$ rpki-client -vvf rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft File: QG4t-6oOoAfdxmmT8sezCNoKGlc.mft (raw, json) Hash identifier: rYVqwJpUmPic7BTvJe2pwdLufqX4HgtezOH7iJhDY/k= Subject key identifier: A2:45:03:9B:AF:56:09:DB:F9:8A:2D:ED:66:1F:46:42:A1:46:F9:7B Authority key identifier: 40:6E:2D:FB:AA:0E:A0:07:DD:C6:69:93:F2:C7:B3:08:DA:0A:1A:57 Certificate issuer: /CN=A91315C1/serialNumber=406E2DFBAA0EA007DDC66993F2C7B308DA0A1A57 Certificate serial: 0C22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft Manifest number: 0C1A Signing time: Sun 02 Nov 2025 18:43:15 +0000 Manifest this update: Sun 02 Nov 2025 18:43:14 +0000 Manifest next update: Sun 09 Nov 2025 18:43:14 +0000 Files and hashes: 1: QG4t-6oOoAfdxmmT8sezCNoKGlc.crl (hash: 9HOT3vPB19ws5OZgcu31Y40rZpg4UCORn8PDeLdXVvU=) 2: 9D6DB59E1C5211EA8C6AAE37C4F9AE02.roa (hash: fjLr8uQxYz0b2IkiqsLdHlpaSbA1UhMnKJdo096hNVQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.crl rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:43:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3106 (0xc22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91315C1, serialNumber=406E2DFBAA0EA007DDC66993F2C7B308DA0A1A57 Validity Not Before: Nov 2 18:43:14 2025 GMT Not After : Nov 9 18:43:14 2025 GMT Subject: CN=6907a643-6328 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:db:46:b6:77:0d:f2:f7:55:70:b4:c4:d9:36: 7f:80:b1:fa:21:31:dd:96:6a:47:71:3c:f6:0c:5c: b2:e8:25:47:a0:3c:ac:93:e2:73:44:8f:c7:6a:09: 25:07:12:a0:42:b0:29:04:6b:ff:e6:a6:41:d7:bb: 94:98:ef:8b:e7:86:e7:24:cd:59:8a:67:3f:6f:3e: cd:f9:b2:b8:40:54:72:df:4e:97:2c:6f:ac:77:39: 52:24:c9:b5:bc:fb:ac:ae:16:48:22:36:99:c6:3d: 65:6a:b0:84:be:fa:bc:2b:76:26:28:ae:4a:a0:7c: 63:53:52:06:63:0d:3c:c6:20:7b:90:4c:21:bd:09: c9:56:07:d7:5b:d4:87:15:67:56:e5:d7:38:fa:32: f8:6d:be:71:25:63:62:36:74:ee:17:4e:af:ce:03: ed:59:3d:0b:0b:57:af:5f:0e:5d:8a:29:d9:0c:8c: 82:f7:d3:d8:3a:9a:f6:b2:cc:50:76:cc:82:f5:da: 7e:a3:11:2d:db:a1:83:03:a1:0f:6b:14:a5:9e:91: ca:aa:18:64:b3:5f:7e:02:27:c1:8b:11:54:1e:d2: 02:e0:7a:1d:1b:ec:a1:27:60:76:02:88:5a:78:08: 24:d0:dd:40:9f:86:b8:5c:2c:0c:7d:a5:da:f3:73: 7c:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:45:03:9B:AF:56:09:DB:F9:8A:2D:ED:66:1F:46:42:A1:46:F9:7B X509v3 Authority Key Identifier: keyid:40:6E:2D:FB:AA:0E:A0:07:DD:C6:69:93:F2:C7:B3:08:DA:0A:1A:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:3b:db:4b:43:c2:b5:a9:62:6c:f9:7d:15:2e:49:3d:a9:8b: 20:c9:9b:0c:28:b7:ac:00:2b:bc:7d:2f:63:e5:05:a5:40:65: e5:f8:e4:2e:fc:55:89:a8:70:ca:7c:ed:7b:e4:f5:f8:69:9a: c2:a0:ed:35:f1:b8:9d:d4:b0:77:ce:61:29:17:e0:dd:9f:ec: c2:b1:41:8c:f8:71:2f:98:66:c8:0d:72:eb:93:72:39:11:b3: 03:91:bb:99:32:ef:0a:86:6f:4a:55:b0:39:64:dd:9b:16:da: 3c:9c:ed:8e:4b:3b:07:90:74:1e:ae:d3:8c:48:dd:61:90:11: 21:e7:6a:bb:c2:7d:99:5a:83:60:db:5e:be:57:72:9c:34:5e: 8d:6e:13:11:57:86:91:35:48:12:49:8e:bb:a1:40:3f:64:fd: 42:59:83:a4:cf:6f:6c:e4:ef:7f:38:67:9d:00:be:32:b9:8c: 12:49:46:33:9e:74:76:c4:0d:10:f3:92:01:ab:4e:a5:6a:ca: 54:a1:d8:1a:1a:b6:90:df:c7:f2:33:b1:19:67:72:a0:46:9f: 3e:3b:97:0c:cc:d5:87:c0:41:3f:e2:08:d6:54:9d:16:43:e7: 91:25:88:05:10:f5:95:a9:55:05:04:f9:b2:17:fa:55:8f:35: 65:0d:80:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE1QzExMTAvBgNVBAUTKDQwNkUyREZCQUEwRUEwMDdEREM2Njk5M0YyQzdCMzA4 REEwQTFBNTcwHhcNMjUxMTAyMTg0MzE0WhcNMjUxMTA5MTg0MzE0WjAYMRYwFAYD VQQDEw02OTA3YTY0My02MzI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqttGtncN8vdVcLTE2TZ/gLH6ITHdlmpHcTz2DFyy6CVHoDysk+JzRI/Hagkl BxKgQrApBGv/5qZB17uUmO+L54bnJM1Zimc/bz7N+bK4QFRy306XLG+sdzlSJMm1 vPusrhZIIjaZxj1larCEvvq8K3YmKK5KoHxjU1IGYw08xiB7kEwhvQnJVgfXW9SH FWdW5dc4+jL4bb5xJWNiNnTuF06vzgPtWT0LC1evXw5diinZDIyC99PYOpr2ssxQ dsyC9dp+oxEt26GDA6EPaxSlnpHKqhhks19+AifBixFUHtIC4HodG+yhJ2B2Aoha eAgk0N1An4a4XCwMfaXa83N8swIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKJFA5uv Vgnb+Yot7WYfRkKhRvl7MB8GA1UdIwQYMBaAFEBuLfuqDqAH3cZpk/LHswjaChpX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTVDMS8zMDA5QThBQTFD NTIxMUVBODREMTk5MzdDNEY5QUUwMi9RRzR0LTZvT29BZmR4bW1UOHNlekNOb0tH bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FHNHQtNm9Pb0FmZHhtbVQ4c2V6Q05vS0dsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTVDMS8zMDA5QThBQTFDNTIxMUVBODREMTk5MzdDNEY5QUUwMi9RRzR0LTZvT29B ZmR4bW1UOHNlekNOb0tHbGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClO9tLQ8K1qWJs+X0VLkk9qYsgyZsMKLesACu8fS9j5QWlQGXl+OQu /FWJqHDKfO175PX4aZrCoO018bid1LB3zmEpF+Ddn+zCsUGM+HEvmGbIDXLrk3I5 EbMDkbuZMu8Khm9KVbA5ZN2bFto8nO2OSzsHkHQertOMSN1hkBEh52q7wn2ZWoNg 216+V3KcNF6NbhMRV4aRNUgSSY67oUA/ZP1CWYOkz29s5O9/OGedAL4yuYwSSUYz nnR2xA0Q85IBq06laspUodgaGraQ38fyM7EZZ3KgRp8+O5cMzNWHwEE/4gjWVJ0W Q+eRJYgFEPWVqVUFBPmyF/pVjzVlDYA/ -----END CERTIFICATE-----Generated at Mon Nov 3 18:19:35 2025 by rpki-client