$ rpki-client -vvf rpki.apnic.net/member_repository/A9131D5E/56DD48DED94711EB9A1A0D71C4F9AE02/QeLjUgZMov-eIcSENVrALkQHJY0.mft File: QeLjUgZMov-eIcSENVrALkQHJY0.mft (raw, json) Hash identifier: MdXxeFyazG176UXBFgh67PPgg5arncMSv2OATBEQ34c= Subject key identifier: 41:FE:02:A0:D2:F6:A5:E9:F7:98:9D:CE:92:C6:AC:FE:48:20:CE:36 Authority key identifier: 41:E2:E3:52:06:4C:A2:FF:9E:21:C4:84:35:5A:C0:2E:44:07:25:8D Certificate issuer: /CN=A9131D5E/serialNumber=41E2E352064CA2FF9E21C484355AC02E4407258D Certificate serial: 05DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeLjUgZMov-eIcSENVrALkQHJY0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131D5E/56DD48DED94711EB9A1A0D71C4F9AE02/QeLjUgZMov-eIcSENVrALkQHJY0.mft Manifest number: 05D8 Signing time: Tue 04 Nov 2025 23:05:34 +0000 Manifest this update: Tue 04 Nov 2025 23:05:33 +0000 Manifest next update: Tue 11 Nov 2025 23:05:33 +0000 Files and hashes: 1: QeLjUgZMov-eIcSENVrALkQHJY0.crl (hash: tTWWHqS/a7HPQ6PV9o95LabNJozBiU9Ky3SG51A5SLc=) 2: 9B41336A9ABB11EC9D11861FC4F9AE02.roa (hash: JjNvo6+sKFXJO5jB79ObwXmzISqdgMEQqhlFwLrXnJs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131D5E/56DD48DED94711EB9A1A0D71C4F9AE02/QeLjUgZMov-eIcSENVrALkQHJY0.crl rsync://rpki.apnic.net/member_repository/A9131D5E/56DD48DED94711EB9A1A0D71C4F9AE02/QeLjUgZMov-eIcSENVrALkQHJY0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeLjUgZMov-eIcSENVrALkQHJY0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:05:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1503 (0x5df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131D5E, serialNumber=41E2E352064CA2FF9E21C484355AC02E4407258D Validity Not Before: Nov 4 23:05:33 2025 GMT Not After : Nov 11 23:05:33 2025 GMT Subject: CN=690a86bd-ca7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ed:6f:52:41:a0:46:30:b4:d0:d5:b5:85:4e: 81:85:75:4b:2a:e4:a4:09:49:d8:dd:31:57:0f:fd: eb:2b:c4:fb:3c:f5:0c:f8:ba:f6:ae:26:7a:8b:53: c9:25:fd:2c:8b:93:6d:94:64:b3:15:89:04:ce:e1: 01:83:97:17:14:32:0d:51:39:da:5f:f3:f3:1a:61: df:7e:9b:85:e1:51:b9:cc:a7:85:70:d0:d6:ec:e2: c4:0a:c2:8c:44:aa:d6:d3:75:f3:61:d5:4a:74:d2: 23:6b:a0:43:05:b4:fd:84:be:56:a7:3d:d7:f5:30: 76:3c:2a:29:75:56:a6:f3:71:b0:a0:71:ac:f8:83: bb:16:17:77:77:33:82:a9:d6:80:fb:50:45:0d:0f: aa:11:80:61:83:83:c8:7c:48:43:23:67:a4:19:a2: ff:c7:c6:a5:87:f5:d6:ce:a2:f7:d9:d9:ff:8d:8c: e8:63:d3:98:f8:9e:79:65:60:46:eb:35:fd:38:e5: 17:d2:fc:e3:55:aa:db:ee:be:09:74:cd:87:34:11: ad:ae:7c:32:3d:f9:df:e0:a1:55:05:a3:89:eb:51: c5:66:60:42:38:bc:50:54:a6:4c:6e:17:5b:a4:1c: 93:65:ef:95:79:05:ab:4c:0f:88:65:4f:9d:78:1a: 17:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:FE:02:A0:D2:F6:A5:E9:F7:98:9D:CE:92:C6:AC:FE:48:20:CE:36 X509v3 Authority Key Identifier: keyid:41:E2:E3:52:06:4C:A2:FF:9E:21:C4:84:35:5A:C0:2E:44:07:25:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131D5E/56DD48DED94711EB9A1A0D71C4F9AE02/QeLjUgZMov-eIcSENVrALkQHJY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeLjUgZMov-eIcSENVrALkQHJY0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131D5E/56DD48DED94711EB9A1A0D71C4F9AE02/QeLjUgZMov-eIcSENVrALkQHJY0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:ab:7b:7c:b8:8c:6f:c3:12:3a:91:e9:7b:b8:3c:03:75:02: c0:d9:72:0c:f5:9e:59:70:c8:3c:a3:b6:cc:81:77:56:31:ea: 74:d8:c8:f4:3b:fb:93:fd:f3:6e:6d:3d:45:57:15:e8:0b:26: 9b:93:53:7e:5b:77:83:7b:84:6c:9c:92:2e:40:e7:a2:e4:bb: 33:22:aa:5b:0f:f4:8a:01:be:73:db:5a:58:87:fa:85:40:01: 04:40:48:ad:10:42:9b:68:5b:9e:1c:fe:c4:44:79:ce:2d:75: 89:0c:11:36:0e:52:7f:d7:e0:7b:c6:68:9b:52:16:84:e2:81: 4d:eb:a6:91:6e:ee:63:1d:f8:f8:5f:95:7c:a9:35:0d:ac:25: 00:91:44:56:55:7a:45:12:83:57:8c:1c:70:8f:56:62:c7:18: 8c:6a:4f:2a:ac:db:4c:88:cc:07:7b:5d:ae:1f:ff:08:a8:9e: 0a:c3:b2:ed:8d:43:d7:e0:fa:ef:78:40:ea:20:96:a7:f0:34: b3:cf:82:fc:f1:27:05:06:39:eb:eb:ba:07:33:49:7e:55:ea: 44:dc:d7:9d:af:8a:2c:58:b3:d5:45:43:ea:86:40:ad:ee:0b: cc:14:e9:c0:96:96:08:c5:7c:8a:d7:ed:26:c9:de:4b:95:00: d6:64:83:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFENUUxMTAvBgNVBAUTKDQxRTJFMzUyMDY0Q0EyRkY5RTIxQzQ4NDM1NUFDMDJF NDQwNzI1OEQwHhcNMjUxMTA0MjMwNTMzWhcNMjUxMTExMjMwNTMzWjAYMRYwFAYD VQQDEw02OTBhODZiZC1jYTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyu1vUkGgRjC00NW1hU6BhXVLKuSkCUnY3TFXD/3rK8T7PPUM+Lr2riZ6i1PJ Jf0si5NtlGSzFYkEzuEBg5cXFDINUTnaX/PzGmHffpuF4VG5zKeFcNDW7OLECsKM RKrW03XzYdVKdNIja6BDBbT9hL5Wpz3X9TB2PCopdVam83GwoHGs+IO7Fhd3dzOC qdaA+1BFDQ+qEYBhg4PIfEhDI2ekGaL/x8alh/XWzqL32dn/jYzoY9OY+J55ZWBG 6zX9OOUX0vzjVarb7r4JdM2HNBGtrnwyPfnf4KFVBaOJ61HFZmBCOLxQVKZMbhdb pByTZe+VeQWrTA+IZU+deBoXSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEH+AqDS 9qXp95idzpLGrP5IIM42MB8GA1UdIwQYMBaAFEHi41IGTKL/niHEhDVawC5EByWN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUQ1RS81NkRENDhERUQ5 NDcxMUVCOUExQTBENzFDNEY5QUUwMi9RZUxqVWdaTW92LWVJY1NFTlZyQUxrUUhK WTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FlTGpVZ1pNb3YtZUljU0VOVnJBTGtRSEpZMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUQ1RS81NkRENDhERUQ5NDcxMUVCOUExQTBENzFDNEY5QUUwMi9RZUxqVWdaTW92 LWVJY1NFTlZyQUxrUUhKWTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwq3t8uIxvwxI6kel7uDwDdQLA2XIM9Z5ZcMg8o7bMgXdWMep02Mj0 O/uT/fNubT1FVxXoCyabk1N+W3eDe4RsnJIuQOei5LszIqpbD/SKAb5z21pYh/qF QAEEQEitEEKbaFueHP7ERHnOLXWJDBE2DlJ/1+B7xmibUhaE4oFN66aRbu5jHfj4 X5V8qTUNrCUAkURWVXpFEoNXjBxwj1ZixxiMak8qrNtMiMwHe12uH/8IqJ4Kw7Lt jUPX4PrveEDqIJan8DSzz4L88ScFBjnr67oHM0l+VepE3Nedr4osWLPVRUPqhkCt 7gvMFOnAlpYIxXyK1+0myd5LlQDWZIOp -----END CERTIFICATE-----Generated at Wed Nov 5 14:41:06 2025 by rpki-client