$ rpki-client -vvf rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft File: QJ0BHok_2Mjws-isFGkqp7udAlk.mft (raw, json) Hash identifier: SgeDdMp9xD+h6QiNzWL77y/R3IHgwhCLh/RI1aONSFk= Subject key identifier: D5:B7:DE:8E:31:B1:F0:8F:07:63:90:0B:2A:05:D3:61:95:2F:88:97 Authority key identifier: 40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59 Certificate issuer: /CN=A91808E1/serialNumber=409D011E893FD8C8F0B3E8AC14692AA7BB9D0259 Certificate serial: 043F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft Manifest number: 0439 Signing time: Wed 05 Nov 2025 00:21:59 +0000 Manifest this update: Wed 05 Nov 2025 00:21:58 +0000 Manifest next update: Wed 12 Nov 2025 00:21:58 +0000 Files and hashes: 1: QJ0BHok_2Mjws-isFGkqp7udAlk.crl (hash: DVsKua5OiRghCOxZONuxrI4W7Ze5/3CWRs0pu3F5TXY=) 2: E7FE45667E8311ECA552B67FC4F9AE02.roa (hash: vev8cF3wVonEj/spB6AbH6AE+o8N+kb1JbFrPlAS1N8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:21:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1087 (0x43f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91808E1, serialNumber=409D011E893FD8C8F0B3E8AC14692AA7BB9D0259 Validity Not Before: Nov 5 00:21:58 2025 GMT Not After : Nov 12 00:21:58 2025 GMT Subject: CN=690a98a6-14c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a9:03:eb:df:c4:59:b9:7d:8a:20:c2:39:cc: 22:5e:25:56:90:19:08:29:67:94:79:01:08:57:1d: 25:df:4f:71:8a:a5:3c:5e:19:c3:4c:cb:19:22:2f: d2:3e:49:ec:ae:09:5e:85:63:79:bb:1c:04:7d:a7: 2a:3c:1c:34:6c:26:87:8c:e4:7a:88:a9:55:d9:86: 1e:a9:9b:a4:fa:ee:90:eb:63:71:83:68:c4:14:6e: 87:fd:1b:67:db:db:e8:b9:18:60:25:89:23:30:e5: 1a:16:d5:e4:c5:9d:f7:c5:9e:8c:b6:ff:11:54:8a: 26:64:81:ea:0f:fd:a0:d6:6a:9d:de:d8:05:78:b6: ed:58:7c:56:89:e8:ee:8c:41:5c:d5:aa:30:34:71: 2e:0d:c4:41:18:d7:fa:2e:36:34:0c:73:11:91:c8: 7d:6a:4f:0f:4a:99:da:03:57:28:95:d1:e4:6b:b8: 18:fe:de:f3:16:87:9f:93:6f:80:f0:17:3a:27:c5: 70:bf:1c:a7:cf:bd:7a:9a:f5:22:ab:a9:27:9b:89: d9:b4:fc:f1:7d:b4:da:4f:ac:7d:50:2d:57:70:47: 17:5a:6b:b1:5a:4b:95:0b:e4:85:5b:33:be:b6:17: 50:45:1f:e1:ee:6f:51:d6:b7:67:e0:0e:e8:e4:4a: d3:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:B7:DE:8E:31:B1:F0:8F:07:63:90:0B:2A:05:D3:61:95:2F:88:97 X509v3 Authority Key Identifier: keyid:40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:a4:9e:b0:bc:3d:78:aa:88:f0:a1:8e:46:74:0f:29:22:70: 74:a2:06:18:c7:9e:fd:78:d6:90:5d:4c:d2:c0:1a:79:3d:41: bb:6b:ca:6a:28:7f:a9:c7:0f:7b:ee:bb:83:5b:ee:e0:9b:d3: 59:d3:30:da:d6:c5:85:97:62:ef:76:10:86:cd:0c:44:d2:12: 45:a3:85:92:1a:61:45:36:60:bd:15:ba:4e:29:8b:46:7e:10: c2:88:36:de:88:2e:f9:ab:39:0d:dc:68:4b:f2:bc:2b:64:03: df:b2:b8:7f:8e:8f:c9:f2:99:bf:6d:b8:f0:7a:a4:9a:3e:ab: 2b:8f:cf:50:1a:cd:c0:e5:ae:df:bc:e7:08:b9:19:7a:d4:db: 76:f0:e2:9b:eb:37:48:f2:1f:a3:ce:4d:be:f7:43:2a:38:81: 6b:56:da:ea:d5:09:28:97:64:b5:56:62:40:36:22:97:60:7f: b6:1c:17:8a:56:bf:25:a1:55:00:d6:b7:3a:75:5e:b2:4b:8f: 71:57:23:eb:01:e7:1c:4a:1b:f8:f5:58:a9:05:65:d1:a0:e1: d4:1f:0d:d2:29:e8:02:31:75:9f:33:0d:f2:b2:1e:fe:f4:6a: 74:60:fe:90:4b:41:6c:16:6d:e5:b2:0f:a4:86:3c:ba:ab:9b: 29:a9:2b:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBD8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA4RTExMTAvBgNVBAUTKDQwOUQwMTFFODkzRkQ4QzhGMEIzRThBQzE0NjkyQUE3 QkI5RDAyNTkwHhcNMjUxMTA1MDAyMTU4WhcNMjUxMTEyMDAyMTU4WjAYMRYwFAYD VQQDEw02OTBhOThhNi0xNGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqkD69/EWbl9iiDCOcwiXiVWkBkIKWeUeQEIVx0l309xiqU8XhnDTMsZIi/S PknsrglehWN5uxwEfacqPBw0bCaHjOR6iKlV2YYeqZuk+u6Q62Nxg2jEFG6H/Rtn 29vouRhgJYkjMOUaFtXkxZ33xZ6Mtv8RVIomZIHqD/2g1mqd3tgFeLbtWHxWieju jEFc1aowNHEuDcRBGNf6LjY0DHMRkch9ak8PSpnaA1coldHka7gY/t7zFoefk2+A 8Bc6J8Vwvxynz716mvUiq6knm4nZtPzxfbTaT6x9UC1XcEcXWmuxWkuVC+SFWzO+ thdQRR/h7m9R1rdn4A7o5ErTbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNW33o4x sfCPB2OQCyoF02GVL4iXMB8GA1UdIwQYMBaAFECdAR6JP9jI8LPorBRpKqe7nQJZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDhFMS9GOTBGOUU4ODdF ODExMUVDQjg4NzNBN0ZDNEY5QUUwMi9RSjBCSG9rXzJNandzLWlzRkdrcXA3dWRB bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FKMEJIb2tfMk1qd3MtaXNGR2txcDd1ZEFsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDhFMS9GOTBGOUU4ODdFODExMUVDQjg4NzNBN0ZDNEY5QUUwMi9RSjBCSG9rXzJN andzLWlzRkdrcXA3dWRBbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdpJ6wvD14qojwoY5GdA8pInB0ogYYx579eNaQXUzSwBp5PUG7a8pq KH+pxw977ruDW+7gm9NZ0zDa1sWFl2LvdhCGzQxE0hJFo4WSGmFFNmC9FbpOKYtG fhDCiDbeiC75qzkN3GhL8rwrZAPfsrh/jo/J8pm/bbjweqSaPqsrj89QGs3A5a7f vOcIuRl61Nt28OKb6zdI8h+jzk2+90MqOIFrVtrq1Qkol2S1VmJANiKXYH+2HBeK Vr8loVUA1rc6dV6yS49xVyPrAeccShv49VipBWXRoOHUHw3SKegCMXWfMw3ysh7+ 9Gp0YP6QS0FsFm3lsg+khjy6q5spqSu2 -----END CERTIFICATE-----Generated at Wed Nov 5 05:26:24 2025 by rpki-client