$ rpki-client -vvf rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.mft File: qgt4LbmTLiL93vDD91WW7glF4S0.mft (raw, json) Hash identifier: gPQNUFEFQrd8t41w/5JA+hxQ62i9DXD48V+qVxpJQh0= Subject key identifier: 3F:54:6C:A0:C6:15:98:7A:4D:78:00:DD:40:0B:7E:A5:A4:D9:E9:48 Authority key identifier: AA:0B:78:2D:B9:93:2E:22:FD:DE:F0:C3:F7:55:96:EE:09:45:E1:2D Certificate issuer: /CN=A917C909/serialNumber=AA0B782DB9932E22FDDEF0C3F75596EE0945E12D Certificate serial: AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qgt4LbmTLiL93vDD91WW7glF4S0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.mft Manifest number: A7 Signing time: Mon 03 Nov 2025 06:17:35 +0000 Manifest this update: Mon 03 Nov 2025 06:17:35 +0000 Manifest next update: Mon 10 Nov 2025 06:17:35 +0000 Files and hashes: 1: qgt4LbmTLiL93vDD91WW7glF4S0.crl (hash: atFruSFwC/L8/SKAHI3eceZrwLcg35102bY0mjVbtKE=) 2: 3A0E0B1CD47511EF91EA0832C4F9AE02.roa (hash: pAj7NdDmToipkIAovmtOfynK/RP/8C5/+xzCsvCxUC8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.crl rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qgt4LbmTLiL93vDD91WW7glF4S0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:17:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 171 (0xab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C909, serialNumber=AA0B782DB9932E22FDDEF0C3F75596EE0945E12D Validity Not Before: Nov 3 06:17:35 2025 GMT Not After : Nov 10 06:17:35 2025 GMT Subject: CN=690848ff-eb4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:d8:98:b0:32:4a:94:18:dc:17:8b:2d:de:c2: 5c:9f:b3:6e:96:2a:ac:47:ef:05:a2:70:2c:16:fb: 8c:90:24:64:07:f7:9d:8e:cf:3d:ec:8b:f4:5e:8c: 12:1f:cd:08:7a:cf:6c:2d:07:b7:c2:1c:36:f7:65: 60:4c:43:db:2c:d4:74:33:8e:60:f9:3e:62:fc:23: b2:b9:e6:f4:c5:97:3d:97:4c:1f:d2:e6:a3:f1:bd: 27:39:2e:77:e0:7f:c2:86:97:ee:5b:db:f6:2d:34: 21:84:9e:83:71:70:bb:84:36:8a:9c:c4:26:0c:ab: fa:92:8d:a6:87:17:c2:4b:c3:fd:ee:19:81:9b:9c: 28:53:1f:76:04:8f:84:b7:27:01:44:69:34:1a:30: 74:75:2f:5c:97:79:7d:07:61:48:25:fa:18:e7:10: 6a:34:21:08:8f:6f:08:31:36:f9:94:1b:8e:44:9b: fd:d2:93:8b:48:2c:62:32:86:36:66:01:20:ae:a6: 50:59:0f:39:b0:0a:10:6f:a2:65:9a:1a:c8:98:90: fc:39:db:86:3b:8d:50:95:fd:19:01:b3:77:da:6e: b9:d1:0f:1a:b7:42:56:41:a8:9c:e1:32:05:ad:8d: 2f:fd:c8:f8:8e:85:cd:e3:9b:90:91:93:4d:a0:ae: 72:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:54:6C:A0:C6:15:98:7A:4D:78:00:DD:40:0B:7E:A5:A4:D9:E9:48 X509v3 Authority Key Identifier: keyid:AA:0B:78:2D:B9:93:2E:22:FD:DE:F0:C3:F7:55:96:EE:09:45:E1:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qgt4LbmTLiL93vDD91WW7glF4S0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C909/07797FE4C0DC11EF9E871844C4F9AE02/qgt4LbmTLiL93vDD91WW7glF4S0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:c6:dc:e0:98:11:d0:d3:57:de:20:03:05:d0:09:34:fb:f9: f7:6e:d3:73:41:29:40:9a:d8:83:84:da:7b:bc:2f:c8:6e:6c: 7b:e7:9a:73:a1:be:55:51:fe:78:25:a1:31:77:79:c8:7f:9f: 02:ae:06:a1:0b:fc:57:26:d4:57:6e:2b:f2:02:44:af:f6:8f: 57:28:e0:aa:75:5c:19:0b:42:68:34:df:b7:28:6e:44:54:c0: 96:9f:d1:ce:20:43:05:f3:c7:73:bb:c1:b0:5c:fa:a9:2c:ed: 93:a3:a6:51:58:11:55:6a:eb:23:44:30:d7:88:c0:d6:7b:f3: eb:ad:d6:60:07:a9:28:33:38:39:21:ad:d2:d1:90:58:e5:63: 95:d3:8a:0c:a9:da:eb:e7:4c:cd:71:86:68:20:2b:7a:48:8d: c6:69:60:7e:6b:c6:2b:69:e2:dc:a4:72:87:d9:ec:cc:f1:0b: e2:30:44:77:46:54:8d:a7:3f:ec:3c:52:af:d6:72:75:ef:45: f4:11:78:7e:47:99:2e:57:f6:ff:a4:05:bc:a9:2f:e4:7c:d3: 0f:4d:5b:cc:ec:37:08:ca:d3:b3:83:d1:04:c9:81:fa:2d:1d: a4:b8:c8:ae:e1:6e:b7:f5:d7:bf:4b:e9:5a:19:cb:96:48:e2: 29:6e:cf:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5MDkxMTAvBgNVBAUTKEFBMEI3ODJEQjk5MzJFMjJGRERFRjBDM0Y3NTU5NkVF MDk0NUUxMkQwHhcNMjUxMTAzMDYxNzM1WhcNMjUxMTEwMDYxNzM1WjAYMRYwFAYD VQQDEw02OTA4NDhmZi1lYjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmdiYsDJKlBjcF4st3sJcn7NuliqsR+8FonAsFvuMkCRkB/edjs897Iv0XowS H80Ies9sLQe3whw292VgTEPbLNR0M45g+T5i/COyueb0xZc9l0wf0uaj8b0nOS53 4H/ChpfuW9v2LTQhhJ6DcXC7hDaKnMQmDKv6ko2mhxfCS8P97hmBm5woUx92BI+E tycBRGk0GjB0dS9cl3l9B2FIJfoY5xBqNCEIj28IMTb5lBuORJv90pOLSCxiMoY2 ZgEgrqZQWQ85sAoQb6JlmhrImJD8OduGO41Qlf0ZAbN32m650Q8at0JWQaic4TIF rY0v/cj4joXN45uQkZNNoK5yHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD9UbKDG FZh6TXgA3UALfqWk2elIMB8GA1UdIwQYMBaAFKoLeC25ky4i/d7ww/dVlu4JReEt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzkwOS8wNzc5N0ZFNEMw REMxMUVGOUU4NzE4NDRDNEY5QUUwMi9xZ3Q0TGJtVExpTDkzdkREOTFXVzdnbEY0 UzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FndDRMYm1UTGlMOTN2REQ5MVdXN2dsRjRTMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzkwOS8wNzc5N0ZFNEMwREMxMUVGOUU4NzE4NDRDNEY5QUUwMi9xZ3Q0TGJtVExp TDkzdkREOTFXVzdnbEY0UzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNxtzgmBHQ01feIAMF0Ak0+/n3btNzQSlAmtiDhNp7vC/Ibmx755pz ob5VUf54JaExd3nIf58CrgahC/xXJtRXbivyAkSv9o9XKOCqdVwZC0JoNN+3KG5E VMCWn9HOIEMF88dzu8GwXPqpLO2To6ZRWBFVausjRDDXiMDWe/PrrdZgB6koMzg5 Ia3S0ZBY5WOV04oMqdrr50zNcYZoICt6SI3GaWB+a8YraeLcpHKH2ezM8QviMER3 RlSNpz/sPFKv1nJ170X0EXh+R5kuV/b/pAW8qS/kfNMPTVvM7DcIytOzg9EEyYH6 LR2kuMiu4W639de/S+laGcuWSOIpbs/j -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:23 2025 by rpki-client