$ rpki-client -vvf rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft File: QELW5jee2AQkizYN7Zhe9_VlIBE.mft (raw, json) Hash identifier: /GtuSDNrwqfwqGxXDyfHyrFEYRnjS6rtPQlEyqmmv4o= Subject key identifier: EB:59:EB:4E:B5:61:C2:B4:49:F4:0B:69:86:52:D5:E2:D0:E0:BA:4F Authority key identifier: 40:42:D6:E6:37:9E:D8:04:24:8B:36:0D:ED:98:5E:F7:F5:65:20:11 Certificate issuer: /CN=A9148465/serialNumber=4042D6E6379ED804248B360DED985EF7F5652011 Certificate serial: 0287 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft Manifest number: 0283 Signing time: Mon 03 Nov 2025 01:34:31 +0000 Manifest this update: Mon 03 Nov 2025 01:34:31 +0000 Manifest next update: Mon 10 Nov 2025 01:34:31 +0000 Files and hashes: 1: QELW5jee2AQkizYN7Zhe9_VlIBE.crl (hash: Yc416Ym4BExwTIBZUG1YdqNwg585FrUNS7uc5TmEqUo=) 2: 7777513828C011EDBEC6D287C4F9AE02.roa (hash: KysVMiyZcH0HX0OV6c/BvTG9IGFmIflJ1zJN81z9Xf0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.crl rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:34:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 647 (0x287) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148465, serialNumber=4042D6E6379ED804248B360DED985EF7F5652011 Validity Not Before: Nov 3 01:34:31 2025 GMT Not After : Nov 10 01:34:31 2025 GMT Subject: CN=690806a7-cff2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e8:6e:9e:36:3c:16:4f:ba:6a:48:3b:d0:ec: 81:ca:71:b9:76:1e:ac:5a:96:99:02:72:12:ee:2f: 39:90:43:a2:30:cd:8e:18:f4:a9:44:4a:57:7c:f2: 50:a1:48:e3:c5:b8:6e:c0:02:cf:61:f7:59:fc:c6: 33:55:c5:87:65:9c:66:f6:f0:1a:1c:ab:49:ec:95: ce:4b:b0:8b:ab:f0:a0:49:d1:fb:29:64:0b:7b:b9: 96:b8:a8:3b:2d:1f:b0:a4:d8:d4:0f:6c:1b:b7:5b: 5a:c7:f6:ae:6e:8f:9f:de:e6:40:8a:08:71:7f:3a: b1:f1:d1:96:72:61:56:30:97:30:98:ef:c2:ed:22: ea:7d:4a:08:2e:4b:93:08:33:f1:03:0e:6a:fd:ce: 8f:7b:ff:14:30:30:38:dd:21:eb:de:3c:60:70:06: 01:8e:72:93:a4:8b:68:74:78:33:d9:42:d6:bf:0e: 4c:f9:15:df:40:72:2b:59:a4:0f:1f:43:f2:66:bb: 63:26:71:3f:41:8a:3b:17:5b:1f:6d:99:46:7c:7d: f2:76:cc:9a:91:1b:34:66:86:20:a5:14:f2:78:0c: d1:7b:57:41:68:f7:db:cc:34:c8:fa:39:af:0a:ed: e7:b2:66:6b:0f:f5:30:22:da:ed:0b:7e:f6:f1:8f: ed:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:59:EB:4E:B5:61:C2:B4:49:F4:0B:69:86:52:D5:E2:D0:E0:BA:4F X509v3 Authority Key Identifier: keyid:40:42:D6:E6:37:9E:D8:04:24:8B:36:0D:ED:98:5E:F7:F5:65:20:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d1:0c:1c:d9:88:f9:2f:e1:47:a5:ea:11:29:e7:bf:e0:1b:2e: d9:f4:fd:dd:d5:3c:d3:9a:e7:53:6b:c0:81:85:bb:3e:28:fc: 31:cd:d7:bd:5f:2f:9a:21:4c:c1:c8:be:7e:c9:41:bc:28:e7: b8:4e:c2:2e:7c:55:ea:f3:3d:f6:b3:e7:6b:91:6c:0f:73:f7: 7a:2c:21:79:8a:a6:2f:69:4d:ff:83:d2:51:89:7c:89:5f:4e: 1a:78:2d:e8:e5:c1:83:28:bb:cb:12:9c:dc:b1:70:d5:a0:88: 71:a4:5e:11:00:03:e4:52:94:cf:0c:4e:71:97:e9:a1:36:72: 9f:e1:be:12:8a:ee:76:4d:10:dd:b7:4f:41:d0:d6:90:e3:b5: fe:31:ef:53:21:69:29:24:7e:3e:3f:a4:26:d3:ab:d1:18:b0: 47:0e:40:1a:96:85:37:3f:49:34:cb:fb:d3:5d:bc:df:3a:f0: e5:7b:1c:33:65:2e:df:d5:f5:e3:50:60:e1:89:8b:d4:e1:58: 5d:8c:9b:1e:a5:7e:01:fb:95:43:0a:a2:7f:b1:33:30:d1:3f: 4d:58:e3:2b:cd:aa:f2:17:c5:bf:27:af:a2:6e:a1:1d:b7:3a: 8b:28:d3:e4:46:78:ab:08:b4:aa:2b:f2:9a:53:3e:04:82:97: 54:0d:5d:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg0NjUxMTAvBgNVBAUTKDQwNDJENkU2Mzc5RUQ4MDQyNDhCMzYwREVEOTg1RUY3 RjU2NTIwMTEwHhcNMjUxMTAzMDEzNDMxWhcNMjUxMTEwMDEzNDMxWjAYMRYwFAYD VQQDEw02OTA4MDZhNy1jZmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvOhunjY8Fk+6akg70OyBynG5dh6sWpaZAnIS7i85kEOiMM2OGPSpREpXfPJQ oUjjxbhuwALPYfdZ/MYzVcWHZZxm9vAaHKtJ7JXOS7CLq/CgSdH7KWQLe7mWuKg7 LR+wpNjUD2wbt1tax/aubo+f3uZAighxfzqx8dGWcmFWMJcwmO/C7SLqfUoILkuT CDPxAw5q/c6Pe/8UMDA43SHr3jxgcAYBjnKTpItodHgz2ULWvw5M+RXfQHIrWaQP H0PyZrtjJnE/QYo7F1sfbZlGfH3ydsyakRs0ZoYgpRTyeAzRe1dBaPfbzDTI+jmv Cu3nsmZrD/UwItrtC3728Y/tJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOtZ6061 YcK0SfQLaYZS1eLQ4LpPMB8GA1UdIwQYMBaAFEBC1uY3ntgEJIs2De2YXvf1ZSAR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODQ2NS9ENjBGMDI3MjI4 QkIxMUVEQTU5QzMwODFDNEY5QUUwMi9RRUxXNWplZTJBUWtpellON1poZTlfVmxJ QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FFTFc1amVlMkFRa2l6WU43WmhlOV9WbElCRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 ODQ2NS9ENjBGMDI3MjI4QkIxMUVEQTU5QzMwODFDNEY5QUUwMi9RRUxXNWplZTJB UWtpellON1poZTlfVmxJQkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDRDBzZiPkv4Uel6hEp57/gGy7Z9P3d1TzTmudTa8CBhbs+KPwxzde9 Xy+aIUzByL5+yUG8KOe4TsIufFXq8z32s+drkWwPc/d6LCF5iqYvaU3/g9JRiXyJ X04aeC3o5cGDKLvLEpzcsXDVoIhxpF4RAAPkUpTPDE5xl+mhNnKf4b4Siu52TRDd t09B0NaQ47X+Me9TIWkpJH4+P6Qm06vRGLBHDkAaloU3P0k0y/vTXbzfOvDlexwz ZS7f1fXjUGDhiYvU4VhdjJsepX4B+5VDCqJ/sTMw0T9NWOMrzaryF8W/J6+ibqEd tzqLKNPkRnirCLSqK/KaUz4EgpdUDV2+ -----END CERTIFICATE-----Generated at Mon Nov 3 18:19:28 2025 by rpki-client