$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft File: -Q4hD858Z6Lysy3hTusFoEsNEOE.mft (raw, json) Hash identifier: pQj3b86GEBNTFz5FRpwaZjQiPUXyr0P9FsThu12s5E4= Subject key identifier: BA:69:3C:74:A9:C4:2F:3E:CE:87:DA:4E:7C:47:96:88:A4:F4:75:12 Authority key identifier: F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 Certificate issuer: /CN=A91A7369/serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Certificate serial: 019C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft Manifest number: 0198 Signing time: Mon 03 Nov 2025 03:23:42 +0000 Manifest this update: Mon 03 Nov 2025 03:23:42 +0000 Manifest next update: Mon 10 Nov 2025 03:23:42 +0000 Files and hashes: 1: -Q4hD858Z6Lysy3hTusFoEsNEOE.crl (hash: a4bPJZjSvT9+CtFtOyIispVytpi9Ko3wjLfQWrHXc9s=) 2: A99E5658488011EE8113A766C4F9AE02.roa (hash: NccKQh/awErD0XICha+c3zCJvrDGH6h5P5yVRARZDuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:23:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 412 (0x19c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7369, serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Validity Not Before: Nov 3 03:23:42 2025 GMT Not After : Nov 10 03:23:42 2025 GMT Subject: CN=6908203e-d8ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:4a:d7:ee:30:10:c0:ee:5e:ce:6e:90:bf:49: 53:f8:02:2f:3c:a0:7b:a4:20:0b:da:9d:41:8e:80: ef:f7:10:d0:74:84:33:9f:1b:0d:02:c8:52:78:2c: f1:85:b7:0f:e6:f9:19:b4:a5:6b:cb:3b:69:36:10: cd:34:72:88:aa:ba:f1:3b:5f:3c:7f:01:61:92:c3: a3:c8:45:ed:b9:3e:8d:32:9a:b3:36:03:91:7a:d0: 69:7a:49:d9:c3:1c:b1:c4:70:53:42:c7:74:71:fa: df:7f:94:82:9b:f3:c6:53:aa:2a:c8:72:7d:97:c9: 9a:2e:af:8e:f2:0f:d0:e1:7b:76:3c:13:31:0a:01: 27:68:48:7b:32:ec:4d:87:12:bf:f6:71:92:dc:e0: 06:b4:cc:41:39:b5:83:46:6c:7a:cb:16:72:a2:1c: 8a:ef:3c:93:bc:3f:e7:74:e3:44:ce:8b:22:94:50: 95:5f:ff:8e:de:3d:4f:3b:2c:ae:f6:38:9a:1f:34: a0:a1:f8:58:1c:56:da:c6:bc:38:be:26:3f:59:f5: fa:38:07:a0:21:1b:bd:81:48:10:19:75:fc:ea:bc: 02:ec:ca:bc:d5:64:df:8e:0a:05:48:6c:0f:b2:95: 1b:55:39:b6:b6:6d:fe:4a:68:e9:37:63:be:29:d4: c1:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:69:3C:74:A9:C4:2F:3E:CE:87:DA:4E:7C:47:96:88:A4:F4:75:12 X509v3 Authority Key Identifier: keyid:F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:4c:c9:ed:3c:58:a6:4d:ee:a5:a2:6f:2e:e3:7c:42:27:df: 5b:34:9c:ae:7b:f4:ec:7d:82:2c:f1:cb:de:88:62:de:f8:69: 7e:bf:b0:98:fb:75:74:e5:15:df:a7:fd:bb:03:81:38:d7:76: c3:54:e4:7f:4c:09:d3:56:94:9e:a0:4f:75:a1:93:d8:f3:be: 7d:a6:b9:b8:57:b4:88:19:3b:5c:1e:54:f0:bd:49:b9:62:b9: a9:f4:cb:f6:ae:cc:10:89:04:9f:fd:04:3e:fc:33:7a:f2:2e: c1:6c:d6:65:0e:3a:5c:36:e6:0c:c7:3c:01:03:d9:5e:7d:60: ec:6b:67:04:7f:49:73:e9:5b:9b:55:16:4c:9c:11:17:3d:1e: d1:68:16:af:38:35:5a:30:8b:05:42:57:3f:62:cf:2f:9a:9c: a2:13:9b:a9:26:6f:82:5b:3e:11:24:b4:7b:43:62:08:3f:85: 3f:0e:5a:5f:dc:96:0c:9a:aa:e0:ff:dc:a4:37:b6:d5:fc:1c: 0f:6b:95:9d:9e:e0:8a:ef:67:ef:a4:9e:5f:18:4b:74:cd:b6: e3:eb:10:ff:62:39:2c:1a:9f:3d:7a:0c:fc:af:11:5c:07:49: dc:9b:63:45:a2:8d:bc:b4:01:96:42:6b:b4:d5:29:fa:41:0c: e6:2c:d9:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTczNjkxMTAvBgNVBAUTKEY5MEUyMTBGQ0U3QzY3QTJGMkIzMkRFMTRFRUIwNUEw NEIwRDEwRTEwHhcNMjUxMTAzMDMyMzQyWhcNMjUxMTEwMDMyMzQyWjAYMRYwFAYD VQQDEw02OTA4MjAzZS1kOGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5ErX7jAQwO5ezm6Qv0lT+AIvPKB7pCAL2p1BjoDv9xDQdIQznxsNAshSeCzx hbcP5vkZtKVryztpNhDNNHKIqrrxO188fwFhksOjyEXtuT6NMpqzNgORetBpeknZ wxyxxHBTQsd0cfrff5SCm/PGU6oqyHJ9l8maLq+O8g/Q4Xt2PBMxCgEnaEh7MuxN hxK/9nGS3OAGtMxBObWDRmx6yxZyohyK7zyTvD/ndONEzosilFCVX/+O3j1POyyu 9jiaHzSgofhYHFbaxrw4viY/WfX6OAegIRu9gUgQGXX86rwC7Mq81WTfjgoFSGwP spUbVTm2tm3+SmjpN2O+KdTBdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLppPHSp xC8+zofaTnxHloik9HUSMB8GA1UdIwQYMBaAFPkOIQ/OfGei8rMt4U7rBaBLDRDh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzM2OS9CMUQ2MTk0MjQ4 N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2THlzeTNoVHVzRm9Fc05F T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1RNGhEODU4WjZMeXN5M2hUdXNGb0VzTkVPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzM2OS9CMUQ2MTk0MjQ4N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2 THlzeTNoVHVzRm9Fc05FT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdTMntPFimTe6lom8u43xCJ99bNJyue/TsfYIs8cveiGLe+Gl+v7CY +3V05RXfp/27A4E413bDVOR/TAnTVpSeoE91oZPY8759prm4V7SIGTtcHlTwvUm5 Yrmp9Mv2rswQiQSf/QQ+/DN68i7BbNZlDjpcNuYMxzwBA9lefWDsa2cEf0lz6Vub VRZMnBEXPR7RaBavODVaMIsFQlc/Ys8vmpyiE5upJm+CWz4RJLR7Q2IIP4U/Dlpf 3JYMmqrg/9ykN7bV/BwPa5WdnuCK72fvpJ5fGEt0zbbj6xD/YjksGp89egz8rxFc B0ncm2NFoo28tAGWQmu01Sn6QQzmLNnu -----END CERTIFICATE-----Generated at Mon Nov 3 18:14:35 2025 by rpki-client