$ rpki-client -vvf rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft File: KQX7MhK9YWRvt69jPqGiV7w6Pew.mft (raw, json) Hash identifier: h1cdCaRxhVyzLDBboCtyCdvn89FfAaLiYOiTez+MipU= Subject key identifier: 1E:6C:50:4D:ED:AF:8C:A7:42:6B:8C:A9:A3:00:E0:3A:FD:AC:8E:F9 Authority key identifier: 29:05:FB:32:12:BD:61:64:6F:B7:AF:63:3E:A1:A2:57:BC:3A:3D:EC Certificate issuer: /CN=A9156971/serialNumber=2905FB3212BD61646FB7AF633EA1A257BC3A3DEC Certificate serial: 34E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft Manifest number: 34DB Signing time: Sun 02 Nov 2025 14:44:43 +0000 Manifest this update: Sun 02 Nov 2025 14:44:43 +0000 Manifest next update: Sun 09 Nov 2025 14:44:43 +0000 Files and hashes: 1: KQX7MhK9YWRvt69jPqGiV7w6Pew.crl (hash: kUdrWJdW1gQi8jH64c1Xor1BILI9Uujf5dexdte7hgw=) 2: 4AF78A4AFEC611EF86B4765BC4F9AE02.roa (hash: 4eibZFZxCBojQ0XF3++/6D4cGjzEkC+cfaewXmXRSYk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.crl rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 14:44:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13537 (0x34e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156971, serialNumber=2905FB3212BD61646FB7AF633EA1A257BC3A3DEC Validity Not Before: Nov 2 14:44:43 2025 GMT Not After : Nov 9 14:44:43 2025 GMT Subject: CN=69076e5b-e3fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:56:bb:c7:ce:88:4c:d8:44:95:3e:4c:0a:df: 92:02:93:cf:fa:1e:09:8c:c8:82:31:93:e6:b1:4f: 75:55:74:2d:a8:d0:d1:48:d0:eb:6d:78:ae:39:61: 53:af:fe:2a:c8:13:38:8d:b1:46:dd:b6:8c:4a:cb: 97:ec:2e:20:dd:9f:7c:20:da:d0:99:15:c1:3f:ef: 87:b3:35:6f:1c:9c:1a:e7:ed:05:15:b0:b9:84:b3: af:9e:8d:5f:a8:49:d8:c3:68:9e:49:da:d3:3e:7e: 98:e5:a7:bc:f0:44:e4:b3:7d:b1:3e:de:fa:85:1d: 2d:4b:f2:9d:f2:fb:10:f9:51:7c:fb:e6:da:d9:a7: d7:2c:9a:a4:82:48:8b:8a:55:0c:ff:61:db:ec:8f: dc:d6:32:f7:04:19:9c:95:6a:37:ff:6b:f0:5e:48: 79:63:05:21:a8:89:66:bd:be:04:95:a5:28:c4:b4: ca:6d:ab:3f:4d:75:41:d8:94:24:86:d5:74:45:88: ab:67:c1:77:ea:be:80:7c:94:ba:52:03:23:bd:99: 18:a6:a1:f8:6e:19:e3:0a:e7:ff:70:67:30:e9:14: c1:5a:f5:d5:1b:de:4a:38:37:fd:b4:72:24:0c:5d: 59:ed:50:61:80:eb:02:ef:98:a7:46:9e:64:c1:91: 18:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:6C:50:4D:ED:AF:8C:A7:42:6B:8C:A9:A3:00:E0:3A:FD:AC:8E:F9 X509v3 Authority Key Identifier: keyid:29:05:FB:32:12:BD:61:64:6F:B7:AF:63:3E:A1:A2:57:BC:3A:3D:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:73:72:e2:8e:ce:20:62:54:e3:1a:5b:73:14:b7:46:83:bb: 66:ba:1a:53:11:7d:5a:8e:23:96:21:ca:be:40:4e:41:e7:a5: f6:b2:76:b6:52:8a:d6:f0:28:2e:98:76:82:03:13:3d:fe:75: 81:6c:89:75:dd:e7:4e:17:d0:59:90:85:f0:95:75:24:50:5a: 51:d4:2e:22:39:39:ba:14:52:04:14:57:5f:a2:0a:d3:ea:2e: d4:b3:1b:dc:b9:cd:47:dd:cc:57:4f:ad:f4:d9:97:46:6f:9c: 44:38:64:bf:78:f0:7f:2a:e6:9f:d5:7c:03:f9:25:a4:0f:30: ac:28:d9:9c:48:3c:e2:e2:ed:9f:8c:99:dd:5f:87:cf:5b:0c: 19:42:97:eb:6c:91:4c:05:85:e7:72:c9:52:02:40:72:0b:82: d0:f8:4f:fc:2d:cd:2e:50:b6:f2:d9:8c:d9:0b:d8:6c:d3:ce: d0:17:06:f2:1a:4d:22:fb:5f:1d:80:a6:0c:72:1a:a2:c3:ff: 53:d5:b0:c2:df:2b:74:d9:64:3f:34:f6:e7:ee:74:d6:53:39: d5:92:48:a2:3a:d1:28:e2:f4:50:51:a6:4c:2f:01:4d:65:70: 2f:c2:c9:2a:7c:3b:20:9a:4a:de:e9:0a:e9:7a:41:b4:bd:14: 2a:d4:3d:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY5NzExMTAvBgNVBAUTKDI5MDVGQjMyMTJCRDYxNjQ2RkI3QUY2MzNFQTFBMjU3 QkMzQTNERUMwHhcNMjUxMTAyMTQ0NDQzWhcNMjUxMTA5MTQ0NDQzWjAYMRYwFAYD VQQDEw02OTA3NmU1Yi1lM2ZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArla7x86ITNhElT5MCt+SApPP+h4JjMiCMZPmsU91VXQtqNDRSNDrbXiuOWFT r/4qyBM4jbFG3baMSsuX7C4g3Z98INrQmRXBP++HszVvHJwa5+0FFbC5hLOvno1f qEnYw2ieSdrTPn6Y5ae88ETks32xPt76hR0tS/Kd8vsQ+VF8++ba2afXLJqkgkiL ilUM/2Hb7I/c1jL3BBmclWo3/2vwXkh5YwUhqIlmvb4ElaUoxLTKbas/TXVB2JQk htV0RYirZ8F36r6AfJS6UgMjvZkYpqH4bhnjCuf/cGcw6RTBWvXVG95KODf9tHIk DF1Z7VBhgOsC75inRp5kwZEYGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB5sUE3t r4ynQmuMqaMA4Dr9rI75MB8GA1UdIwQYMBaAFCkF+zISvWFkb7evYz6hole8Oj3s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Njk3MS80OEMyMjE4NjFE OTIxMUUyQURCMzBCRjUwOEIwMkNEMi9LUVg3TWhLOVlXUnZ0NjlqUHFHaVY3dzZQ ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tRWDdNaEs5WVdSdnQ2OWpQcUdpVjd3NlBldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Njk3MS80OEMyMjE4NjFEOTIxMUUyQURCMzBCRjUwOEIwMkNEMi9LUVg3TWhLOVlX UnZ0NjlqUHFHaVY3dzZQZXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBac3Lijs4gYlTjGltzFLdGg7tmuhpTEX1ajiOWIcq+QE5B56X2sna2 UorW8CgumHaCAxM9/nWBbIl13edOF9BZkIXwlXUkUFpR1C4iOTm6FFIEFFdfogrT 6i7Usxvcuc1H3cxXT6302ZdGb5xEOGS/ePB/Kuaf1XwD+SWkDzCsKNmcSDzi4u2f jJndX4fPWwwZQpfrbJFMBYXncslSAkByC4LQ+E/8Lc0uULby2YzZC9hs087QFwby Gk0i+18dgKYMchqiw/9T1bDC3yt02WQ/NPbn7nTWUznVkkiiOtEo4vRQUaZMLwFN ZXAvwskqfDsgmkre6QrpekG0vRQq1D1Z -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:09 2025 by rpki-client