$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3CA7/3F0E0E06F46111EC823CA07CC4F9AE02/05fnjG3TxpaFEzQVMschiNd1Z68.mft File: 05fnjG3TxpaFEzQVMschiNd1Z68.mft (raw, json) Hash identifier: BdMT0QobnXXPoOKc7BLs4hkkLeHW3nNEPUZxxO7ZsUs= Subject key identifier: 76:14:7D:31:89:2A:C0:EE:A1:DC:71:64:06:0A:3F:1A:DE:0C:06:18 Authority key identifier: D3:97:E7:8C:6D:D3:C6:96:85:13:34:15:32:C7:21:88:D7:75:67:AF Certificate issuer: /CN=A91D3CA7/serialNumber=D397E78C6DD3C6968513341532C72188D77567AF Certificate serial: 0307 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05fnjG3TxpaFEzQVMschiNd1Z68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3CA7/3F0E0E06F46111EC823CA07CC4F9AE02/05fnjG3TxpaFEzQVMschiNd1Z68.mft Manifest number: 0302 Signing time: Sun 19 Oct 2025 03:17:09 +0000 Manifest this update: Sun 19 Oct 2025 03:17:08 +0000 Manifest next update: Sun 26 Oct 2025 03:17:08 +0000 Files and hashes: 1: 05fnjG3TxpaFEzQVMschiNd1Z68.crl (hash: Qf2AAk4G7VrlPMgEHnoCuYS8/SpnTLDU8pvlRQWGaq0=) 2: DE183F1CF46611EC815F7283C4F9AE02.roa (hash: 9MdpJxrwdV0aU1f/zX8n/hykvTdPQn1kKe0kWScV57Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3CA7/3F0E0E06F46111EC823CA07CC4F9AE02/05fnjG3TxpaFEzQVMschiNd1Z68.crl rsync://rpki.apnic.net/member_repository/A91D3CA7/3F0E0E06F46111EC823CA07CC4F9AE02/05fnjG3TxpaFEzQVMschiNd1Z68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05fnjG3TxpaFEzQVMschiNd1Z68.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:17:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 775 (0x307) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3CA7, serialNumber=D397E78C6DD3C6968513341532C72188D77567AF Validity Not Before: Oct 19 03:17:08 2025 GMT Not After : Oct 26 03:17:08 2025 GMT Subject: CN=68f45834-d8b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:6d:18:96:7d:2a:c3:14:64:66:e7:38:57:a5: da:1a:7d:0e:4a:1b:44:96:55:ed:c8:3a:09:23:55: 49:a1:26:c3:93:29:25:38:8f:b1:79:cf:d6:ca:46: 88:b7:ea:79:9e:79:da:48:5b:8b:9a:4c:ea:01:6a: be:76:25:d1:8c:12:d9:a1:22:29:0f:e3:05:87:3b: c0:3a:0c:ae:3d:f7:c1:14:d6:13:a2:5c:01:c7:99: 31:ef:7a:a0:26:e7:ee:3a:d6:27:11:02:16:60:0a: fb:2c:5d:93:dd:12:07:04:e0:1d:d8:0a:e9:3a:7c: 89:7a:00:e7:21:24:91:59:0e:d0:9a:9a:ec:a5:42: d6:94:70:0b:74:e2:7b:46:02:44:6d:67:b4:64:ff: 4b:03:06:10:df:eb:08:86:68:a6:e0:ef:3e:e6:41: 12:5b:6f:46:9d:d8:94:06:f4:68:18:08:3d:6e:fb: fb:48:6a:34:bd:5d:9e:32:df:c5:8c:ef:3c:97:a7: d0:5f:38:70:c6:99:99:57:ce:a4:b1:af:e1:65:0a: c5:e7:06:cb:e9:15:fb:54:a6:99:93:99:4b:da:77: e7:ee:bd:27:1e:5c:61:3a:3b:ce:35:07:1f:7f:e4: 57:9c:f9:68:13:3b:da:8e:0e:e4:4e:09:6d:ee:74: e7:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:14:7D:31:89:2A:C0:EE:A1:DC:71:64:06:0A:3F:1A:DE:0C:06:18 X509v3 Authority Key Identifier: keyid:D3:97:E7:8C:6D:D3:C6:96:85:13:34:15:32:C7:21:88:D7:75:67:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3CA7/3F0E0E06F46111EC823CA07CC4F9AE02/05fnjG3TxpaFEzQVMschiNd1Z68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05fnjG3TxpaFEzQVMschiNd1Z68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3CA7/3F0E0E06F46111EC823CA07CC4F9AE02/05fnjG3TxpaFEzQVMschiNd1Z68.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:51:10:bc:ed:77:76:d6:81:e9:bd:47:5d:e3:80:48:92:28: 19:dd:fd:4f:c9:e6:fc:08:4e:dc:b8:40:2f:a8:4f:dd:9c:93: cc:1a:68:23:dc:32:12:d2:55:b4:c4:97:7f:de:75:73:aa:7b: be:e9:73:99:c3:6b:a3:a6:77:5b:ed:e0:fd:7a:ab:3e:da:70: e9:0b:b8:41:1d:8a:62:f9:27:42:cc:ba:73:ca:c1:5c:26:37: 91:51:e6:39:72:e3:a4:94:82:96:58:31:c2:d4:b6:a8:c4:2f: 7c:c0:12:77:cc:0b:00:4d:ec:11:8d:68:4f:4a:5a:df:60:5e: db:a1:8f:27:1f:b4:15:7d:10:d2:d3:fd:bb:c9:9a:39:f5:70: b3:f5:03:fa:75:5b:f0:d7:2a:96:1c:62:c0:3b:f9:d8:55:7d: ea:f0:08:5c:52:db:ce:ab:06:7b:a2:b8:73:71:fa:d2:d8:d6: 7a:11:d2:71:de:5a:31:8c:ba:f2:c4:b8:5b:57:a0:86:b0:4a: 3e:23:cc:fd:03:90:f3:6d:17:04:d3:2b:92:41:2b:c6:5f:14: 3c:65:1c:7a:a0:31:c2:a4:84:a6:95:9f:99:af:21:dc:18:2c: a2:6a:3b:cd:3a:59:dc:cf:78:98:8d:7f:43:34:9d:e8:28:70: 66:4f:12:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNDQTcxMTAvBgNVBAUTKEQzOTdFNzhDNkREM0M2OTY4NTEzMzQxNTMyQzcyMTg4 RDc3NTY3QUYwHhcNMjUxMDE5MDMxNzA4WhcNMjUxMDI2MDMxNzA4WjAYMRYwFAYD VQQDEw02OGY0NTgzNC1kOGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu20Yln0qwxRkZuc4V6XaGn0OShtEllXtyDoJI1VJoSbDkyklOI+xec/WykaI t+p5nnnaSFuLmkzqAWq+diXRjBLZoSIpD+MFhzvAOgyuPffBFNYTolwBx5kx73qg JufuOtYnEQIWYAr7LF2T3RIHBOAd2ArpOnyJegDnISSRWQ7QmprspULWlHALdOJ7 RgJEbWe0ZP9LAwYQ3+sIhmim4O8+5kESW29GndiUBvRoGAg9bvv7SGo0vV2eMt/F jO88l6fQXzhwxpmZV86ksa/hZQrF5wbL6RX7VKaZk5lL2nfn7r0nHlxhOjvONQcf f+RXnPloEzvajg7kTglt7nTnvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHYUfTGJ KsDuodxxZAYKPxreDAYYMB8GA1UdIwQYMBaAFNOX54xt08aWhRM0FTLHIYjXdWev MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0NBNy8zRjBFMEUwNkY0 NjExMUVDODIzQ0EwN0NDNEY5QUUwMi8wNWZuakczVHhwYUZFelFWTXNjaGlOZDFa NjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA1Zm5qRzNUeHBhRkV6UVZNc2NoaU5kMVo2OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0NBNy8zRjBFMEUwNkY0NjExMUVDODIzQ0EwN0NDNEY5QUUwMi8wNWZuakczVHhw YUZFelFWTXNjaGlOZDFaNjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4URC87Xd21oHpvUdd44BIkigZ3f1Pyeb8CE7cuEAvqE/dnJPMGmgj 3DIS0lW0xJd/3nVzqnu+6XOZw2ujpndb7eD9eqs+2nDpC7hBHYpi+SdCzLpzysFc JjeRUeY5cuOklIKWWDHC1LaoxC98wBJ3zAsATewRjWhPSlrfYF7boY8nH7QVfRDS 0/27yZo59XCz9QP6dVvw1yqWHGLAO/nYVX3q8AhcUtvOqwZ7orhzcfrS2NZ6EdJx 3loxjLryxLhbV6CGsEo+I8z9A5DzbRcE0yuSQSvGXxQ8ZRx6oDHCpISmlZ+ZryHc GCyiajvNOlncz3iYjX9DNJ3oKHBmTxJb -----END CERTIFICATE-----Generated at Mon Oct 20 17:24:22 2025 by rpki-client