$ rpki-client -vvf rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.mft File: x5u-qmYkHuzwHDAzXbGO8rP1YCY.mft (raw, json) Hash identifier: ziLKGY9eHyyvSbfMaUi1h4w+yoAWHs1/cYgJxOBcjvo= Subject key identifier: 36:EC:0D:5C:98:A5:55:3F:95:DE:61:1A:28:2D:23:89:84:60:A0:56 Authority key identifier: C7:9B:BE:AA:66:24:1E:EC:F0:1C:30:33:5D:B1:8E:F2:B3:F5:60:26 Certificate issuer: /CN=A9158131/serialNumber=C79BBEAA66241EECF01C30335DB18EF2B3F56026 Certificate serial: 0B62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5u-qmYkHuzwHDAzXbGO8rP1YCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.mft Manifest number: 0B4E Signing time: Sun 02 Nov 2025 19:13:42 +0000 Manifest this update: Sun 02 Nov 2025 19:13:42 +0000 Manifest next update: Sun 09 Nov 2025 19:13:42 +0000 Files and hashes: 1: x5u-qmYkHuzwHDAzXbGO8rP1YCY.crl (hash: hISAzAJ+MdISnLw72lK+6wDqcFOGsDh0KdEzPZxpTXg=) 2: 0F29204CB4B511EF86D6381EC4F9AE02.roa (hash: DPGURiy/ga59xiLR42DrUhd2krbJVgQk+C5+WjMHgzg=) 3: 2E4BBE4EB4B511EF8A24821EC4F9AE02.roa (hash: +YYg5jcS99lfynPlhAhxkr4lADd5koWQrubtajtUn1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.crl rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5u-qmYkHuzwHDAzXbGO8rP1YCY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:13:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2914 (0xb62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158131, serialNumber=C79BBEAA66241EECF01C30335DB18EF2B3F56026 Validity Not Before: Nov 2 19:13:42 2025 GMT Not After : Nov 9 19:13:42 2025 GMT Subject: CN=6907ad66-c175 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:3c:d4:a6:ab:42:62:8f:ac:a9:d1:fe:56:d8: 6c:06:0c:ab:ec:f4:dd:74:83:4a:c0:06:8a:30:86: 68:14:64:61:98:c5:64:53:3b:39:0b:3d:b4:7b:06: 66:c3:aa:82:47:62:44:1e:67:74:b0:92:c1:5f:db: 24:ac:dc:19:91:09:db:40:f6:d5:f6:d9:d7:bf:22: 1f:c9:02:2f:8f:80:3c:ba:ac:f8:34:e3:db:7b:4f: 29:ca:9c:5d:71:70:94:cf:82:4a:99:7d:e2:60:6a: 58:7f:88:33:ac:c0:a7:04:08:ca:20:91:fd:ff:a5: 31:95:5a:a3:99:3b:34:40:69:12:d4:49:81:c8:e3: 50:6e:2d:39:a1:5b:1b:a2:3c:75:da:5f:d4:80:9c: c6:90:cb:56:ac:ac:ed:d6:a3:16:4e:f6:d4:2a:dd: 28:b3:c2:f6:8e:12:c1:f9:52:b3:2a:7e:db:29:8c: 4d:13:0a:10:7d:5d:d5:8e:c0:d4:f3:cd:d6:4d:00: ca:12:e0:27:89:4a:7d:98:2b:c9:92:8a:3c:f5:8a: b1:3c:ff:b8:d1:45:01:60:9b:47:dc:9a:68:df:25: c3:d1:c1:e5:34:7c:31:0a:a0:bd:e2:6b:9e:12:6e: 02:b8:a8:1c:5d:4a:67:39:c4:e1:23:3b:d1:73:4b: 6e:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:EC:0D:5C:98:A5:55:3F:95:DE:61:1A:28:2D:23:89:84:60:A0:56 X509v3 Authority Key Identifier: keyid:C7:9B:BE:AA:66:24:1E:EC:F0:1C:30:33:5D:B1:8E:F2:B3:F5:60:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5u-qmYkHuzwHDAzXbGO8rP1YCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:88:18:1e:27:ef:1a:e9:63:6b:49:51:2e:9f:18:ac:9a:24: 11:30:32:f4:49:94:a1:b6:d4:48:53:7a:3c:ed:be:0a:ec:2c: 10:9d:5a:f7:e4:d3:3f:77:52:c1:1d:ac:b4:29:be:1f:f1:61: ea:b1:a9:02:e1:38:fe:0a:f5:da:c0:bb:4c:d6:0c:f8:19:90: d9:e4:e5:d9:14:fd:6e:36:5c:37:e9:6d:8f:8e:58:c4:28:9a: b0:f6:42:e2:70:0c:56:45:03:cd:26:46:57:f4:51:4c:d7:6c: 2e:2e:8e:f1:bb:bf:44:b3:0f:d1:08:33:45:b0:90:e1:ec:6c: a0:c2:fb:b9:b0:fb:b9:a9:01:ef:7e:b2:62:a6:54:f9:92:64: c3:b1:af:26:ed:45:11:4f:a1:53:7d:ea:fa:cd:fb:6b:a6:2a: ec:e1:49:2b:ad:13:25:9a:93:77:51:74:35:34:16:be:db:2c: 86:69:14:97:18:b1:a4:91:58:4c:7e:f7:71:46:b0:e0:9e:36: 9c:9a:ff:53:c7:6d:43:c3:73:2d:b2:7d:ef:c4:43:87:4e:31: 3c:ce:5a:b7:97:06:c7:aa:02:75:72:20:b3:ec:5f:59:db:ce: e2:84:9f:26:f0:c3:ae:51:de:b8:df:7d:a7:31:ae:88:3c:ab: e3:ec:a0:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgxMzExMTAvBgNVBAUTKEM3OUJCRUFBNjYyNDFFRUNGMDFDMzAzMzVEQjE4RUYy QjNGNTYwMjYwHhcNMjUxMTAyMTkxMzQyWhcNMjUxMTA5MTkxMzQyWjAYMRYwFAYD VQQDEw02OTA3YWQ2Ni1jMTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArDzUpqtCYo+sqdH+VthsBgyr7PTddINKwAaKMIZoFGRhmMVkUzs5Cz20ewZm w6qCR2JEHmd0sJLBX9skrNwZkQnbQPbV9tnXvyIfyQIvj4A8uqz4NOPbe08pypxd cXCUz4JKmX3iYGpYf4gzrMCnBAjKIJH9/6UxlVqjmTs0QGkS1EmByONQbi05oVsb ojx12l/UgJzGkMtWrKzt1qMWTvbUKt0os8L2jhLB+VKzKn7bKYxNEwoQfV3VjsDU 883WTQDKEuAniUp9mCvJkoo89YqxPP+40UUBYJtH3Jpo3yXD0cHlNHwxCqC94mue Em4CuKgcXUpnOcThIzvRc0tucwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDbsDVyY pVU/ld5hGigtI4mEYKBWMB8GA1UdIwQYMBaAFMebvqpmJB7s8BwwM12xjvKz9WAm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODEzMS85ODJBQjZFNjQ4 QjExMUVBOTZBMDZDN0VDNEY5QUUwMi94NXUtcW1Za0h1endIREF6WGJHTzhyUDFZ Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g1dS1xbVlrSHV6d0hEQXpYYkdPOHJQMVlDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODEzMS85ODJBQjZFNjQ4QjExMUVBOTZBMDZDN0VDNEY5QUUwMi94NXUtcW1Za0h1 endIREF6WGJHTzhyUDFZQ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAviBgeJ+8a6WNrSVEunxismiQRMDL0SZShttRIU3o87b4K7CwQnVr3 5NM/d1LBHay0Kb4f8WHqsakC4Tj+CvXawLtM1gz4GZDZ5OXZFP1uNlw36W2PjljE KJqw9kLicAxWRQPNJkZX9FFM12wuLo7xu79Esw/RCDNFsJDh7Gygwvu5sPu5qQHv frJiplT5kmTDsa8m7UURT6FTfer6zftrpirs4UkrrRMlmpN3UXQ1NBa+2yyGaRSX GLGkkVhMfvdxRrDgnjacmv9Tx21Dw3Mtsn3vxEOHTjE8zlq3lwbHqgJ1ciCz7F9Z 287ihJ8m8MOuUd64332nMa6IPKvj7KBX -----END CERTIFICATE-----Generated at Tue Nov 4 20:23:38 2025 by rpki-client