$ rpki-client -vvf rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.mft File: QGGGPd9D57OxiePJwyF7wSuzXyE.mft (raw, json) Hash identifier: kmfi2HtbzKdDETVMIRncEVCOnpgECfQsDS2t+GUZCPk= Subject key identifier: 1A:D9:33:A7:11:D9:C0:AF:76:E4:23:5A:42:F6:0B:25:0D:09:30:CC Authority key identifier: 40:61:86:3D:DF:43:E7:B3:B1:89:E3:C9:C3:21:7B:C1:2B:B3:5F:21 Certificate issuer: /CN=A919E8DB/serialNumber=4061863DDF43E7B3B189E3C9C3217BC12BB35F21 Certificate serial: C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGGGPd9D57OxiePJwyF7wSuzXyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.mft Manifest number: B6 Signing time: Mon 03 Nov 2025 06:14:52 +0000 Manifest this update: Mon 03 Nov 2025 06:14:51 +0000 Manifest next update: Mon 10 Nov 2025 06:14:51 +0000 Files and hashes: 1: QGGGPd9D57OxiePJwyF7wSuzXyE.crl (hash: lPX/ceqjwHU0MpAssRcaz+x804fp++JMp2UlZnyXTu8=) 2: DCAA44D6BF2A11EFBAAF1F16C4F9AE02.roa (hash: Nht97ur+ekDVMahSKVw1nXYEmKhTRBnAIrSGC7Jrda0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.crl rsync://rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGGGPd9D57OxiePJwyF7wSuzXyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:14:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E8DB, serialNumber=4061863DDF43E7B3B189E3C9C3217BC12BB35F21 Validity Not Before: Nov 3 06:14:51 2025 GMT Not After : Nov 10 06:14:51 2025 GMT Subject: CN=6908485b-7ed3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:89:0b:6f:95:84:d7:7c:a7:f3:a2:20:50:df: ed:b7:6a:e5:10:30:3c:68:06:13:44:aa:47:3d:ee: 4f:1f:68:38:bb:5d:f4:9b:4d:5e:4a:38:6a:5c:aa: 26:c2:e0:18:ce:2d:4e:13:29:a0:e7:44:a7:71:ea: 71:18:74:e3:c2:ad:13:33:9d:18:bf:69:b8:93:d9: 1d:8a:15:ec:b0:55:24:1f:ec:22:15:b6:c8:59:3e: f5:d0:0a:f5:da:72:fb:d6:71:fe:a1:ee:20:2b:ce: be:ff:82:b2:94:b9:28:a6:e5:05:1a:01:b5:f6:97: 51:3c:50:ac:d5:e3:00:03:7a:fe:89:17:da:79:2b: b1:af:0f:ed:0b:51:2c:50:1d:46:53:5a:9b:2b:15: f6:b1:e7:54:ca:c7:fe:f8:c0:4c:55:59:bc:c6:3a: b3:3d:46:3a:85:d4:4e:63:04:45:9b:b6:b7:42:26: 61:16:40:23:5e:62:88:51:f7:49:03:b3:02:51:11: ae:22:26:27:76:e1:eb:60:8b:5f:c5:14:e8:1b:63: 0a:1a:0b:61:f8:89:f1:66:c2:69:11:7f:9f:58:1c: 48:b1:33:2c:77:51:05:a3:02:23:dd:e8:6f:b3:2d: c9:52:bd:cd:de:fe:cf:c0:c8:02:1a:b3:f6:69:61: 11:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:D9:33:A7:11:D9:C0:AF:76:E4:23:5A:42:F6:0B:25:0D:09:30:CC X509v3 Authority Key Identifier: keyid:40:61:86:3D:DF:43:E7:B3:B1:89:E3:C9:C3:21:7B:C1:2B:B3:5F:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGGGPd9D57OxiePJwyF7wSuzXyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:ce:52:c7:e7:dc:5a:02:d8:09:7e:92:50:25:cf:db:58:aa: 25:59:11:01:74:90:e9:cd:c6:d5:5b:75:04:5e:d4:99:0f:0f: 63:5f:d5:91:fc:bb:01:0d:ec:bb:52:6f:9b:4f:30:8c:7a:91: 1b:ee:aa:9a:ea:97:dc:b0:71:10:df:c7:2c:a8:ae:c9:db:f6: 05:a7:a7:05:b6:83:00:79:fb:c7:0a:7b:0f:09:5f:2a:10:10: 39:0a:c8:6a:0b:a7:c2:ab:be:8e:17:2c:fa:85:b5:c6:52:da: 80:0c:5e:8a:45:83:52:c1:b0:cd:4a:14:a5:3e:22:b3:e5:b4: fb:0f:3d:a3:02:fb:38:9b:9d:a0:b8:b0:3f:bb:10:ab:3c:90: 8b:80:e6:a4:3b:30:80:ea:5a:2c:6e:07:8b:69:eb:97:38:f9: a9:1b:c0:8a:3e:bb:ec:7c:e4:e2:f7:bb:b9:6e:bd:0a:84:c8: db:9e:34:92:00:f5:98:9d:e6:0f:e3:56:65:98:fc:c0:ef:82: 41:36:88:92:3a:b8:18:b3:4b:f9:da:58:3b:ba:19:82:44:24: ce:13:e0:66:22:97:81:71:56:45:68:7f:93:42:e4:f9:bc:34: 7e:15:28:f1:11:cd:7c:72:8c:24:23:6b:50:8a:c1:f5:4e:1a: ca:72:e6:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUU4REIxMTAvBgNVBAUTKDQwNjE4NjNEREY0M0U3QjNCMTg5RTNDOUMzMjE3QkMx MkJCMzVGMjEwHhcNMjUxMTAzMDYxNDUxWhcNMjUxMTEwMDYxNDUxWjAYMRYwFAYD VQQDEw02OTA4NDg1Yi03ZWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy4kLb5WE13yn86IgUN/tt2rlEDA8aAYTRKpHPe5PH2g4u130m01eSjhqXKom wuAYzi1OEymg50SncepxGHTjwq0TM50Yv2m4k9kdihXssFUkH+wiFbbIWT710Ar1 2nL71nH+oe4gK86+/4KylLkopuUFGgG19pdRPFCs1eMAA3r+iRfaeSuxrw/tC1Es UB1GU1qbKxX2sedUysf++MBMVVm8xjqzPUY6hdROYwRFm7a3QiZhFkAjXmKIUfdJ A7MCURGuIiYnduHrYItfxRToG2MKGgth+InxZsJpEX+fWBxIsTMsd1EFowIj3ehv sy3JUr3N3v7PwMgCGrP2aWER5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBrZM6cR 2cCvduQjWkL2CyUNCTDMMB8GA1UdIwQYMBaAFEBhhj3fQ+ezsYnjycMhe8Ers18h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RThEQi9CNDhFMjVGNEI3 NjMxMUVGODJERDhGMzNDNEY5QUUwMi9RR0dHUGQ5RDU3T3hpZVBKd3lGN3dTdXpY eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FHR0dQZDlENTdPeGllUEp3eUY3d1N1elh5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RThEQi9CNDhFMjVGNEI3NjMxMUVGODJERDhGMzNDNEY5QUUwMi9RR0dHUGQ5RDU3 T3hpZVBKd3lGN3dTdXpYeUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/zlLH59xaAtgJfpJQJc/bWKolWREBdJDpzcbVW3UEXtSZDw9jX9WR /LsBDey7Um+bTzCMepEb7qqa6pfcsHEQ38csqK7J2/YFp6cFtoMAefvHCnsPCV8q EBA5CshqC6fCq76OFyz6hbXGUtqADF6KRYNSwbDNShSlPiKz5bT7Dz2jAvs4m52g uLA/uxCrPJCLgOakOzCA6losbgeLaeuXOPmpG8CKPrvsfOTi97u5br0KhMjbnjSS APWYneYP41ZlmPzA74JBNoiSOrgYs0v52lg7uhmCRCTOE+BmIpeBcVZFaH+TQuT5 vDR+FSjxEc18cowkI2tQisH1ThrKcubj -----END CERTIFICATE-----Generated at Mon Nov 3 18:11:09 2025 by rpki-client