$ rpki-client -vvf rpki.apnic.net/member_repository/A916DFDD/A0D42A2A4A9011F0B288AC59C4F9AE02/qiyvTk8Wq7M5weXQ8Fn0E65c6IQ.mft File: qiyvTk8Wq7M5weXQ8Fn0E65c6IQ.mft (raw, json) Hash identifier: 9e+uGH2fdvZ3PGkKVOQIwhTlYQ8uatKnKPNCrZKbacc= Subject key identifier: 40:B6:9C:8D:60:26:D4:2D:D6:9A:75:42:43:E4:13:B1:52:19:22:05 Authority key identifier: AA:2C:AF:4E:4F:16:AB:B3:39:C1:E5:D0:F0:59:F4:13:AE:5C:E8:84 Certificate issuer: /CN=A916DFDD/serialNumber=AA2CAF4E4F16ABB339C1E5D0F059F413AE5CE884 Certificate serial: 4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiyvTk8Wq7M5weXQ8Fn0E65c6IQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DFDD/A0D42A2A4A9011F0B288AC59C4F9AE02/qiyvTk8Wq7M5weXQ8Fn0E65c6IQ.mft Manifest number: 4A Signing time: Mon 03 Nov 2025 07:20:24 +0000 Manifest this update: Mon 03 Nov 2025 07:20:24 +0000 Manifest next update: Mon 10 Nov 2025 07:20:24 +0000 Files and hashes: 1: qiyvTk8Wq7M5weXQ8Fn0E65c6IQ.crl (hash: uuSDPCmMuVIhHbaZ+c+W2dZY54QkmN6TIzhNhdcQm1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DFDD/A0D42A2A4A9011F0B288AC59C4F9AE02/qiyvTk8Wq7M5weXQ8Fn0E65c6IQ.crl rsync://rpki.apnic.net/member_repository/A916DFDD/A0D42A2A4A9011F0B288AC59C4F9AE02/qiyvTk8Wq7M5weXQ8Fn0E65c6IQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiyvTk8Wq7M5weXQ8Fn0E65c6IQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DFDD, serialNumber=AA2CAF4E4F16ABB339C1E5D0F059F413AE5CE884 Validity Not Before: Nov 3 07:20:24 2025 GMT Not After : Nov 10 07:20:24 2025 GMT Subject: CN=690857b8-df68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:68:b4:08:f4:41:8d:15:1b:19:ae:ed:04:57: e2:21:06:d9:8b:8d:df:e9:42:81:d2:32:0c:bc:09: 73:df:81:fc:d4:fd:c3:ea:35:2d:c1:da:b5:c4:ac: 4b:1c:cf:91:bb:89:d0:94:1c:51:aa:be:9e:77:96: d4:83:48:48:f0:f1:73:6c:b0:fc:e5:cc:c9:0a:b5: b4:20:a7:85:49:d6:1d:4f:f7:f4:b3:14:b1:d7:8f: 52:5f:93:4a:66:d1:71:98:df:a3:29:8f:55:88:28: 18:92:79:fd:db:22:f3:e6:3c:0d:eb:74:ed:60:eb: fc:fb:b7:67:a4:3e:be:42:0e:18:52:51:24:54:10: 2b:bd:6b:d4:cb:97:38:7f:b4:5c:df:bc:b9:fd:61: 98:ca:af:9a:51:04:49:2b:9b:4b:1c:8d:aa:a1:6b: b0:a6:53:9c:83:99:fe:c0:4f:34:53:81:f9:34:d5: 91:14:42:fc:0e:08:13:8f:38:77:b9:c0:48:a1:63: 42:91:c2:0e:26:a9:b7:b0:09:57:19:c8:e0:83:f5: bc:80:c4:d5:81:2b:9b:a3:4c:f2:fa:15:9b:fc:f8: bf:3f:84:c3:f3:e9:81:00:ac:9a:87:9a:21:24:d9: a5:cf:09:01:e2:6d:42:00:00:17:31:a6:9f:7e:d7: 6f:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:B6:9C:8D:60:26:D4:2D:D6:9A:75:42:43:E4:13:B1:52:19:22:05 X509v3 Authority Key Identifier: keyid:AA:2C:AF:4E:4F:16:AB:B3:39:C1:E5:D0:F0:59:F4:13:AE:5C:E8:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DFDD/A0D42A2A4A9011F0B288AC59C4F9AE02/qiyvTk8Wq7M5weXQ8Fn0E65c6IQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiyvTk8Wq7M5weXQ8Fn0E65c6IQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DFDD/A0D42A2A4A9011F0B288AC59C4F9AE02/qiyvTk8Wq7M5weXQ8Fn0E65c6IQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:93:57:8d:6d:f2:a5:cf:64:43:62:3e:96:38:99:63:37:79: 6b:ff:d8:25:31:7b:fd:51:8e:16:b9:64:24:39:69:53:61:61: d0:b0:81:26:be:6c:3e:33:db:52:3c:43:7a:e7:cf:ad:e3:55: 1e:31:0c:71:55:3d:01:5b:06:c7:32:d5:1c:12:8a:05:68:bf: 2f:55:c8:60:3c:9a:bd:32:d3:60:6f:fe:7e:23:0a:c7:39:87: b9:cc:54:f3:16:ef:ad:12:17:5b:b3:06:a2:b4:5c:99:eb:67: 02:6d:1e:05:df:18:98:ea:6e:43:dc:80:a0:bd:5b:ef:1c:40: 5f:9b:03:23:b0:30:44:2e:51:e4:d8:a2:3c:d7:f6:a6:27:36: 1d:68:89:07:ea:52:14:46:e4:57:8c:23:7b:02:32:ab:0c:27: 3f:89:ae:b5:bc:4e:85:21:b0:21:b6:b0:ea:72:bd:87:3f:34: d6:d7:98:60:7b:02:9b:e1:b5:36:22:74:22:da:e5:b2:33:15: 2a:cf:82:dd:ac:16:bb:a1:a4:ee:d9:ee:57:43:af:9a:24:a4: 8f:85:53:50:ea:1f:63:5e:e1:2b:a7:74:c5:e7:da:0c:1a:d0: 70:1e:22:33:b2:f1:ed:93:2f:d8:fa:17:7a:bb:9f:30:78:92: 16:af:35:8b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 REZERDExMC8GA1UEBRMoQUEyQ0FGNEU0RjE2QUJCMzM5QzFFNUQwRjA1OUY0MTNB RTVDRTg4NDAeFw0yNTExMDMwNzIwMjRaFw0yNTExMTAwNzIwMjRaMBgxFjAUBgNV BAMTDTY5MDg1N2I4LWRmNjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDkaLQI9EGNFRsZru0EV+IhBtmLjd/pQoHSMgy8CXPfgfzU/cPqNS3B2rXErEsc z5G7idCUHFGqvp53ltSDSEjw8XNssPzlzMkKtbQgp4VJ1h1P9/SzFLHXj1Jfk0pm 0XGY36Mpj1WIKBiSef3bIvPmPA3rdO1g6/z7t2ekPr5CDhhSUSRUECu9a9TLlzh/ tFzfvLn9YZjKr5pRBEkrm0scjaqha7CmU5yDmf7ATzRTgfk01ZEUQvwOCBOPOHe5 wEihY0KRwg4mqbewCVcZyOCD9byAxNWBK5ujTPL6FZv8+L8/hMPz6YEArJqHmiEk 2aXPCQHibUIAABcxpp9+12+NAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQLacjWAm 1C3WmnVCQ+QTsVIZIgUwHwYDVR0jBBgwFoAUqiyvTk8Wq7M5weXQ8Fn0E65c6IQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZERkREL0EwRDQyQTJBNEE5 MDExRjBCMjg4QUM1OUM0RjlBRTAyL3FpeXZUazhXcTdNNXdlWFE4Rm4wRTY1YzZJ US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcWl5dlRrOFdxN001d2VYUThGbjBFNjVjNklRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZE RkREL0EwRDQyQTJBNEE5MDExRjBCMjg4QUM1OUM0RjlBRTAyL3FpeXZUazhXcTdN NXdlWFE4Rm4wRTY1YzZJUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAqTV41t8qXPZENiPpY4mWM3eWv/2CUxe/1Rjha5ZCQ5aVNhYdCwgSa+ bD4z21I8Q3rnz63jVR4xDHFVPQFbBscy1RwSigVovy9VyGA8mr0y02Bv/n4jCsc5 h7nMVPMW760SF1uzBqK0XJnrZwJtHgXfGJjqbkPcgKC9W+8cQF+bAyOwMEQuUeTY ojzX9qYnNh1oiQfqUhRG5FeMI3sCMqsMJz+JrrW8ToUhsCG2sOpyvYc/NNbXmGB7 ApvhtTYidCLa5bIzFSrPgt2sFruhpO7Z7ldDr5okpI+FU1DqH2Ne4SundMXn2gwa 0HAeIjOy8e2TL9j6F3q7nzB4khavNYs= -----END CERTIFICATE-----Generated at Mon Nov 3 18:06:54 2025 by rpki-client