$ rpki-client -vvf rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.mft File: qo4b42JCQNwzAgR_tBp9TkeAjvg.mft (raw, json) Hash identifier: Ughlv9LxQTv/W/DS62Cdmu42z87AnFn5Gpm23cogRm8= Subject key identifier: 51:10:7C:19:07:A4:9A:8A:2E:8C:26:A1:47:B0:A1:64:2F:C2:57:F6 Authority key identifier: AA:8E:1B:E3:62:42:40:DC:33:02:04:7F:B4:1A:7D:4E:47:80:8E:F8 Certificate issuer: /CN=A911E509/serialNumber=AA8E1BE3624240DC3302047FB41A7D4E47808EF8 Certificate serial: 09CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.mft Manifest number: 099B Signing time: Tue 04 Nov 2025 20:14:25 +0000 Manifest this update: Tue 04 Nov 2025 20:14:24 +0000 Manifest next update: Tue 11 Nov 2025 20:14:24 +0000 Files and hashes: 1: qo4b42JCQNwzAgR_tBp9TkeAjvg.crl (hash: kdoDYDAEBo1KDFjE0xLzAHkDs2Ixa/g2FqYdHYcsrVQ=) 2: C2A410D4ADA011F08E990C1DC4F9AE02.roa (hash: ybP8IsFu0DeKSACmjJD6LLFQ1b+PpZBTXbG4HzvhKhU=) 3: 2E18EB105D0C11EE873B1C2AC4F9AE02.roa (hash: y+1LcMZWVq0sxCzTaWENpdmxk9z32hroZYUL1UHWPKM=) 4: 31CBA5B2ADA111F0B7AAD41DC4F9AE02.roa (hash: 5CxgvuF0fJ72SB6Diy3BJqOrlsftLe1kTIIMVXc1D1o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.crl rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:14:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2506 (0x9ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E509, serialNumber=AA8E1BE3624240DC3302047FB41A7D4E47808EF8 Validity Not Before: Nov 4 20:14:24 2025 GMT Not After : Nov 11 20:14:24 2025 GMT Subject: CN=690a5ea1-2894 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f6:57:9a:fa:20:b8:b1:77:2b:19:0e:65:fa: ce:03:a9:db:4e:6b:6a:d6:47:bb:f7:dc:91:27:17: 1f:b9:3b:56:f4:77:57:06:81:99:f0:0a:ee:05:fa: 38:a1:39:49:90:bb:02:fb:3e:5a:a6:31:25:e7:99: d2:d4:ca:9d:17:12:35:65:16:5d:1b:d7:81:45:18: a0:a9:45:d2:b5:87:f3:db:2f:c5:94:8c:2c:37:02: cc:12:b5:60:f0:76:b9:75:16:bf:24:25:20:4e:ca: fc:f7:fb:d0:41:e8:ae:1d:0e:84:ff:9d:32:84:04: e5:c2:9c:0a:f2:21:07:cb:52:86:02:4d:11:47:c9: fe:6f:48:f3:10:5a:01:f2:5f:34:01:6c:2d:1f:33: 3b:9a:19:62:9b:aa:36:54:30:c6:c9:eb:59:23:48: f2:c2:df:d3:3d:f6:d8:4f:c2:fd:24:d1:88:09:ed: b1:ce:42:95:b2:35:15:fa:80:2f:2e:db:3a:84:e3: 3b:8f:9c:71:d1:cd:c0:49:97:c2:95:ee:bf:c7:c2: 5c:97:c4:12:e4:7d:c2:f0:9f:1c:2b:14:46:4f:b2: 91:50:92:57:cf:70:c2:db:25:21:7a:d7:29:2f:7f: ff:ba:98:48:32:74:19:40:33:7c:e2:9a:78:3e:0d: 71:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:10:7C:19:07:A4:9A:8A:2E:8C:26:A1:47:B0:A1:64:2F:C2:57:F6 X509v3 Authority Key Identifier: keyid:AA:8E:1B:E3:62:42:40:DC:33:02:04:7F:B4:1A:7D:4E:47:80:8E:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:46:0f:7a:ad:73:74:45:e9:ca:c0:5e:78:94:85:52:9e:32: 67:c6:1d:a3:52:99:41:07:ed:a7:02:38:71:c0:9f:c7:c9:9d: e1:7b:8a:72:7a:dc:f7:eb:3b:21:d5:46:8a:07:05:fa:0b:c2: 22:e6:29:24:85:96:33:7a:66:47:d2:02:85:0e:dc:30:e0:fd: 5a:79:1d:b5:26:20:4b:8a:20:b3:18:d4:83:8f:1b:44:ae:2d: 00:38:fa:3d:08:69:3b:8e:3b:39:60:7a:83:19:64:95:14:26: 62:de:ca:a5:da:49:d5:ee:6c:e2:41:3d:de:7e:26:4f:c7:42: 70:d1:77:b1:61:51:41:70:82:a1:2e:d6:b5:eb:dc:be:7a:0a: 46:18:b3:e0:ea:0b:7b:3b:eb:f7:4a:82:93:65:a7:01:41:dc: 76:1a:13:59:70:00:0f:0e:86:c1:81:b8:77:73:ad:60:3d:ae: 11:3c:e2:a5:37:c2:bc:79:a0:be:80:cc:87:67:07:36:1d:44: aa:07:50:a3:61:b5:43:e1:5d:d1:98:4b:a4:da:0e:a7:8c:c0: df:5f:19:bb:0a:f4:dd:42:3a:ee:e2:d1:af:fa:ec:0e:0f:4e: 9b:d1:48:ef:70:82:27:a7:47:ee:86:3a:a3:0d:0d:5a:61:e4: f4:1e:f1:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU1MDkxMTAvBgNVBAUTKEFBOEUxQkUzNjI0MjQwREMzMzAyMDQ3RkI0MUE3RDRF NDc4MDhFRjgwHhcNMjUxMTA0MjAxNDI0WhcNMjUxMTExMjAxNDI0WjAYMRYwFAYD VQQDEw02OTBhNWVhMS0yODk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxPZXmvoguLF3KxkOZfrOA6nbTmtq1ke799yRJxcfuTtW9HdXBoGZ8AruBfo4 oTlJkLsC+z5apjEl55nS1MqdFxI1ZRZdG9eBRRigqUXStYfz2y/FlIwsNwLMErVg 8Ha5dRa/JCUgTsr89/vQQeiuHQ6E/50yhATlwpwK8iEHy1KGAk0RR8n+b0jzEFoB 8l80AWwtHzM7mhlim6o2VDDGyetZI0jywt/TPfbYT8L9JNGICe2xzkKVsjUV+oAv Lts6hOM7j5xx0c3ASZfCle6/x8Jcl8QS5H3C8J8cKxRGT7KRUJJXz3DC2yUhetcp L3//uphIMnQZQDN84pp4Pg1xFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFEQfBkH pJqKLowmoUewoWQvwlf2MB8GA1UdIwQYMBaAFKqOG+NiQkDcMwIEf7QafU5HgI74 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTUwOS83OUVBNTkxRUE3 QkQxMUVBQUFBNjI5NDhDNEY5QUUwMi9xbzRiNDJKQ1FOd3pBZ1JfdEJwOVRrZUFq dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FvNGI0MkpDUU53ekFnUl90QnA5VGtlQWp2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTUwOS83OUVBNTkxRUE3QkQxMUVBQUFBNjI5NDhDNEY5QUUwMi9xbzRiNDJKQ1FO d3pBZ1JfdEJwOVRrZUFqdmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYRg96rXN0RenKwF54lIVSnjJnxh2jUplBB+2nAjhxwJ/HyZ3he4py etz36zsh1UaKBwX6C8Ii5ikkhZYzemZH0gKFDtww4P1aeR21JiBLiiCzGNSDjxtE ri0AOPo9CGk7jjs5YHqDGWSVFCZi3sql2knV7mziQT3efiZPx0Jw0XexYVFBcIKh Lta169y+egpGGLPg6gt7O+v3SoKTZacBQdx2GhNZcAAPDobBgbh3c61gPa4RPOKl N8K8eaC+gMyHZwc2HUSqB1CjYbVD4V3RmEuk2g6njMDfXxm7CvTdQjru4tGv+uwO D06b0UjvcIInp0fuhjqjDQ1aYeT0HvGQ -----END CERTIFICATE-----Generated at Wed Nov 5 13:29:44 2025 by rpki-client