$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4401/1B882160AA7011F0B428E663C4F9AE02/o5mhLEjADkJh0o4MV_1OPkcNLrc.mft File: o5mhLEjADkJh0o4MV_1OPkcNLrc.mft (raw, json) Hash identifier: Mtboo79zYJxuPputp4V+nkzr6iBRAcCK+cR9u02D6H0= Subject key identifier: 85:A5:EE:91:9F:71:8C:BF:37:80:42:02:00:7E:00:32:10:36:19:E8 Authority key identifier: A3:99:A1:2C:48:C0:0E:42:61:D2:8E:0C:57:FD:4E:3E:47:0D:2E:B7 Certificate issuer: /CN=A91C4401/serialNumber=A399A12C48C00E4261D28E0C57FD4E3E470D2EB7 Certificate serial: 05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5mhLEjADkJh0o4MV_1OPkcNLrc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4401/1B882160AA7011F0B428E663C4F9AE02/o5mhLEjADkJh0o4MV_1OPkcNLrc.mft Manifest number: 04 Signing time: Sun 19 Oct 2025 11:41:26 +0000 Manifest this update: Sun 19 Oct 2025 11:41:25 +0000 Manifest next update: Sun 26 Oct 2025 11:41:25 +0000 Files and hashes: 1: o5mhLEjADkJh0o4MV_1OPkcNLrc.crl (hash: 9JGbSmdh8E0WE7zBnRCp5jOf3ztPAzlYlxGytjvfIc0=) 2: C0FD1FF0AA7111F0B4546269C4F9AE02.roa (hash: tb9Z/1utdPuZydG4QyPURJ2Dph5uJmmV+jlmkscDXF8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4401/1B882160AA7011F0B428E663C4F9AE02/o5mhLEjADkJh0o4MV_1OPkcNLrc.crl rsync://rpki.apnic.net/member_repository/A91C4401/1B882160AA7011F0B428E663C4F9AE02/o5mhLEjADkJh0o4MV_1OPkcNLrc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5mhLEjADkJh0o4MV_1OPkcNLrc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:41:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4401, serialNumber=A399A12C48C00E4261D28E0C57FD4E3E470D2EB7 Validity Not Before: Oct 19 11:41:25 2025 GMT Not After : Oct 26 11:41:25 2025 GMT Subject: CN=68f4ce66-9f20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b8:9f:5a:07:e7:c7:50:bd:bc:9c:95:9a:fa: 60:64:5b:b8:7d:71:b8:ef:9e:e5:b8:d7:88:ef:3d: 0b:f0:15:89:ad:5f:9d:13:a8:c7:f4:19:61:7e:d6: 6d:91:d6:0b:9e:d2:7d:b8:8c:73:b3:ee:5a:e4:60: 67:12:1a:a4:28:29:56:0f:c9:c8:43:b3:ae:57:28: 2c:43:b7:06:43:0f:c0:8d:06:cc:d3:c8:cf:2f:78: 54:6b:ae:c8:ac:67:f6:93:32:64:46:3b:ad:09:c6: 83:a5:5d:3e:93:45:1d:3f:f9:50:bf:54:e5:9c:d4: 3a:79:36:1b:88:06:d8:95:16:21:cc:e6:ec:9c:d0: 18:ca:fb:b0:b7:03:96:06:a9:76:bd:6e:01:af:c5: b7:45:73:4e:33:ba:9f:88:59:7f:9f:3f:2a:c5:4e: 58:ae:b3:8c:62:44:ba:0e:97:6d:67:84:6a:ee:12: 51:e9:ec:b3:f4:67:6e:42:9c:26:9a:b0:64:6d:12: 6b:13:4b:bb:7c:02:c0:98:bb:42:bf:2a:89:5a:e2: 32:5d:17:67:0e:fc:59:b3:af:d6:3e:a4:86:2d:0d: ab:ce:da:db:7f:6b:3c:0e:7b:88:ae:b3:95:84:d7: 29:dc:3c:b8:5b:bb:b7:49:3a:e7:aa:ea:58:b1:e3: 86:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:A5:EE:91:9F:71:8C:BF:37:80:42:02:00:7E:00:32:10:36:19:E8 X509v3 Authority Key Identifier: keyid:A3:99:A1:2C:48:C0:0E:42:61:D2:8E:0C:57:FD:4E:3E:47:0D:2E:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4401/1B882160AA7011F0B428E663C4F9AE02/o5mhLEjADkJh0o4MV_1OPkcNLrc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5mhLEjADkJh0o4MV_1OPkcNLrc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4401/1B882160AA7011F0B428E663C4F9AE02/o5mhLEjADkJh0o4MV_1OPkcNLrc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:80:c8:9b:48:b4:d8:cf:15:a1:8b:55:36:13:37:c0:84:60: 69:24:29:9f:c6:23:4c:7d:d1:52:f7:f4:ae:aa:89:1a:bd:d8: b9:a1:b2:07:47:c9:8a:64:4e:ac:31:fc:7e:d4:ce:f6:29:51: 9e:e4:0f:f9:ac:d9:b2:f9:f4:51:83:ac:e3:d3:9d:6e:8b:3a: e3:20:2d:22:6b:5c:30:77:da:ec:4a:b1:d1:a0:db:44:85:cf: c7:d9:ba:de:2c:28:99:64:d5:8b:75:fe:87:3b:69:95:d8:6a: 2f:98:f2:b6:e9:86:ad:55:0b:12:1d:fb:ba:16:f2:de:4f:39: a9:1b:79:7b:72:ca:65:93:3b:25:93:a9:1e:c7:f5:f0:98:9d: b1:92:09:43:fc:35:b2:f5:b0:e6:80:bb:7f:53:17:b7:16:ed: 40:6b:8e:c5:7f:d1:7f:72:44:c7:6f:bc:c1:4d:00:bf:93:45: 35:fe:82:49:ee:23:dc:e8:37:4a:52:f8:44:9c:af:53:b1:98: d9:94:a5:99:65:f5:3c:94:99:80:99:d0:e2:6a:7a:f5:eb:c7: 07:c2:cb:71:bf:70:bd:2c:14:b7:e8:6d:3b:22:2f:2e:d6:6f: 4b:6c:d0:45:af:4c:8f:6e:5a:74:a2:87:e9:00:58:35:ba:43: 13:6d:eb:60 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NDQwMTExMC8GA1UEBRMoQTM5OUExMkM0OEMwMEU0MjYxRDI4RTBDNTdGRDRFM0U0 NzBEMkVCNzAeFw0yNTEwMTkxMTQxMjVaFw0yNTEwMjYxMTQxMjVaMBgxFjAUBgNV BAMTDTY4ZjRjZTY2LTlmMjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2uJ9aB+fHUL28nJWa+mBkW7h9cbjvnuW414jvPQvwFYmtX50TqMf0GWF+1m2R 1gue0n24jHOz7lrkYGcSGqQoKVYPychDs65XKCxDtwZDD8CNBszTyM8veFRrrsis Z/aTMmRGO60JxoOlXT6TRR0/+VC/VOWc1Dp5NhuIBtiVFiHM5uyc0BjK+7C3A5YG qXa9bgGvxbdFc04zup+IWX+fPyrFTlius4xiRLoOl21nhGruElHp7LP0Z25CnCaa sGRtEmsTS7t8AsCYu0K/Kola4jJdF2cO/Fmzr9Y+pIYtDavO2tt/azwOe4ius5WE 1yncPLhbu7dJOueq6lix44Y3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUhaXukZ9x jL83gEICAH4AMhA2GegwHwYDVR0jBBgwFoAUo5mhLEjADkJh0o4MV/1OPkcNLrcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM0NDAxLzFCODgyMTYwQUE3 MDExRjBCNDI4RTY2M0M0RjlBRTAyL281bWhMRWpBRGtKaDBvNE1WXzFPUGtjTkxy Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbzVtaExFakFEa0poMG80TVZfMU9Qa2NOTHJjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM0 NDAxLzFCODgyMTYwQUE3MDExRjBCNDI4RTY2M0M0RjlBRTAyL281bWhMRWpBRGtK aDBvNE1WXzFPUGtjTkxyYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHGAyJtItNjPFaGLVTYTN8CEYGkkKZ/GI0x90VL39K6qiRq92LmhsgdH yYpkTqwx/H7UzvYpUZ7kD/ms2bL59FGDrOPTnW6LOuMgLSJrXDB32uxKsdGg20SF z8fZut4sKJlk1Yt1/oc7aZXYai+Y8rbphq1VCxId+7oW8t5POakbeXtyymWTOyWT qR7H9fCYnbGSCUP8NbL1sOaAu39TF7cW7UBrjsV/0X9yRMdvvMFNAL+TRTX+gknu I9zoN0pS+EScr1OxmNmUpZll9TyUmYCZ0OJqevXrxwfCy3G/cL0sFLfobTsiLy7W b0ts0EWvTI9uWnSih+kAWDW6QxNt62A= -----END CERTIFICATE-----Generated at Mon Oct 20 08:31:31 2025 by rpki-client