$ rpki-client -vvf rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/Qb--vmNSH7BO2BI8aOXAza9dBc0.mft File: Qb--vmNSH7BO2BI8aOXAza9dBc0.mft (raw, json) Hash identifier: EQt0hf/sxVF/LB7MryXCjixf2jA/4E/dWb0zIgrLrMM= Subject key identifier: 29:16:11:39:7E:1D:B7:1A:EA:62:06:54:4D:F2:04:3E:24:4E:63:19 Authority key identifier: 41:BF:BE:BE:63:52:1F:B0:4E:D8:12:3C:68:E5:C0:CD:AF:5D:05:CD Certificate issuer: /CN=A9170982/serialNumber=41BFBEBE63521FB04ED8123C68E5C0CDAF5D05CD Certificate serial: 03D6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qb--vmNSH7BO2BI8aOXAza9dBc0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/Qb--vmNSH7BO2BI8aOXAza9dBc0.mft Manifest number: 03CA Signing time: Wed 05 Nov 2025 00:44:38 +0000 Manifest this update: Wed 05 Nov 2025 00:44:38 +0000 Manifest next update: Wed 12 Nov 2025 00:44:38 +0000 Files and hashes: 1: Qb--vmNSH7BO2BI8aOXAza9dBc0.crl (hash: xjLV+nFJscN/SQ2wnkvQIcPDEcOL3UAgnUgDl9VLM1M=) 2: EE8EAEDC377F11EE92674430C4F9AE02.roa (hash: XUINDcHIDNHHzShIR5UbuMY4rtr/62wcaswBNnwgnig=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/Qb--vmNSH7BO2BI8aOXAza9dBc0.crl rsync://rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/Qb--vmNSH7BO2BI8aOXAza9dBc0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qb--vmNSH7BO2BI8aOXAza9dBc0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:44:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 982 (0x3d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170982, serialNumber=41BFBEBE63521FB04ED8123C68E5C0CDAF5D05CD Validity Not Before: Nov 5 00:44:38 2025 GMT Not After : Nov 12 00:44:38 2025 GMT Subject: CN=690a9df6-e9d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c3:b7:12:33:4a:11:61:fd:11:53:4c:07:f4: 79:c0:6a:f1:51:49:e1:4c:fd:04:60:b1:d9:af:6d: 46:8a:f5:a9:db:80:68:35:72:e2:42:66:3b:8e:47: e9:6a:76:72:b3:44:ca:6d:c1:20:0e:dc:30:1c:e0: d7:11:bc:1e:fc:ea:3f:69:6e:90:2e:ea:b4:3d:e2: 97:13:f2:1c:c6:c2:66:cd:36:9e:c3:88:d1:65:3f: e8:36:e8:24:b3:51:1a:60:d0:be:d2:55:c8:e9:7f: 63:f8:88:67:a2:dd:bc:39:89:6d:98:a3:17:36:db: d1:22:89:c2:2d:da:ac:9a:32:15:a5:88:45:67:ac: 06:66:8d:c2:4f:66:37:8d:f4:6b:2c:5f:ed:d1:31: a9:61:86:4d:7e:7a:fb:7f:3e:63:48:d1:2c:41:32: 61:8f:c8:7e:e6:fc:8d:d3:8c:71:a2:28:9c:7d:26: 24:e2:ac:2f:18:7b:84:6d:58:55:87:a5:d4:09:23: d4:64:8a:b6:15:33:28:13:57:7c:7e:c2:39:98:6a: 44:dc:f9:b1:d2:7e:16:66:36:bf:96:c6:cb:7d:b1: 72:31:da:e3:d2:ba:2a:28:09:5c:be:07:d8:81:2b: 97:d8:a7:e1:a8:8b:08:0b:24:ca:29:38:ff:10:cf: 27:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:16:11:39:7E:1D:B7:1A:EA:62:06:54:4D:F2:04:3E:24:4E:63:19 X509v3 Authority Key Identifier: keyid:41:BF:BE:BE:63:52:1F:B0:4E:D8:12:3C:68:E5:C0:CD:AF:5D:05:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/Qb--vmNSH7BO2BI8aOXAza9dBc0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qb--vmNSH7BO2BI8aOXAza9dBc0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/Qb--vmNSH7BO2BI8aOXAza9dBc0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:ce:a1:25:9c:ef:eb:c4:68:03:54:40:41:ab:f1:a2:5e:6d: 81:f3:06:e3:2f:16:65:db:90:be:03:76:ad:cf:a3:25:d5:61: d8:b0:f1:a6:5e:4a:48:5e:fc:26:47:94:56:dc:2f:5c:80:65: 97:7b:12:54:06:4f:7e:97:7e:b5:e1:38:7e:c8:80:3c:8a:dc: aa:6e:b0:56:73:df:d4:35:88:9b:6a:b0:78:88:d7:8a:23:f8: 8f:f9:c2:a9:44:dc:fd:57:b0:26:23:8f:9d:be:44:67:c0:9f: 90:53:5f:4b:e0:9e:78:ff:06:61:84:7f:b9:dc:f3:90:67:21: cc:d4:43:29:06:c3:fe:20:6f:32:73:0b:4a:f3:b8:0c:56:21: d2:60:77:2a:28:f3:02:35:3d:3f:9c:51:af:4d:fd:bf:e8:8f: 27:0d:64:2d:b5:26:58:91:fd:87:f1:84:73:ac:58:5d:87:0c: 42:07:cb:e5:6a:6e:09:b6:02:41:26:1d:b2:c6:14:2a:ac:28: 8e:cb:82:d8:35:49:09:97:14:29:cd:9c:3e:08:bd:79:8d:c5: 84:26:43:90:d5:e9:69:f4:4a:c9:2d:d0:14:d3:e9:dd:b6:6f: 5a:73:f1:9d:9b:c0:5a:b6:f9:02:1d:2b:e7:45:c8:91:c5:e7: 0d:fd:2b:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5ODIxMTAvBgNVBAUTKDQxQkZCRUJFNjM1MjFGQjA0RUQ4MTIzQzY4RTVDMENE QUY1RDA1Q0QwHhcNMjUxMTA1MDA0NDM4WhcNMjUxMTEyMDA0NDM4WjAYMRYwFAYD VQQDEw02OTBhOWRmNi1lOWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvsO3EjNKEWH9EVNMB/R5wGrxUUnhTP0EYLHZr21GivWp24BoNXLiQmY7jkfp anZys0TKbcEgDtwwHODXEbwe/Oo/aW6QLuq0PeKXE/IcxsJmzTaew4jRZT/oNugk s1EaYNC+0lXI6X9j+Ihnot28OYltmKMXNtvRIonCLdqsmjIVpYhFZ6wGZo3CT2Y3 jfRrLF/t0TGpYYZNfnr7fz5jSNEsQTJhj8h+5vyN04xxoiicfSYk4qwvGHuEbVhV h6XUCSPUZIq2FTMoE1d8fsI5mGpE3Pmx0n4WZja/lsbLfbFyMdrj0roqKAlcvgfY gSuX2KfhqIsICyTKKTj/EM8n3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCkWETl+ Hbca6mIGVE3yBD4kTmMZMB8GA1UdIwQYMBaAFEG/vr5jUh+wTtgSPGjlwM2vXQXN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDk4Mi9DRjIwNUM2MEFD MTMxMUVDQjc3NkIyMDlDNEY5QUUwMi9RYi0tdm1OU0g3Qk8yQkk4YU9YQXphOWRC YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FiLS12bU5TSDdCTzJCSThhT1hBemE5ZEJjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDk4Mi9DRjIwNUM2MEFDMTMxMUVDQjc3NkIyMDlDNEY5QUUwMi9RYi0tdm1OU0g3 Qk8yQkk4YU9YQXphOWRCYzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAszqElnO/rxGgDVEBBq/GiXm2B8wbjLxZl25C+A3atz6Ml1WHYsPGm XkpIXvwmR5RW3C9cgGWXexJUBk9+l3614Th+yIA8ityqbrBWc9/UNYibarB4iNeK I/iP+cKpRNz9V7AmI4+dvkRnwJ+QU19L4J54/wZhhH+53POQZyHM1EMpBsP+IG8y cwtK87gMViHSYHcqKPMCNT0/nFGvTf2/6I8nDWQttSZYkf2H8YRzrFhdhwxCB8vl am4JtgJBJh2yxhQqrCiOy4LYNUkJlxQpzZw+CL15jcWEJkOQ1elp9ErJLdAU0+nd tm9ac/Gdm8BatvkCHSvnRciRxecN/SuU -----END CERTIFICATE-----Generated at Wed Nov 5 10:07:32 2025 by rpki-client