: d7:23:37:d4:a6:ad:51:20:15:65:02:f3:6f:b1:c9: 50:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:36:88:8E:C9:25:AD:BB:4F:44:A0:DF:7F:43:5C:44:8A:8D:BC:00 X509v3 Authority Key Identifier: keyid:AB:90:5D:DC:0A:FB:BD:15:49:F6:6E:FE:81:17:AE:15:00:0A:5E:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:5a:af:f3:87:2c:06:0f:49:da:be:1a:7f:fb:0d:cc:cc:53: 03:69:9c:48:d3:c5:12:7a:8a:5b:b0:87:a3:1a:f8:1b:d0:31: df:7f:93:2c:a3:28:f0:65:96:79:f8:4b:a9:d8:70:57:61:da: f3:50:5b:7c:3f:8a:2a:6c:25:b3:38:4e:97:d3:15:05:29:70: 93:39:e1:5f:4f:d5:75:5f:07:24:c7:d8:ea:01:cd:55:93:ab: 9c:40:2b:a5:f9:16:2c:11:87:97:67:5d:a1:a4:ec:bb:44:6e: 4a:5c:f4:b3:e9:10:1d:63:25:fe:95:e8:00:bd:a0:56:ee:c0: dc:dd:2a:f9:13:36:a9:32:2b:5d:1e:59:96:f5:e2:87:df:8e: 15:25:3d:31:e3:65:2b:97:f7:a4:53:d8:04:96:c8:c7:15:4c: 0f:87:12:e9:1c:e0:dc:48:13:7a:cd:12:2a:a1:a3:18:15:b5: 9b:0e:74:4d:d4:4e:2b:42:9f:6d:ff:9d:b5:99:fe:91:53:10: 37:4a:88:81:a5:20:85:30:dc:7f:88:ba:fb:cb:92:56:9c:47: 2b:da:5f:b4:ab:95:c0:cd:f4:3f:bb:67:0c:f5:f1:1c:bf:08: 26:13:9f:bf:e5:9d:6f:b5:56:c0:bc:52:56:aa:6c:fa:fe:55: 35:f3:10:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI1RkUxMTAvBgNVBAUTKEFCOTA1RERDMEFGQkJEMTU0OUY2NkVGRTgxMTdBRTE1 MDAwQTVFMEYwHhcNMjUxMDMwMjE1NzE2WhcNMjUxMTA2MjE1NzE2WjAYMRYwFAYD VQQDEw02OTAzZGYzYy1iNmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+glZzCLbz7vWFjH2Vh2wqHxitMcqqM13paJo8FzA1DadB9xw0oTaqcZsj5S g8OYaOpwFkVyf/+2Caj1WXRf3xrFhRhgEYQysUKVOFbcJlhgtWaB7trpFuNI/YSM UgcE1d3Yyz9pzWh7VRJxQXNlsAAzxxRCF9TvD54miopioPL4HI71DgJEAxarnVxe 8pPdco5DTRnrJX9IPPqveqGvhxD2rSKKGfEW4kmMLWNhL3xg/1aKI5ExSOdHhzU7 TEo1vDDGuDxlhVq3UNaoWfDp3uJUx4cJprFy9ALh+WTvswZdrL3PpllTSxoNHCPn 4H3XIzfUpq1RIBVlAvNvsclQ6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEE2iI7J Ja27T0Sg339DXESKjbwAMB8GA1UdIwQYMBaAFKuQXdwK+70VSfZu/oEXrhUACl4P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjVGRS8zMkMzMDAyODZB OUUxMUVCQjY3NjIzMThDNEY5QUUwMi9xNUJkM0FyN3ZSVko5bTctZ1JldUZRQUtY ZzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3E1QmQzQXI3dlJWSjltNy1nUmV1RlFBS1hnOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjVGRS8zMkMzMDAyODZBOUUxMUVCQjY3NjIzMThDNEY5QUUwMi9xNUJkM0FyN3ZS Vko5bTctZ1JldUZRQUtYZzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjWq/zhywGD0navhp/+w3MzFMDaZxI08USeopbsIejGvgb0DHff5Ms oyjwZZZ5+Eup2HBXYdrzUFt8P4oqbCWzOE6X0xUFKXCTOeFfT9V1Xwckx9jqAc1V k6ucQCul+RYsEYeXZ12hpOy7RG5KXPSz6RAdYyX+legAvaBW7sDc3Sr5EzapMitd HlmW9eKH344VJT0x42Url/ekU9gElsjHFUwPhxLpHODcSBN6zRIqoaMYFbWbDnRN 1E4rQp9t/521mf6RUxA3SoiBpSCFMNx/iLr7y5JWnEcr2l+0q5XAzfQ/u2cM9fEc vwgmE5+/5Z1vtVbAvFJWqmz6/lU18xD7 -----END CERTIFICATE-----Generated at Fri Oct 31 02:35:59 2025 by rpki-client