$ rpki-client -vvf rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft File: QZ8npM_s9GHbgvb5BnZPttZfI88.mft (raw, json) Hash identifier: cMlkjeAd0W6ATz4GfVUS8+R1Lz5cp6XgU/Oh4Q2dx5I= Subject key identifier: 5D:38:32:7D:2D:61:9A:26:7C:F7:CB:6C:28:9B:44:51:B3:1F:46:71 Authority key identifier: 41:9F:27:A4:CF:EC:F4:61:DB:82:F6:F9:06:76:4F:B6:D6:5F:23:CF Certificate issuer: /CN=A9140BED/serialNumber=419F27A4CFECF461DB82F6F906764FB6D65F23CF Certificate serial: 0117 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft Manifest number: 0111 Signing time: Wed 05 Nov 2025 05:06:01 +0000 Manifest this update: Wed 05 Nov 2025 05:06:01 +0000 Manifest next update: Wed 12 Nov 2025 05:06:01 +0000 Files and hashes: 1: QZ8npM_s9GHbgvb5BnZPttZfI88.crl (hash: Au3knkNY+AUN9KiTvXBq0ET06mYJfQNtl3EFCzn6sI0=) 2: ED7C0BCC287211EFA1483A2FC4F9AE02.roa (hash: SNdFFgbNj8G/zNTVCnmByHJjfzC5p20PH2d/HShK4p8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.crl rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:06:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 279 (0x117) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140BED, serialNumber=419F27A4CFECF461DB82F6F906764FB6D65F23CF Validity Not Before: Nov 5 05:06:01 2025 GMT Not After : Nov 12 05:06:01 2025 GMT Subject: CN=690adb39-8ea8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:fd:02:d5:a2:96:b7:b5:e1:3c:50:42:60:14: 91:7d:ae:eb:0a:ba:82:2c:3a:4c:21:f6:46:94:74: 96:eb:c7:f5:17:0b:72:de:f2:dc:58:53:c1:0c:18: 1c:ed:7d:70:d1:ee:4f:09:e5:98:a4:72:f3:a9:da: 56:aa:d2:5e:b0:3e:95:2a:22:08:e3:e7:0f:1f:87: 5c:26:31:3a:42:0d:0c:bf:94:ca:84:dd:e5:60:ec: ec:d1:d6:ef:be:b1:63:31:bd:16:44:d2:00:28:b9: 54:22:92:48:fc:31:2d:54:a1:58:41:56:58:15:00: 80:6a:6c:82:11:2c:83:d2:8a:34:a2:c9:07:60:e3: 2d:22:9e:e8:f8:f8:3b:d3:d9:30:24:e9:4f:43:5b: f3:87:b5:22:75:c5:98:80:8b:ec:af:91:02:6b:89: d2:b1:57:fe:6a:28:0c:6e:90:f4:3f:d4:67:a0:dc: 49:77:eb:97:b3:ad:ea:62:cc:cf:a8:19:19:6c:1b: 9b:b3:fa:a8:09:f7:65:b7:39:c4:fc:b3:e5:25:cc: 04:63:10:bd:34:5c:f6:5c:89:bf:73:c3:f1:08:66: de:fd:47:60:ce:1a:73:ac:75:4e:09:a2:81:f6:3f: 4c:d6:a0:00:7b:36:ed:69:75:64:ed:f4:b3:83:ad: 26:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:38:32:7D:2D:61:9A:26:7C:F7:CB:6C:28:9B:44:51:B3:1F:46:71 X509v3 Authority Key Identifier: keyid:41:9F:27:A4:CF:EC:F4:61:DB:82:F6:F9:06:76:4F:B6:D6:5F:23:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:68:0c:21:f9:e1:82:49:c3:47:85:e3:83:68:b6:e0:e6:62: 2a:03:34:90:8e:01:c8:44:6c:ec:97:c7:98:aa:9a:42:50:74: e9:42:61:1a:49:97:a0:c1:3d:97:68:c5:53:75:8e:bb:44:3d: a6:f8:a1:b1:c6:7f:eb:29:66:27:36:bf:bc:23:5d:3c:8e:d9: 36:9b:c4:05:24:81:9b:34:b0:49:6d:70:9c:85:ab:a7:8c:f6: ed:62:03:a3:da:cf:fa:13:56:cb:26:fa:01:23:26:62:3b:a4: fc:36:ae:c1:98:58:59:58:54:ab:e3:89:d2:73:ed:3c:77:09: bb:b5:df:cb:99:44:bd:71:8b:cd:10:f4:a5:ad:87:27:61:b4: b9:0a:90:06:10:e4:7a:1b:17:6d:af:ec:db:3e:45:1f:41:70: 86:a6:dc:ef:ae:33:ba:a6:f2:91:4c:f7:b9:37:2d:1b:14:1c: 16:9e:36:30:c6:92:e9:cf:92:94:9e:e6:4b:d5:7a:b9:92:23: c0:15:5c:bd:2c:e8:a2:73:3d:88:a6:be:d0:8f:76:92:da:d2: 3b:35:ad:2d:19:4c:e7:98:7f:7f:0a:48:70:51:86:76:be:f3: b6:39:c5:89:3a:53:ea:79:a7:d2:ad:f1:94:23:f2:01:be:8f: 51:1f:45:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBCRUQxMTAvBgNVBAUTKDQxOUYyN0E0Q0ZFQ0Y0NjFEQjgyRjZGOTA2NzY0RkI2 RDY1RjIzQ0YwHhcNMjUxMTA1MDUwNjAxWhcNMjUxMTEyMDUwNjAxWjAYMRYwFAYD VQQDEw02OTBhZGIzOS04ZWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxf0C1aKWt7XhPFBCYBSRfa7rCrqCLDpMIfZGlHSW68f1Fwty3vLcWFPBDBgc 7X1w0e5PCeWYpHLzqdpWqtJesD6VKiII4+cPH4dcJjE6Qg0Mv5TKhN3lYOzs0dbv vrFjMb0WRNIAKLlUIpJI/DEtVKFYQVZYFQCAamyCESyD0oo0oskHYOMtIp7o+Pg7 09kwJOlPQ1vzh7UidcWYgIvsr5ECa4nSsVf+aigMbpD0P9RnoNxJd+uXs63qYszP qBkZbBubs/qoCfdltznE/LPlJcwEYxC9NFz2XIm/c8PxCGbe/UdgzhpzrHVOCaKB 9j9M1qAAezbtaXVk7fSzg60mbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF04Mn0t YZomfPfLbCibRFGzH0ZxMB8GA1UdIwQYMBaAFEGfJ6TP7PRh24L2+QZ2T7bWXyPP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEJFRC8wOEUwRTA2NjFG MzgxMUVGQjA1OUI2NjVDNEY5QUUwMi9RWjhucE1fczlHSGJndmI1Qm5aUHR0WmZJ ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FaOG5wTV9zOUdIYmd2YjVCblpQdHRaZkk4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEJFRC8wOEUwRTA2NjFGMzgxMUVGQjA1OUI2NjVDNEY5QUUwMi9RWjhucE1fczlH SGJndmI1Qm5aUHR0WmZJODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlaAwh+eGCScNHheODaLbg5mIqAzSQjgHIRGzsl8eYqppCUHTpQmEa SZegwT2XaMVTdY67RD2m+KGxxn/rKWYnNr+8I108jtk2m8QFJIGbNLBJbXCchaun jPbtYgOj2s/6E1bLJvoBIyZiO6T8Nq7BmFhZWFSr44nSc+08dwm7td/LmUS9cYvN EPSlrYcnYbS5CpAGEOR6Gxdtr+zbPkUfQXCGptzvrjO6pvKRTPe5Ny0bFBwWnjYw xpLpz5KUnuZL1Xq5kiPAFVy9LOiicz2Ipr7Qj3aS2tI7Na0tGUznmH9/CkhwUYZ2 vvO2OcWJOlPqeafSrfGUI/IBvo9RH0Ur -----END CERTIFICATE-----Generated at Wed Nov 5 19:31:14 2025 by rpki-client