$ rpki-client -vvf rpki.apnic.net/member_repository/A91827C5/D9AAB82C8AD911EF981C8283C4F9AE02/o5hxRib4es6-X2_QHlBwGRWqfRU.mft File: o5hxRib4es6-X2_QHlBwGRWqfRU.mft (raw, json) Hash identifier: 7evrJ5dyYxCputHE3/3ekdYycAa7OuaeUobAQaoR3TU= Subject key identifier: 85:C6:EE:B6:08:95:93:5D:D4:E0:95:8A:9F:6C:58:6B:25:63:2F:60 Authority key identifier: A3:98:71:46:26:F8:7A:CE:BE:5F:6F:D0:1E:50:70:19:15:AA:7D:15 Certificate issuer: /CN=A91827C5/serialNumber=A398714626F87ACEBE5F6FD01E50701915AA7D15 Certificate serial: BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5hxRib4es6-X2_QHlBwGRWqfRU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91827C5/D9AAB82C8AD911EF981C8283C4F9AE02/o5hxRib4es6-X2_QHlBwGRWqfRU.mft Manifest number: BE Signing time: Sun 19 Oct 2025 09:01:40 +0000 Manifest this update: Sun 19 Oct 2025 09:01:39 +0000 Manifest next update: Sun 26 Oct 2025 09:01:39 +0000 Files and hashes: 1: o5hxRib4es6-X2_QHlBwGRWqfRU.crl (hash: HYIVy8QN5rzzXjRYaSmAccKEVUOmFIKIF48LygIYKwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91827C5/D9AAB82C8AD911EF981C8283C4F9AE02/o5hxRib4es6-X2_QHlBwGRWqfRU.crl rsync://rpki.apnic.net/member_repository/A91827C5/D9AAB82C8AD911EF981C8283C4F9AE02/o5hxRib4es6-X2_QHlBwGRWqfRU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5hxRib4es6-X2_QHlBwGRWqfRU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91827C5, serialNumber=A398714626F87ACEBE5F6FD01E50701915AA7D15 Validity Not Before: Oct 19 09:01:39 2025 GMT Not After : Oct 26 09:01:39 2025 GMT Subject: CN=68f4a8f3-0759 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e3:25:5c:2e:42:43:20:0e:a8:b2:bc:14:b9: 28:a9:85:f8:f3:c5:e2:09:09:de:6e:19:d4:30:6f: 41:a6:df:6e:72:5b:78:38:98:d6:97:53:d5:e3:0b: 4e:6e:6a:5e:87:df:fb:e5:85:3d:7d:63:7a:75:73: 23:ca:19:e7:cf:db:1e:1b:05:06:b0:20:3d:22:36: 53:27:53:2f:3c:b8:09:4e:c5:65:8e:21:58:5d:67: 8e:11:b4:5c:d7:46:58:f5:3c:55:ca:03:9c:28:bb: 87:f4:87:18:0e:4c:52:db:10:42:66:0f:bb:9d:e2: 60:2b:b2:04:b2:39:46:a8:54:1b:31:72:41:f7:ee: 95:09:e0:ed:4e:18:22:7e:8b:48:0e:b8:29:8d:8d: 8b:ea:d9:b9:8d:15:bd:4a:e6:76:26:32:eb:c4:e6: 97:6b:c6:02:e3:e0:9c:62:d6:89:ad:18:f7:6b:41: db:a9:a9:04:4d:ac:40:a0:6a:9b:7d:5a:a9:62:81: b6:ad:ec:40:c2:67:fd:81:34:7e:97:60:93:e3:f3: 22:0c:aa:ae:6d:52:18:5e:3a:df:d6:67:6a:1f:71: ac:dd:ea:b8:a5:42:26:8e:06:36:b5:ec:9c:21:6b: 60:7b:8b:b6:47:3a:1e:93:38:50:64:b1:be:c8:e5: 6a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:C6:EE:B6:08:95:93:5D:D4:E0:95:8A:9F:6C:58:6B:25:63:2F:60 X509v3 Authority Key Identifier: keyid:A3:98:71:46:26:F8:7A:CE:BE:5F:6F:D0:1E:50:70:19:15:AA:7D:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91827C5/D9AAB82C8AD911EF981C8283C4F9AE02/o5hxRib4es6-X2_QHlBwGRWqfRU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5hxRib4es6-X2_QHlBwGRWqfRU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91827C5/D9AAB82C8AD911EF981C8283C4F9AE02/o5hxRib4es6-X2_QHlBwGRWqfRU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:50:cd:03:c0:b4:75:60:27:25:1a:b8:59:ab:0a:5b:ef:72: 7b:fa:02:3f:9a:b7:0e:0d:68:b6:81:6e:d0:a2:9c:23:48:ed: 77:69:15:bc:06:f8:c1:16:51:82:28:10:75:b1:10:ec:b7:e7: a7:b3:a8:ca:3c:60:dd:15:c7:21:6c:89:34:99:a7:e5:db:11: 87:76:7e:d9:0d:9a:e1:fb:d9:ac:63:52:e7:58:02:42:a0:28: bd:86:aa:35:75:2f:f4:c2:52:37:42:71:48:27:f6:52:66:44: d5:7a:c3:90:f4:03:03:51:83:0c:fa:4f:d5:eb:4e:d8:f9:37: ca:5e:3f:1a:18:a0:5e:a9:eb:42:27:d0:30:23:49:f8:79:17: 4c:e9:a9:39:56:c7:17:f7:08:02:f8:59:48:96:ea:c1:81:34: bb:57:60:8a:47:7e:0a:fb:1d:0e:c0:4f:18:f1:48:78:15:e6: 62:17:a9:be:7a:54:98:95:d8:83:fd:8e:c6:ec:6a:e5:45:0d: e7:df:0c:10:81:13:88:e3:aa:38:02:51:4f:ed:f8:8e:5f:ea: 73:71:13:6e:ab:6e:58:43:71:67:44:e8:63:d5:11:f2:a8:9a: c2:a8:0e:39:1b:93:cf:5b:94:79:28:0d:c9:bd:94:fc:77:20: a9:37:a7:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI3QzUxMTAvBgNVBAUTKEEzOTg3MTQ2MjZGODdBQ0VCRTVGNkZEMDFFNTA3MDE5 MTVBQTdEMTUwHhcNMjUxMDE5MDkwMTM5WhcNMjUxMDI2MDkwMTM5WjAYMRYwFAYD VQQDEw02OGY0YThmMy0wNzU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs+MlXC5CQyAOqLK8FLkoqYX488XiCQnebhnUMG9Bpt9uclt4OJjWl1PV4wtO bmpeh9/75YU9fWN6dXMjyhnnz9seGwUGsCA9IjZTJ1MvPLgJTsVljiFYXWeOEbRc 10ZY9TxVygOcKLuH9IcYDkxS2xBCZg+7neJgK7IEsjlGqFQbMXJB9+6VCeDtThgi fotIDrgpjY2L6tm5jRW9SuZ2JjLrxOaXa8YC4+CcYtaJrRj3a0HbqakETaxAoGqb fVqpYoG2rexAwmf9gTR+l2CT4/MiDKqubVIYXjrf1mdqH3Gs3eq4pUImjgY2teyc IWtge4u2RzoekzhQZLG+yOVqBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIXG7rYI lZNd1OCVip9sWGslYy9gMB8GA1UdIwQYMBaAFKOYcUYm+HrOvl9v0B5QcBkVqn0V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjdDNS9EOUFBQjgyQzhB RDkxMUVGOTgxQzgyODNDNEY5QUUwMi9vNWh4UmliNGVzNi1YMl9RSGxCd0dSV3Fm UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL281aHhSaWI0ZXM2LVgyX1FIbEJ3R1JXcWZSVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjdDNS9EOUFBQjgyQzhBRDkxMUVGOTgxQzgyODNDNEY5QUUwMi9vNWh4UmliNGVz Ni1YMl9RSGxCd0dSV3FmUlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRUM0DwLR1YCclGrhZqwpb73J7+gI/mrcODWi2gW7QopwjSO13aRW8 BvjBFlGCKBB1sRDst+ens6jKPGDdFcchbIk0mafl2xGHdn7ZDZrh+9msY1LnWAJC oCi9hqo1dS/0wlI3QnFIJ/ZSZkTVesOQ9AMDUYMM+k/V607Y+TfKXj8aGKBeqetC J9AwI0n4eRdM6ak5VscX9wgC+FlIlurBgTS7V2CKR34K+x0OwE8Y8Uh4FeZiF6m+ elSYldiD/Y7G7GrlRQ3n3wwQgROI46o4AlFP7fiOX+pzcRNuq25YQ3FnROhj1RHy qJrCqA45G5PPW5R5KA3JvZT8dyCpN6dR -----END CERTIFICATE-----Generated at Mon Oct 20 04:49:20 2025 by rpki-client