$ rpki-client -vvf rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.mft File: 5OTCQkd4XDQv81kH9-EcSrs5i4M.mft (raw, json) Hash identifier: G6s43JQC86qCWcoFcpwP8ZU8Puh365r2QQ9qO7XPnJQ= Subject key identifier: A5:B6:85:7B:6A:FD:71:AB:41:02:28:5D:0C:18:98:D8:15:96:C5:C9 Authority key identifier: E4:E4:C2:42:47:78:5C:34:2F:F3:59:07:F7:E1:1C:4A:BB:39:8B:83 Certificate issuer: /CN=A91E85F1/serialNumber=E4E4C24247785C342FF35907F7E11C4ABB398B83 Certificate serial: 78 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5OTCQkd4XDQv81kH9-EcSrs5i4M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.mft Manifest number: 74 Signing time: Mon 03 Nov 2025 06:54:55 +0000 Manifest this update: Mon 03 Nov 2025 06:54:54 +0000 Manifest next update: Mon 10 Nov 2025 06:54:54 +0000 Files and hashes: 1: 5OTCQkd4XDQv81kH9-EcSrs5i4M.crl (hash: 3yieRq1hZAgDzgjY74qnqcXw+qwiKAQIbjXdJNvi27M=) 2: 212E0B520DFE11F0B266963AC4F9AE02.roa (hash: dDhbAceYPTZoJoEOB7Q4AGN3lBigI7VE7UVJ4rk45bI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.crl rsync://rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5OTCQkd4XDQv81kH9-EcSrs5i4M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:54:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E85F1, serialNumber=E4E4C24247785C342FF35907F7E11C4ABB398B83 Validity Not Before: Nov 3 06:54:54 2025 GMT Not After : Nov 10 06:54:54 2025 GMT Subject: CN=690851be-d777 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:b8:7a:b6:d2:b9:b5:10:7c:ee:de:7c:27:a6: 8a:60:e5:be:5e:3a:33:b8:9d:32:32:19:d9:52:b7: 30:97:19:3e:0b:5e:91:61:5e:e3:91:44:34:d2:c6: 6e:5c:84:70:2b:c6:81:ac:f4:4d:82:a1:e2:5d:a2: f6:71:11:75:fc:10:78:1d:7d:ea:91:ef:fd:11:54: 86:81:53:9b:50:df:56:9b:aa:62:87:ab:46:2a:98: 67:37:74:0a:1c:a7:21:0c:57:38:92:02:30:f7:21: 66:66:94:ca:20:6b:9b:9f:dd:35:0c:82:f6:ec:50: fc:e2:50:01:76:dd:c5:b1:82:fc:97:45:fd:d9:6e: 79:2e:9c:58:2b:3b:07:df:57:3e:cf:bf:a4:36:d4: 70:9a:15:79:2d:27:30:0c:ae:92:ee:ba:76:93:ad: 90:b6:4d:e4:57:6f:0a:2a:e7:3f:ac:0f:00:a1:41: 1f:00:da:a5:6a:15:2c:be:8f:2f:8e:5d:ad:f3:fa: 11:aa:34:3a:69:53:64:ff:7c:0a:ca:47:b5:f6:4b: e7:b0:2e:70:12:6a:91:2a:b3:f8:93:56:08:0d:55: f8:4d:b3:41:88:bf:b9:6e:12:74:9b:45:22:38:34: 0a:93:16:78:8c:f7:55:66:c8:51:2b:0f:39:3d:e3: 8b:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:B6:85:7B:6A:FD:71:AB:41:02:28:5D:0C:18:98:D8:15:96:C5:C9 X509v3 Authority Key Identifier: keyid:E4:E4:C2:42:47:78:5C:34:2F:F3:59:07:F7:E1:1C:4A:BB:39:8B:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5OTCQkd4XDQv81kH9-EcSrs5i4M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6220633C0DFC11F0A1D98053C4F9AE02/5OTCQkd4XDQv81kH9-EcSrs5i4M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:64:5a:14:ce:f2:a0:14:35:d9:03:5e:b4:f9:ae:de:9f:82: b1:bc:0d:c5:c3:ba:04:8a:6a:35:3f:a3:51:81:05:b1:14:f5: ca:75:31:df:87:d8:54:cd:fa:0a:55:a1:30:7d:17:cc:86:e7: ad:61:4c:4f:06:c4:d5:26:1c:3d:8a:84:27:78:e9:75:9f:a6: e2:89:42:c8:20:a4:e1:b6:e0:76:d7:18:f2:3f:1a:7c:d6:46: 10:ea:5c:88:cd:8a:17:10:0f:4c:24:4c:d6:d1:33:b3:c6:7f: 02:20:f6:75:f0:55:dc:65:17:7e:77:aa:5b:30:39:36:f0:af: 3f:0b:06:a7:e0:22:04:25:98:9c:88:4b:24:c7:5c:3c:a3:3c: 07:2e:2f:b5:82:43:bc:32:51:25:60:85:46:82:72:08:29:a1: 8f:9a:78:ad:c8:e3:4a:ae:89:05:31:1b:eb:79:2f:77:48:2c: ba:85:a5:f4:45:5c:45:16:8b:ab:49:71:1b:65:f8:71:32:d1: 6b:2e:56:d4:a3:cf:09:19:2e:99:78:67:e2:15:15:81:97:6d: ab:21:65:d2:65:af:5a:2e:db:7c:5b:c9:7a:4f:87:5b:d8:d5: 97:67:49:4f:a9:7d:3a:91:d7:a0:34:5e:b0:ba:a9:d7:4c:00: 85:ea:50:57 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF ODVGMTExMC8GA1UEBRMoRTRFNEMyNDI0Nzc4NUMzNDJGRjM1OTA3RjdFMTFDNEFC QjM5OEI4MzAeFw0yNTExMDMwNjU0NTRaFw0yNTExMTAwNjU0NTRaMBgxFjAUBgNV BAMTDTY5MDg1MWJlLWQ3NzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLuHq20rm1EHzu3nwnpopg5b5eOjO4nTIyGdlStzCXGT4LXpFhXuORRDTSxm5c hHArxoGs9E2CoeJdovZxEXX8EHgdfeqR7/0RVIaBU5tQ31abqmKHq0YqmGc3dAoc pyEMVziSAjD3IWZmlMoga5uf3TUMgvbsUPziUAF23cWxgvyXRf3ZbnkunFgrOwff Vz7Pv6Q21HCaFXktJzAMrpLuunaTrZC2TeRXbwoq5z+sDwChQR8A2qVqFSy+jy+O Xa3z+hGqNDppU2T/fArKR7X2S+ewLnASapEqs/iTVggNVfhNs0GIv7luEnSbRSI4 NAqTFniM91VmyFErDzk944tfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUpbaFe2r9 catBAihdDBiY2BWWxckwHwYDVR0jBBgwFoAU5OTCQkd4XDQv81kH9+EcSrs5i4Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4NUYxLzYyMjA2MzNDMERG QzExRjBBMUQ5ODA1M0M0RjlBRTAyLzVPVENRa2Q0WERRdjgxa0g5LUVjU3JzNWk0 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNU9UQ1FrZDRYRFF2ODFrSDktRWNTcnM1aTRNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4 NUYxLzYyMjA2MzNDMERGQzExRjBBMUQ5ODA1M0M0RjlBRTAyLzVPVENRa2Q0WERR djgxa0g5LUVjU3JzNWk0TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACZkWhTO8qAUNdkDXrT5rt6fgrG8DcXDugSKajU/o1GBBbEU9cp1Md+H 2FTN+gpVoTB9F8yG561hTE8GxNUmHD2KhCd46XWfpuKJQsggpOG24HbXGPI/GnzW RhDqXIjNihcQD0wkTNbRM7PGfwIg9nXwVdxlF353qlswOTbwrz8LBqfgIgQlmJyI SyTHXDyjPAcuL7WCQ7wyUSVghUaCcggpoY+aeK3I40quiQUxG+t5L3dILLqFpfRF XEUWi6tJcRtl+HEy0WsuVtSjzwkZLpl4Z+IVFYGXbashZdJlr1ou23xbyXpPh1vY 1ZdnSU+pfTqR16A0XrC6qddMAIXqUFc= -----END CERTIFICATE-----Generated at Wed Nov 5 04:47:31 2025 by rpki-client