$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBA4F/4F40BE6C3B7711F097A8BB24C4F9AE02/5_QZJRp5Yd8nTTm1NKIvPs2zEC8.mft File: 5_QZJRp5Yd8nTTm1NKIvPs2zEC8.mft (raw, json) Hash identifier: 8vQ5e3ytJSUvEX7lIdqojqRgCkA/TBEZ3Pmp+moLkR0= Subject key identifier: BC:2B:76:14:B3:56:9D:43:B6:44:41:DE:35:9B:A9:89:22:DE:23:DF Authority key identifier: E7:F4:19:25:1A:79:61:DF:27:4D:39:B5:34:A2:2F:3E:CD:B3:10:2F Certificate issuer: /CN=A91BBA4F/serialNumber=E7F419251A7961DF274D39B534A22F3ECDB3102F Certificate serial: 4C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5_QZJRp5Yd8nTTm1NKIvPs2zEC8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBA4F/4F40BE6C3B7711F097A8BB24C4F9AE02/5_QZJRp5Yd8nTTm1NKIvPs2zEC8.mft Manifest number: 4B Signing time: Sun 19 Oct 2025 10:44:51 +0000 Manifest this update: Sun 19 Oct 2025 10:44:50 +0000 Manifest next update: Sun 26 Oct 2025 10:44:50 +0000 Files and hashes: 1: 5_QZJRp5Yd8nTTm1NKIvPs2zEC8.crl (hash: S1R7C8AbYAseo1L6rWlUwiKXVodUCpDX/uF7xrRZT8A=) 2: 584BBFB03B7811F099AF3F55C4F9AE02.roa (hash: jPnHx/VwrEHzMcIk6hG/2vteGtB6XZZVA832ptEHOy8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBA4F/4F40BE6C3B7711F097A8BB24C4F9AE02/5_QZJRp5Yd8nTTm1NKIvPs2zEC8.crl rsync://rpki.apnic.net/member_repository/A91BBA4F/4F40BE6C3B7711F097A8BB24C4F9AE02/5_QZJRp5Yd8nTTm1NKIvPs2zEC8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5_QZJRp5Yd8nTTm1NKIvPs2zEC8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:44:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBA4F, serialNumber=E7F419251A7961DF274D39B534A22F3ECDB3102F Validity Not Before: Oct 19 10:44:50 2025 GMT Not After : Oct 26 10:44:50 2025 GMT Subject: CN=68f4c123-1f78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:93:9e:e9:83:17:10:2b:7d:72:a0:14:81:97: 54:4d:1d:cd:51:14:fc:7c:b9:45:da:ea:be:ec:28: 61:d7:35:cc:36:c1:df:aa:75:6f:a6:e9:05:b8:36: 24:1f:fe:2b:f1:35:f5:3c:3e:01:f2:a0:86:ba:67: 0f:7a:82:2c:3e:14:87:f6:51:1f:6f:1b:4d:a9:d6: d6:a1:44:73:f1:d2:5a:db:8a:0d:ae:c9:98:de:78: a2:f7:ef:49:af:7d:1d:df:57:ed:6f:b9:a6:9e:42: 12:a7:b2:78:f9:40:8d:5d:f3:82:cb:e2:e4:87:eb: 12:11:ad:d2:37:61:5b:73:75:13:f8:dc:9b:07:89: a6:d4:76:eb:22:39:8e:9e:f3:93:79:d0:13:64:40: 01:40:ec:df:34:af:68:c6:96:ae:db:14:08:7a:ad: f4:f5:d1:a8:f6:28:ce:b0:42:b5:0c:26:5e:f0:61: ea:68:c3:31:f3:58:2c:0c:69:4c:1a:cd:b3:6b:80: ba:a4:06:0f:e7:54:80:79:9a:be:6f:9d:c3:f0:c6: 3d:01:67:3a:23:f6:b5:80:33:01:bb:cb:87:cb:ff: 31:23:af:0a:fd:59:62:06:13:34:1d:a9:df:63:b0: 73:55:91:78:1b:84:cb:17:7e:d2:e0:17:c6:af:81: 4c:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:2B:76:14:B3:56:9D:43:B6:44:41:DE:35:9B:A9:89:22:DE:23:DF X509v3 Authority Key Identifier: keyid:E7:F4:19:25:1A:79:61:DF:27:4D:39:B5:34:A2:2F:3E:CD:B3:10:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBA4F/4F40BE6C3B7711F097A8BB24C4F9AE02/5_QZJRp5Yd8nTTm1NKIvPs2zEC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5_QZJRp5Yd8nTTm1NKIvPs2zEC8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBA4F/4F40BE6C3B7711F097A8BB24C4F9AE02/5_QZJRp5Yd8nTTm1NKIvPs2zEC8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:f2:d6:ef:4b:01:af:33:62:b6:0a:f1:bc:b1:99:e6:5c:65: f1:64:d9:d8:08:61:51:6a:22:fd:96:5e:63:5d:c0:c6:2d:d8: 3c:99:38:00:34:fe:2c:a1:0f:b0:27:47:1a:c5:05:f5:34:eb: f2:58:5c:6f:e5:f6:5d:19:5b:9f:f2:7e:09:d2:8f:53:f3:30: 03:7f:58:70:3e:93:32:32:78:4f:dc:b8:a5:84:6a:b0:81:34: 7a:ba:de:54:15:d7:88:b6:5e:75:05:d7:c9:fe:72:5a:2b:ea: c8:a7:af:2c:95:2c:ba:8d:0c:49:72:27:b0:6c:6f:15:27:bb: ad:7d:a6:44:b4:20:2e:b6:ea:d0:3e:4e:2c:dc:be:6e:be:26: fc:6e:ce:5c:1b:13:ab:d3:46:98:4f:09:7c:18:8a:ab:bd:9f: 3e:48:70:d0:37:a8:5b:64:fb:64:68:24:a9:87:00:44:6b:57: d2:c5:e0:92:f6:cd:88:b6:25:7a:80:ac:5e:83:91:2e:b8:f2: 29:56:47:6d:dd:b2:df:f0:13:22:31:b8:82:d3:66:55:09:18: 46:0d:b1:44:05:f9:4d:ab:a4:e1:f8:7a:75:1a:04:6c:b2:b5: ee:2e:09:65:4d:72:6f:a0:29:d9:d0:c6:d2:f7:96:bc:62:68: 75:b8:24:b1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QkE0RjExMC8GA1UEBRMoRTdGNDE5MjUxQTc5NjFERjI3NEQzOUI1MzRBMjJGM0VD REIzMTAyRjAeFw0yNTEwMTkxMDQ0NTBaFw0yNTEwMjYxMDQ0NTBaMBgxFjAUBgNV BAMTDTY4ZjRjMTIzLTFmNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxk57pgxcQK31yoBSBl1RNHc1RFPx8uUXa6r7sKGHXNcw2wd+qdW+m6QW4NiQf /ivxNfU8PgHyoIa6Zw96giw+FIf2UR9vG02p1tahRHPx0lrbig2uyZjeeKL370mv fR3fV+1vuaaeQhKnsnj5QI1d84LL4uSH6xIRrdI3YVtzdRP43JsHiabUdusiOY6e 85N50BNkQAFA7N80r2jGlq7bFAh6rfT10aj2KM6wQrUMJl7wYepowzHzWCwMaUwa zbNrgLqkBg/nVIB5mr5vncPwxj0BZzoj9rWAMwG7y4fL/zEjrwr9WWIGEzQdqd9j sHNVkXgbhMsXftLgF8avgUzZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvCt2FLNW nUO2REHeNZupiSLeI98wHwYDVR0jBBgwFoAU5/QZJRp5Yd8nTTm1NKIvPs2zEC8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJCQTRGLzRGNDBCRTZDM0I3 NzExRjA5N0E4QkIyNEM0RjlBRTAyLzVfUVpKUnA1WWQ4blRUbTFOS0l2UHMyekVD OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNV9RWkpScDVZZDhuVFRtMU5LSXZQczJ6RUM4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJC QTRGLzRGNDBCRTZDM0I3NzExRjA5N0E4QkIyNEM0RjlBRTAyLzVfUVpKUnA1WWQ4 blRUbTFOS0l2UHMyekVDOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAALy1u9LAa8zYrYK8byxmeZcZfFk2dgIYVFqIv2WXmNdwMYt2DyZOAA0 /iyhD7AnRxrFBfU06/JYXG/l9l0ZW5/yfgnSj1PzMAN/WHA+kzIyeE/cuKWEarCB NHq63lQV14i2XnUF18n+clor6sinryyVLLqNDElyJ7BsbxUnu619pkS0IC626tA+ Tizcvm6+JvxuzlwbE6vTRphPCXwYiqu9nz5IcNA3qFtk+2RoJKmHAERrV9LF4JL2 zYi2JXqArF6DkS648ilWR23dst/wEyIxuILTZlUJGEYNsUQF+U2rpOH4enUaBGyy te4uCWVNcm+gKdnQxtL3lrxiaHW4JLE= -----END CERTIFICATE-----Generated at Tue Oct 21 00:03:55 2025 by rpki-client