$ rpki-client -vvf rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft File: QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft (raw, json) Hash identifier: zoa6s4W1+CgYIo7xPaVLS6xxKrsio8uYlKbGSIK+p/Q= Subject key identifier: 11:22:82:BC:D0:8A:41:6B:DE:A9:69:2E:6B:0B:DB:45:09:7F:E7:16 Authority key identifier: 40:3B:B7:B9:18:F9:15:4A:D8:2C:2A:D3:5A:EF:C0:AB:E8:D0:6A:DE Certificate issuer: /CN=A913631F/serialNumber=403BB7B918F9154AD82C2AD35AEFC0ABE8D06ADE Certificate serial: 94 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft Manifest number: 93 Signing time: Thu 23 Oct 2025 08:33:02 +0000 Manifest this update: Thu 23 Oct 2025 08:33:01 +0000 Manifest next update: Thu 30 Oct 2025 08:33:01 +0000 Files and hashes: 1: QDu3uRj5FUrYLCrTWu_Aq-jQat4.crl (hash: X1z0mWryMZNTRfFQsKGfdPs83hQEd6z0Yv04x+hvuyo=) 2: CA9B891ACF1C11EF981F2F86C4F9AE02.roa (hash: DSiGqsj/wHYJqRQngYpUalsfP9r6Z3qaSue0LX+uo6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.crl rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 08:33:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 148 (0x94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913631F, serialNumber=403BB7B918F9154AD82C2AD35AEFC0ABE8D06ADE Validity Not Before: Oct 23 08:33:01 2025 GMT Not After : Oct 30 08:33:01 2025 GMT Subject: CN=68f9e83e-dd3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f0:ef:fd:e5:93:a0:5e:18:fc:27:e4:96:a0: c2:ac:79:67:3c:f5:d8:ba:90:50:04:44:1e:0b:0d: 9c:07:a9:b4:82:7d:83:e8:f5:33:23:f7:38:14:db: 18:59:94:4e:3a:b0:63:ac:0e:16:5e:a4:11:ce:75: 01:3b:f6:4f:ba:bb:97:99:6a:a5:4b:da:71:a9:7a: d8:12:1e:2c:4a:20:5a:99:97:f5:87:1e:f4:38:71: 1a:72:aa:6c:5d:09:5e:57:49:c3:e7:19:f3:e1:e9: ff:73:68:50:af:9c:ff:9d:62:fa:3a:94:62:80:50: 58:93:5e:28:49:e6:e8:eb:02:01:9e:a6:ef:e7:5b: 59:78:d7:64:9b:32:41:60:d6:95:51:be:17:98:e1: d6:c0:40:53:3e:f1:b9:2d:e4:7b:67:e5:60:2b:b0: 6f:1d:ba:ad:9c:f4:11:b1:22:e6:53:70:b3:79:db: 2c:a9:73:4a:12:3c:95:e3:16:64:36:4b:21:21:3e: 74:5b:e9:fe:46:81:43:8d:a1:a6:50:44:8d:18:9c: 0e:10:99:e8:c1:70:f8:f5:21:5c:ac:a4:76:4e:4f: 87:2f:98:eb:13:e8:d9:7f:96:3c:a3:10:7d:ad:39: 2c:76:38:69:35:d0:53:d7:a6:39:5d:3a:39:1a:18: a2:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:22:82:BC:D0:8A:41:6B:DE:A9:69:2E:6B:0B:DB:45:09:7F:E7:16 X509v3 Authority Key Identifier: keyid:40:3B:B7:B9:18:F9:15:4A:D8:2C:2A:D3:5A:EF:C0:AB:E8:D0:6A:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:f6:7a:a4:6f:70:26:2f:4b:a6:5f:af:60:af:74:cf:af:68: 45:91:62:6a:4f:b0:4e:91:e1:c7:05:33:ca:e1:fb:3d:a8:0e: 19:75:7c:55:97:bf:6a:b7:c2:67:72:3a:00:77:7f:70:2d:a0: fc:f1:1f:e4:68:05:db:e6:c6:77:c9:a6:ca:60:4a:75:35:e7: 88:22:8b:0f:b8:49:06:3c:b9:a3:f9:48:b5:d4:1d:e3:89:ac: 48:fc:5f:e6:9d:4d:d0:54:fa:2e:ef:b8:f2:63:b1:9b:57:6f: dd:a1:7a:9e:2d:77:44:12:e4:0f:bd:21:ac:60:d2:69:9c:19: 8d:d9:e0:c3:6d:86:c7:cf:4e:2a:44:b4:ae:4c:bc:18:77:90: 1d:77:e3:2c:d8:e0:2b:18:0d:da:02:e7:e1:90:fe:2a:82:f8: dc:3a:ea:c8:12:17:df:fc:b8:bd:b3:96:96:44:0d:0f:37:96: 65:8e:3f:57:19:15:c7:7a:d4:68:3a:51:ba:3e:b3:28:d7:c0: 07:54:08:6b:8f:db:38:a6:22:ca:a3:92:c5:fa:df:32:c0:21: 7a:cb:5e:8d:9a:f3:9a:43:c1:8d:03:31:62:2f:b6:70:f2:40: a6:81:16:ca:b4:2b:2d:46:a7:5c:1d:57:a5:05:49:3e:5a:bc: 6b:fa:8e:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzYzMUYxMTAvBgNVBAUTKDQwM0JCN0I5MThGOTE1NEFEODJDMkFEMzVBRUZDMEFC RThEMDZBREUwHhcNMjUxMDIzMDgzMzAxWhcNMjUxMDMwMDgzMzAxWjAYMRYwFAYD VQQDEw02OGY5ZTgzZS1kZDNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0PDv/eWToF4Y/CfklqDCrHlnPPXYupBQBEQeCw2cB6m0gn2D6PUzI/c4FNsY WZROOrBjrA4WXqQRznUBO/ZPuruXmWqlS9pxqXrYEh4sSiBamZf1hx70OHEacqps XQleV0nD5xnz4en/c2hQr5z/nWL6OpRigFBYk14oSebo6wIBnqbv51tZeNdkmzJB YNaVUb4XmOHWwEBTPvG5LeR7Z+VgK7BvHbqtnPQRsSLmU3CzedssqXNKEjyV4xZk NkshIT50W+n+RoFDjaGmUESNGJwOEJnowXD49SFcrKR2Tk+HL5jrE+jZf5Y8oxB9 rTksdjhpNdBT16Y5XTo5GhiiMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBEigrzQ ikFr3qlpLmsL20UJf+cWMB8GA1UdIwQYMBaAFEA7t7kY+RVK2Cwq01rvwKvo0Gre MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjMxRi83QjNGMEIxQ0NG MUMxMUVGODE5NDdGODVDNEY5QUUwMi9RRHUzdVJqNUZVcllMQ3JUV3VfQXEtalFh dDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FEdTN1Umo1RlVyWUxDclRXdV9BcS1qUWF0NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjMxRi83QjNGMEIxQ0NGMUMxMUVGODE5NDdGODVDNEY5QUUwMi9RRHUzdVJqNUZV cllMQ3JUV3VfQXEtalFhdDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCi9nqkb3AmL0umX69gr3TPr2hFkWJqT7BOkeHHBTPK4fs9qA4ZdXxV l79qt8JncjoAd39wLaD88R/kaAXb5sZ3yabKYEp1NeeIIosPuEkGPLmj+Ui11B3j iaxI/F/mnU3QVPou77jyY7GbV2/doXqeLXdEEuQPvSGsYNJpnBmN2eDDbYbHz04q RLSuTLwYd5Add+Ms2OArGA3aAufhkP4qgvjcOurIEhff/Li9s5aWRA0PN5Zljj9X GRXHetRoOlG6PrMo18AHVAhrj9s4piLKo5LF+t8ywCF6y16NmvOaQ8GNAzFiL7Zw 8kCmgRbKtCstRqdcHVelBUk+Wrxr+o41 -----END CERTIFICATE-----Generated at Fri Oct 24 18:56:26 2025 by rpki-client