$ rpki-client -vvf rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft File: qAw2f5IilG-YuDa86PbQA2SIHHw.mft (raw, json) Hash identifier: W0IldJ9uSZycRxtsUtblzsfXBGV0EgBUWMLycJNq6I8= Subject key identifier: 8A:E7:CE:FE:BE:31:6F:F0:03:28:6E:9C:B3:7F:45:63:E3:0E:B0:FD Authority key identifier: A8:0C:36:7F:92:22:94:6F:98:B8:36:BC:E8:F6:D0:03:64:88:1C:7C Certificate issuer: /CN=A919D1D9/serialNumber=A80C367F9222946F98B836BCE8F6D00364881C7C Certificate serial: 0E24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qAw2f5IilG-YuDa86PbQA2SIHHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft Manifest number: 0E02 Signing time: Sun 02 Nov 2025 17:52:19 +0000 Manifest this update: Sun 02 Nov 2025 17:52:18 +0000 Manifest next update: Sun 09 Nov 2025 17:52:18 +0000 Files and hashes: 1: qAw2f5IilG-YuDa86PbQA2SIHHw.crl (hash: 5a+MjH9qgd3YSMTqgdINzKOPx75iyAi1+zyAuIsUTKQ=) 2: C2ED1EEE617111EBBC678459C4F9AE02.roa (hash: /hGH0Pm/VcL/t48Buv7bSF4xPC6xqGHOH5JeW2XnqTU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.crl rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qAw2f5IilG-YuDa86PbQA2SIHHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:52:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3620 (0xe24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D1D9, serialNumber=A80C367F9222946F98B836BCE8F6D00364881C7C Validity Not Before: Nov 2 17:52:18 2025 GMT Not After : Nov 9 17:52:18 2025 GMT Subject: CN=69079a53-ac36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:c1:5e:e6:c5:b1:db:d4:a9:fa:ef:cd:c9:9b: 5a:26:36:b8:87:60:ad:2f:14:c7:ed:ff:91:ec:ed: d0:79:2a:df:34:4a:fa:9b:1e:bb:35:26:e4:0d:93: e1:76:0d:64:33:77:db:77:fb:91:91:95:38:77:28: ff:51:38:48:b3:5b:57:4a:bb:b0:8a:09:16:04:8e: 47:48:d5:13:1e:d2:e1:9a:10:08:09:86:f2:cb:f3: 9d:df:ca:ba:1e:dc:38:26:52:a8:7b:cf:47:95:29: 23:53:b3:e9:5a:79:9e:d6:45:46:5e:20:3e:7d:30: c1:22:9a:28:14:9a:7d:02:6e:c0:9f:80:b0:d5:12: ef:db:56:43:f0:d2:80:d1:a6:06:5b:fc:87:be:8c: af:b4:d4:a4:a2:53:60:db:92:aa:53:ff:2c:99:68: 74:c2:a7:7e:4f:5e:7e:da:aa:24:bc:3d:3b:f2:fe: f0:ca:36:6a:7a:ae:1c:70:87:ee:d4:9b:13:66:57: ac:d2:65:a0:54:37:66:4a:5f:14:dc:15:9e:f8:1b: d9:ae:5a:fb:9a:9b:98:c3:22:5e:da:9a:e5:41:b5: dc:5c:8d:55:38:5e:31:0d:99:5d:09:2d:5c:60:07: 6c:a8:f0:d8:cb:b9:a7:07:2a:69:bb:6c:a1:a8:34: ff:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:E7:CE:FE:BE:31:6F:F0:03:28:6E:9C:B3:7F:45:63:E3:0E:B0:FD X509v3 Authority Key Identifier: keyid:A8:0C:36:7F:92:22:94:6F:98:B8:36:BC:E8:F6:D0:03:64:88:1C:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qAw2f5IilG-YuDa86PbQA2SIHHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:75:c5:c7:cb:38:8b:13:6c:a0:04:53:c7:48:5e:22:6b:92: 36:64:c0:ce:0d:a0:84:31:09:1d:28:ad:18:6a:a1:40:94:8c: 45:52:d2:15:f5:07:25:d1:2f:03:db:56:35:48:e8:76:ed:79: 4e:c5:77:3a:12:ac:67:3f:22:8c:63:87:04:4a:b1:07:ae:c7: 21:11:4c:37:32:81:ef:57:3b:f4:1e:a1:29:17:f6:87:b3:6c: b5:8c:4f:90:46:10:3b:db:8f:58:4d:13:1f:8e:6f:3a:0e:6a: 35:71:3e:30:2b:1d:6a:27:58:95:34:6d:45:64:2c:12:37:8f: 9a:2e:2e:7a:6b:51:91:81:49:1b:e2:d7:2e:53:1c:e2:84:6b: b9:13:bc:99:5a:87:93:48:b8:db:91:fc:60:4e:57:7d:74:ee: bb:92:84:dd:3a:d5:f1:6d:47:ff:29:7a:a3:47:cb:04:81:27: eb:bc:c3:3f:ee:30:42:43:b0:16:e9:6f:f0:df:a7:f2:71:42: 3b:90:02:8a:68:05:e5:de:d3:91:6b:88:bd:d9:80:92:af:32: d4:a9:e9:9a:df:50:d1:f2:b5:ed:ac:f2:60:28:65:83:9e:38: 9d:a5:f5:6d:87:62:21:8e:dd:70:9e:86:ea:60:79:8b:aa:49: 41:62:e5:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDiQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQxRDkxMTAvBgNVBAUTKEE4MEMzNjdGOTIyMjk0NkY5OEI4MzZCQ0U4RjZEMDAz NjQ4ODFDN0MwHhcNMjUxMTAyMTc1MjE4WhcNMjUxMTA5MTc1MjE4WjAYMRYwFAYD VQQDEw02OTA3OWE1My1hYzM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp8Fe5sWx29Sp+u/NyZtaJja4h2CtLxTH7f+R7O3QeSrfNEr6mx67NSbkDZPh dg1kM3fbd/uRkZU4dyj/UThIs1tXSruwigkWBI5HSNUTHtLhmhAICYbyy/Od38q6 Htw4JlKoe89HlSkjU7PpWnme1kVGXiA+fTDBIpooFJp9Am7An4Cw1RLv21ZD8NKA 0aYGW/yHvoyvtNSkolNg25KqU/8smWh0wqd+T15+2qokvD078v7wyjZqeq4ccIfu 1JsTZles0mWgVDdmSl8U3BWe+BvZrlr7mpuYwyJe2prlQbXcXI1VOF4xDZldCS1c YAdsqPDYy7mnByppu2yhqDT/8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIrnzv6+ MW/wAyhunLN/RWPjDrD9MB8GA1UdIwQYMBaAFKgMNn+SIpRvmLg2vOj20ANkiBx8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDFEOS82QTM5QTBERUMz MzgxMUU5ODA0OEZCN0RDNEY5QUUwMi9xQXcyZjVJaWxHLVl1RGE4NlBiUUEyU0lI SHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FBdzJmNUlpbEctWXVEYTg2UGJRQTJTSUhIdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDFEOS82QTM5QTBERUMzMzgxMUU5ODA0OEZCN0RDNEY5QUUwMi9xQXcyZjVJaWxH LVl1RGE4NlBiUUEyU0lISHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBedcXHyziLE2ygBFPHSF4ia5I2ZMDODaCEMQkdKK0YaqFAlIxFUtIV 9Qcl0S8D21Y1SOh27XlOxXc6EqxnPyKMY4cESrEHrschEUw3MoHvVzv0HqEpF/aH s2y1jE+QRhA7249YTRMfjm86Dmo1cT4wKx1qJ1iVNG1FZCwSN4+aLi56a1GRgUkb 4tcuUxzihGu5E7yZWoeTSLjbkfxgTld9dO67koTdOtXxbUf/KXqjR8sEgSfrvMM/ 7jBCQ7AW6W/w36fycUI7kAKKaAXl3tORa4i92YCSrzLUqema31DR8rXtrPJgKGWD njidpfVth2Ihjt1wnobqYHmLqklBYuXi -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:00 2025 by rpki-client