$ rpki-client -vvf rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft File: qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft (raw, json) Hash identifier: W2uOXB8kWIk1GeS+vVVMafZF2ex1FFre2J+oqvWIzwc= Subject key identifier: 72:BA:51:4E:CD:56:A7:2A:E5:85:AE:CD:EE:4F:A9:6D:5F:EF:A1:D9 Authority key identifier: A8:BF:54:F6:08:19:67:22:19:35:CB:17:CC:13:EB:FB:84:1A:60:C2 Certificate issuer: /CN=A914D6FC/serialNumber=A8BF54F6081967221935CB17CC13EBFB841A60C2 Certificate serial: 0255 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qL9U9ggZZyIZNcsXzBPr-4QaYMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft Manifest number: 024B Signing time: Wed 05 Nov 2025 01:52:37 +0000 Manifest this update: Wed 05 Nov 2025 01:52:36 +0000 Manifest next update: Wed 12 Nov 2025 01:52:36 +0000 Files and hashes: 1: qL9U9ggZZyIZNcsXzBPr-4QaYMI.crl (hash: mfcUdStpB5aclgTY3ByUT0lQwDnj2GIqPiWMcq9qRgs=) 2: 11EC50B48B8F11EF8DE96E60C4F9AE02.roa (hash: H0AJqEiGAywgjMNh/B1Rg0QqAknxodzCmkcexEm/7aU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.crl rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qL9U9ggZZyIZNcsXzBPr-4QaYMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:52:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 597 (0x255) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D6FC, serialNumber=A8BF54F6081967221935CB17CC13EBFB841A60C2 Validity Not Before: Nov 5 01:52:36 2025 GMT Not After : Nov 12 01:52:36 2025 GMT Subject: CN=690aade4-95b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ec:7b:ce:bf:52:91:36:f7:8b:df:ce:b7:bc: 9b:b1:7b:23:e2:c8:11:cb:1f:e0:2e:0f:bc:40:4f: 18:ef:51:c1:88:a7:49:18:56:f9:aa:6c:f6:57:a7: 68:da:f0:69:58:96:2f:09:b1:a8:32:d7:4f:24:81: a7:1d:83:d0:7d:3c:3e:b9:bf:40:ba:a4:f6:b6:ed: bb:78:ba:4e:c3:e5:50:bb:c1:d2:76:0f:f3:40:c7: 44:00:47:eb:87:ff:77:70:f1:97:06:85:9b:e3:96: ed:7c:4b:31:89:35:71:d8:36:6a:08:41:27:99:85: 46:2a:e3:df:b4:41:a8:6b:96:da:12:d5:a9:ae:9d: 84:ac:9a:d2:ae:da:f5:4a:03:82:22:f8:03:7f:70: 62:11:91:78:93:b5:43:88:d7:ca:d1:6d:d4:6d:3c: f7:46:8b:b0:9e:97:cd:67:ad:ff:9d:3f:1a:be:aa: 47:a6:93:70:b3:6a:05:88:a7:eb:92:88:a3:2d:59: 75:65:57:b7:cc:4e:0b:5f:b8:d7:76:80:bc:88:a3: da:ab:b4:e6:fe:73:c1:4f:17:c2:6c:d8:66:5f:a9: a7:16:27:e2:fa:94:97:1e:72:e9:50:37:a5:ae:a3: 30:30:50:d6:4b:92:84:c5:7b:f3:69:2f:51:0c:c4: 25:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:BA:51:4E:CD:56:A7:2A:E5:85:AE:CD:EE:4F:A9:6D:5F:EF:A1:D9 X509v3 Authority Key Identifier: keyid:A8:BF:54:F6:08:19:67:22:19:35:CB:17:CC:13:EB:FB:84:1A:60:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qL9U9ggZZyIZNcsXzBPr-4QaYMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:b6:30:89:a3:7b:a8:68:55:31:6b:af:0b:ae:e2:24:cf:78: 57:91:53:20:7b:ac:e9:81:2b:64:4f:9f:bf:3d:b7:a4:71:1b: 32:a6:fb:60:d3:00:7d:68:ae:66:54:cb:f2:1f:24:2c:7c:a0: b2:92:a6:b8:44:2b:4e:7d:6a:bc:27:00:bc:20:90:71:38:63: 45:a6:39:94:f4:aa:fc:ad:a2:ac:ef:5c:4b:15:28:21:4b:cb: dc:30:ab:da:2d:70:af:f4:28:1d:7b:6b:8c:ec:31:61:0a:7b: 95:77:1f:31:e6:4f:fe:67:37:76:38:5e:a4:30:2f:a7:f8:3b: 68:5e:9d:23:0c:80:4f:87:16:4c:56:d6:a3:a2:57:ae:76:13: 92:0f:06:79:2d:60:e7:d1:36:68:f4:70:95:98:fe:c2:79:59: f4:c4:19:9e:45:0d:03:86:f6:94:38:ea:5e:26:46:8d:44:b1: 00:83:ec:28:5a:b1:f2:5f:14:22:0b:32:60:67:18:ac:df:ec: 84:13:ad:0a:42:13:29:b2:44:46:ef:64:34:3a:29:a0:90:65: 55:ac:23:bb:ad:13:31:9c:b4:08:94:bb:55:44:6e:86:a5:23: dd:0e:84:9f:25:1a:ed:95:cf:08:f3:f5:67:82:f0:0e:dc:c9: 9d:83:bb:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQ2RkMxMTAvBgNVBAUTKEE4QkY1NEY2MDgxOTY3MjIxOTM1Q0IxN0NDMTNFQkZC ODQxQTYwQzIwHhcNMjUxMTA1MDE1MjM2WhcNMjUxMTEyMDE1MjM2WjAYMRYwFAYD VQQDEw02OTBhYWRlNC05NWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoux7zr9SkTb3i9/Ot7ybsXsj4sgRyx/gLg+8QE8Y71HBiKdJGFb5qmz2V6do 2vBpWJYvCbGoMtdPJIGnHYPQfTw+ub9AuqT2tu27eLpOw+VQu8HSdg/zQMdEAEfr h/93cPGXBoWb45btfEsxiTVx2DZqCEEnmYVGKuPftEGoa5baEtWprp2ErJrSrtr1 SgOCIvgDf3BiEZF4k7VDiNfK0W3UbTz3RouwnpfNZ63/nT8avqpHppNws2oFiKfr koijLVl1ZVe3zE4LX7jXdoC8iKPaq7Tm/nPBTxfCbNhmX6mnFifi+pSXHnLpUDel rqMwMFDWS5KExXvzaS9RDMQlRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHK6UU7N Vqcq5YWuze5PqW1f76HZMB8GA1UdIwQYMBaAFKi/VPYIGWciGTXLF8wT6/uEGmDC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDZGQy84ODc1OTE4MjQz MkYxMUVEQkJEOThGNUNDNEY5QUUwMi9xTDlVOWdnWlp5SVpOY3NYekJQci00UWFZ TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FMOVU5Z2daWnlJWk5jc1h6QlByLTRRYVlNSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDZGQy84ODc1OTE4MjQzMkYxMUVEQkJEOThGNUNDNEY5QUUwMi9xTDlVOWdnWlp5 SVpOY3NYekJQci00UWFZTUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDDtjCJo3uoaFUxa68LruIkz3hXkVMge6zpgStkT5+/PbekcRsypvtg 0wB9aK5mVMvyHyQsfKCykqa4RCtOfWq8JwC8IJBxOGNFpjmU9Kr8raKs71xLFSgh S8vcMKvaLXCv9Cgde2uM7DFhCnuVdx8x5k/+Zzd2OF6kMC+n+DtoXp0jDIBPhxZM VtajoleudhOSDwZ5LWDn0TZo9HCVmP7CeVn0xBmeRQ0DhvaUOOpeJkaNRLEAg+wo WrHyXxQiCzJgZxis3+yEE60KQhMpskRG72Q0OimgkGVVrCO7rRMxnLQIlLtVRG6G pSPdDoSfJRrtlc8I8/VngvAO3Mmdg7tO -----END CERTIFICATE-----Generated at Wed Nov 5 16:40:55 2025 by rpki-client