$ rpki-client -vvf rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.mft File: E5bqlAlF_CBf8uPRsr4bkNcsxek.mft (raw, json) Hash identifier: LD3D9P3JGx9VHW0cT4XVILNysztjrXXiqwP/+u99k/0= Subject key identifier: 47:B4:4E:CC:05:D5:4A:0D:CE:DD:E7:1F:EC:D4:3E:1E:76:E2:6D:44 Authority key identifier: 13:96:EA:94:09:45:FC:20:5F:F2:E3:D1:B2:BE:1B:90:D7:2C:C5:E9 Certificate issuer: /CN=A914DF56/serialNumber=1396EA940945FC205FF2E3D1B2BE1B90D72CC5E9 Certificate serial: 0551 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5bqlAlF_CBf8uPRsr4bkNcsxek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.mft Manifest number: 0549 Signing time: Sun 02 Nov 2025 23:27:06 +0000 Manifest this update: Sun 02 Nov 2025 23:27:06 +0000 Manifest next update: Sun 09 Nov 2025 23:27:06 +0000 Files and hashes: 1: E5bqlAlF_CBf8uPRsr4bkNcsxek.crl (hash: kj0anJpELCwy65A8AOxQXPj/9wpz4Ba+HuhaiCgHxeI=) 2: EB17A8C2152511ECAD055780C4F9AE02.roa (hash: 3Who1qUDm6eD8QDguJD4EaJb2KgGViSYhJ9baOpktjo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.crl rsync://rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5bqlAlF_CBf8uPRsr4bkNcsxek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:27:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1361 (0x551) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DF56, serialNumber=1396EA940945FC205FF2E3D1B2BE1B90D72CC5E9 Validity Not Before: Nov 2 23:27:06 2025 GMT Not After : Nov 9 23:27:06 2025 GMT Subject: CN=6907e8ca-8e9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:83:e6:d6:c2:d4:0e:85:91:6f:4d:d8:e5:c0: 9a:96:82:6e:85:16:6f:f4:eb:3b:dc:ea:f5:65:15: 0f:db:0d:4c:98:32:2f:61:c3:55:43:df:84:92:f1: 67:3d:b9:6e:c9:55:4a:67:a4:e2:fa:d6:14:0a:54: fe:28:25:7f:bc:26:d5:8b:1e:48:b2:8e:2b:55:f2: 5d:d5:17:a4:1a:b7:30:48:d0:fa:fa:0c:06:65:b8: 4c:ee:34:93:79:7a:00:60:53:2f:10:91:0a:ac:ba: 62:48:1e:67:b1:67:e8:9d:1c:28:3c:2c:c8:ab:19: 71:aa:e6:dc:95:f4:27:50:d6:9b:72:3c:51:3c:41: 48:8b:ce:f9:5a:7c:d9:05:f2:7c:e4:94:9a:f6:75: fd:3f:0d:56:8b:78:f9:38:bc:ff:2b:d9:b5:fe:28: 77:50:f3:8f:30:31:47:c9:48:24:72:56:44:be:4f: 9e:8f:c7:78:2b:b6:f3:e0:2e:36:d6:db:eb:d7:c1: 00:0f:8d:e8:43:c5:37:a5:70:a5:16:99:e1:57:81: 8e:ac:15:46:db:9a:26:16:57:7e:bb:4d:00:96:0f: 4a:8b:6e:74:e0:a7:6b:bc:0f:d4:98:c2:5a:48:62: e5:4d:dd:90:b9:00:87:e3:63:8c:50:99:94:89:cf: 7f:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:B4:4E:CC:05:D5:4A:0D:CE:DD:E7:1F:EC:D4:3E:1E:76:E2:6D:44 X509v3 Authority Key Identifier: keyid:13:96:EA:94:09:45:FC:20:5F:F2:E3:D1:B2:BE:1B:90:D7:2C:C5:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5bqlAlF_CBf8uPRsr4bkNcsxek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:dd:55:a2:db:4c:0a:8a:0b:01:62:85:c7:e9:50:53:43:25: 67:5b:db:32:c6:b5:9d:0b:5a:6c:26:ef:8d:35:f1:b7:8e:54: a2:69:f2:86:de:94:5c:15:42:0b:cd:8d:bf:f5:0d:53:d1:c7: 4e:70:fa:48:4a:2e:40:7d:d5:62:7d:f8:d0:21:3a:91:44:7d: cb:24:46:1f:64:c5:ef:31:70:c0:5f:07:ce:60:a9:72:f0:d0: 25:70:c5:ba:9e:b4:57:ab:22:17:d9:19:d0:c5:d2:03:ac:78: 90:ea:1f:dc:7a:85:f6:da:5f:dd:ec:d6:2c:1a:af:a8:02:61: dd:4e:42:73:b7:78:1b:ce:f8:57:c6:f8:0a:1f:37:35:18:d6: d2:ea:02:57:ad:5f:9e:aa:79:09:97:ca:8f:0f:16:77:a9:62: ac:1c:5b:1b:29:46:d5:0f:7d:6d:8a:94:8d:17:b5:71:43:1f: 21:77:10:61:be:0d:fd:14:d5:5b:17:90:ae:4d:bd:aa:a5:18: cc:fd:5b:7c:cc:47:09:e0:00:38:c3:ef:46:ce:48:64:a7:d8: 69:58:7e:7c:ed:7e:c4:e5:21:72:df:5b:1c:33:29:40:6d:9c: 50:d8:37:7e:bb:9e:3c:c0:4a:08:f1:3d:8b:f1:8e:79:f2:f6: 8b:8b:9a:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERGNTYxMTAvBgNVBAUTKDEzOTZFQTk0MDk0NUZDMjA1RkYyRTNEMUIyQkUxQjkw RDcyQ0M1RTkwHhcNMjUxMTAyMjMyNzA2WhcNMjUxMTA5MjMyNzA2WjAYMRYwFAYD VQQDEw02OTA3ZThjYS04ZTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYPm1sLUDoWRb03Y5cCaloJuhRZv9Os73Or1ZRUP2w1MmDIvYcNVQ9+EkvFn PbluyVVKZ6Ti+tYUClT+KCV/vCbVix5Iso4rVfJd1RekGrcwSND6+gwGZbhM7jST eXoAYFMvEJEKrLpiSB5nsWfonRwoPCzIqxlxqubclfQnUNabcjxRPEFIi875WnzZ BfJ85JSa9nX9Pw1Wi3j5OLz/K9m1/ih3UPOPMDFHyUgkclZEvk+ej8d4K7bz4C42 1tvr18EAD43oQ8U3pXClFpnhV4GOrBVG25omFld+u00Alg9Ki2504KdrvA/UmMJa SGLlTd2QuQCH42OMUJmUic9/pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEe0TswF 1UoNzt3nH+zUPh524m1EMB8GA1UdIwQYMBaAFBOW6pQJRfwgX/Lj0bK+G5DXLMXp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REY1Ni9CRDdGQTAzODE1 MjMxMUVDQjc0RjIwODBDNEY5QUUwMi9FNWJxbEFsRl9DQmY4dVBSc3I0YmtOY3N4 ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0U1YnFsQWxGX0NCZjh1UFJzcjRia05jc3hlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 REY1Ni9CRDdGQTAzODE1MjMxMUVDQjc0RjIwODBDNEY5QUUwMi9FNWJxbEFsRl9D QmY4dVBSc3I0YmtOY3N4ZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCP3VWi20wKigsBYoXH6VBTQyVnW9syxrWdC1psJu+NNfG3jlSiafKG 3pRcFUILzY2/9Q1T0cdOcPpISi5AfdViffjQITqRRH3LJEYfZMXvMXDAXwfOYKly 8NAlcMW6nrRXqyIX2RnQxdIDrHiQ6h/ceoX22l/d7NYsGq+oAmHdTkJzt3gbzvhX xvgKHzc1GNbS6gJXrV+eqnkJl8qPDxZ3qWKsHFsbKUbVD31tipSNF7VxQx8hdxBh vg39FNVbF5CuTb2qpRjM/Vt8zEcJ4AA4w+9Gzkhkp9hpWH587X7E5SFy31scMylA bZxQ2Dd+u548wEoI8T2L8Y558vaLi5rx -----END CERTIFICATE-----Generated at Tue Nov 4 12:41:34 2025 by rpki-client