$ rpki-client -vvf rpki.apnic.net/member_repository/A919F55C/9F19F96E370F11ECBEB72A42C4F9AE02/rQbbzFM0xtdRNy-xeVT0qq3cnD8.mft File: rQbbzFM0xtdRNy-xeVT0qq3cnD8.mft (raw, json) Hash identifier: 8BEd/ZQ2Kg/+h0MqamnK86CODqc3+Tb2C6pP8OZZEOA= Subject key identifier: F6:31:0C:3B:BC:59:E3:E5:9C:63:83:A1:56:56:58:60:9F:0A:67:59 Authority key identifier: AD:06:DB:CC:53:34:C6:D7:51:37:2F:B1:79:54:F4:AA:AD:DC:9C:3F Certificate issuer: /CN=A919F55C/serialNumber=AD06DBCC5334C6D751372FB17954F4AAADDC9C3F Certificate serial: 04EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQbbzFM0xtdRNy-xeVT0qq3cnD8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F55C/9F19F96E370F11ECBEB72A42C4F9AE02/rQbbzFM0xtdRNy-xeVT0qq3cnD8.mft Manifest number: 04E5 Signing time: Sun 19 Oct 2025 01:32:49 +0000 Manifest this update: Sun 19 Oct 2025 01:32:49 +0000 Manifest next update: Sun 26 Oct 2025 01:32:49 +0000 Files and hashes: 1: rQbbzFM0xtdRNy-xeVT0qq3cnD8.crl (hash: at1QJoqsdtMzieAaGf8B5mkK+Oz/fOmpu1vBgjGPr7w=) 2: 0EC6A7E0372D11ECA616091EC4F9AE02.roa (hash: xRvy8+EZ4EWMUGqE/C33LsDCdW9x6WHrip13g/dJz5k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F55C/9F19F96E370F11ECBEB72A42C4F9AE02/rQbbzFM0xtdRNy-xeVT0qq3cnD8.crl rsync://rpki.apnic.net/member_repository/A919F55C/9F19F96E370F11ECBEB72A42C4F9AE02/rQbbzFM0xtdRNy-xeVT0qq3cnD8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQbbzFM0xtdRNy-xeVT0qq3cnD8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:32:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1258 (0x4ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F55C, serialNumber=AD06DBCC5334C6D751372FB17954F4AAADDC9C3F Validity Not Before: Oct 19 01:32:49 2025 GMT Not After : Oct 26 01:32:49 2025 GMT Subject: CN=68f43fc1-01b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c3:63:e6:33:ff:a9:a8:c8:97:cd:1c:15:af: 66:87:47:8e:c0:ff:37:65:87:a6:d0:89:d5:91:48: 16:ba:f8:02:fb:c1:4f:60:5a:13:97:9f:72:0b:98: 09:6c:ca:78:7d:ea:62:e2:c9:ec:3a:4c:f7:e3:ed: 41:aa:98:82:53:cb:fa:23:e5:35:b7:f9:76:12:74: 6f:58:63:95:6b:2f:22:13:e3:43:f4:e1:55:b7:c3: 34:41:4c:7e:00:52:66:37:4a:cf:91:b8:aa:80:e5: 8c:83:7c:d3:37:21:1c:95:09:09:26:d6:74:12:65: bb:e9:1a:95:bc:41:f8:d6:6f:eb:84:c2:d2:fe:a5: d6:95:8f:42:23:26:af:e4:4f:0d:6a:7f:86:be:63: 9a:3f:0b:a0:8f:88:c0:58:e2:20:55:d6:0e:d1:fa: 59:57:81:f4:0a:4d:4e:15:0d:3a:ef:f1:42:96:82: 55:a7:cb:b8:e0:75:ed:26:14:c6:de:38:ec:90:06: 2f:61:a0:de:10:13:4e:ea:1f:db:87:fd:fd:32:ab: c6:d8:65:09:e3:0d:0a:44:cf:0b:3f:9b:c1:c6:7e: c4:99:13:ca:93:d2:c7:6d:9e:6c:bf:60:1b:21:11: ef:57:23:a3:95:91:c8:d7:5f:1f:36:b5:dc:08:c5: 75:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:31:0C:3B:BC:59:E3:E5:9C:63:83:A1:56:56:58:60:9F:0A:67:59 X509v3 Authority Key Identifier: keyid:AD:06:DB:CC:53:34:C6:D7:51:37:2F:B1:79:54:F4:AA:AD:DC:9C:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F55C/9F19F96E370F11ECBEB72A42C4F9AE02/rQbbzFM0xtdRNy-xeVT0qq3cnD8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQbbzFM0xtdRNy-xeVT0qq3cnD8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F55C/9F19F96E370F11ECBEB72A42C4F9AE02/rQbbzFM0xtdRNy-xeVT0qq3cnD8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:9c:9e:c2:11:0f:cf:b0:c5:5b:ca:f4:8d:83:f4:58:7f:3c: a2:13:43:60:ac:c2:6d:d9:62:45:4d:e8:d6:78:b6:03:c9:b5: 97:ef:1d:ad:67:e8:02:b1:60:8f:7a:61:d2:a7:4d:13:bc:86: 84:2e:31:f0:a3:5b:aa:dd:3e:fd:d2:7a:06:c9:f5:22:c1:0c: 50:9f:4c:ad:ad:09:3b:02:95:71:3b:8e:04:75:3d:53:44:68: e2:07:db:63:de:fb:5e:66:60:85:fa:9e:1d:d7:df:89:20:67: dd:c9:9c:dc:a8:e1:1f:fb:17:ba:55:6d:4d:04:8b:ce:96:75: 8f:1e:15:c8:3e:9d:31:77:ef:85:be:e8:09:ae:e7:15:53:5c: a7:51:4b:cb:a0:cd:f7:f7:89:54:d4:8c:48:b6:a1:50:54:9e: 76:a8:05:bb:71:ff:e2:d9:27:4e:dc:d4:ea:cf:98:21:98:d1: 4c:24:70:5f:1e:10:fe:d8:18:ec:4a:d7:ab:01:04:c6:bd:59: 11:64:af:9e:3d:1b:0c:d8:bf:2f:ec:27:3c:d0:92:34:52:4e: e6:35:e7:d5:20:e0:09:11:ab:c1:db:a3:d7:b6:ce:6d:1c:e9: 65:9a:ac:f1:3b:80:ce:47:23:ad:d1:24:e3:41:9d:9d:19:01: 3d:1f:dd:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUY1NUMxMTAvBgNVBAUTKEFEMDZEQkNDNTMzNEM2RDc1MTM3MkZCMTc5NTRGNEFB QUREQzlDM0YwHhcNMjUxMDE5MDEzMjQ5WhcNMjUxMDI2MDEzMjQ5WjAYMRYwFAYD VQQDEw02OGY0M2ZjMS0wMWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvMNj5jP/qajIl80cFa9mh0eOwP83ZYem0InVkUgWuvgC+8FPYFoTl59yC5gJ bMp4fepi4snsOkz34+1BqpiCU8v6I+U1t/l2EnRvWGOVay8iE+ND9OFVt8M0QUx+ AFJmN0rPkbiqgOWMg3zTNyEclQkJJtZ0EmW76RqVvEH41m/rhMLS/qXWlY9CIyav 5E8Nan+GvmOaPwugj4jAWOIgVdYO0fpZV4H0Ck1OFQ067/FCloJVp8u44HXtJhTG 3jjskAYvYaDeEBNO6h/bh/39MqvG2GUJ4w0KRM8LP5vBxn7EmRPKk9LHbZ5sv2Ab IRHvVyOjlZHI118fNrXcCMV1ywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPYxDDu8 WePlnGODoVZWWGCfCmdZMB8GA1UdIwQYMBaAFK0G28xTNMbXUTcvsXlU9Kqt3Jw/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjU1Qy85RjE5Rjk2RTM3 MEYxMUVDQkVCNzJBNDJDNEY5QUUwMi9yUWJiekZNMHh0ZFJOeS14ZVZUMHFxM2Nu RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JRYmJ6Rk0weHRkUk55LXhlVlQwcXEzY25EOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjU1Qy85RjE5Rjk2RTM3MEYxMUVDQkVCNzJBNDJDNEY5QUUwMi9yUWJiekZNMHh0 ZFJOeS14ZVZUMHFxM2NuRDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJnJ7CEQ/PsMVbyvSNg/RYfzyiE0NgrMJt2WJFTejWeLYDybWX7x2t Z+gCsWCPemHSp00TvIaELjHwo1uq3T790noGyfUiwQxQn0ytrQk7ApVxO44EdT1T RGjiB9tj3vteZmCF+p4d19+JIGfdyZzcqOEf+xe6VW1NBIvOlnWPHhXIPp0xd++F vugJrucVU1ynUUvLoM3394lU1IxItqFQVJ52qAW7cf/i2SdO3NTqz5ghmNFMJHBf HhD+2BjsSterAQTGvVkRZK+ePRsM2L8v7Cc80JI0Uk7mNefVIOAJEavB26PXts5t HOllmqzxO4DORyOt0STjQZ2dGQE9H90J -----END CERTIFICATE-----Generated at Mon Oct 20 09:41:27 2025 by rpki-client