$ rpki-client -vvf rpki.apnic.net/member_repository/A913089B/544C2050614611F0B4864E5AC4F9AE02/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.mft File: QD8ufk2rE8QZxoaQyUmVR_LFj8Q.mft (raw, json) Hash identifier: kR0eAs9M2zOMwNG8chQCkE87nw4Ytz/en8WCJ/gP7Gs= Subject key identifier: DB:83:6A:19:F4:A8:AB:C8:59:E0:F8:EF:E5:5F:80:10:6F:AB:9D:66 Authority key identifier: 40:3F:2E:7E:4D:AB:13:C4:19:C6:86:90:C9:49:95:47:F2:C5:8F:C4 Certificate issuer: /CN=A913089B/serialNumber=403F2E7E4DAB13C419C68690C9499547F2C58FC4 Certificate serial: 37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913089B/544C2050614611F0B4864E5AC4F9AE02/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.mft Manifest number: 36 Signing time: Mon 27 Oct 2025 10:04:26 +0000 Manifest this update: Mon 27 Oct 2025 10:04:26 +0000 Manifest next update: Mon 03 Nov 2025 10:04:26 +0000 Files and hashes: 1: QD8ufk2rE8QZxoaQyUmVR_LFj8Q.crl (hash: SJsrp6jtTFd7XRJ72quyBZYFEC/QK+UcuZwuIGcF2E4=) 2: AE811872614711F0B811645EC4F9AE02.roa (hash: n6Y55/ceR16qJJFVpXKIJxFXBfe/NuJGfnCy2fEW8mM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913089B/544C2050614611F0B4864E5AC4F9AE02/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.crl rsync://rpki.apnic.net/member_repository/A913089B/544C2050614611F0B4864E5AC4F9AE02/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 10:04:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913089B, serialNumber=403F2E7E4DAB13C419C68690C9499547F2C58FC4 Validity Not Before: Oct 27 10:04:26 2025 GMT Not After : Nov 3 10:04:26 2025 GMT Subject: CN=68ff43aa-390a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:3e:fb:e4:99:08:bc:9a:2f:ae:98:9b:ce:dc: aa:0c:aa:26:f1:ef:b3:6e:d4:4a:9e:59:de:75:91: 53:88:be:f7:8d:6c:6c:67:e5:52:42:73:28:de:eb: c3:d4:90:2f:2e:a2:63:33:a3:4c:27:93:16:bf:5d: e3:8d:51:fc:4b:d2:b7:99:06:b8:ed:2b:6f:1a:ad: 0b:6c:72:08:b3:6c:49:fe:95:97:f1:48:45:d5:2c: 1d:f3:86:b8:25:75:45:1c:86:4b:4d:e2:f7:99:9b: 55:a2:e4:45:75:e8:d8:ea:76:35:e4:a0:8f:06:40: 61:ef:eb:e3:a9:b8:59:3d:45:86:3a:f3:11:bd:d3: f9:88:63:56:da:f2:4d:70:bf:6b:f6:b4:1f:df:cb: 5a:e0:f6:77:ef:19:55:80:a3:ea:aa:25:f3:f0:8b: 07:1a:f7:d0:3a:a4:a6:8f:d1:1d:70:c9:ac:a8:fc: a7:c2:66:2d:95:95:57:02:d3:6e:3d:9f:35:df:4e: fd:af:50:4f:d7:a2:51:43:b4:77:7e:1f:c9:42:1e: 1a:cb:14:b1:11:d2:27:66:16:66:7a:52:89:7d:07: 6b:ef:90:40:b4:3a:b7:df:cc:e9:08:2d:36:b8:49: f9:96:ae:b4:85:b7:da:72:3b:db:44:3b:b6:22:78: 3f:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:83:6A:19:F4:A8:AB:C8:59:E0:F8:EF:E5:5F:80:10:6F:AB:9D:66 X509v3 Authority Key Identifier: keyid:40:3F:2E:7E:4D:AB:13:C4:19:C6:86:90:C9:49:95:47:F2:C5:8F:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913089B/544C2050614611F0B4864E5AC4F9AE02/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913089B/544C2050614611F0B4864E5AC4F9AE02/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:39:4b:11:fe:ff:c6:c6:64:76:07:93:e3:75:6f:11:a1:32: 4f:35:5f:40:0c:1a:26:09:cd:50:fc:78:0b:95:b3:e4:a5:a3: d7:e4:46:90:52:f2:b0:02:5f:a1:88:1a:61:81:54:56:c6:ca: 08:c1:29:50:50:70:02:5f:0d:2e:ba:4e:d9:ee:0c:86:04:0b: cc:ed:9b:68:53:f0:05:19:7a:91:fa:6d:a3:15:94:13:d8:30: f7:7b:93:45:80:44:93:c2:31:26:96:ef:2e:2c:e6:c1:46:d1: 65:90:ac:65:17:b5:22:31:9b:a2:fe:3f:70:f2:56:d5:7b:f2: 2b:74:91:c3:73:fd:17:21:90:17:b1:4e:19:a6:ce:26:e8:13: c3:3a:66:db:32:cb:68:f0:a1:8c:6e:c4:29:0f:8b:a5:40:86: c8:ba:e2:b0:79:a8:29:df:2f:fe:63:8e:e2:d7:85:21:99:86: 4e:b3:0d:8f:49:38:a3:00:b1:df:7c:73:f9:7d:4e:1f:aa:0b: 5f:5c:a5:d0:0c:f2:95:1a:8e:3e:31:73:10:88:e3:7d:dd:6d: 13:92:fb:0e:1d:4f:7a:9f:52:36:e7:07:10:1c:d3:93:0c:56: 7a:75:3f:6b:ea:35:6d:38:4e:25:54:17:73:11:c8:f7:37:cf: 5a:7b:43:aa -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MDg5QjExMC8GA1UEBRMoNDAzRjJFN0U0REFCMTNDNDE5QzY4NjkwQzk0OTk1NDdG MkM1OEZDNDAeFw0yNTEwMjcxMDA0MjZaFw0yNTExMDMxMDA0MjZaMBgxFjAUBgNV BAMTDTY4ZmY0M2FhLTM5MGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBPvvkmQi8mi+umJvO3KoMqibx77Nu1EqeWd51kVOIvveNbGxn5VJCcyje68PU kC8uomMzo0wnkxa/XeONUfxL0reZBrjtK28arQtscgizbEn+lZfxSEXVLB3zhrgl dUUchktN4veZm1Wi5EV16NjqdjXkoI8GQGHv6+OpuFk9RYY68xG90/mIY1ba8k1w v2v2tB/fy1rg9nfvGVWAo+qqJfPwiwca99A6pKaP0R1wyayo/KfCZi2VlVcC0249 nzXfTv2vUE/XolFDtHd+H8lCHhrLFLER0idmFmZ6Uol9B2vvkEC0OrffzOkILTa4 SfmWrrSFt9pyO9tEO7YieD9/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU24NqGfSo q8hZ4Pjv5V+AEG+rnWYwHwYDVR0jBBgwFoAUQD8ufk2rE8QZxoaQyUmVR/LFj8Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMwODlCLzU0NEMyMDUwNjE0 NjExRjBCNDg2NEU1QUM0RjlBRTAyL1FEOHVmazJyRThRWnhvYVF5VW1WUl9MRmo4 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUUQ4dWZrMnJFOFFaeG9hUXlVbVZSX0xGajhRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMw ODlCLzU0NEMyMDUwNjE0NjExRjBCNDg2NEU1QUM0RjlBRTAyL1FEOHVmazJyRThR WnhvYVF5VW1WUl9MRmo4US5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA85SxH+/8bGZHYHk+N1bxGhMk81X0AMGiYJzVD8eAuVs+Slo9fkRpBS 8rACX6GIGmGBVFbGygjBKVBQcAJfDS66TtnuDIYEC8ztm2hT8AUZepH6baMVlBPY MPd7k0WARJPCMSaW7y4s5sFG0WWQrGUXtSIxm6L+P3DyVtV78it0kcNz/RchkBex ThmmziboE8M6Ztsyy2jwoYxuxCkPi6VAhsi64rB5qCnfL/5jjuLXhSGZhk6zDY9J OKMAsd98c/l9Th+qC19cpdAM8pUajj4xcxCI433dbROS+w4dT3qfUjbnBxAc05MM Vnp1P2vqNW04TiVUF3MRyPc3z1p7Q6o= -----END CERTIFICATE-----Generated at Tue Oct 28 07:36:06 2025 by rpki-client