$ rpki-client -vvf rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft File: 0QwglvtdswSr0vmfRaKUiCktNyE.mft (raw, json) Hash identifier: OfdW1zN8vH4Carq7wqHud6+Lv0KEm/EJeBqej5M3EbU= Subject key identifier: 5A:E0:5E:AD:52:AB:97:92:28:12:8D:19:D2:03:53:D6:AA:74:42:EE Authority key identifier: D1:0C:20:96:FB:5D:B3:04:AB:D2:F9:9F:45:A2:94:88:29:2D:37:21 Certificate issuer: /CN=A91C68AD/serialNumber=D10C2096FB5DB304ABD2F99F45A29488292D3721 Certificate serial: C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft Manifest number: C7 Signing time: Mon 03 Nov 2025 05:45:59 +0000 Manifest this update: Mon 03 Nov 2025 05:45:58 +0000 Manifest next update: Mon 10 Nov 2025 05:45:58 +0000 Files and hashes: 1: 0QwglvtdswSr0vmfRaKUiCktNyE.crl (hash: kEpPcNyNBJ91VIo8++xEXjwMsbnXC6XUVU+t82LLfOc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.crl rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:45:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C68AD, serialNumber=D10C2096FB5DB304ABD2F99F45A29488292D3721 Validity Not Before: Nov 3 05:45:58 2025 GMT Not After : Nov 10 05:45:58 2025 GMT Subject: CN=69084196-1085 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:dc:22:b9:c1:f6:76:b0:18:b6:e0:cc:b9:09: aa:d1:9c:38:cc:97:b1:e0:1c:98:4d:46:4e:bd:49: 44:7a:c3:71:ba:d9:7d:47:56:41:11:1a:61:bc:31: 4b:31:2f:45:50:a6:53:14:88:73:79:1f:f6:df:97: 67:f0:08:68:52:24:51:b8:cc:67:ff:74:93:ff:f4: c6:f6:bf:7d:ea:56:26:a4:f0:86:e9:4f:28:e0:2d: db:e3:2b:11:6a:97:15:a0:29:7a:b3:8b:02:79:b5: 78:d9:8a:ce:48:49:1c:9a:bf:de:d1:cb:a4:7d:42: 8a:25:0e:f8:23:19:38:48:aa:40:ed:e9:9e:2a:32: f6:6e:a3:58:0a:85:3e:45:66:55:f3:6d:d8:15:c4: 5e:e9:34:dc:61:9d:18:ec:71:94:c9:46:e4:9d:4e: 11:ab:c3:e7:9e:39:2b:1c:d4:a0:82:71:82:93:1c: 47:07:08:41:d7:c2:b7:34:24:bd:b4:99:8b:82:c4: 03:b6:f3:e1:89:2c:cd:0c:94:18:e1:3d:2b:6b:fd: 62:4d:22:b9:28:eb:f9:31:47:d0:bb:c9:db:0a:06: 0e:45:f9:de:9f:15:e4:53:31:21:f3:55:4a:b7:1c: e6:e1:75:cb:1b:31:4f:4d:3c:ae:8b:97:79:6e:42: 7d:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:E0:5E:AD:52:AB:97:92:28:12:8D:19:D2:03:53:D6:AA:74:42:EE X509v3 Authority Key Identifier: keyid:D1:0C:20:96:FB:5D:B3:04:AB:D2:F9:9F:45:A2:94:88:29:2D:37:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:bf:92:9e:11:41:8a:90:4d:86:49:db:ee:91:fa:31:cc:d1: 2a:08:d3:98:e3:49:1c:8b:65:2b:fc:aa:f2:d8:fa:38:b0:b0: ea:4a:ec:c8:a9:4a:a8:de:49:4b:1d:30:0b:02:17:18:58:35: 8d:e8:16:93:53:a2:23:e5:be:32:56:b2:ce:55:3a:d4:9d:70: 23:3a:45:f2:22:6a:bd:21:bd:44:d1:88:bc:9e:38:80:7a:23: 52:5a:d0:f0:76:60:1e:45:57:f4:10:a0:61:9b:7f:6e:87:be: 4a:4f:13:d0:1a:32:e5:10:71:f7:97:19:3b:a4:67:a6:f1:e8: cc:c3:c1:f1:05:39:cf:1e:4c:7c:12:9c:b6:01:b3:7d:d5:8d: e0:f3:61:7f:1d:d7:69:45:93:47:27:09:db:69:d4:84:64:77: f3:80:9c:e2:ed:4c:c6:7d:a3:ae:09:b0:1a:fe:82:57:87:ee: e3:56:9a:1b:58:e2:7a:04:94:49:19:a3:d8:d7:88:c5:2a:b5: 31:18:6f:91:c6:3b:b0:18:90:53:3b:74:5a:e9:06:88:7a:98: c1:0f:92:89:3c:06:07:9c:8f:58:d7:3f:49:1e:6e:28:1a:fb: b6:3e:e0:e2:1e:22:65:43:86:cb:eb:56:32:b8:4b:6e:38:2a: 25:06:00:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY4QUQxMTAvBgNVBAUTKEQxMEMyMDk2RkI1REIzMDRBQkQyRjk5RjQ1QTI5NDg4 MjkyRDM3MjEwHhcNMjUxMTAzMDU0NTU4WhcNMjUxMTEwMDU0NTU4WjAYMRYwFAYD VQQDEw02OTA4NDE5Ni0xMDg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtNwiucH2drAYtuDMuQmq0Zw4zJex4ByYTUZOvUlEesNxutl9R1ZBERphvDFL MS9FUKZTFIhzeR/235dn8AhoUiRRuMxn/3ST//TG9r996lYmpPCG6U8o4C3b4ysR apcVoCl6s4sCebV42YrOSEkcmr/e0cukfUKKJQ74Ixk4SKpA7emeKjL2bqNYCoU+ RWZV823YFcRe6TTcYZ0Y7HGUyUbknU4Rq8PnnjkrHNSggnGCkxxHBwhB18K3NCS9 tJmLgsQDtvPhiSzNDJQY4T0ra/1iTSK5KOv5MUfQu8nbCgYORfnenxXkUzEh81VK txzm4XXLGzFPTTyui5d5bkJ9rwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFrgXq1S q5eSKBKNGdIDU9aqdELuMB8GA1UdIwQYMBaAFNEMIJb7XbMEq9L5n0WilIgpLTch MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjhBRC9ERUJBMjM4MDg2 QTAxMUVGQjM2RTMwMEVDNEY5QUUwMi8wUXdnbHZ0ZHN3U3Iwdm1mUmFLVWlDa3RO eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBRd2dsdnRkc3dTcjB2bWZSYUtVaUNrdE55RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjhBRC9ERUJBMjM4MDg2QTAxMUVGQjM2RTMwMEVDNEY5QUUwMi8wUXdnbHZ0ZHN3 U3Iwdm1mUmFLVWlDa3ROeUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLv5KeEUGKkE2GSdvukfoxzNEqCNOY40kci2Ur/Kry2Po4sLDqSuzI qUqo3klLHTALAhcYWDWN6BaTU6Ij5b4yVrLOVTrUnXAjOkXyImq9Ib1E0Yi8njiA eiNSWtDwdmAeRVf0EKBhm39uh75KTxPQGjLlEHH3lxk7pGem8ejMw8HxBTnPHkx8 Epy2AbN91Y3g82F/HddpRZNHJwnbadSEZHfzgJzi7UzGfaOuCbAa/oJXh+7jVpob WOJ6BJRJGaPY14jFKrUxGG+RxjuwGJBTO3Ra6QaIepjBD5KJPAYHnI9Y1z9JHm4o Gvu2PuDiHiJlQ4bL61YyuEtuOColBgCz -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:30 2025 by rpki-client