$ rpki-client -vvf rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft File: EK5_oM-c-qh-uthEzYxCasHDpec.mft (raw, json) Hash identifier: f9dWT2h99HYFxnNNyh7j1VCyZR+3HYNnkx13brVM5mY= Subject key identifier: E6:DF:0B:3C:82:E7:E1:42:10:75:86:E8:0C:43:C9:42:97:76:70:70 Authority key identifier: 10:AE:7F:A0:CF:9C:FA:A8:7E:BA:D8:44:CD:8C:42:6A:C1:C3:A5:E7 Certificate issuer: /CN=A9123BFF/serialNumber=10AE7FA0CF9CFAA87EBAD844CD8C426AC1C3A5E7 Certificate serial: 20BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EK5_oM-c-qh-uthEzYxCasHDpec.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft Manifest number: 20B5 Signing time: Sat 18 Oct 2025 16:13:38 +0000 Manifest this update: Sat 18 Oct 2025 16:13:37 +0000 Manifest next update: Sat 25 Oct 2025 16:13:37 +0000 Files and hashes: 1: EK5_oM-c-qh-uthEzYxCasHDpec.crl (hash: XIVMvPJGfQzIeAmFp0/JaEy2MbL2nLjZNPPixjQWfBQ=) 2: 449C08948D1211EBB9548186C4F9AE02.roa (hash: 4cmAc73Ya3K4uXCXYcHrxMilUHhYgfgcQY7RcTrdD4o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.crl rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EK5_oM-c-qh-uthEzYxCasHDpec.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:13:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8381 (0x20bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123BFF, serialNumber=10AE7FA0CF9CFAA87EBAD844CD8C426AC1C3A5E7 Validity Not Before: Oct 18 16:13:37 2025 GMT Not After : Oct 25 16:13:37 2025 GMT Subject: CN=68f3bcb2-3e40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:0f:92:5b:62:de:93:81:2c:49:4f:64:68:26: 27:e2:01:06:c5:10:7b:34:1e:be:e3:20:2b:3d:17: 83:d6:e7:98:60:0c:a0:12:08:78:f9:37:50:21:cd: 6f:46:57:8a:4b:65:c8:01:16:90:df:31:b5:d1:af: eb:54:e8:60:20:07:a3:1a:ad:31:77:84:55:2e:83: ea:e2:7c:5e:af:f3:2b:84:87:40:98:37:72:b9:ee: d9:3c:0f:79:ef:e3:5b:80:63:eb:7c:53:96:e3:c1: 1e:59:df:31:d8:25:72:4c:22:3f:84:b7:be:df:18: 01:4a:76:53:71:ea:c3:98:15:21:da:91:95:bb:b4: ec:95:15:cf:7f:3b:31:98:02:9f:45:18:8f:d6:8b: d3:3b:c2:dd:56:c9:ea:61:d0:01:f2:2e:7e:48:23: 16:80:c5:39:81:db:b6:f8:7f:1b:bb:a2:ae:a0:3d: fb:e4:07:d8:46:e6:e4:f3:70:1a:fb:ef:16:1f:f5: e9:fc:c0:dd:b2:ac:e2:ad:8a:21:6a:10:36:5c:33: b6:ee:8d:6e:78:4b:63:d5:82:20:6b:ea:d9:88:3d: e7:b8:ff:58:7f:7b:89:9e:46:09:d0:4c:19:9f:39: 6e:59:fd:ea:63:2a:de:d7:25:3a:fb:df:15:67:a2: 84:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:DF:0B:3C:82:E7:E1:42:10:75:86:E8:0C:43:C9:42:97:76:70:70 X509v3 Authority Key Identifier: keyid:10:AE:7F:A0:CF:9C:FA:A8:7E:BA:D8:44:CD:8C:42:6A:C1:C3:A5:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EK5_oM-c-qh-uthEzYxCasHDpec.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123BFF/F290829A10DA11E685C4BB3DC4F9AE02/EK5_oM-c-qh-uthEzYxCasHDpec.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:dc:6c:f3:0e:4f:78:30:88:88:57:2d:b6:35:5a:5c:90:04: b8:55:2d:4b:85:3e:76:91:5c:b8:96:ce:54:e5:17:04:01:de: a8:23:bb:f1:fd:15:29:d4:fd:82:1d:b1:3b:a5:03:09:88:ec: 3b:f1:26:ed:3a:75:bd:bf:b8:4e:6a:07:df:cb:1b:48:74:5c: a0:e4:79:e0:cd:67:df:66:ad:e1:7a:0a:40:b0:47:11:33:b5: b1:66:6a:a0:1f:e2:19:c9:3b:1c:33:fe:ea:f1:d8:b6:29:8c: bd:17:09:81:14:c2:41:8a:31:ea:fb:cf:62:9f:81:87:43:e6: e0:1d:77:20:74:ab:49:73:9d:32:b5:09:d2:5b:b7:3b:85:53: 81:64:56:07:ff:2e:bf:bb:f8:06:3a:b4:c3:0d:a5:c8:0a:3d: ec:15:a6:e9:da:37:7a:af:98:6b:49:9e:f7:34:88:8e:54:7a: c7:11:65:16:ba:a6:eb:25:03:43:4b:df:b4:07:32:f8:1f:c6: a7:8b:81:0b:1f:31:ad:6c:57:86:4c:9f:80:c8:94:b4:9c:00: 55:c2:51:4c:dc:7c:d6:29:4c:4d:4c:18:bc:43:07:11:2b:ac: ca:a4:2c:04:c8:23:39:6d:13:35:4e:c5:23:71:ce:2c:42:38: 6d:3d:d1:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNCRkYxMTAvBgNVBAUTKDEwQUU3RkEwQ0Y5Q0ZBQTg3RUJBRDg0NENEOEM0MjZB QzFDM0E1RTcwHhcNMjUxMDE4MTYxMzM3WhcNMjUxMDI1MTYxMzM3WjAYMRYwFAYD VQQDEw02OGYzYmNiMi0zZTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqQ+SW2Lek4EsSU9kaCYn4gEGxRB7NB6+4yArPReD1ueYYAygEgh4+TdQIc1v RleKS2XIARaQ3zG10a/rVOhgIAejGq0xd4RVLoPq4nxer/MrhIdAmDdyue7ZPA95 7+NbgGPrfFOW48EeWd8x2CVyTCI/hLe+3xgBSnZTcerDmBUh2pGVu7TslRXPfzsx mAKfRRiP1ovTO8LdVsnqYdAB8i5+SCMWgMU5gdu2+H8bu6KuoD375AfYRubk83Aa ++8WH/Xp/MDdsqzirYohahA2XDO27o1ueEtj1YIga+rZiD3nuP9Yf3uJnkYJ0EwZ nzluWf3qYyre1yU6+98VZ6KEOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFObfCzyC 5+FCEHWG6AxDyUKXdnBwMB8GA1UdIwQYMBaAFBCuf6DPnPqofrrYRM2MQmrBw6Xn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0JGRi9GMjkwODI5QTEw REExMUU2ODVDNEJCM0RDNEY5QUUwMi9FSzVfb00tYy1xaC11dGhFell4Q2FzSERw ZWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VLNV9vTS1jLXFoLXV0aEV6WXhDYXNIRHBlYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0JGRi9GMjkwODI5QTEwREExMUU2ODVDNEJCM0RDNEY5QUUwMi9FSzVfb00tYy1x aC11dGhFell4Q2FzSERwZWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC53GzzDk94MIiIVy22NVpckAS4VS1LhT52kVy4ls5U5RcEAd6oI7vx /RUp1P2CHbE7pQMJiOw78SbtOnW9v7hOagffyxtIdFyg5HngzWffZq3hegpAsEcR M7WxZmqgH+IZyTscM/7q8di2KYy9FwmBFMJBijHq+89in4GHQ+bgHXcgdKtJc50y tQnSW7c7hVOBZFYH/y6/u/gGOrTDDaXICj3sFabp2jd6r5hrSZ73NIiOVHrHEWUW uqbrJQNDS9+0BzL4H8ani4ELHzGtbFeGTJ+AyJS0nABVwlFM3HzWKUxNTBi8QwcR K6zKpCwEyCM5bRM1TsUjcc4sQjhtPdHF -----END CERTIFICATE-----Generated at Mon Oct 20 16:13:02 2025 by rpki-client