$ rpki-client -vvf rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.mft File: QV0e9X3aeKX8lSQFQkhAAozUfZk.mft (raw, json) Hash identifier: IHigzd/iAdCka+jcTSojQsnOuGtW4AXFvW9binM41wQ= Subject key identifier: 4F:9C:55:39:DF:15:92:99:0D:20:4D:80:FF:B1:BE:E3:4C:EF:58:C5 Authority key identifier: 41:5D:1E:F5:7D:DA:78:A5:FC:95:24:05:42:48:40:02:8C:D4:7D:99 Certificate issuer: /CN=A91501FC/serialNumber=415D1EF57DDA78A5FC952405424840028CD47D99 Certificate serial: 0346 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QV0e9X3aeKX8lSQFQkhAAozUfZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.mft Manifest number: 0342 Signing time: Mon 03 Nov 2025 00:59:07 +0000 Manifest this update: Mon 03 Nov 2025 00:59:06 +0000 Manifest next update: Mon 10 Nov 2025 00:59:06 +0000 Files and hashes: 1: QV0e9X3aeKX8lSQFQkhAAozUfZk.crl (hash: ZGmqFL2Jspl/JYnaxVaEOo8UuPsy00EMMNhiUBrLmHE=) 2: 09513072DE3B11EC9F25BA5FC4F9AE02.roa (hash: WES9ucDGz8CEKO/wZoNG/u047WdQevrcBNglpR6DHnI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.crl rsync://rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QV0e9X3aeKX8lSQFQkhAAozUfZk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:59:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 838 (0x346) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91501FC, serialNumber=415D1EF57DDA78A5FC952405424840028CD47D99 Validity Not Before: Nov 3 00:59:06 2025 GMT Not After : Nov 10 00:59:06 2025 GMT Subject: CN=6907fe5b-c76d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:5a:5b:92:bc:bf:ea:e3:0b:a4:86:27:66:c7: 82:47:5a:8b:0e:39:30:af:2b:0a:87:6a:99:88:52: fd:ab:a4:21:8a:d0:b4:49:d9:5a:c3:70:70:72:c3: 5d:63:bd:45:65:c0:03:68:dc:73:15:c6:87:dc:06: e6:7d:89:fa:8f:2b:06:1b:cb:9a:d6:6e:28:82:77: 53:09:b9:58:f0:a8:22:71:9f:88:5e:18:db:5d:ad: 00:57:62:c4:b9:a9:a2:9f:3b:56:19:88:ed:3b:f5: 66:95:d5:af:c3:58:51:cf:f5:81:87:a1:cf:b6:4d: 46:ba:8a:8a:29:55:c8:cf:f8:fb:d4:36:58:ba:cc: 5d:26:d9:c4:e3:5e:eb:41:08:53:34:d9:e0:0d:64: 32:83:42:a4:cb:48:74:4b:42:96:16:95:68:d0:a7: 7d:cd:64:5c:a4:d9:bc:9e:b6:09:90:e4:b1:52:f6: 4f:62:d0:fa:5e:65:fd:58:f0:4a:62:89:f5:82:69: ea:df:31:e1:bf:1d:33:25:a4:42:94:4e:f4:c9:f7: 5a:f9:f5:53:ac:d8:17:10:af:8f:00:07:b7:97:7d: a4:7f:b8:0e:c3:c9:1e:e5:2c:85:1b:e0:71:52:7c: 39:b5:7c:3d:37:84:f6:0d:b7:50:1a:79:fe:3e:61: 7d:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:9C:55:39:DF:15:92:99:0D:20:4D:80:FF:B1:BE:E3:4C:EF:58:C5 X509v3 Authority Key Identifier: keyid:41:5D:1E:F5:7D:DA:78:A5:FC:95:24:05:42:48:40:02:8C:D4:7D:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QV0e9X3aeKX8lSQFQkhAAozUfZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91501FC/304A89DCDE3411EC9640563DC4F9AE02/QV0e9X3aeKX8lSQFQkhAAozUfZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:e8:41:19:53:88:eb:24:f9:0c:57:f0:b8:ab:08:1c:47:e5: f0:d2:a5:0a:06:37:2c:b9:43:9b:45:df:2e:a0:f8:35:49:21: 89:e0:3f:c3:bf:3a:41:75:fe:ff:2d:8f:eb:4f:de:fd:dd:3c: cd:ea:91:07:f9:da:57:fa:64:91:81:c7:32:fc:ac:75:16:16: 24:e7:57:b4:d7:b0:08:aa:8d:68:99:08:8d:b0:19:90:f0:f2: 00:53:f7:30:ef:f9:cc:31:09:18:2b:cb:d1:bd:48:29:e2:24: f9:d7:ef:f7:9f:10:28:7e:e0:c9:15:9c:4f:18:7c:ce:00:30: 2a:d9:28:f2:0b:77:c6:ae:60:81:7e:58:dc:09:55:00:7f:00: dd:ad:4e:0b:e5:09:23:df:84:ed:5e:74:de:42:38:c9:b1:a3: ea:bb:92:f1:b5:f1:49:46:23:f5:58:f9:eb:3f:e7:71:3d:8d: 57:ab:41:69:ae:2f:84:93:0b:74:6f:f8:ea:e8:74:bd:c7:c9: 24:2e:73:f0:e3:1f:bf:b3:1d:c3:cc:b5:71:9b:70:0f:c3:7b: 4f:7c:f7:71:bd:29:e3:17:da:d0:ac:d2:41:50:f8:7d:44:3e: 62:dd:4e:f3:13:4e:f5:bb:21:33:f9:41:f0:3c:91:e3:bf:e9: 4c:ea:2e:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTAxRkMxMTAvBgNVBAUTKDQxNUQxRUY1N0REQTc4QTVGQzk1MjQwNTQyNDg0MDAy OENENDdEOTkwHhcNMjUxMTAzMDA1OTA2WhcNMjUxMTEwMDA1OTA2WjAYMRYwFAYD VQQDEw02OTA3ZmU1Yi1jNzZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAllpbkry/6uMLpIYnZseCR1qLDjkwrysKh2qZiFL9q6QhitC0Sdlaw3BwcsNd Y71FZcADaNxzFcaH3AbmfYn6jysGG8ua1m4ogndTCblY8KgicZ+IXhjbXa0AV2LE uaminztWGYjtO/VmldWvw1hRz/WBh6HPtk1GuoqKKVXIz/j71DZYusxdJtnE417r QQhTNNngDWQyg0Kky0h0S0KWFpVo0Kd9zWRcpNm8nrYJkOSxUvZPYtD6XmX9WPBK Yon1gmnq3zHhvx0zJaRClE70yfda+fVTrNgXEK+PAAe3l32kf7gOw8ke5SyFG+Bx Unw5tXw9N4T2DbdQGnn+PmF96wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE+cVTnf FZKZDSBNgP+xvuNM71jFMB8GA1UdIwQYMBaAFEFdHvV92nil/JUkBUJIQAKM1H2Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDFGQy8zMDRBODlEQ0RF MzQxMUVDOTY0MDU2M0RDNEY5QUUwMi9RVjBlOVgzYWVLWDhsU1FGUWtoQUFvelVm WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FWMGU5WDNhZUtYOGxTUUZRa2hBQW96VWZaay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDFGQy8zMDRBODlEQ0RFMzQxMUVDOTY0MDU2M0RDNEY5QUUwMi9RVjBlOVgzYWVL WDhsU1FGUWtoQUFvelVmWmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBB6EEZU4jrJPkMV/C4qwgcR+Xw0qUKBjcsuUObRd8uoPg1SSGJ4D/D vzpBdf7/LY/rT9793TzN6pEH+dpX+mSRgccy/Kx1FhYk51e017AIqo1omQiNsBmQ 8PIAU/cw7/nMMQkYK8vRvUgp4iT51+/3nxAofuDJFZxPGHzOADAq2SjyC3fGrmCB fljcCVUAfwDdrU4L5Qkj34TtXnTeQjjJsaPqu5LxtfFJRiP1WPnrP+dxPY1Xq0Fp ri+Ekwt0b/jq6HS9x8kkLnPw4x+/sx3DzLVxm3APw3tPfPdxvSnjF9rQrNJBUPh9 RD5i3U7zE071uyEz+UHwPJHjv+lM6i7Q -----END CERTIFICATE-----Generated at Mon Nov 3 18:06:47 2025 by rpki-client