$ rpki-client -vvf rpki.apnic.net/member_repository/A914E026/D6B26304F56A11E9BF2AE684C4F9AE02/qw2Hl8WKg6W0nAd6Mu9nMock5BI.mft File: qw2Hl8WKg6W0nAd6Mu9nMock5BI.mft (raw, json) Hash identifier: gYoaidPT0b8RaQJPd27r/I5s6zOFdEpH3BWk0i9Mt2Q= Subject key identifier: 50:0C:F9:B3:E1:BA:4A:02:5C:12:34:B7:3C:8F:BB:E9:98:D2:41:31 Authority key identifier: AB:0D:87:97:C5:8A:83:A5:B4:9C:07:7A:32:EF:67:32:87:24:E4:12 Certificate issuer: /CN=A914E026/serialNumber=AB0D8797C58A83A5B49C077A32EF67328724E412 Certificate serial: 0CE0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qw2Hl8WKg6W0nAd6Mu9nMock5BI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E026/D6B26304F56A11E9BF2AE684C4F9AE02/qw2Hl8WKg6W0nAd6Mu9nMock5BI.mft Manifest number: 0CE0 Signing time: Sun 02 Nov 2025 18:07:38 +0000 Manifest this update: Sun 02 Nov 2025 18:07:37 +0000 Manifest next update: Sun 09 Nov 2025 18:07:37 +0000 Files and hashes: 1: qw2Hl8WKg6W0nAd6Mu9nMock5BI.crl (hash: ycfrQGvBx/CT3EMzWIb9j8qukFLr/PE7GvLwzoHf1ys=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E026/D6B26304F56A11E9BF2AE684C4F9AE02/qw2Hl8WKg6W0nAd6Mu9nMock5BI.crl rsync://rpki.apnic.net/member_repository/A914E026/D6B26304F56A11E9BF2AE684C4F9AE02/qw2Hl8WKg6W0nAd6Mu9nMock5BI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qw2Hl8WKg6W0nAd6Mu9nMock5BI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:07:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3296 (0xce0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E026, serialNumber=AB0D8797C58A83A5B49C077A32EF67328724E412 Validity Not Before: Nov 2 18:07:37 2025 GMT Not After : Nov 9 18:07:37 2025 GMT Subject: CN=69079dea-3995 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:5b:6b:43:fc:ff:4c:2a:36:11:aa:ed:ba:41: 4a:83:28:3d:2d:80:84:28:e4:80:28:a0:2a:90:08: f4:2a:e8:83:57:e7:99:f6:f1:ee:ac:ed:0f:6b:cf: ed:da:55:63:60:7d:d9:0f:ae:f8:87:d5:43:a4:4a: 1f:68:5e:98:10:56:60:3a:95:7d:cb:5b:a2:91:93: 81:08:7a:cd:d1:f6:84:09:bd:a1:8b:24:74:83:ea: 2e:df:13:4f:e8:40:8f:a4:7b:82:22:fc:0e:46:75: f3:56:c4:80:0c:b8:8b:4a:59:54:54:52:f1:2b:8a: 1d:19:fb:b6:0f:6c:51:26:6c:e5:69:b3:0c:78:aa: 9a:0b:ec:45:23:cc:75:f9:35:11:be:06:cb:c5:f4: 81:db:2e:05:3c:6c:aa:bb:55:7d:3b:8b:c2:df:4f: bb:29:00:55:fe:54:d0:dd:4c:1b:aa:af:d8:67:1d: 13:29:c2:cc:c2:e2:21:30:6e:7c:4e:99:5f:e0:f0: 41:ec:9e:f7:8a:31:91:03:e1:26:2a:5f:3a:81:80: af:ed:7f:af:ca:18:90:b0:5e:b5:73:ae:76:44:0e: bb:3d:bf:85:4d:a4:b3:c5:cd:c5:a4:c3:35:b6:57: e8:ae:56:13:95:85:95:2b:0e:40:ba:50:4a:af:7f: a8:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:0C:F9:B3:E1:BA:4A:02:5C:12:34:B7:3C:8F:BB:E9:98:D2:41:31 X509v3 Authority Key Identifier: keyid:AB:0D:87:97:C5:8A:83:A5:B4:9C:07:7A:32:EF:67:32:87:24:E4:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E026/D6B26304F56A11E9BF2AE684C4F9AE02/qw2Hl8WKg6W0nAd6Mu9nMock5BI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qw2Hl8WKg6W0nAd6Mu9nMock5BI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E026/D6B26304F56A11E9BF2AE684C4F9AE02/qw2Hl8WKg6W0nAd6Mu9nMock5BI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:29:14:e3:32:97:ac:8b:63:4f:61:a5:70:18:b9:22:9d:64: 24:51:af:eb:73:5c:9e:29:87:e1:56:4b:43:eb:fd:4b:41:9e: b1:c9:9b:98:68:c6:f5:41:f4:ef:e1:f9:77:9d:d5:c0:00:9d: 7d:34:08:62:12:2c:7c:2e:20:5f:3c:37:87:6a:86:31:a9:f5: 61:30:14:06:02:be:eb:c1:4f:b0:f9:98:e2:e7:b5:4a:16:7e: 6e:6d:aa:d3:82:92:8b:d7:bf:34:b3:3b:94:c0:00:8c:e3:0e: 6e:1e:b7:4d:b3:b0:11:31:d1:4c:18:0e:e8:1c:f5:33:02:1f: 7d:08:13:d2:e2:24:03:31:e4:77:a6:d4:d6:81:99:03:4c:02: 77:5e:a7:68:5b:d5:d1:3c:12:96:3a:d9:2f:f8:f5:12:8b:a7: b6:f3:b3:d7:35:4c:7e:4c:57:be:10:a7:56:5e:6d:82:42:3c: a5:b9:30:81:49:20:70:29:df:c7:e9:64:5e:0d:54:3b:f5:1a: cf:51:d9:6b:e6:e8:97:6b:f4:92:19:e7:1e:48:fd:39:c2:d6: 26:20:ec:95:15:07:93:32:af:ae:37:59:4c:7f:dd:f7:dc:69: 01:13:8f:9d:07:81:08:ac:45:54:c9:c8:26:b9:0d:f2:54:10: ae:d6:31:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwMjYxMTAvBgNVBAUTKEFCMEQ4Nzk3QzU4QTgzQTVCNDlDMDc3QTMyRUY2NzMy ODcyNEU0MTIwHhcNMjUxMTAyMTgwNzM3WhcNMjUxMTA5MTgwNzM3WjAYMRYwFAYD VQQDEw02OTA3OWRlYS0zOTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0VtrQ/z/TCo2EartukFKgyg9LYCEKOSAKKAqkAj0KuiDV+eZ9vHurO0Pa8/t 2lVjYH3ZD674h9VDpEofaF6YEFZgOpV9y1uikZOBCHrN0faECb2hiyR0g+ou3xNP 6ECPpHuCIvwORnXzVsSADLiLSllUVFLxK4odGfu2D2xRJmzlabMMeKqaC+xFI8x1 +TURvgbLxfSB2y4FPGyqu1V9O4vC30+7KQBV/lTQ3Uwbqq/YZx0TKcLMwuIhMG58 Tplf4PBB7J73ijGRA+EmKl86gYCv7X+vyhiQsF61c652RA67Pb+FTaSzxc3FpMM1 tlforlYTlYWVKw5AulBKr3+ooQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFAM+bPh ukoCXBI0tzyPu+mY0kExMB8GA1UdIwQYMBaAFKsNh5fFioOltJwHejLvZzKHJOQS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTAyNi9ENkIyNjMwNEY1 NkExMUU5QkYyQUU2ODRDNEY5QUUwMi9xdzJIbDhXS2c2VzBuQWQ2TXU5bk1vY2s1 QkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3F3MkhsOFdLZzZXMG5BZDZNdTluTW9jazVCSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTAyNi9ENkIyNjMwNEY1NkExMUU5QkYyQUU2ODRDNEY5QUUwMi9xdzJIbDhXS2c2 VzBuQWQ2TXU5bk1vY2s1QkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmKRTjMpesi2NPYaVwGLkinWQkUa/rc1yeKYfhVktD6/1LQZ6xyZuY aMb1QfTv4fl3ndXAAJ19NAhiEix8LiBfPDeHaoYxqfVhMBQGAr7rwU+w+Zji57VK Fn5ubarTgpKL1780szuUwACM4w5uHrdNs7ARMdFMGA7oHPUzAh99CBPS4iQDMeR3 ptTWgZkDTAJ3XqdoW9XRPBKWOtkv+PUSi6e287PXNUx+TFe+EKdWXm2CQjyluTCB SSBwKd/H6WReDVQ79RrPUdlr5uiXa/SSGeceSP05wtYmIOyVFQeTMq+uN1lMf933 3GkBE4+dB4EIrEVUycgmuQ3yVBCu1jHq -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:17 2025 by rpki-client