$ rpki-client -vvf rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft File: qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft (raw, json) Hash identifier: bcKF1Jhf5eH5xiPKkuaIxtuXoNEe7NFMJIBsDdg4PSs= Subject key identifier: AC:8A:AB:06:2B:17:53:81:81:E1:92:2D:AB:D5:1E:1D:ED:CC:FA:FF Authority key identifier: AA:43:6A:AF:C6:88:04:5B:F5:14:88:61:54:6F:A3:FD:CA:98:40:8E Certificate issuer: /CN=A917E4BA/serialNumber=AA436AAFC688045BF5148861546FA3FDCA98408E Certificate serial: 0B24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft Manifest number: 0B16 Signing time: Tue 04 Nov 2025 19:27:05 +0000 Manifest this update: Tue 04 Nov 2025 19:27:05 +0000 Manifest next update: Tue 11 Nov 2025 19:27:05 +0000 Files and hashes: 1: qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl (hash: nf/KUOraVfzXtURk2MqAkAVoWcPCqNH+TKyYAXcCJCc=) 2: 2512D04C22BE11EC9240097DC4F9AE02.roa (hash: En9dIPtNAsqzocSYMmtm97H1ooZs8MGknLuErJdgZyg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:27:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2852 (0xb24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E4BA, serialNumber=AA436AAFC688045BF5148861546FA3FDCA98408E Validity Not Before: Nov 4 19:27:05 2025 GMT Not After : Nov 11 19:27:05 2025 GMT Subject: CN=690a5389-6ecf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:32:5b:72:bd:c0:67:05:b9:f8:e3:55:52:17: ae:e3:6c:79:37:60:35:1f:2e:f2:1c:c7:f8:36:17: 20:3e:2b:35:79:e9:10:72:3c:26:82:e5:0f:ea:01: 44:5a:e6:1c:d0:c6:35:3d:59:f5:28:fa:a3:af:60: c3:d8:f4:be:bc:67:34:1a:57:f7:56:e0:34:2b:5d: d3:93:79:20:d8:ce:1c:eb:ba:8e:7c:83:9c:c5:0e: 1a:1e:90:45:c4:0a:8a:64:f9:c8:ce:6f:a3:de:59: 27:26:d7:e5:65:d7:32:8c:e5:be:05:6d:bf:39:4b: 27:93:d6:c8:ce:8d:2d:45:65:9e:d5:e9:32:aa:46: 78:7b:62:17:e7:e6:f9:e7:fc:33:df:24:9f:51:86: b3:81:f2:50:9b:bc:53:3f:80:7d:7b:fd:43:e7:43: 50:36:7f:11:a6:e5:8d:21:76:18:99:95:a1:bb:60: a5:5f:0d:5c:5e:a3:eb:41:d1:60:63:11:af:b3:59: c5:77:c6:ff:93:a0:0b:a1:da:e6:b6:a6:40:f3:b8: 29:cb:96:33:d2:bc:8f:94:61:d6:de:c0:fd:ce:3c: e0:1f:e3:13:0a:f9:7a:c5:7b:fb:e0:96:7a:bf:88: b9:bf:1f:ee:6b:4d:2a:ed:fc:3a:2f:29:a1:ba:07: 3c:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:8A:AB:06:2B:17:53:81:81:E1:92:2D:AB:D5:1E:1D:ED:CC:FA:FF X509v3 Authority Key Identifier: keyid:AA:43:6A:AF:C6:88:04:5B:F5:14:88:61:54:6F:A3:FD:CA:98:40:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:3e:31:47:04:9c:a2:f7:a8:c5:60:54:40:23:36:9f:1f:47: 53:33:0f:9c:9c:b8:21:c5:03:d1:f1:a5:f1:f1:75:f6:c9:d6: 84:04:16:dc:90:30:d7:68:c3:66:d6:56:6d:f0:b2:15:c2:21: f9:62:ba:0a:b8:49:5a:a0:b5:68:ec:f4:a4:8d:ca:b4:a2:83: 39:6e:7a:64:c9:54:99:11:27:4e:c0:c5:a2:d4:50:32:b4:d7: 84:62:15:16:d6:24:b4:92:30:42:f1:0a:ce:2b:6e:4b:e4:1e: ab:f4:e0:80:fe:ff:6e:dc:9a:0b:9f:75:aa:6f:90:47:33:16: 4f:f4:66:75:df:06:72:07:d2:50:42:a3:b1:de:26:73:97:09: 58:a8:6e:1a:ac:4d:e7:06:ae:58:75:b5:83:40:ca:68:ce:44: 9f:17:6b:90:28:75:e7:03:35:8f:4b:36:59:c3:11:d4:43:18: 3e:d4:52:33:72:69:cf:05:4d:db:6c:95:63:17:fe:36:5a:b2: 99:cc:98:0a:06:f5:6b:8e:f1:60:c0:f8:95:a2:5b:e7:c3:ce: 44:40:38:05:af:00:17:bd:19:09:63:13:47:87:2c:e9:01:82: e2:36:ad:d0:76:95:44:1a:b6:18:1c:e1:58:47:84:be:e4:b4: 0b:94:16:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0QkExMTAvBgNVBAUTKEFBNDM2QUFGQzY4ODA0NUJGNTE0ODg2MTU0NkZBM0ZE Q0E5ODQwOEUwHhcNMjUxMTA0MTkyNzA1WhcNMjUxMTExMTkyNzA1WjAYMRYwFAYD VQQDEw02OTBhNTM4OS02ZWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5TJbcr3AZwW5+ONVUheu42x5N2A1Hy7yHMf4NhcgPis1eekQcjwmguUP6gFE WuYc0MY1PVn1KPqjr2DD2PS+vGc0Glf3VuA0K13Tk3kg2M4c67qOfIOcxQ4aHpBF xAqKZPnIzm+j3lknJtflZdcyjOW+BW2/OUsnk9bIzo0tRWWe1ekyqkZ4e2IX5+b5 5/wz3ySfUYazgfJQm7xTP4B9e/1D50NQNn8RpuWNIXYYmZWhu2ClXw1cXqPrQdFg YxGvs1nFd8b/k6ALodrmtqZA87gpy5Yz0ryPlGHW3sD9zjzgH+MTCvl6xXv74JZ6 v4i5vx/ua00q7fw6Lymhugc8XwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKyKqwYr F1OBgeGSLavVHh3tzPr/MB8GA1UdIwQYMBaAFKpDaq/GiARb9RSIYVRvo/3KmECO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTRCQS9EMDZCRjMyODUy REMxMUVBODI2MDFCMEZDNEY5QUUwMi9xa05xcjhhSUJGdjFGSWhoVkctal9jcVlR STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FrTnFyOGFJQkZ2MUZJaGhWRy1qX2NxWVFJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTRCQS9EMDZCRjMyODUyREMxMUVBODI2MDFCMEZDNEY5QUUwMi9xa05xcjhhSUJG djFGSWhoVkctal9jcVlRSTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8PjFHBJyi96jFYFRAIzafH0dTMw+cnLghxQPR8aXx8XX2ydaEBBbc kDDXaMNm1lZt8LIVwiH5YroKuElaoLVo7PSkjcq0ooM5bnpkyVSZESdOwMWi1FAy tNeEYhUW1iS0kjBC8QrOK25L5B6r9OCA/v9u3JoLn3Wqb5BHMxZP9GZ13wZyB9JQ QqOx3iZzlwlYqG4arE3nBq5YdbWDQMpozkSfF2uQKHXnAzWPSzZZwxHUQxg+1FIz cmnPBU3bbJVjF/42WrKZzJgKBvVrjvFgwPiVolvnw85EQDgFrwAXvRkJYxNHhyzp AYLiNq3QdpVEGrYYHOFYR4S+5LQLlBYX -----END CERTIFICATE-----Generated at Wed Nov 5 17:59:46 2025 by rpki-client