$ rpki-client -vvf rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft File: QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft (raw, json) Hash identifier: by+2HBpO6655rowwDlrlyAHjdiRD0+kMiewNC+YWiVE= Subject key identifier: EA:E4:22:1B:0B:4B:BB:5A:E6:EA:A1:37:27:ED:B6:53:9C:24:4C:F6 Authority key identifier: 41:B4:34:91:5A:49:19:DC:EF:57:D6:97:7C:40:48:0D:FC:31:13:4D Certificate issuer: /CN=A91A25DF/serialNumber=41B434915A4919DCEF57D6977C40480DFC31134D Certificate serial: 3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbQ0kVpJGdzvV9aXfEBIDfwxE00.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft Manifest number: 3D Signing time: Mon 03 Nov 2025 07:29:21 +0000 Manifest this update: Mon 03 Nov 2025 07:29:20 +0000 Manifest next update: Mon 10 Nov 2025 07:29:20 +0000 Files and hashes: 1: QbQ0kVpJGdzvV9aXfEBIDfwxE00.crl (hash: 8YJnW8l1w0Q3+NLTo+ZFppFQsixnbOWJivo+40z3uQo=) 2: C5B717905EDA11F0A5EAB579C4F9AE02.roa (hash: PqNnMtc0YzN3eHNjrg0ykkeSPjuNLhEa4HAV6yMUzA8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.crl rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbQ0kVpJGdzvV9aXfEBIDfwxE00.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:29:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A25DF, serialNumber=41B434915A4919DCEF57D6977C40480DFC31134D Validity Not Before: Nov 3 07:29:20 2025 GMT Not After : Nov 10 07:29:20 2025 GMT Subject: CN=690859d0-b03a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:2f:16:67:a7:d3:54:07:8c:e2:59:a1:f6:5e: 25:2f:2b:22:f7:dc:9e:d2:54:ff:1a:5f:83:1e:5d: a3:b8:d5:40:b3:3c:13:8e:65:46:c0:17:fd:d6:e4: 5d:0b:68:20:c8:9e:df:01:c1:00:1a:b6:f3:27:ec: 8a:d7:e7:73:92:e9:9d:31:de:11:df:58:7a:5c:9a: 4d:d8:e2:cd:1a:9d:d5:41:95:43:48:6f:24:f2:49: f0:33:1e:33:1d:44:be:fa:14:a9:5a:f5:e2:22:04: a3:c2:8e:8e:1a:0f:01:be:03:a0:d6:23:e9:87:47: 23:9e:8d:37:27:6e:c2:13:39:32:88:08:ff:b2:4e: 3d:21:64:84:45:d2:c7:53:bf:6d:6a:f0:12:bb:a8: 8f:96:29:df:09:2a:66:6d:e2:29:25:40:85:54:c0: 22:7e:85:aa:de:16:6a:5d:be:c1:14:5c:0f:a2:2a: 60:f0:28:dc:c1:db:86:51:db:5b:09:f0:bc:ec:22: 20:f3:33:54:1f:5c:c7:ba:c0:1b:10:49:b3:13:41: 5c:36:b6:a7:c3:bd:44:7a:31:96:69:b6:f4:55:4f: e0:eb:ad:df:af:b7:4b:c3:81:f8:60:c1:4e:bd:bf: e2:96:85:44:5e:79:aa:57:1e:fe:5a:2c:00:9c:ac: fd:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:E4:22:1B:0B:4B:BB:5A:E6:EA:A1:37:27:ED:B6:53:9C:24:4C:F6 X509v3 Authority Key Identifier: keyid:41:B4:34:91:5A:49:19:DC:EF:57:D6:97:7C:40:48:0D:FC:31:13:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbQ0kVpJGdzvV9aXfEBIDfwxE00.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:b7:95:9c:cf:78:0a:d6:9f:c7:3f:f5:09:75:33:aa:27:88: 20:c2:d3:0f:7b:b9:ff:7c:4a:29:24:d0:85:93:6e:08:e6:38: d4:74:b5:e5:3f:d6:57:3e:b0:d3:b5:4e:30:87:c2:93:57:1b: 3d:52:be:a7:70:87:88:f7:43:52:17:ed:d1:e6:c8:38:80:c2: 91:b5:66:ef:8d:51:1d:a8:6b:13:df:6e:2d:7f:d3:af:a9:a9: 51:e0:ab:39:34:6a:0d:85:42:52:5f:5b:87:df:e0:df:30:9b: 72:e8:73:bf:23:c1:54:cf:4d:a9:ac:5f:4d:ce:21:4f:e9:45: f0:41:de:e0:3e:55:9b:45:34:74:10:b1:82:dc:ad:e1:b7:ad: c1:a3:5b:d2:7d:d0:38:a7:6f:11:02:95:c5:27:c1:1d:06:7f: 40:ed:35:78:11:6a:dc:ef:e5:d1:3d:ce:2c:7f:d3:40:e5:6f: 9e:5e:8f:70:fc:89:3f:74:b1:6f:c3:a2:2b:9c:64:03:85:e8: 48:6d:36:a6:eb:da:19:a7:8b:52:b7:a3:0f:c3:31:22:55:a9: 52:5f:38:0f:71:83:fc:78:d7:f0:93:da:cf:4c:20:23:97:67: bf:6f:ec:ef:01:cc:24:b5:b9:1d:e5:53:bf:8b:f8:bd:dd:ec: 9d:90:da:ef -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MjVERjExMC8GA1UEBRMoNDFCNDM0OTE1QTQ5MTlEQ0VGNTdENjk3N0M0MDQ4MERG QzMxMTM0RDAeFw0yNTExMDMwNzI5MjBaFw0yNTExMTAwNzI5MjBaMBgxFjAUBgNV BAMTDTY5MDg1OWQwLWIwM2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOLxZnp9NUB4ziWaH2XiUvKyL33J7SVP8aX4MeXaO41UCzPBOOZUbAF/3W5F0L aCDInt8BwQAatvMn7IrX53OS6Z0x3hHfWHpcmk3Y4s0andVBlUNIbyTySfAzHjMd RL76FKla9eIiBKPCjo4aDwG+A6DWI+mHRyOejTcnbsITOTKICP+yTj0hZIRF0sdT v21q8BK7qI+WKd8JKmZt4iklQIVUwCJ+hareFmpdvsEUXA+iKmDwKNzB24ZR21sJ 8LzsIiDzM1QfXMe6wBsQSbMTQVw2tqfDvUR6MZZptvRVT+Drrd+vt0vDgfhgwU69 v+KWhUReeapXHv5aLACcrP3NAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6uQiGwtL u1rm6qE3J+22U5wkTPYwHwYDVR0jBBgwFoAUQbQ0kVpJGdzvV9aXfEBIDfwxE00w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEyNURGL0VGNEFENDUyNUVE NTExRjA5Q0YxRDUwQ0M0RjlBRTAyL1FiUTBrVnBKR2R6dlY5YVhmRUJJRGZ3eEUw MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUWJRMGtWcEpHZHp2VjlhWGZFQklEZnd4RTAwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEy NURGL0VGNEFENDUyNUVENTExRjA5Q0YxRDUwQ0M0RjlBRTAyL1FiUTBrVnBKR2R6 dlY5YVhmRUJJRGZ3eEUwMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF63lZzPeArWn8c/9Ql1M6oniCDC0w97uf98Sikk0IWTbgjmONR0teU/ 1lc+sNO1TjCHwpNXGz1Svqdwh4j3Q1IX7dHmyDiAwpG1Zu+NUR2oaxPfbi1/06+p qVHgqzk0ag2FQlJfW4ff4N8wm3Loc78jwVTPTamsX03OIU/pRfBB3uA+VZtFNHQQ sYLcreG3rcGjW9J90DinbxEClcUnwR0Gf0DtNXgRatzv5dE9zix/00Dlb55ej3D8 iT90sW/DoiucZAOF6EhtNqbr2hmni1K3ow/DMSJVqVJfOA9xg/x41/CT2s9MICOX Z79v7O8BzCS1uR3lU7+L+L3d7J2Q2u8= -----END CERTIFICATE-----Generated at Mon Nov 3 18:08:10 2025 by rpki-client