$ rpki-client -vvf rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft File: Qyo25tVwCwvKzOD0FXauaxPK08A.mft (raw, json) Hash identifier: tDN22sCynKPRGiwbBWb8ZGIJzX+KI1SqMmZi2O02jdY= Subject key identifier: 51:33:39:8D:14:57:89:F6:38:B3:2C:75:E8:AF:77:5E:8A:2E:5C:E5 Authority key identifier: 43:2A:36:E6:D5:70:0B:0B:CA:CC:E0:F4:15:76:AE:6B:13:CA:D3:C0 Certificate issuer: /CN=A91627B1/serialNumber=432A36E6D5700B0BCACCE0F41576AE6B13CAD3C0 Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft Manifest number: 016F Signing time: Mon 03 Nov 2025 03:49:32 +0000 Manifest this update: Mon 03 Nov 2025 03:49:31 +0000 Manifest next update: Mon 10 Nov 2025 03:49:31 +0000 Files and hashes: 1: Qyo25tVwCwvKzOD0FXauaxPK08A.crl (hash: qMwtTYXx/a53WldQqcaeglRAwZIxnkhrDsnn89v1CHk=) 2: 3ED152FE82A411EE87690C58C4F9AE02.roa (hash: +vHH0mUjaHjNGLcgyypJ8y/RcZMmCEJZHVNAnsairms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.crl rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:49:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91627B1, serialNumber=432A36E6D5700B0BCACCE0F41576AE6B13CAD3C0 Validity Not Before: Nov 3 03:49:31 2025 GMT Not After : Nov 10 03:49:31 2025 GMT Subject: CN=6908264b-b815 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f8:de:57:de:47:89:d5:b5:bb:32:66:61:ed: fd:2a:5d:4b:f9:aa:d9:f3:b3:85:ef:46:8b:ed:9a: 98:17:5f:c0:51:35:d6:43:82:4d:89:23:22:54:db: 90:e2:82:ff:e3:94:f5:42:78:00:4a:4b:11:55:20: 1a:69:f3:6f:5d:af:af:db:43:b8:01:f5:f6:6c:77: 18:4d:15:ce:4e:e2:b8:35:ac:9e:65:a1:ad:1f:cf: 26:2a:44:56:66:ec:4e:e9:73:d8:26:a2:76:dd:d1: 90:0c:61:c9:49:07:a3:28:ab:fa:e7:e9:e0:25:4d: 1e:2d:90:2f:f8:30:d0:cb:d4:09:c3:07:2f:25:30: f6:26:d0:0c:a8:7f:ea:a5:41:c0:63:85:21:ee:07: f9:70:1d:fc:f3:d0:64:2c:0c:d7:64:25:c2:7d:c9: 45:72:5c:32:e2:c7:67:19:aa:16:06:2e:54:b6:06: 33:98:9e:35:ad:cf:9f:20:16:bc:bc:70:a7:3a:b7: d1:a5:35:cf:8f:a4:d1:88:a0:86:70:c9:e8:2e:32: 79:27:15:cf:b8:49:0f:29:98:18:fe:82:f1:97:9f: 1d:11:4d:71:18:74:1b:23:e8:af:c3:38:a1:0d:e5: 09:0c:2b:6c:48:94:a2:85:83:28:bc:65:b2:5d:8d: 49:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:33:39:8D:14:57:89:F6:38:B3:2C:75:E8:AF:77:5E:8A:2E:5C:E5 X509v3 Authority Key Identifier: keyid:43:2A:36:E6:D5:70:0B:0B:CA:CC:E0:F4:15:76:AE:6B:13:CA:D3:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:2f:b9:58:51:84:5c:18:13:7b:4b:4c:30:3a:08:8f:54:6c: 1a:55:d6:23:4b:56:d2:2f:2b:dc:b0:20:e3:7a:72:8f:e4:12: 13:a0:06:44:e6:06:c1:55:84:3a:58:8f:84:54:3a:c1:1a:09: 98:6c:9f:32:b2:6d:5d:c3:1d:e6:b1:81:cd:c7:09:d1:13:b3: 62:a4:b2:6d:77:18:ba:30:83:d6:ac:06:ac:28:94:cf:3d:f9: c8:4e:a6:21:7d:10:59:40:16:d1:6d:d7:cc:c5:f8:92:a1:6e: 33:cf:da:36:39:39:da:f6:2c:46:59:7b:88:e7:75:99:22:2f: 7e:eb:2b:21:55:8b:fe:b4:5f:15:84:e3:03:88:5a:d7:4c:87: 79:09:dd:be:86:c6:25:a3:a8:8d:ed:69:ed:20:84:9c:ea:2a: a9:65:34:7d:a5:d6:4d:1c:34:6c:b0:a7:96:31:a2:43:16:f2: b7:10:80:ba:32:96:50:9a:4b:c5:28:c2:d6:d5:04:29:f1:14: b9:01:d4:68:d6:57:7b:c7:17:30:73:a2:2a:c9:94:6b:b7:78: 4e:5d:31:48:f9:60:4e:fd:b7:68:3d:67:20:81:d6:d9:c5:a3: e9:d5:92:ba:d1:47:7f:98:c9:c7:3d:29:f3:51:0a:ea:ad:95: 87:04:26:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI3QjExMTAvBgNVBAUTKDQzMkEzNkU2RDU3MDBCMEJDQUNDRTBGNDE1NzZBRTZC MTNDQUQzQzAwHhcNMjUxMTAzMDM0OTMxWhcNMjUxMTEwMDM0OTMxWjAYMRYwFAYD VQQDEw02OTA4MjY0Yi1iODE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzPjeV95HidW1uzJmYe39Kl1L+arZ87OF70aL7ZqYF1/AUTXWQ4JNiSMiVNuQ 4oL/45T1QngASksRVSAaafNvXa+v20O4AfX2bHcYTRXOTuK4NayeZaGtH88mKkRW ZuxO6XPYJqJ23dGQDGHJSQejKKv65+ngJU0eLZAv+DDQy9QJwwcvJTD2JtAMqH/q pUHAY4Uh7gf5cB3889BkLAzXZCXCfclFclwy4sdnGaoWBi5UtgYzmJ41rc+fIBa8 vHCnOrfRpTXPj6TRiKCGcMnoLjJ5JxXPuEkPKZgY/oLxl58dEU1xGHQbI+ivwzih DeUJDCtsSJSihYMovGWyXY1JEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFEzOY0U V4n2OLMsdeivd16KLlzlMB8GA1UdIwQYMBaAFEMqNubVcAsLyszg9BV2rmsTytPA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjdCMS84RkFGMkJERTgy QTMxMUVFQUM2OUY0NTZDNEY5QUUwMi9ReW8yNXRWd0N3dkt6T0QwRlhhdWF4UEsw OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F5bzI1dFZ3Q3d2S3pPRDBGWGF1YXhQSzA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjdCMS84RkFGMkJERTgyQTMxMUVFQUM2OUY0NTZDNEY5QUUwMi9ReW8yNXRWd0N3 dkt6T0QwRlhhdWF4UEswOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7L7lYUYRcGBN7S0wwOgiPVGwaVdYjS1bSLyvcsCDjenKP5BIToAZE 5gbBVYQ6WI+EVDrBGgmYbJ8ysm1dwx3msYHNxwnRE7NipLJtdxi6MIPWrAasKJTP PfnITqYhfRBZQBbRbdfMxfiSoW4zz9o2OTna9ixGWXuI53WZIi9+6yshVYv+tF8V hOMDiFrXTId5Cd2+hsYlo6iN7WntIISc6iqpZTR9pdZNHDRssKeWMaJDFvK3EIC6 MpZQmkvFKMLW1QQp8RS5AdRo1ld7xxcwc6IqyZRrt3hOXTFI+WBO/bdoPWcggdbZ xaPp1ZK60Ud/mMnHPSnzUQrqrZWHBCZH -----END CERTIFICATE-----Generated at Mon Nov 3 18:11:08 2025 by rpki-client