$ rpki-client -vvf rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft File: Q2XRedW3PoqX7eBQXynvAMLWPvk.mft (raw, json) Hash identifier: Cb048FH/hTKIG+0T5vNP8M4avcpGukA7ipYRO/Cnb+w= Subject key identifier: A0:02:97:5A:9A:03:D0:4A:60:0F:B6:9D:FF:F6:EE:C1:C9:08:81:7D Authority key identifier: 43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 Certificate issuer: /CN=A9139555/serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Certificate serial: 02F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft Manifest number: 02EC Signing time: Mon 03 Nov 2025 01:13:57 +0000 Manifest this update: Mon 03 Nov 2025 01:13:56 +0000 Manifest next update: Mon 10 Nov 2025 01:13:56 +0000 Files and hashes: 1: Q2XRedW3PoqX7eBQXynvAMLWPvk.crl (hash: 3DBYb5l1VLSs670+F2Y5kfH7dSeG1RVvjnTludR/2fM=) 2: E9A9531644D611F0ABB89277C4F9AE02.roa (hash: GeKHBnqKWQ5odcVSCSiPOuNHSoS5ENhlNwIJeq+zQ50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:13:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 757 (0x2f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139555, serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Validity Not Before: Nov 3 01:13:56 2025 GMT Not After : Nov 10 01:13:56 2025 GMT Subject: CN=690801d4-7cc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:3c:73:52:04:c8:66:15:d5:2f:81:7d:a7:12: ae:7f:6c:7f:21:ac:1a:19:5b:e1:0b:b2:bf:5a:23: dc:c1:d9:9b:c4:6c:d2:92:b9:c9:9b:53:64:08:b6: 97:f8:07:05:bf:a3:3f:78:93:5a:3a:82:5c:8e:70: d5:0e:3c:67:76:8b:d4:c0:13:06:ee:60:77:aa:44: d9:d0:85:35:53:e0:1f:84:84:91:34:f2:25:d6:97: 9a:f2:10:61:b4:76:27:7a:14:5b:43:17:79:b6:8a: 40:23:3c:d6:f0:8d:93:02:9f:e8:70:54:ae:07:47: c2:49:d0:9a:d0:0a:39:85:45:da:d1:0c:90:64:e9: 5b:50:7c:22:08:ba:c9:11:2e:6a:0f:0f:3c:dc:56: 44:9a:20:4c:32:ff:7e:05:be:b8:dc:3d:0f:c4:af: 04:f2:a9:00:03:64:93:f0:19:65:68:f8:93:ba:0e: c6:dd:e8:c6:0e:3e:c6:ad:67:ab:a2:24:c6:64:28: da:6a:f0:49:27:01:67:d5:05:9e:48:ca:04:a4:57: bf:31:e8:c0:42:68:03:35:be:82:5f:55:21:ad:31: a2:e8:5e:57:91:11:67:57:b4:07:7b:0b:4a:07:3e: 6b:d7:0f:a2:7f:97:41:fa:61:64:69:37:b0:84:bb: 99:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:02:97:5A:9A:03:D0:4A:60:0F:B6:9D:FF:F6:EE:C1:C9:08:81:7D X509v3 Authority Key Identifier: keyid:43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:0a:71:44:91:04:10:ec:f7:1c:c3:ac:d1:b8:35:a2:0d:45: 4d:d9:ce:a9:f0:be:91:c7:4b:23:cd:59:b4:b4:0f:bd:8e:4b: c3:13:fc:2f:be:3f:a5:77:ae:06:d9:52:60:29:0e:fe:81:c8: 91:a2:bf:b1:d6:da:ba:60:8e:a7:dc:09:93:9e:fa:8a:ff:a3: a3:68:03:d3:ef:1c:30:1e:db:02:ab:74:89:3f:fc:01:9b:a9: 94:4a:7e:1c:ce:fd:15:02:d1:f9:47:fb:6d:99:14:16:f6:ac: 0b:15:b6:84:bb:27:46:bd:56:61:7e:be:d5:82:9a:f7:16:27: d3:cc:9b:65:86:60:b1:8b:30:0a:49:a3:fc:66:da:c1:a2:bb: e5:4d:05:13:e8:04:5a:66:c8:a7:73:04:c2:14:94:0d:a3:ce: d9:f7:ca:17:68:80:a1:43:50:9a:a2:4c:42:76:cb:ea:35:3f: c4:dc:34:ad:28:e5:c9:5e:09:e3:37:65:f8:64:8d:bb:99:d8: bb:8e:23:f7:95:33:17:62:62:9a:61:e5:2c:44:6a:6f:10:82: 97:fc:4f:42:78:34:42:b1:13:7e:a4:66:d8:d0:ec:cf:65:93: c5:56:15:3e:e9:81:a6:45:68:0e:97:66:5d:0d:ae:63:1a:51: 5c:2b:87:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk1NTUxMTAvBgNVBAUTKDQzNjVEMTc5RDVCNzNFOEE5N0VERTA1MDVGMjlFRjAw QzJENjNFRjkwHhcNMjUxMTAzMDExMzU2WhcNMjUxMTEwMDExMzU2WjAYMRYwFAYD VQQDEw02OTA4MDFkNC03Y2MxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTxzUgTIZhXVL4F9pxKuf2x/IawaGVvhC7K/WiPcwdmbxGzSkrnJm1NkCLaX +AcFv6M/eJNaOoJcjnDVDjxndovUwBMG7mB3qkTZ0IU1U+AfhISRNPIl1pea8hBh tHYnehRbQxd5topAIzzW8I2TAp/ocFSuB0fCSdCa0Ao5hUXa0QyQZOlbUHwiCLrJ ES5qDw883FZEmiBMMv9+Bb643D0PxK8E8qkAA2ST8BllaPiTug7G3ejGDj7GrWer oiTGZCjaavBJJwFn1QWeSMoEpFe/MejAQmgDNb6CX1UhrTGi6F5XkRFnV7QHewtK Bz5r1w+if5dB+mFkaTewhLuZtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKACl1qa A9BKYA+2nf/27sHJCIF9MB8GA1UdIwQYMBaAFENl0XnVtz6Kl+3gUF8p7wDC1j75 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTU1NS9EQzdEMTQ1QTAy MkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1BvcVg3ZUJRWHludkFNTFdQ dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EyWFJlZFczUG9xWDdlQlFYeW52QU1MV1B2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTU1NS9EQzdEMTQ1QTAyMkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1Bv cVg3ZUJRWHludkFNTFdQdmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASCnFEkQQQ7Pccw6zRuDWiDUVN2c6p8L6Rx0sjzVm0tA+9jkvDE/wv vj+ld64G2VJgKQ7+gciRor+x1tq6YI6n3AmTnvqK/6OjaAPT7xwwHtsCq3SJP/wB m6mUSn4czv0VAtH5R/ttmRQW9qwLFbaEuydGvVZhfr7Vgpr3FifTzJtlhmCxizAK SaP8ZtrBorvlTQUT6ARaZsincwTCFJQNo87Z98oXaIChQ1CaokxCdsvqNT/E3DSt KOXJXgnjN2X4ZI27mdi7jiP3lTMXYmKaYeUsRGpvEIKX/E9CeDRCsRN+pGbY0OzP ZZPFVhU+6YGmRWgOl2ZdDa5jGlFcK4df -----END CERTIFICATE-----Generated at Tue Nov 4 08:30:09 2025 by rpki-client