$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft File: 0qCHG82DdsEajwSaOYVa_NsYMGQ.mft (raw, json) Hash identifier: UgNODq8yfjevXcHcWzIFC2DjXRr8O3JlJJCH3OfKYvY= Subject key identifier: 42:48:B1:74:39:43:63:5D:16:F8:8D:24:9B:F2:58:B5:63:81:BA:F2 Authority key identifier: D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64 Certificate issuer: /CN=A911CA82/serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064 Certificate serial: 0675 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft Manifest number: 065B Signing time: Sun 02 Nov 2025 22:48:50 +0000 Manifest this update: Sun 02 Nov 2025 22:48:49 +0000 Manifest next update: Sun 09 Nov 2025 22:48:49 +0000 Files and hashes: 1: 0qCHG82DdsEajwSaOYVa_NsYMGQ.crl (hash: 49JRAmjLHJe1bE5LieweCGZInckCxPtQDo9/39iqRC4=) 2: CB304C36307111EDB0CBD946C4F9AE02.roa (hash: pfD/CVe6rifI0uuB7MyQhX8gICce4pIQVAo4x+DdB5k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:48:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1653 (0x675) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA82, serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064 Validity Not Before: Nov 2 22:48:49 2025 GMT Not After : Nov 9 22:48:49 2025 GMT Subject: CN=6907dfd2-98c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:7f:07:d4:df:e9:d9:a8:ef:9a:21:aa:fd:84: 94:e1:80:5c:df:fc:79:23:36:0b:f8:34:64:80:30: e5:e8:0f:65:cf:c1:60:0b:07:0c:8e:0d:87:4f:c2: 25:a3:ef:81:6d:e4:33:68:73:b6:bc:ab:d9:68:df: 42:b2:e8:6f:95:80:10:ee:e6:f5:cf:0a:af:a7:9a: 9d:fe:69:f6:15:3a:0c:11:7a:65:6d:86:28:c9:aa: 08:5d:dd:43:68:60:89:c2:e1:f5:3e:35:1a:0b:22: 7a:fb:63:45:17:39:48:f3:e7:70:a8:89:5b:ff:59: 05:f8:08:62:1d:90:2f:f6:eb:ca:c2:83:75:90:32: 90:44:4a:53:57:3e:37:e6:a2:a2:4a:ca:cf:30:18: 43:9f:0f:f6:d4:f7:30:47:bf:4b:72:a2:26:9f:8e: c8:52:e4:45:8e:69:a6:e6:d9:2d:84:df:0a:dc:fc: 25:59:8a:da:b6:45:40:9f:e6:6b:42:d6:e7:df:21: 85:a4:48:a5:5c:16:20:dc:f0:1d:b5:37:a5:56:e1: 56:cf:df:78:ce:22:0e:c3:24:0e:0e:bf:06:83:af: e8:db:8a:88:67:bb:44:11:06:36:96:7c:ce:30:54: 29:da:94:cd:0f:1c:a1:f9:09:78:5b:be:fa:9e:ca: 48:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:48:B1:74:39:43:63:5D:16:F8:8D:24:9B:F2:58:B5:63:81:BA:F2 X509v3 Authority Key Identifier: keyid:D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:5a:93:ea:79:d8:d4:1c:a4:3b:12:73:5b:b0:c9:de:9b:d8: d0:bc:3b:bd:64:3d:32:2b:3e:5f:7b:60:3f:61:71:b2:93:02: 5b:cc:d6:e5:fe:93:a2:d4:77:a3:de:4a:70:11:d8:2c:83:f7: 55:80:45:3e:8b:5a:b8:7b:9c:f6:57:c9:04:66:97:46:14:93: 1b:74:7e:14:8c:2a:bb:bf:1b:89:1b:79:05:f5:a7:e9:29:1e: 28:28:ab:65:96:ef:5c:15:d3:a8:fc:3b:87:9a:20:76:fe:fe: 41:13:9a:16:cf:b3:57:da:b6:59:a2:46:9f:7d:c3:c7:02:21: 9d:4b:dc:6e:94:b7:ea:bc:d1:e8:f4:45:ee:e5:4e:2a:27:64: 91:f2:70:e5:f6:2a:c5:ae:c9:29:dd:24:9e:6d:57:ad:c4:31: 5e:25:24:73:28:46:db:50:5a:78:8e:3a:61:87:c2:0f:63:8c: a2:63:cc:e8:38:1e:2e:93:f3:c9:2d:3d:42:3d:39:4d:40:22: 0a:93:34:c9:7a:d7:0c:27:48:8e:e6:44:51:38:46:74:8b:c4: 75:6f:07:7f:1c:45:d6:a0:d8:30:57:51:16:2f:11:07:bc:27: 28:82:fc:d0:52:70:c5:4c:8a:82:8c:87:19:55:63:f1:0b:6c: 37:43:be:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBODIxMTAvBgNVBAUTKEQyQTA4NzFCQ0Q4Mzc2QzExQThGMDQ5QTM5ODU1QUZD REIxODMwNjQwHhcNMjUxMTAyMjI0ODQ5WhcNMjUxMTA5MjI0ODQ5WjAYMRYwFAYD VQQDEw02OTA3ZGZkMi05OGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4X8H1N/p2ajvmiGq/YSU4YBc3/x5IzYL+DRkgDDl6A9lz8FgCwcMjg2HT8Il o++BbeQzaHO2vKvZaN9CsuhvlYAQ7ub1zwqvp5qd/mn2FToMEXplbYYoyaoIXd1D aGCJwuH1PjUaCyJ6+2NFFzlI8+dwqIlb/1kF+AhiHZAv9uvKwoN1kDKQREpTVz43 5qKiSsrPMBhDnw/21PcwR79LcqImn47IUuRFjmmm5tkthN8K3PwlWYratkVAn+Zr Qtbn3yGFpEilXBYg3PAdtTelVuFWz994ziIOwyQODr8Gg6/o24qIZ7tEEQY2lnzO MFQp2pTNDxyh+Ql4W776nspIzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEJIsXQ5 Q2NdFviNJJvyWLVjgbryMB8GA1UdIwQYMBaAFNKghxvNg3bBGo8EmjmFWvzbGDBk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E4Mi8wQkVCMzc1QUJF NDQxMUVCQUUzRDQzNDhDNEY5QUUwMi8wcUNIRzgyRGRzRWFqd1NhT1lWYV9Oc1lN R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBxQ0hHODJEZHNFYWp3U2FPWVZhX05zWU1HUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E4Mi8wQkVCMzc1QUJFNDQxMUVCQUUzRDQzNDhDNEY5QUUwMi8wcUNIRzgyRGRz RWFqd1NhT1lWYV9Oc1lNR1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIWpPqedjUHKQ7EnNbsMnem9jQvDu9ZD0yKz5fe2A/YXGykwJbzNbl /pOi1Hej3kpwEdgsg/dVgEU+i1q4e5z2V8kEZpdGFJMbdH4UjCq7vxuJG3kF9afp KR4oKKtllu9cFdOo/DuHmiB2/v5BE5oWz7NX2rZZokaffcPHAiGdS9xulLfqvNHo 9EXu5U4qJ2SR8nDl9irFrskp3SSebVetxDFeJSRzKEbbUFp4jjphh8IPY4yiY8zo OB4uk/PJLT1CPTlNQCIKkzTJetcMJ0iO5kRROEZ0i8R1bwd/HEXWoNgwV1EWLxEH vCcogvzQUnDFTIqCjIcZVWPxC2w3Q75K -----END CERTIFICATE-----Generated at Mon Nov 3 18:14:39 2025 by rpki-client