$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.mft File: sqJd3hqeyRtZmGpTL3iDVDYYMkg.mft (raw, json) Hash identifier: lxqhBQ7x6zU2eBfdEX4dk44bjB9MvbjlqLOQa0GYAu0= Subject key identifier: 09:D8:42:23:0F:5D:A6:3E:CB:C2:72:B2:3D:C2:70:68:2F:48:93:02 Authority key identifier: B2:A2:5D:DE:1A:9E:C9:1B:59:98:6A:53:2F:78:83:54:36:18:32:48 Certificate issuer: /CN=A91BC966/serialNumber=B2A25DDE1A9EC91B59986A532F78835436183248 Certificate serial: 0C6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.mft Manifest number: 0C41 Signing time: Sun 02 Nov 2025 18:42:52 +0000 Manifest this update: Sun 02 Nov 2025 18:42:52 +0000 Manifest next update: Sun 09 Nov 2025 18:42:52 +0000 Files and hashes: 1: sqJd3hqeyRtZmGpTL3iDVDYYMkg.crl (hash: qt52oiX0Nm/7UpNXqG8TCe3eQ6qINrHlRKU6IzDCzmE=) 2: A6A53FA2D67E11EEAA2CA218C4F9AE02.roa (hash: vd/2YU/fZHY0X+88OePyC1GrfRf3guoIzxWdo48FOwA=) 3: 5DA849821C1211EA819EA46EC4F9AE02.roa (hash: 9WFKUJqUOgDB07wt9CN3L8jHFMm+Bp2TRv/IY0cRCLM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.crl rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:42:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3179 (0xc6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC966, serialNumber=B2A25DDE1A9EC91B59986A532F78835436183248 Validity Not Before: Nov 2 18:42:52 2025 GMT Not After : Nov 9 18:42:52 2025 GMT Subject: CN=6907a62c-d491 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:91:98:16:f2:61:1a:65:be:32:96:af:5d:56: 37:6a:8e:7f:0b:9d:49:01:31:10:25:e8:04:1f:85: 12:9a:26:70:c8:7d:94:c5:7a:c3:a9:c8:f2:91:44: e0:ae:9c:61:23:c4:e5:73:f1:51:f0:5b:8a:66:2c: a6:1c:d1:77:2e:4d:10:db:6b:16:36:ab:07:a3:fb: b2:a5:cf:0e:dc:dd:92:fc:ff:c2:b6:13:3d:54:df: 32:18:9b:af:8c:05:ad:1c:80:98:af:ff:60:1d:29: 18:9c:2b:43:90:f4:3e:3e:55:2d:dd:56:ed:78:59: e8:75:9b:1e:66:06:b3:c2:7b:6b:aa:e1:54:2f:94: 6a:49:21:97:24:96:80:84:00:d2:18:81:b4:0e:f9: 0b:ba:5c:4f:09:dd:a0:57:22:c0:63:29:58:f4:63: d4:d6:fd:e1:69:98:90:40:fc:71:69:4a:75:8c:6d: e9:67:19:bc:e6:ba:ea:7e:30:0f:98:39:9a:3e:2c: ba:ee:a7:fb:70:36:cd:e5:f7:0f:98:ef:72:be:ce: b5:6c:08:ab:7f:27:f6:04:e3:2c:e3:7c:95:4d:80: 3a:14:f9:71:9f:66:92:bf:ab:d3:5a:78:b6:2a:34: 2d:a5:d2:5b:6d:17:55:63:fe:77:63:57:bd:93:ca: c9:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:D8:42:23:0F:5D:A6:3E:CB:C2:72:B2:3D:C2:70:68:2F:48:93:02 X509v3 Authority Key Identifier: keyid:B2:A2:5D:DE:1A:9E:C9:1B:59:98:6A:53:2F:78:83:54:36:18:32:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:e0:f9:3b:e3:e8:48:18:70:45:fc:a2:3c:4e:c2:e0:05:3d: 4d:9e:ea:38:70:a9:4f:91:60:36:dd:2d:42:79:a2:37:17:f8: 0a:dc:83:f9:af:a3:30:f7:fc:0a:8e:79:ed:eb:4d:f5:01:73: c5:cc:67:dc:ab:34:cd:60:2b:2a:d8:74:12:d8:f6:61:a1:4f: bc:54:88:9c:1d:36:17:da:c1:03:6e:f8:64:8f:f3:6e:37:f4: 74:2e:7d:83:49:62:2c:6e:45:8b:bf:bc:c9:15:a3:0f:47:b6: 30:1c:11:49:b2:06:dd:02:c4:3f:a7:93:5f:9e:84:29:38:fe: 6a:e2:76:68:cc:66:be:6d:68:ca:a4:64:0e:0e:49:45:9e:73: 49:5d:03:cb:28:6e:bb:db:28:da:43:b2:0c:cb:57:94:88:5d: 90:1b:bd:0c:20:e1:56:49:9d:da:94:7b:3d:5f:1d:4f:f1:a4: 45:86:d9:3f:7d:bc:d6:1c:b4:69:81:2a:e8:d7:03:7a:66:5a: 01:63:b0:87:c0:95:7f:01:ea:67:0a:60:15:02:a4:3f:2c:78: 70:5f:0f:c4:d0:c8:a0:00:48:80:3f:86:21:a0:12:af:6b:6c: f1:3b:86:59:40:2f:98:18:f6:b0:ac:99:1a:2a:a2:e5:58:57: 8e:62:fe:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM5NjYxMTAvBgNVBAUTKEIyQTI1RERFMUE5RUM5MUI1OTk4NkE1MzJGNzg4MzU0 MzYxODMyNDgwHhcNMjUxMTAyMTg0MjUyWhcNMjUxMTA5MTg0MjUyWjAYMRYwFAYD VQQDEw02OTA3YTYyYy1kNDkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzpGYFvJhGmW+MpavXVY3ao5/C51JATEQJegEH4USmiZwyH2UxXrDqcjykUTg rpxhI8Tlc/FR8FuKZiymHNF3Lk0Q22sWNqsHo/uypc8O3N2S/P/CthM9VN8yGJuv jAWtHICYr/9gHSkYnCtDkPQ+PlUt3VbteFnodZseZgazwntrquFUL5RqSSGXJJaA hADSGIG0DvkLulxPCd2gVyLAYylY9GPU1v3haZiQQPxxaUp1jG3pZxm85rrqfjAP mDmaPiy67qf7cDbN5fcPmO9yvs61bAirfyf2BOMs43yVTYA6FPlxn2aSv6vTWni2 KjQtpdJbbRdVY/53Y1e9k8rJ2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAnYQiMP XaY+y8Jysj3CcGgvSJMCMB8GA1UdIwQYMBaAFLKiXd4anskbWZhqUy94g1Q2GDJI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzk2Ni9BMTk1MkJBMjFD MTExMUVBQjZDM0M3NkRDNEY5QUUwMi9zcUpkM2hxZXlSdFptR3BUTDNpRFZEWVlN a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NxSmQzaHFleVJ0Wm1HcFRMM2lEVkRZWU1rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Qzk2Ni9BMTk1MkJBMjFDMTExMUVBQjZDM0M3NkRDNEY5QUUwMi9zcUpkM2hxZXlS dFptR3BUTDNpRFZEWVlNa2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBI4Pk74+hIGHBF/KI8TsLgBT1Nnuo4cKlPkWA23S1CeaI3F/gK3IP5 r6Mw9/wKjnnt6031AXPFzGfcqzTNYCsq2HQS2PZhoU+8VIicHTYX2sEDbvhkj/Nu N/R0Ln2DSWIsbkWLv7zJFaMPR7YwHBFJsgbdAsQ/p5NfnoQpOP5q4nZozGa+bWjK pGQODklFnnNJXQPLKG672yjaQ7IMy1eUiF2QG70MIOFWSZ3alHs9Xx1P8aRFhtk/ fbzWHLRpgSro1wN6ZloBY7CHwJV/AepnCmAVAqQ/LHhwXw/E0MigAEiAP4YhoBKv a2zxO4ZZQC+YGPawrJkaKqLlWFeOYv5Q -----END CERTIFICATE-----Generated at Tue Nov 4 07:22:42 2025 by rpki-client