$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft File: Qf4dQTWrLWdiPnYIM5hGitT6odw.mft (raw, json) Hash identifier: HdFPaiIWTpdFaZPZgPfGMbNpvCpuoOktYmejsNrR8q4= Subject key identifier: 06:73:76:36:22:23:0D:B0:4D:5D:70:89:B8:59:FE:7E:19:25:F0:4C Authority key identifier: 41:FE:1D:41:35:AB:2D:67:62:3E:76:08:33:98:46:8A:D4:FA:A1:DC Certificate issuer: /CN=A911B5D7/serialNumber=41FE1D4135AB2D67623E76083398468AD4FAA1DC Certificate serial: 1C48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft Manifest number: 1C16 Signing time: Tue 04 Nov 2025 16:20:13 +0000 Manifest this update: Tue 04 Nov 2025 16:20:12 +0000 Manifest next update: Tue 11 Nov 2025 16:20:12 +0000 Files and hashes: 1: Qf4dQTWrLWdiPnYIM5hGitT6odw.crl (hash: LnW3hY8QX32C5mLVD2LEhCX7Idye/xXijBJaC3I4LHU=) 2: C177A6728D2011EF97C11D3CC4F9AE02.roa (hash: DzfAqd947/aw0GqhghbdVi3PbAms0DDMSaZSwYpp3rk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.crl rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7240 (0x1c48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5D7, serialNumber=41FE1D4135AB2D67623E76083398468AD4FAA1DC Validity Not Before: Nov 4 16:20:12 2025 GMT Not After : Nov 11 16:20:12 2025 GMT Subject: CN=690a27bd-1977 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:86:98:11:6f:e3:7b:8e:a4:df:0d:28:54:c8: c1:45:f3:98:8d:2b:1e:21:00:55:ca:13:db:b9:9d: 4f:64:fd:96:be:e0:19:02:a8:a9:34:b0:aa:39:4e: d6:3b:46:62:29:f4:77:10:39:53:76:b4:9b:62:a4: a8:7c:e3:66:83:d4:ea:16:44:c9:7f:bc:eb:36:3e: 3f:ac:75:ca:f4:72:f9:02:e9:41:ba:0d:76:c1:1b: 1c:07:e1:eb:98:cb:a8:ca:1b:3c:ad:03:52:ea:8b: cf:6b:f9:3a:6f:83:60:6d:16:1e:67:76:c4:9c:f1: f7:7e:69:05:09:12:b6:47:4f:5c:2d:2c:e4:f6:12: ea:1e:3c:86:6b:63:92:08:13:b3:3b:08:61:4c:2e: c4:f5:32:4a:5f:36:22:3d:be:05:ba:55:ee:9d:68: 4a:78:a2:66:df:c6:07:09:61:4d:9e:9b:f7:f8:80: f0:2a:89:65:2d:90:50:91:74:d3:a1:fa:fb:68:5c: 33:ad:ce:56:82:43:1b:35:fc:b4:b9:5d:1c:58:03: 44:d4:ee:d6:4c:a6:ac:9e:c7:cd:ed:2e:f5:27:90: 42:59:32:62:0e:c4:08:ca:92:b8:df:42:de:5a:f5: 3f:98:67:39:38:48:d5:3f:c0:5e:49:f1:87:5e:ee: 2b:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:73:76:36:22:23:0D:B0:4D:5D:70:89:B8:59:FE:7E:19:25:F0:4C X509v3 Authority Key Identifier: keyid:41:FE:1D:41:35:AB:2D:67:62:3E:76:08:33:98:46:8A:D4:FA:A1:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:a7:a8:ba:00:38:41:15:6d:13:37:1f:25:e3:09:be:32:80: 77:e9:01:3b:f0:fb:a7:0c:88:24:5e:6a:49:5d:b2:fb:72:9c: 28:fe:99:15:0b:90:cc:ed:8b:0f:2b:9b:5b:b1:7c:bf:38:74: fe:13:c8:de:ae:bd:35:68:5b:c6:bc:09:da:65:d2:56:3f:6d: ef:f2:89:e8:d8:eb:20:f8:05:a9:fd:c0:8f:92:c4:37:29:62: c5:0c:a7:7e:a1:de:47:a5:a8:39:c0:51:cc:39:a2:21:80:2a: 78:12:ba:3b:67:7b:3d:f5:c5:0d:50:e1:e5:61:bb:f3:ae:42: 87:af:a5:f7:fd:78:f9:df:16:8d:76:c8:b0:08:0a:63:67:55: e5:b8:47:e9:85:d1:6c:89:71:a0:28:75:21:2e:8d:82:cf:5a: e3:2e:ee:cd:fe:3b:7a:75:54:20:0a:59:06:74:2f:51:44:dd: 47:6e:63:d7:38:98:c2:36:ec:63:71:73:f9:a3:b8:cb:74:0f: 50:32:7e:7c:28:62:02:4a:41:e3:af:7e:ad:38:dc:29:e0:ba: ec:98:0a:5a:e3:1b:3a:7b:e5:95:5e:fa:d1:3a:73:a2:0a:d2: 7a:f6:c8:65:68:a1:ee:1f:8b:a5:32:1d:c7:07:dd:68:3a:46: 95:93:07:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1RDcxMTAvBgNVBAUTKDQxRkUxRDQxMzVBQjJENjc2MjNFNzYwODMzOTg0NjhB RDRGQUExREMwHhcNMjUxMTA0MTYyMDEyWhcNMjUxMTExMTYyMDEyWjAYMRYwFAYD VQQDEw02OTBhMjdiZC0xOTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtoaYEW/je46k3w0oVMjBRfOYjSseIQBVyhPbuZ1PZP2WvuAZAqipNLCqOU7W O0ZiKfR3EDlTdrSbYqSofONmg9TqFkTJf7zrNj4/rHXK9HL5AulBug12wRscB+Hr mMuoyhs8rQNS6ovPa/k6b4NgbRYeZ3bEnPH3fmkFCRK2R09cLSzk9hLqHjyGa2OS CBOzOwhhTC7E9TJKXzYiPb4FulXunWhKeKJm38YHCWFNnpv3+IDwKollLZBQkXTT ofr7aFwzrc5WgkMbNfy0uV0cWANE1O7WTKasnsfN7S71J5BCWTJiDsQIypK430Le WvU/mGc5OEjVP8BeSfGHXu4rSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAZzdjYi Iw2wTV1wibhZ/n4ZJfBMMB8GA1UdIwQYMBaAFEH+HUE1qy1nYj52CDOYRorU+qHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVENy8yNTg3MkJCRTAz QjQxMUU3QjgxMUFBMTRDNEY5QUUwMi9RZjRkUVRXckxXZGlQbllJTTVoR2l0VDZv ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FmNGRRVFdyTFdkaVBuWUlNNWhHaXRUNm9kdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVENy8yNTg3MkJCRTAzQjQxMUU3QjgxMUFBMTRDNEY5QUUwMi9RZjRkUVRXckxX ZGlQbllJTTVoR2l0VDZvZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZp6i6ADhBFW0TNx8l4wm+MoB36QE78PunDIgkXmpJXbL7cpwo/pkV C5DM7YsPK5tbsXy/OHT+E8jerr01aFvGvAnaZdJWP23v8ono2Osg+AWp/cCPksQ3 KWLFDKd+od5Hpag5wFHMOaIhgCp4Ero7Z3s99cUNUOHlYbvzrkKHr6X3/Xj53xaN dsiwCApjZ1XluEfphdFsiXGgKHUhLo2Cz1rjLu7N/jt6dVQgClkGdC9RRN1HbmPX OJjCNuxjcXP5o7jLdA9QMn58KGICSkHjr36tONwp4LrsmApa4xs6e+WVXvrROnOi CtJ69shlaKHuH4ulMh3HB91oOkaVkwdu -----END CERTIFICATE-----Generated at Wed Nov 5 05:23:42 2025 by rpki-client