$ rpki-client -vvf rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft File: tQk3XiWpXStZwZWBw8Y1topJES0.mft (raw, json) Hash identifier: MciR4b8r0VMzcp84v1DG9r1Gmatkzd2HjviPIuCrUCM= Subject key identifier: 39:26:D7:E3:64:89:60:F7:62:AF:5E:12:C4:F1:7A:10:1A:69:38:70 Authority key identifier: B5:09:37:5E:25:A9:5D:2B:59:C1:95:81:C3:C6:35:B6:8A:49:11:2D Certificate issuer: /CN=A917E754/serialNumber=B509375E25A95D2B59C19581C3C635B68A49112D Certificate serial: 34E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft Manifest number: 34DD Signing time: Sun 02 Nov 2025 15:20:10 +0000 Manifest this update: Sun 02 Nov 2025 15:20:09 +0000 Manifest next update: Sun 09 Nov 2025 15:20:09 +0000 Files and hashes: 1: tQk3XiWpXStZwZWBw8Y1topJES0.crl (hash: ssIKoQHE6IzItPjaQ+tIVJTk3127mR9hX703XBOqlJQ=) 2: 2F79F386050511EA87CC7D42C4F9AE02.roa (hash: RGbkUiQObiN5kNn1fOoTLpQbUrsGEdo5yysiJ0yuXAg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.crl rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 15:20:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13541 (0x34e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E754, serialNumber=B509375E25A95D2B59C19581C3C635B68A49112D Validity Not Before: Nov 2 15:20:09 2025 GMT Not After : Nov 9 15:20:09 2025 GMT Subject: CN=690776aa-7b3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e8:49:a2:ef:72:1e:e3:39:d5:ae:f7:d8:94: 3c:9e:46:40:13:b1:ab:62:14:f6:f0:22:a1:51:33: d8:3b:5b:2f:af:ed:ce:01:a5:c9:13:17:64:1e:d2: e3:7a:b0:6b:f5:e9:e6:57:3b:7b:49:18:07:e6:6f: 9d:a6:ac:43:f8:fd:35:20:ac:d8:a2:40:53:cc:9e: cb:7c:f3:d1:d7:fd:5a:48:15:38:1d:85:e9:b5:c4: 8c:9f:3f:92:ff:34:00:c1:15:4d:93:b1:d7:3c:c4: e9:5a:32:5f:dd:0f:87:27:15:4d:8b:b2:ca:33:f2: f1:59:d0:14:50:ef:3a:bb:cb:a1:d3:08:32:4e:76: b9:fe:1d:4a:9f:bd:62:90:4d:04:8c:69:0b:7a:3e: bb:68:9b:b9:35:bd:a2:37:98:9d:cf:cd:91:4c:72: 62:ba:f5:60:5f:66:70:c0:1a:27:71:13:9b:0c:77: e1:be:ae:76:72:fc:af:55:56:40:5d:fa:e6:30:bd: c7:12:fb:6b:d0:23:b8:c6:73:2d:a2:75:32:b3:b5: 03:24:02:6e:65:6a:f7:76:7b:6f:6b:d0:26:cd:ff: 66:70:95:c2:99:df:f7:08:01:ea:be:4a:ce:8b:ad: ca:f2:4c:49:42:0d:17:49:6c:86:36:d9:48:89:b1: 9d:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:26:D7:E3:64:89:60:F7:62:AF:5E:12:C4:F1:7A:10:1A:69:38:70 X509v3 Authority Key Identifier: keyid:B5:09:37:5E:25:A9:5D:2B:59:C1:95:81:C3:C6:35:B6:8A:49:11:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tQk3XiWpXStZwZWBw8Y1topJES0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E754/ACD1D7701DAB11E2BA2806AA08B02CD2/tQk3XiWpXStZwZWBw8Y1topJES0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:1d:9f:32:47:ee:f0:b9:49:a5:0a:9b:d8:55:4a:d6:98:74: c9:55:e2:12:27:97:db:0d:80:76:e1:39:b2:a3:b4:dc:c4:1d: 87:e7:4b:cc:bb:31:bd:8d:19:2c:9e:52:54:d1:06:99:2d:ce: a1:69:64:c3:77:f7:d8:32:9f:7b:f4:78:bb:61:a8:0a:9c:e7: 55:14:28:b2:3f:1f:4d:9b:9a:8c:98:3b:75:58:47:92:c4:e9: 2e:6c:06:07:0f:83:39:da:3b:40:6e:8a:4f:88:8f:d7:e5:a8: 68:97:1b:61:95:12:69:95:e6:1d:a2:48:32:0b:a3:5a:d2:a2: 02:51:64:04:37:3a:fe:3b:60:f1:d1:22:3b:12:19:30:7a:93: 62:d6:80:3d:a8:8b:c4:6d:90:f6:f3:9f:3d:63:83:cd:4b:72: 38:18:e9:56:1e:2d:70:81:1d:70:e7:e3:81:23:ac:86:1b:88: 55:75:a5:a4:98:64:ff:7b:a4:c4:35:ba:72:6d:90:25:dc:f3: 0a:0a:ba:5c:96:21:7d:6c:43:43:19:84:f8:fb:b1:a4:5c:21: c4:b5:7d:3b:50:fe:f4:6d:6d:91:aa:e7:f3:a6:4d:01:de:69: c5:50:95:31:77:06:8b:92:41:d4:e1:0c:bc:54:fc:9c:7f:a3: 28:24:33:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U3NTQxMTAvBgNVBAUTKEI1MDkzNzVFMjVBOTVEMkI1OUMxOTU4MUMzQzYzNUI2 OEE0OTExMkQwHhcNMjUxMTAyMTUyMDA5WhcNMjUxMTA5MTUyMDA5WjAYMRYwFAYD VQQDEw02OTA3NzZhYS03YjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAruhJou9yHuM51a732JQ8nkZAE7GrYhT28CKhUTPYO1svr+3OAaXJExdkHtLj erBr9enmVzt7SRgH5m+dpqxD+P01IKzYokBTzJ7LfPPR1/1aSBU4HYXptcSMnz+S /zQAwRVNk7HXPMTpWjJf3Q+HJxVNi7LKM/LxWdAUUO86u8uh0wgyTna5/h1Kn71i kE0EjGkLej67aJu5Nb2iN5idz82RTHJiuvVgX2ZwwBoncRObDHfhvq52cvyvVVZA XfrmML3HEvtr0CO4xnMtonUys7UDJAJuZWr3dntva9Amzf9mcJXCmd/3CAHqvkrO i63K8kxJQg0XSWyGNtlIibGdqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDkm1+Nk iWD3Yq9eEsTxehAaaThwMB8GA1UdIwQYMBaAFLUJN14lqV0rWcGVgcPGNbaKSREt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTc1NC9BQ0QxRDc3MDFE QUIxMUUyQkEyODA2QUEwOEIwMkNEMi90UWszWGlXcFhTdFp3WldCdzhZMXRvcEpF UzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RRazNYaVdwWFN0WndaV0J3OFkxdG9wSkVTMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTc1NC9BQ0QxRDc3MDFEQUIxMUUyQkEyODA2QUEwOEIwMkNEMi90UWszWGlXcFhT dFp3WldCdzhZMXRvcEpFUzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUHZ8yR+7wuUmlCpvYVUrWmHTJVeISJ5fbDYB24Tmyo7TcxB2H50vM uzG9jRksnlJU0QaZLc6haWTDd/fYMp979Hi7YagKnOdVFCiyPx9Nm5qMmDt1WEeS xOkubAYHD4M52jtAbopPiI/X5aholxthlRJpleYdokgyC6Na0qICUWQENzr+O2Dx 0SI7EhkwepNi1oA9qIvEbZD28589Y4PNS3I4GOlWHi1wgR1w5+OBI6yGG4hVdaWk mGT/e6TENbpybZAl3PMKCrpcliF9bENDGYT4+7GkXCHEtX07UP70bW2Rqufzpk0B 3mnFUJUxdwaLkkHU4Qy8VPycf6MoJDP/ -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:04 2025 by rpki-client