$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.mft File: QxsKSDX89paz7NM1klqOE2EM0Tc.mft (raw, json) Hash identifier: /eOL0s44OaxenHjlPRJzdw6fJlxZK+Vs8yrtcca+D0Q= Subject key identifier: CA:93:F2:2D:92:81:77:EE:C5:B1:DB:AD:D9:2F:CD:06:44:18:78:CD Authority key identifier: 43:1B:0A:48:35:FC:F6:96:B3:EC:D3:35:92:5A:8E:13:61:0C:D1:37 Certificate issuer: /CN=A91BE89F/serialNumber=431B0A4835FCF696B3ECD335925A8E13610CD137 Certificate serial: DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QxsKSDX89paz7NM1klqOE2EM0Tc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.mft Manifest number: DA Signing time: Wed 05 Nov 2025 05:45:14 +0000 Manifest this update: Wed 05 Nov 2025 05:45:13 +0000 Manifest next update: Wed 12 Nov 2025 05:45:13 +0000 Files and hashes: 1: QxsKSDX89paz7NM1klqOE2EM0Tc.crl (hash: 8LgUS8lF4AI9pjxhhjstOvT2gxXOo6rZGvl2RVuIPhM=) 2: 49ADB44C6DCC11EF8BE2A566C4F9AE02.roa (hash: mtRkpBofIEP/NFZvK+kr1cdx0dZa5TNObQf1xWdBFqI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.crl rsync://rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QxsKSDX89paz7NM1klqOE2EM0Tc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:45:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE89F, serialNumber=431B0A4835FCF696B3ECD335925A8E13610CD137 Validity Not Before: Nov 5 05:45:13 2025 GMT Not After : Nov 12 05:45:13 2025 GMT Subject: CN=690ae469-318d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:c8:36:dd:20:2a:60:c6:2b:32:b9:fd:91:81: 73:03:5f:10:1c:28:4d:92:2d:3d:73:e6:5e:b4:47: 78:82:b6:80:61:dd:a6:c2:f3:27:cf:74:b3:4b:93: 3b:be:72:e8:f4:dc:3c:31:8d:1a:fe:9b:a2:64:6f: 16:54:4f:ac:02:44:33:43:1b:2d:23:12:22:21:f8: 24:41:a4:f8:ca:d9:eb:4c:e3:d7:67:c0:2f:50:25: b5:67:23:6c:8a:15:9d:c4:b9:4a:98:a9:60:70:7a: 4f:cf:0c:fe:ae:34:b2:0a:f1:a8:c4:35:01:50:4f: 3e:1a:25:f5:b2:83:73:63:c5:b3:63:8c:86:7a:0b: d7:c0:3d:fd:1d:d5:eb:b6:50:82:67:74:30:33:fd: ce:01:f3:09:1d:ea:90:2e:a2:9c:2e:6a:16:6a:09: 56:a8:ab:91:c4:25:ac:22:06:7a:be:fb:7c:a2:f0: 03:49:ce:7f:f5:38:1e:ef:62:29:53:27:5b:63:ed: df:29:eb:10:9a:09:41:cc:a7:8c:a1:8b:e9:2d:61: f0:7a:ec:66:3a:93:6e:86:6d:9c:47:86:c9:dd:4e: 73:4e:13:8a:ea:b3:f9:03:f9:74:ff:27:40:03:b0: ca:59:e7:3d:99:f6:bc:aa:a4:72:3b:10:4b:9b:eb: 0d:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:93:F2:2D:92:81:77:EE:C5:B1:DB:AD:D9:2F:CD:06:44:18:78:CD X509v3 Authority Key Identifier: keyid:43:1B:0A:48:35:FC:F6:96:B3:EC:D3:35:92:5A:8E:13:61:0C:D1:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QxsKSDX89paz7NM1klqOE2EM0Tc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:d9:56:9b:de:f7:b0:5e:64:dd:45:5e:93:7c:f3:74:ed:1c: 1c:65:3f:9f:08:9f:a4:e5:5c:50:d1:29:df:28:3b:92:04:89: 82:e6:8c:e0:a2:30:e1:3e:1f:04:55:1c:01:3f:38:04:da:4a: dc:2a:b7:85:22:65:ca:3e:6e:7f:42:00:65:81:9f:c7:7c:43: 65:8e:95:4a:7f:5d:a3:b5:d8:84:a9:2b:ef:e7:aa:bd:78:f8: 45:bd:a8:3e:fc:4d:b7:a0:83:7e:c6:4e:8c:cb:24:38:41:da: 86:08:a6:7e:b6:8e:ac:17:3a:68:c5:7f:3e:53:6d:f0:22:79: 0b:f7:9c:e5:d1:cb:cd:d5:12:4a:c7:3a:43:ea:2d:d6:14:47: b3:2f:f3:b0:dd:a6:92:3a:50:b4:de:7c:47:55:5c:30:57:c2: 99:50:7b:f5:36:cd:92:62:33:1b:59:96:43:99:6d:b9:d2:cb: 6c:c0:3e:09:38:eb:68:99:09:c8:02:88:61:ce:3e:5e:7d:7c: ec:ec:6e:fd:27:c2:f8:b3:56:b4:5b:7e:dd:50:3d:de:71:6f: f6:f0:81:d2:4b:cc:25:d5:47:7b:6c:9c:e6:59:5e:3d:3b:8d: 01:65:2f:ec:ad:6c:7b:c0:b5:d1:75:27:43:b7:f8:24:29:aa: a0:67:91:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkU4OUYxMTAvBgNVBAUTKDQzMUIwQTQ4MzVGQ0Y2OTZCM0VDRDMzNTkyNUE4RTEz NjEwQ0QxMzcwHhcNMjUxMTA1MDU0NTEzWhcNMjUxMTEyMDU0NTEzWjAYMRYwFAYD VQQDEw02OTBhZTQ2OS0zMThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Mg23SAqYMYrMrn9kYFzA18QHChNki09c+ZetEd4graAYd2mwvMnz3SzS5M7 vnLo9Nw8MY0a/puiZG8WVE+sAkQzQxstIxIiIfgkQaT4ytnrTOPXZ8AvUCW1ZyNs ihWdxLlKmKlgcHpPzwz+rjSyCvGoxDUBUE8+GiX1soNzY8WzY4yGegvXwD39HdXr tlCCZ3QwM/3OAfMJHeqQLqKcLmoWaglWqKuRxCWsIgZ6vvt8ovADSc5/9Tge72Ip UydbY+3fKesQmglBzKeMoYvpLWHweuxmOpNuhm2cR4bJ3U5zThOK6rP5A/l0/ydA A7DKWec9mfa8qqRyOxBLm+sNKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMqT8i2S gXfuxbHbrdkvzQZEGHjNMB8GA1UdIwQYMBaAFEMbCkg1/PaWs+zTNZJajhNhDNE3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRTg5Ri9BRkZEMjE3MDZE Q0IxMUVGOUIzOUI4NjVDNEY5QUUwMi9ReHNLU0RYODlwYXo3Tk0xa2xxT0UyRU0w VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F4c0tTRFg4OXBhejdOTTFrbHFPRTJFTTBUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RTg5Ri9BRkZEMjE3MDZEQ0IxMUVGOUIzOUI4NjVDNEY5QUUwMi9ReHNLU0RYODlw YXo3Tk0xa2xxT0UyRU0wVGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCn2Vab3vewXmTdRV6TfPN07RwcZT+fCJ+k5VxQ0SnfKDuSBImC5ozg ojDhPh8EVRwBPzgE2krcKreFImXKPm5/QgBlgZ/HfENljpVKf12jtdiEqSvv56q9 ePhFvag+/E23oIN+xk6MyyQ4QdqGCKZ+to6sFzpoxX8+U23wInkL95zl0cvN1RJK xzpD6i3WFEezL/Ow3aaSOlC03nxHVVwwV8KZUHv1Ns2SYjMbWZZDmW250stswD4J OOtomQnIAohhzj5efXzs7G79J8L4s1a0W37dUD3ecW/28IHSS8wl1Ud7bJzmWV49 O40BZS/srWx7wLXRdSdDt/gkKaqgZ5Gg -----END CERTIFICATE-----Generated at Wed Nov 5 13:26:23 2025 by rpki-client