$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.mft File: QcdXFCmaV43RkP0fcwlVsf2awfQ.mft (raw, json) Hash identifier: poY3H5bCfaG5DFzGk7OZyf09JleZGAw/meGT9McVBFc= Subject key identifier: D4:B1:6B:B3:98:19:B6:54:2D:B9:40:20:9A:7F:FB:15:02:ED:1E:A3 Authority key identifier: 41:C7:57:14:29:9A:57:8D:D1:90:FD:1F:73:09:55:B1:FD:9A:C1:F4 Certificate issuer: /CN=A91BEA8B/serialNumber=41C75714299A578DD190FD1F730955B1FD9AC1F4 Certificate serial: 50 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QcdXFCmaV43RkP0fcwlVsf2awfQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.mft Manifest number: 4A Signing time: Fri 17 Oct 2025 11:09:31 +0000 Manifest this update: Fri 17 Oct 2025 11:09:30 +0000 Manifest next update: Fri 24 Oct 2025 11:09:30 +0000 Files and hashes: 1: QcdXFCmaV43RkP0fcwlVsf2awfQ.crl (hash: yq8TBinOxGheIqTFDRepsjm5iXQypSRwJIQ/n5RTeGo=) 2: C425CEE64B8211F0A94CFD82C4F9AE02.roa (hash: fil/oQotRM+MIGw/cNqLrz8OgmoOYQq+ywbG5ZxtQK8=) 3: B8F6B5E6889D11F096782036C4F9AE02.roa (hash: /A/rBXc2op08yj3uZittOvl641NY0+V2n8zZ3/LDWUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.crl rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QcdXFCmaV43RkP0fcwlVsf2awfQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 11:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 80 (0x50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEA8B, serialNumber=41C75714299A578DD190FD1F730955B1FD9AC1F4 Validity Not Before: Oct 17 11:09:30 2025 GMT Not After : Oct 24 11:09:30 2025 GMT Subject: CN=68f223ea-e274 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:07:5c:33:dc:51:31:06:8a:66:57:6e:df:22: f2:76:af:98:98:f8:7d:e8:e0:65:b0:92:a1:48:b8: ae:08:97:ec:93:0d:8a:12:9a:7b:dd:de:55:07:ca: d2:7d:56:43:a5:c5:9a:cc:43:c9:2a:b0:64:58:46: ba:66:65:11:e9:39:88:26:5f:40:6b:7b:59:0f:d0: 28:31:39:d4:f8:e1:0a:a3:99:b6:ac:61:b0:d1:28: 71:d4:dd:03:4b:11:7f:34:3c:8f:34:7f:39:56:84: d0:2b:45:de:f0:70:fd:bb:2a:8c:e1:36:af:3c:8d: 06:99:be:73:d6:98:a6:d3:d7:ce:e1:f2:85:96:bf: 43:cb:03:8e:42:ff:37:8f:85:28:a7:d8:0f:5d:51: 04:3f:1f:e3:f2:66:8a:e2:2f:08:41:de:ba:a8:9a: 34:e0:b9:63:6b:ec:33:56:f0:09:db:cf:59:ab:3f: 11:0c:49:d2:dd:6c:2f:76:d3:ab:40:3d:79:53:f3: 23:d4:56:93:03:d9:12:f4:e6:56:c5:e6:b1:fc:00: 07:15:c0:ae:04:cc:bc:86:97:5a:15:44:ed:a5:4a: 1a:ce:d1:5a:ca:af:d4:c9:f2:48:53:33:f7:91:7d: b9:f8:fa:a8:11:88:5b:05:59:89:34:0a:79:af:59: 8a:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:B1:6B:B3:98:19:B6:54:2D:B9:40:20:9A:7F:FB:15:02:ED:1E:A3 X509v3 Authority Key Identifier: keyid:41:C7:57:14:29:9A:57:8D:D1:90:FD:1F:73:09:55:B1:FD:9A:C1:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QcdXFCmaV43RkP0fcwlVsf2awfQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:e7:1f:ef:10:67:4f:f1:c2:ae:1a:e3:72:73:5f:42:f0:89: 08:19:58:d6:9a:ab:7c:1c:7e:4a:a2:34:88:0f:bb:82:b1:07: f1:b8:94:4b:2b:b3:95:9c:3e:9b:3a:8e:81:29:e5:22:d7:d4: dc:fc:c6:18:c9:d4:2d:f7:8c:b1:c0:59:63:c3:6f:37:3d:91: 75:f5:9a:2c:58:23:a6:c4:7f:b8:8f:a8:87:18:ea:30:88:0d: 89:31:47:ab:5e:51:ef:a6:a1:dd:fe:85:85:f6:44:e3:c6:d7: af:3e:a0:45:dd:6b:53:4e:99:6d:24:6f:1b:73:99:c3:f4:b2: 7e:30:a3:02:eb:34:b1:22:35:92:07:98:34:1d:12:93:6c:94: 54:18:bd:43:5e:ea:c6:e2:52:48:5f:bc:f4:ca:71:29:f1:c1: 83:e8:63:a4:67:f8:af:83:1b:0e:67:56:65:86:3e:c3:72:9c: c7:ff:ba:79:1f:6d:5b:a7:a9:27:25:f8:d2:6f:31:7c:08:f3: 81:24:cd:8a:ab:27:b9:a0:b1:c4:18:ce:86:3e:07:08:35:30: 9a:aa:09:a7:d3:29:78:7e:85:9c:b3:3a:49:50:09:97:38:f4: 49:8d:38:25:6e:d2:6d:12:cc:36:34:77:2a:fe:d9:fc:44:33: ae:8a:37:8f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RUE4QjExMC8GA1UEBRMoNDFDNzU3MTQyOTlBNTc4REQxOTBGRDFGNzMwOTU1QjFG RDlBQzFGNDAeFw0yNTEwMTcxMTA5MzBaFw0yNTEwMjQxMTA5MzBaMBgxFjAUBgNV BAMTDTY4ZjIyM2VhLWUyNzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQChB1wz3FExBopmV27fIvJ2r5iY+H3o4GWwkqFIuK4Il+yTDYoSmnvd3lUHytJ9 VkOlxZrMQ8kqsGRYRrpmZRHpOYgmX0Bre1kP0CgxOdT44QqjmbasYbDRKHHU3QNL EX80PI80fzlWhNArRd7wcP27KozhNq88jQaZvnPWmKbT187h8oWWv0PLA45C/zeP hSin2A9dUQQ/H+PyZoriLwhB3rqomjTguWNr7DNW8Anbz1mrPxEMSdLdbC9206tA PXlT8yPUVpMD2RL05lbF5rH8AAcVwK4EzLyGl1oVRO2lShrO0VrKr9TJ8khTM/eR fbn4+qgRiFsFWYk0CnmvWYrDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1LFrs5gZ tlQtuUAgmn/7FQLtHqMwHwYDVR0jBBgwFoAUQcdXFCmaV43RkP0fcwlVsf2awfQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJFQThCL0JBMDhBQTQyNEI4 MTExRjA4RjY1NTA3RUM0RjlBRTAyL1FjZFhGQ21hVjQzUmtQMGZjd2xWc2YyYXdm US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUWNkWEZDbWFWNDNSa1AwZmN3bFZzZjJhd2ZRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJF QThCL0JBMDhBQTQyNEI4MTExRjA4RjY1NTA3RUM0RjlBRTAyL1FjZFhGQ21hVjQz UmtQMGZjd2xWc2YyYXdmUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMbnH+8QZ0/xwq4a43JzX0LwiQgZWNaaq3wcfkqiNIgPu4KxB/G4lEsr s5WcPps6joEp5SLX1Nz8xhjJ1C33jLHAWWPDbzc9kXX1mixYI6bEf7iPqIcY6jCI DYkxR6teUe+mod3+hYX2ROPG168+oEXda1NOmW0kbxtzmcP0sn4wowLrNLEiNZIH mDQdEpNslFQYvUNe6sbiUkhfvPTKcSnxwYPoY6Rn+K+DGw5nVmWGPsNynMf/unkf bVunqScl+NJvMXwI84EkzYqrJ7mgscQYzoY+Bwg1MJqqCafTKXh+hZyzOklQCZc4 9EmNOCVu0m0SzDY0dyr+2fxEM66KN48= -----END CERTIFICATE-----Generated at Sat Oct 18 23:32:27 2025 by rpki-client