$ rpki-client -vvf rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft File: Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft (raw, json) Hash identifier: kUMbA7iZYiig1TjCoU+LYO+cyxvoSrJZVuRU+yqsegM= Subject key identifier: 95:7A:74:63:BB:EA:42:A7:D9:56:10:5C:1F:33:2F:C9:7A:04:36:AE Authority key identifier: 43:7F:F3:4E:E7:BC:70:50:C9:C8:48:86:AA:94:CE:8C:F5:0C:24:F9 Certificate issuer: /CN=A91580A1/serialNumber=437FF34EE7BC7050C9C84886AA94CE8CF50C24F9 Certificate serial: 0865 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q3_zTue8cFDJyEiGqpTOjPUMJPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft Manifest number: 13DE Signing time: Sun 02 Nov 2025 18:59:07 +0000 Manifest this update: Sun 02 Nov 2025 18:59:06 +0000 Manifest next update: Sun 09 Nov 2025 18:59:06 +0000 Files and hashes: 1: Q3_zTue8cFDJyEiGqpTOjPUMJPk.crl (hash: GGzHPZGLNm6ZFlFOAB0F3RQq9JiFBpMHOX4WRm7dT7w=) 2: B65A4FACE18C11ECB1697F55C4F9AE02.roa (hash: 5zkE6RPNVvetKuzik8vsy3mHeLDd3Wj/ciaGchVH9po=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.crl rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q3_zTue8cFDJyEiGqpTOjPUMJPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:59:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2149 (0x865) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91580A1, serialNumber=437FF34EE7BC7050C9C84886AA94CE8CF50C24F9 Validity Not Before: Nov 2 18:59:06 2025 GMT Not After : Nov 9 18:59:06 2025 GMT Subject: CN=6907a9fb-2091 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:3a:52:9c:03:d1:cf:6c:77:22:f1:b3:47:f5: 97:94:70:a9:e0:69:d1:31:16:93:42:8f:94:23:21: 7b:31:55:72:02:1b:de:03:54:d2:e7:bd:56:7b:27: 43:d0:c5:45:96:e0:5c:60:58:c3:d4:16:7e:e1:9a: 7d:39:22:4f:a9:1f:1d:04:ab:d4:b7:45:d1:92:a3: 65:db:f8:6a:35:5b:58:df:d8:5d:c1:71:ba:ff:25: cb:47:e3:5b:56:e4:ed:84:af:54:5c:0c:ed:95:c9: db:aa:13:ac:c9:c5:fc:ec:aa:dc:71:77:44:61:d1: a4:bd:dd:75:c5:91:bd:5a:12:60:57:93:83:f2:be: 8e:b3:db:20:40:62:15:13:10:8d:b5:a5:fd:a7:88: 81:c6:e7:ec:bc:16:4e:d0:ea:a7:ac:88:94:2d:cc: 19:d7:05:10:13:5b:2b:d2:62:ca:f4:35:f0:02:90: c4:25:3c:c6:46:bc:ce:a2:cc:6f:46:e8:86:fe:d4: 71:f5:5d:fd:0d:b5:2e:37:66:69:41:72:6d:8d:5d: a4:78:6d:3d:b1:fa:1f:29:30:3b:af:f2:fb:02:ae: 32:d9:66:55:78:78:7d:19:48:df:d6:e4:67:1a:52: 46:96:46:95:31:41:80:b1:d7:ee:6f:50:cf:cb:88: 97:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:7A:74:63:BB:EA:42:A7:D9:56:10:5C:1F:33:2F:C9:7A:04:36:AE X509v3 Authority Key Identifier: keyid:43:7F:F3:4E:E7:BC:70:50:C9:C8:48:86:AA:94:CE:8C:F5:0C:24:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q3_zTue8cFDJyEiGqpTOjPUMJPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:19:72:cf:3d:ed:72:bf:a5:5c:d1:71:f4:31:14:64:de:ea: f5:51:d3:9a:7e:af:2a:eb:df:3c:ff:1e:c3:c2:e8:bf:5c:3b: f9:16:b7:53:8f:e1:36:60:5f:fd:71:b3:9c:d3:c1:7e:27:3d: 38:c0:de:44:49:67:a0:30:53:63:a4:8d:e3:69:3f:4e:eb:6e: 92:be:02:97:8d:c0:11:9f:d2:09:1d:b3:6a:c8:68:c2:ca:a3: 37:9c:01:e9:96:57:66:d7:68:a3:4b:47:b8:f6:bd:5a:e1:5c: 59:36:6d:83:d6:e1:da:6d:c3:f6:bf:d4:6a:b9:52:62:53:53: 66:4e:06:85:c9:e8:32:77:53:64:60:e9:48:0f:0c:df:ab:90: b7:cf:df:85:e8:f6:00:8e:0c:03:2e:e4:45:4a:f8:7c:c9:bb: 6a:c1:c6:33:78:59:d4:71:a2:81:6b:43:6c:4d:3e:cd:78:79: cf:5b:d9:60:78:ce:ca:08:f4:89:dc:22:7f:20:92:c4:28:c3: b1:b8:ca:86:ec:68:14:29:ae:84:ec:fb:e5:49:fe:d8:59:9f: c1:07:61:b6:26:89:2b:33:56:94:2d:c3:23:3d:25:b5:2d:37: ae:e6:74:50:ec:18:e6:ad:45:63:57:c0:88:07:17:61:cc:85: c9:84:8c:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwQTExMTAvBgNVBAUTKDQzN0ZGMzRFRTdCQzcwNTBDOUM4NDg4NkFBOTRDRThD RjUwQzI0RjkwHhcNMjUxMTAyMTg1OTA2WhcNMjUxMTA5MTg1OTA2WjAYMRYwFAYD VQQDEw02OTA3YTlmYi0yMDkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuzpSnAPRz2x3IvGzR/WXlHCp4GnRMRaTQo+UIyF7MVVyAhveA1TS571WeydD 0MVFluBcYFjD1BZ+4Zp9OSJPqR8dBKvUt0XRkqNl2/hqNVtY39hdwXG6/yXLR+Nb VuTthK9UXAztlcnbqhOsycX87KrccXdEYdGkvd11xZG9WhJgV5OD8r6Os9sgQGIV ExCNtaX9p4iBxufsvBZO0OqnrIiULcwZ1wUQE1sr0mLK9DXwApDEJTzGRrzOosxv RuiG/tRx9V39DbUuN2ZpQXJtjV2keG09sfofKTA7r/L7Aq4y2WZVeHh9GUjf1uRn GlJGlkaVMUGAsdfub1DPy4iX0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJV6dGO7 6kKn2VYQXB8zL8l6BDauMB8GA1UdIwQYMBaAFEN/807nvHBQychIhqqUzoz1DCT5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODBBMS85MjU2MEE2QTM3 NEQxMUVBQTBBM0JFNTVDNEY5QUUwMi9RM196VHVlOGNGREp5RWlHcXBUT2pQVU1K UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EzX3pUdWU4Y0ZESnlFaUdxcFRPalBVTUpQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODBBMS85MjU2MEE2QTM3NEQxMUVBQTBBM0JFNTVDNEY5QUUwMi9RM196VHVlOGNG REp5RWlHcXBUT2pQVU1KUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2GXLPPe1yv6Vc0XH0MRRk3ur1UdOafq8q6988/x7Dwui/XDv5FrdT j+E2YF/9cbOc08F+Jz04wN5ESWegMFNjpI3jaT9O626SvgKXjcARn9IJHbNqyGjC yqM3nAHplldm12ijS0e49r1a4VxZNm2D1uHabcP2v9RquVJiU1NmTgaFyegyd1Nk YOlIDwzfq5C3z9+F6PYAjgwDLuRFSvh8ybtqwcYzeFnUcaKBa0NsTT7NeHnPW9lg eM7KCPSJ3CJ/IJLEKMOxuMqG7GgUKa6E7PvlSf7YWZ/BB2G2JokrM1aULcMjPSW1 LTeu5nRQ7BjmrUVjV8CIBxdhzIXJhIzO -----END CERTIFICATE-----Generated at Mon Nov 3 18:19:29 2025 by rpki-client