$ rpki-client -vvf rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft File: QIyZnDwewBZElFs0d6nyI061eRw.mft (raw, json) Hash identifier: ManMrVJXFfNsv241G1M7AYzv8Oe9g9RdwIWnkzOZl4w= Subject key identifier: 80:EA:8D:CA:F4:C8:FF:95:75:C0:60:CA:BC:AF:C7:27:66:5D:55:99 Authority key identifier: 40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C Certificate issuer: /CN=A91650A5/serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Certificate serial: 24FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft Manifest number: 24D8 Signing time: Sun 02 Nov 2025 15:47:09 +0000 Manifest this update: Sun 02 Nov 2025 15:47:09 +0000 Manifest next update: Sun 09 Nov 2025 15:47:09 +0000 Files and hashes: 1: QIyZnDwewBZElFs0d6nyI061eRw.crl (hash: LSrHPEdNKRmCfWRJ8kgp4WF+tl/DxVhnCSxZKaCTMA4=) 2: 50A2F64264BC11E8ACC7951EC4F9AE02.roa (hash: mzRK3TSpPRAdSBZvLPRDHoBd646mt2gZoJEdzJuirAk=) 3: 2486E806F0E311EAA1C58D62C4F9AE02.roa (hash: o9TQ5zjWOlGJay3aR5mHzl6v5wxGxk4ue+WpHK/fjik=) 4: ABA9F4B8AF8411EABF9F844DC4F9AE02.roa (hash: 0WRpreCZL7KBHEz4o02SUgtVLz3Ou83Qb1HlkXxl+V4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 15:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9467 (0x24fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91650A5, serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Validity Not Before: Nov 2 15:47:09 2025 GMT Not After : Nov 9 15:47:09 2025 GMT Subject: CN=69077cfd-95db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a5:00:a3:b4:e7:11:1e:b8:94:b4:a8:e2:b2: 1f:16:14:46:2b:53:e5:89:f3:54:d9:12:10:14:cc: 9e:aa:44:c3:c4:af:f3:46:c6:39:b8:dd:d5:77:64: a7:40:6b:0b:c0:69:4e:7f:be:2b:ac:2c:4e:de:ac: 5a:dc:ff:b0:84:13:08:b5:0e:e3:d0:0d:c1:f5:5a: bb:58:0e:1f:7e:76:1d:da:38:76:8e:29:e7:a9:b4: 0a:d8:49:a4:06:33:82:dc:a2:71:06:7b:c2:13:cd: 7b:c5:a3:43:3e:56:2d:90:b2:0e:6a:35:85:15:b2: a9:e3:c8:a2:a8:66:cc:d5:15:61:3f:26:9e:10:d3: e1:f0:4d:52:e7:53:6c:ca:f3:20:7f:f3:8f:af:e0: df:5b:6c:42:f0:28:d6:4c:5a:c5:9d:12:4d:dd:a4: 26:47:c9:fd:b7:cf:99:62:15:d3:4d:1d:44:48:60: b2:54:82:f2:b1:15:d8:5d:e0:61:db:e0:2e:dd:15: 9c:6c:70:2b:95:fc:ee:bb:c4:a0:ed:46:65:6c:8a: 1f:74:7c:25:4e:f5:28:e4:e9:79:57:74:79:d9:29: 26:eb:40:4a:ce:09:9a:fd:bb:97:2e:63:d1:9e:55: 0c:2e:7f:d0:9c:06:ec:94:44:fc:78:af:de:05:1c: 33:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:EA:8D:CA:F4:C8:FF:95:75:C0:60:CA:BC:AF:C7:27:66:5D:55:99 X509v3 Authority Key Identifier: keyid:40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:98:e5:81:28:09:e7:3a:0b:c1:9f:bf:54:27:e1:f3:ff:97: 59:c0:95:9e:a1:d8:93:2a:78:ac:0d:e0:2e:5e:ae:44:a3:e1: a3:2b:74:0a:63:51:22:6e:b7:c0:96:c6:e1:4b:ff:42:93:8c: a0:63:d0:cc:ef:4e:91:f2:d2:33:d1:3c:1b:b7:ca:4b:c4:53: bd:a7:df:88:c7:98:01:4a:01:b2:fc:cd:6d:9d:3a:3f:e4:dc: 43:1f:1c:91:a5:7e:ed:97:4e:69:bf:4c:29:cc:ce:a3:cd:d7: 06:ab:eb:c7:b8:4e:26:53:fb:88:7c:80:2d:4e:19:3d:57:72: 68:a4:60:29:73:a0:c3:99:1d:33:02:57:8e:91:4e:d2:cd:d1: 51:1e:83:84:a0:ba:6a:1c:2b:13:b6:e2:47:22:8a:30:dd:b1: fa:9c:08:0a:ff:a4:67:f2:77:dd:dc:8a:91:4d:fd:d9:83:2f: 3b:d8:35:9f:b6:43:48:ce:21:46:0a:16:30:c1:de:34:f2:56: 5a:4b:77:e9:3a:41:9b:30:0d:25:20:0a:8d:b7:6e:1d:19:83: 9d:ea:b9:b6:b2:70:4d:fc:0d:7f:d1:35:75:04:2f:75:09:3f: a0:20:5f:e0:f2:29:fe:e6:dd:39:f1:fd:1f:c9:c2:ff:ae:74: 9a:ae:10:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUwQTUxMTAvBgNVBAUTKDQwOEM5OTlDM0MxRUMwMTY0NDk0NUIzNDc3QTlGMjIz NEVCNTc5MUMwHhcNMjUxMTAyMTU0NzA5WhcNMjUxMTA5MTU0NzA5WjAYMRYwFAYD VQQDEw02OTA3N2NmZC05NWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq6UAo7TnER64lLSo4rIfFhRGK1PlifNU2RIQFMyeqkTDxK/zRsY5uN3Vd2Sn QGsLwGlOf74rrCxO3qxa3P+whBMItQ7j0A3B9Vq7WA4ffnYd2jh2jinnqbQK2Emk BjOC3KJxBnvCE817xaNDPlYtkLIOajWFFbKp48iiqGbM1RVhPyaeENPh8E1S51Ns yvMgf/OPr+DfW2xC8CjWTFrFnRJN3aQmR8n9t8+ZYhXTTR1ESGCyVILysRXYXeBh 2+Au3RWcbHArlfzuu8Sg7UZlbIofdHwlTvUo5Ol5V3R52Skm60BKzgma/buXLmPR nlUMLn/QnAbslET8eK/eBRwzmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIDqjcr0 yP+VdcBgyryvxydmXVWZMB8GA1UdIwQYMBaAFECMmZw8HsAWRJRbNHep8iNOtXkc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTBBNS8xN0RGQjM1QTQ2 RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdCWkVsRnMwZDZueUkwNjFl UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FJeVpuRHdld0JaRWxGczBkNm55STA2MWVSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTBBNS8xN0RGQjM1QTQ2RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdC WkVsRnMwZDZueUkwNjFlUncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/mOWBKAnnOgvBn79UJ+Hz/5dZwJWeodiTKnisDeAuXq5Eo+GjK3QK Y1EibrfAlsbhS/9Ck4ygY9DM706R8tIz0Twbt8pLxFO9p9+Ix5gBSgGy/M1tnTo/ 5NxDHxyRpX7tl05pv0wpzM6jzdcGq+vHuE4mU/uIfIAtThk9V3JopGApc6DDmR0z AleOkU7SzdFRHoOEoLpqHCsTtuJHIoow3bH6nAgK/6Rn8nfd3IqRTf3Zgy872DWf tkNIziFGChYwwd408lZaS3fpOkGbMA0lIAqNt24dGYOd6rm2snBN/A1/0TV1BC91 CT+gIF/g8in+5t058f0fycL/rnSarhAW -----END CERTIFICATE-----Generated at Mon Nov 3 18:19:53 2025 by rpki-client