$ rpki-client -vvf rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft File: QhgvX3GliYTOiFmuYKTKynP-g2E.mft (raw, json) Hash identifier: 3A9+CJH9CjJhtsyDqVVgS33uKPdMb7a7NSZaeYtophY= Subject key identifier: E7:83:FD:21:52:2E:3C:34:45:B7:F6:4C:69:11:4F:0C:1B:48:4A:D6 Authority key identifier: 42:18:2F:5F:71:A5:89:84:CE:88:59:AE:60:A4:CA:CA:73:FE:83:61 Certificate issuer: /CN=A916EF5E/serialNumber=42182F5F71A58984CE8859AE60A4CACA73FE8361 Certificate serial: 101E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QhgvX3GliYTOiFmuYKTKynP-g2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft Manifest number: 268A Signing time: Sun 02 Nov 2025 16:41:12 +0000 Manifest this update: Sun 02 Nov 2025 16:41:11 +0000 Manifest next update: Sun 09 Nov 2025 16:41:11 +0000 Files and hashes: 1: QhgvX3GliYTOiFmuYKTKynP-g2E.crl (hash: iSkl22uTxS0gxbVTUg1xo+LU3HnD49tXHVT7YVSDEMU=) 2: 258F8662BBDF11ED8CE89144C4F9AE02.roa (hash: cm97buUsPGrXaIzeG0itGzcsin7x1kihAtonowRM0BA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.crl rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QhgvX3GliYTOiFmuYKTKynP-g2E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:41:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4126 (0x101e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EF5E, serialNumber=42182F5F71A58984CE8859AE60A4CACA73FE8361 Validity Not Before: Nov 2 16:41:11 2025 GMT Not After : Nov 9 16:41:11 2025 GMT Subject: CN=690789a8-9f4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:cd:02:ee:fd:c0:6f:af:22:9d:4c:53:5c:d4: cf:70:23:93:63:53:fc:fd:07:23:59:53:0a:e1:2d: c7:83:cc:a3:8a:c5:fe:1a:02:26:b1:e7:ca:58:54: 88:bc:47:a3:a6:f8:38:b4:ef:5e:90:84:50:e0:10: 8d:08:01:dd:76:ec:38:25:d2:d9:7d:cc:95:04:fb: e4:f7:86:6b:a7:e1:47:d0:45:59:86:e5:ba:3c:9a: de:1c:8c:fb:5b:d7:74:7a:01:67:9f:a0:39:12:07: 33:ff:07:c0:1c:d8:bb:36:38:ed:2e:02:36:be:08: ae:33:4f:73:7a:85:96:e1:6b:a7:33:34:f2:f2:7c: 60:5d:53:da:85:2d:38:e6:ab:70:d9:ae:67:22:6d: 6b:8c:6c:fd:3a:60:14:86:1e:0c:76:42:9c:31:90: f0:83:08:27:67:8a:76:00:e3:e1:05:5b:ae:75:78: 52:e3:5b:99:c3:5a:58:96:c0:6a:13:87:c7:37:89: a6:28:92:c5:79:93:c5:8d:62:8a:ae:63:70:9f:cc: 99:93:85:19:9c:8f:94:16:15:5f:97:0d:45:be:54: bd:9f:e2:00:f4:01:58:b5:eb:ac:ce:b7:84:09:98: 9c:44:dd:f4:38:81:6d:cb:e8:47:2c:21:be:d3:58: 24:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:83:FD:21:52:2E:3C:34:45:B7:F6:4C:69:11:4F:0C:1B:48:4A:D6 X509v3 Authority Key Identifier: keyid:42:18:2F:5F:71:A5:89:84:CE:88:59:AE:60:A4:CA:CA:73:FE:83:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QhgvX3GliYTOiFmuYKTKynP-g2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:1a:fe:82:3f:a8:53:51:09:6f:09:ed:0d:ec:08:be:f8:95: f2:e0:55:dc:f1:ce:8a:70:24:83:fa:47:95:ba:c7:b8:d4:a3: 1a:5a:6b:46:ca:6a:cb:b0:7b:31:5c:48:54:83:97:ff:11:f4: a9:15:b6:af:89:f7:74:4a:2e:db:36:26:7d:57:27:86:a7:95: cd:6f:1d:fc:55:13:8c:e5:22:38:ab:28:43:36:77:ec:d1:f4: 01:51:07:3e:3c:ef:a0:b7:e4:4c:48:ca:25:cb:9a:13:2c:02: 68:f9:62:97:7f:3a:43:76:17:c2:ad:a4:60:2c:0b:81:14:50: 81:2e:21:12:00:45:d9:60:b2:0a:c1:2e:9c:42:66:09:64:ae: e0:c0:1e:a5:91:06:7a:8b:62:47:d4:93:0e:72:84:85:c7:10: 4e:71:a2:49:df:72:bc:2a:f9:fe:40:80:d8:bc:75:bd:51:e7: 72:28:da:f1:94:a9:e7:b4:23:0b:8f:16:d1:f7:73:5b:78:54: 2b:ad:f0:72:0a:b5:16:67:1e:0e:fe:0e:7f:61:f9:2e:a4:c2: 02:ca:bd:f5:cc:6f:5f:c1:a6:24:30:e3:5b:29:82:22:61:66: 6a:aa:f6:f7:63:a8:e6:3e:50:d1:60:a0:80:0f:cf:cf:69:08: 9c:ba:01:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEB4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVGNUUxMTAvBgNVBAUTKDQyMTgyRjVGNzFBNTg5ODRDRTg4NTlBRTYwQTRDQUNB NzNGRTgzNjEwHhcNMjUxMTAyMTY0MTExWhcNMjUxMTA5MTY0MTExWjAYMRYwFAYD VQQDEw02OTA3ODlhOC05ZjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAts0C7v3Ab68inUxTXNTPcCOTY1P8/QcjWVMK4S3Hg8yjisX+GgImsefKWFSI vEejpvg4tO9ekIRQ4BCNCAHdduw4JdLZfcyVBPvk94Zrp+FH0EVZhuW6PJreHIz7 W9d0egFnn6A5Egcz/wfAHNi7NjjtLgI2vgiuM09zeoWW4WunMzTy8nxgXVPahS04 5qtw2a5nIm1rjGz9OmAUhh4MdkKcMZDwgwgnZ4p2AOPhBVuudXhS41uZw1pYlsBq E4fHN4mmKJLFeZPFjWKKrmNwn8yZk4UZnI+UFhVflw1FvlS9n+IA9AFYteuszreE CZicRN30OIFty+hHLCG+01gkeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOeD/SFS Ljw0Rbf2TGkRTwwbSErWMB8GA1UdIwQYMBaAFEIYL19xpYmEzohZrmCkyspz/oNh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUY1RS9GMzhEQ0Y4QTEw NkIxMUU4QjhDQTAyMEJDNEY5QUUwMi9RaGd2WDNHbGlZVE9pRm11WUtUS3luUC1n MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FoZ3ZYM0dsaVlUT2lGbXVZS1RLeW5QLWcyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RUY1RS9GMzhEQ0Y4QTEwNkIxMUU4QjhDQTAyMEJDNEY5QUUwMi9RaGd2WDNHbGlZ VE9pRm11WUtUS3luUC1nMkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGGv6CP6hTUQlvCe0N7Ai++JXy4FXc8c6KcCSD+keVuse41KMaWmtG ymrLsHsxXEhUg5f/EfSpFbavifd0Si7bNiZ9VyeGp5XNbx38VROM5SI4qyhDNnfs 0fQBUQc+PO+gt+RMSMoly5oTLAJo+WKXfzpDdhfCraRgLAuBFFCBLiESAEXZYLIK wS6cQmYJZK7gwB6lkQZ6i2JH1JMOcoSFxxBOcaJJ33K8Kvn+QIDYvHW9UedyKNrx lKnntCMLjxbR93NbeFQrrfByCrUWZx4O/g5/YfkupMICyr31zG9fwaYkMONbKYIi YWZqqvb3Y6jmPlDRYKCAD8/PaQicugEJ -----END CERTIFICATE-----Generated at Tue Nov 4 14:24:39 2025 by rpki-client