$ rpki-client -vvf rpki.apnic.net/member_repository/A914A49B/B94F6936015111EF9857C01EC4F9AE02/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.mft File: 1QN6-WnIrOoBtXD8ZK3UgorAZBQ.mft (raw, json) Hash identifier: AmoHW3gRL9tDShuJLxEPZcjOd+Rmwrq4jCb1UkXnCGY= Subject key identifier: 7D:48:27:56:1C:06:F0:AE:48:5D:00:A5:2A:C6:AB:4F:FA:99:28:72 Authority key identifier: D5:03:7A:F9:69:C8:AC:EA:01:B5:70:FC:64:AD:D4:82:8A:C0:64:14 Certificate issuer: /CN=A914A49B/serialNumber=D5037AF969C8ACEA01B570FC64ADD4828AC06414 Certificate serial: 0123 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A49B/B94F6936015111EF9857C01EC4F9AE02/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.mft Manifest number: 011F Signing time: Mon 03 Nov 2025 04:45:07 +0000 Manifest this update: Mon 03 Nov 2025 04:45:06 +0000 Manifest next update: Mon 10 Nov 2025 04:45:06 +0000 Files and hashes: 1: 1QN6-WnIrOoBtXD8ZK3UgorAZBQ.crl (hash: TY67aKIla39rJVTyvQGLj4bg50XSU0eaXdAz2DnarsE=) 2: 2907520205DA11EF974A6A0BC4F9AE02.roa (hash: OrAHJTjZ/RqHAwIjIMccBjE+JqFUpBNrVGrdl3fQy10=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A49B/B94F6936015111EF9857C01EC4F9AE02/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.crl rsync://rpki.apnic.net/member_repository/A914A49B/B94F6936015111EF9857C01EC4F9AE02/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:45:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 291 (0x123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A49B, serialNumber=D5037AF969C8ACEA01B570FC64ADD4828AC06414 Validity Not Before: Nov 3 04:45:06 2025 GMT Not After : Nov 10 04:45:06 2025 GMT Subject: CN=69083353-3cf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:c2:1a:c4:d6:01:aa:af:3b:01:fd:8e:45:69: 66:46:6c:be:fc:4a:77:83:6f:8c:b9:56:b5:f4:48: 2f:2b:e2:be:21:ef:38:bd:8d:14:a5:fc:a8:31:8d: 2f:f0:71:45:bb:13:dc:14:bc:f2:b4:8c:85:f5:3e: 9a:14:f0:dc:d4:b4:b5:00:11:de:6c:34:79:15:34: 0a:ed:1b:f8:90:70:40:48:5d:01:d2:e2:46:68:64: f1:a9:73:7b:a5:f9:c2:a8:2a:f0:e0:0c:04:c3:b5: ee:49:34:1a:69:8f:b5:ee:2e:a7:8d:dc:b4:1c:1c: 06:2d:ce:e7:36:d3:30:ee:9c:87:2a:f1:2b:6f:4f: c5:67:c9:a3:91:47:0f:b0:cc:99:b7:39:31:f3:9f: d8:6f:fd:3f:3f:a8:8f:7b:bf:c1:1a:67:35:2b:32: 09:e8:a5:b4:5e:9e:b4:2d:c9:7d:9c:f7:75:8c:c3: d6:b3:71:f0:85:ff:17:24:28:46:bb:19:24:31:19: 6b:ca:30:de:38:c1:1a:a1:7f:f5:86:01:b2:88:2e: 73:5f:b6:3b:c8:62:0d:a6:59:c0:a6:61:0a:a8:8d: 2c:98:94:a8:97:de:1f:92:c1:ab:49:41:11:67:62: 59:85:4a:64:b1:46:0e:c1:f0:19:da:a2:93:96:58: 9d:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:48:27:56:1C:06:F0:AE:48:5D:00:A5:2A:C6:AB:4F:FA:99:28:72 X509v3 Authority Key Identifier: keyid:D5:03:7A:F9:69:C8:AC:EA:01:B5:70:FC:64:AD:D4:82:8A:C0:64:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A49B/B94F6936015111EF9857C01EC4F9AE02/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A49B/B94F6936015111EF9857C01EC4F9AE02/1QN6-WnIrOoBtXD8ZK3UgorAZBQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:e9:fc:dc:e7:34:01:04:33:50:30:c9:e9:64:93:bf:5c:6e: 71:ae:b3:20:af:f8:dd:03:39:46:e1:1c:87:5d:cc:d0:6c:f1: 1d:12:c6:fd:41:47:d0:57:ec:67:ff:2e:69:be:a7:b0:d7:42: 69:af:68:79:34:e2:21:2e:f7:01:15:2c:d2:d3:e2:20:bc:12: e5:8b:22:13:80:e6:61:f5:9f:3e:a5:bb:2c:68:85:2d:b1:b5: 4c:2b:8a:01:ff:29:ce:c2:a9:0e:5b:b6:22:e4:54:ab:29:51: 84:69:f7:52:32:d2:49:d0:6a:dc:f6:de:3f:f1:37:d6:39:db: 36:b7:11:4c:3a:43:c9:61:02:32:a0:0e:aa:e7:cb:92:d9:68: e3:3f:cf:52:b9:10:90:17:04:cb:09:fa:12:eb:44:68:19:a9: bc:2f:9f:c9:3b:ad:35:84:40:2b:21:79:f4:d5:8c:06:33:02: c3:38:12:0b:64:42:c1:48:1b:54:4a:29:b8:4f:74:41:bc:03: 59:9b:41:b0:1e:e4:90:8a:5f:04:b0:b8:18:01:af:17:a8:66: 70:49:c1:0e:88:95:d9:66:fa:3d:6e:24:e3:32:f4:e4:c5:33: da:27:2b:7a:3a:9b:48:02:a1:5a:7d:df:ec:05:97:ea:57:18: 31:b8:d1:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE0OUIxMTAvBgNVBAUTKEQ1MDM3QUY5NjlDOEFDRUEwMUI1NzBGQzY0QURENDgy OEFDMDY0MTQwHhcNMjUxMTAzMDQ0NTA2WhcNMjUxMTEwMDQ0NTA2WjAYMRYwFAYD VQQDEw02OTA4MzM1My0zY2Y3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4MIaxNYBqq87Af2ORWlmRmy+/Ep3g2+MuVa19EgvK+K+Ie84vY0UpfyoMY0v 8HFFuxPcFLzytIyF9T6aFPDc1LS1ABHebDR5FTQK7Rv4kHBASF0B0uJGaGTxqXN7 pfnCqCrw4AwEw7XuSTQaaY+17i6njdy0HBwGLc7nNtMw7pyHKvErb0/FZ8mjkUcP sMyZtzkx85/Yb/0/P6iPe7/BGmc1KzIJ6KW0Xp60Lcl9nPd1jMPWs3Hwhf8XJChG uxkkMRlryjDeOMEaoX/1hgGyiC5zX7Y7yGINplnApmEKqI0smJSol94fksGrSUER Z2JZhUpksUYOwfAZ2qKTllidQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH1IJ1Yc BvCuSF0ApSrGq0/6mShyMB8GA1UdIwQYMBaAFNUDevlpyKzqAbVw/GSt1IKKwGQU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTQ5Qi9COTRGNjkzNjAx NTExMUVGOTg1N0MwMUVDNEY5QUUwMi8xUU42LVduSXJPb0J0WEQ4WkszVWdvckFa QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFRTjYtV25Jck9vQnRYRDhaSzNVZ29yQVpCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTQ5Qi9COTRGNjkzNjAxNTExMUVGOTg1N0MwMUVDNEY5QUUwMi8xUU42LVduSXJP b0J0WEQ4WkszVWdvckFaQlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCr6fzc5zQBBDNQMMnpZJO/XG5xrrMgr/jdAzlG4RyHXczQbPEdEsb9 QUfQV+xn/y5pvqew10Jpr2h5NOIhLvcBFSzS0+IgvBLliyITgOZh9Z8+pbssaIUt sbVMK4oB/ynOwqkOW7Yi5FSrKVGEafdSMtJJ0Grc9t4/8TfWOds2txFMOkPJYQIy oA6q58uS2WjjP89SuRCQFwTLCfoS60RoGam8L5/JO601hEArIXn01YwGMwLDOBIL ZELBSBtUSim4T3RBvANZm0GwHuSQil8EsLgYAa8XqGZwScEOiJXZZvo9biTjMvTk xTPaJyt6OptIAqFafd/sBZfqVxgxuNEv -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:26 2025 by rpki-client