$ rpki-client -vvf rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft File: qleQsPfXYr6TK53GEbfWm5BoWk4.mft (raw, json) Hash identifier: l9zbYCKx+3Epb5C+nVQA+Oa3/y1tflu7yTDJseSUbF4= Subject key identifier: B8:C7:4D:FF:BC:97:89:11:F8:CF:B0:89:D5:2B:2D:E1:3B:B0:F9:F3 Authority key identifier: AA:57:90:B0:F7:D7:62:BE:93:2B:9D:C6:11:B7:D6:9B:90:68:5A:4E Certificate issuer: /CN=A91977F9/serialNumber=AA5790B0F7D762BE932B9DC611B7D69B90685A4E Certificate serial: 0289 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qleQsPfXYr6TK53GEbfWm5BoWk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft Manifest number: 0285 Signing time: Wed 05 Nov 2025 01:42:53 +0000 Manifest this update: Wed 05 Nov 2025 01:42:52 +0000 Manifest next update: Wed 12 Nov 2025 01:42:52 +0000 Files and hashes: 1: qleQsPfXYr6TK53GEbfWm5BoWk4.crl (hash: BPgY0K+2Ee9SyVwnWChw03da/hl4PN5vCygfCs87Qd8=) 2: 728286AE27BF11EDA6A02960C4F9AE02.roa (hash: DvV5HozP+sR1ACB5NUpTfiC/G52OiXFRlLclsmTMjHI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.crl rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qleQsPfXYr6TK53GEbfWm5BoWk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:42:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 649 (0x289) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91977F9, serialNumber=AA5790B0F7D762BE932B9DC611B7D69B90685A4E Validity Not Before: Nov 5 01:42:52 2025 GMT Not After : Nov 12 01:42:52 2025 GMT Subject: CN=690aab9c-8170 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:2c:1b:97:a1:9c:90:24:a9:c0:78:ce:98:7d: 67:92:ab:08:74:e9:eb:59:50:79:2e:47:5b:8c:9e: 25:bd:91:08:d5:ad:0a:6c:46:e8:68:db:22:4f:55: 1f:32:4e:13:9b:2f:69:42:77:33:6d:79:cd:11:3b: 9f:27:64:01:66:0e:cd:2f:bc:19:d9:78:dd:70:d7: 99:ee:be:0b:83:ce:dd:08:7a:8c:fc:ee:b6:09:7e: a5:b9:cb:70:bd:e0:25:8b:b7:71:6a:23:23:56:1a: 20:b1:e9:a0:30:73:e1:1b:c8:92:ad:53:f1:50:2d: e4:78:51:51:0a:46:35:e5:b0:06:a1:f3:29:49:1f: 71:ea:67:e7:c4:6f:ce:2a:27:2f:a8:48:e9:45:c8: be:d1:a3:d9:b0:b1:77:7a:26:5f:59:fe:7a:8e:75: 40:cf:ae:45:04:88:c5:4a:59:46:c0:8e:6d:97:12: 52:3f:3a:0d:1c:cc:01:e6:a1:6a:ce:b1:d1:5b:7f: 75:79:aa:15:c1:f2:a9:a6:9e:94:e6:2e:c5:68:08: f9:a9:58:7e:3a:d3:e5:16:27:59:8e:f5:0d:42:ae: 91:f2:84:4b:52:0c:2d:ae:2e:e9:18:19:38:ad:be: e8:07:29:0c:cd:49:0e:0d:d7:ae:26:5d:12:bc:8a: be:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:C7:4D:FF:BC:97:89:11:F8:CF:B0:89:D5:2B:2D:E1:3B:B0:F9:F3 X509v3 Authority Key Identifier: keyid:AA:57:90:B0:F7:D7:62:BE:93:2B:9D:C6:11:B7:D6:9B:90:68:5A:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qleQsPfXYr6TK53GEbfWm5BoWk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:b3:a3:a1:ef:5a:55:35:8a:77:4b:fa:a6:61:68:10:4b:a4: af:76:6e:4f:f7:b7:5c:b6:13:b8:4b:87:c9:22:31:70:20:f3: 52:f6:8b:5c:00:e6:52:41:f5:b1:78:b9:ec:19:15:dd:f6:c3: 75:57:71:9f:f8:7a:5d:88:52:7c:f5:fd:1b:7f:9d:bb:0e:d9: b1:d8:87:c3:49:df:62:a4:f6:96:2e:89:24:c6:d3:9d:d4:3e: 4a:95:77:a2:da:24:3c:2d:a9:00:f0:4a:3b:63:f3:af:02:41: 06:61:83:a4:e4:ae:46:9f:58:f7:1e:e1:7a:36:e2:7a:82:34: 84:39:0e:b9:db:66:51:30:48:91:f0:2c:be:aa:c3:ff:9c:8b: 14:db:31:1d:dd:d4:51:ef:1e:86:a8:38:20:95:95:76:02:11: 08:2b:69:cb:99:4a:2a:5a:fa:0a:f8:3c:94:5f:65:89:c2:16: 6e:c9:e5:f6:b7:bb:d0:25:b5:79:a0:d0:98:ca:16:6a:e6:a3: df:23:69:a6:f6:cb:0e:2e:ba:c8:7c:ee:de:39:2d:58:3c:61: 0d:25:3a:a4:7c:6a:c9:50:6e:ec:76:66:96:55:bf:11:03:ad: f9:b2:75:78:10:84:63:8e:44:8f:ab:c2:f0:f4:80:3f:35:dc: 7f:b9:90:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc3RjkxMTAvBgNVBAUTKEFBNTc5MEIwRjdENzYyQkU5MzJCOURDNjExQjdENjlC OTA2ODVBNEUwHhcNMjUxMTA1MDE0MjUyWhcNMjUxMTEyMDE0MjUyWjAYMRYwFAYD VQQDEw02OTBhYWI5Yy04MTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Cwbl6GckCSpwHjOmH1nkqsIdOnrWVB5LkdbjJ4lvZEI1a0KbEboaNsiT1Uf Mk4Tmy9pQnczbXnNETufJ2QBZg7NL7wZ2XjdcNeZ7r4Lg87dCHqM/O62CX6luctw veAli7dxaiMjVhogsemgMHPhG8iSrVPxUC3keFFRCkY15bAGofMpSR9x6mfnxG/O KicvqEjpRci+0aPZsLF3eiZfWf56jnVAz65FBIjFSllGwI5tlxJSPzoNHMwB5qFq zrHRW391eaoVwfKppp6U5i7FaAj5qVh+OtPlFidZjvUNQq6R8oRLUgwtri7pGBk4 rb7oBykMzUkODdeuJl0SvIq+iQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLjHTf+8 l4kR+M+widUrLeE7sPnzMB8GA1UdIwQYMBaAFKpXkLD312K+kyudxhG31puQaFpO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzdGOS8yQUVDRTY2QTI3 QkQxMUVEQjU4ODRENUZDNEY5QUUwMi9xbGVRc1BmWFlyNlRLNTNHRWJmV201Qm9X azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FsZVFzUGZYWXI2VEs1M0dFYmZXbTVCb1drNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzdGOS8yQUVDRTY2QTI3QkQxMUVEQjU4ODRENUZDNEY5QUUwMi9xbGVRc1BmWFly NlRLNTNHRWJmV201Qm9XazQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASs6Oh71pVNYp3S/qmYWgQS6Svdm5P97dcthO4S4fJIjFwIPNS9otc AOZSQfWxeLnsGRXd9sN1V3Gf+HpdiFJ89f0bf527Dtmx2IfDSd9ipPaWLokkxtOd 1D5KlXei2iQ8LakA8Eo7Y/OvAkEGYYOk5K5Gn1j3HuF6NuJ6gjSEOQ6522ZRMEiR 8Cy+qsP/nIsU2zEd3dRR7x6GqDgglZV2AhEIK2nLmUoqWvoK+DyUX2WJwhZuyeX2 t7vQJbV5oNCYyhZq5qPfI2mm9ssOLrrIfO7eOS1YPGENJTqkfGrJUG7sdmaWVb8R A635snV4EIRjjkSPq8Lw9IA/Ndx/uZDx -----END CERTIFICATE-----Generated at Wed Nov 5 21:12:54 2025 by rpki-client