$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.mft File: qK6pspMKYU1coxq59-hDeTYaL0M.mft (raw, json) Hash identifier: IpH6U/PG6hvXC6WJzFdaCzlxXx930IbLM2ARXRT+H4E= Subject key identifier: 5C:0A:9E:FE:22:D3:13:34:F1:C4:29:15:BF:2D:DF:31:0B:FF:B6:8C Authority key identifier: A8:AE:A9:B2:93:0A:61:4D:5C:A3:1A:B9:F7:E8:43:79:36:1A:2F:43 Certificate issuer: /CN=A91D7C1D/serialNumber=A8AEA9B2930A614D5CA31AB9F7E84379361A2F43 Certificate serial: 09F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qK6pspMKYU1coxq59-hDeTYaL0M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.mft Manifest number: 09EA Signing time: Fri 24 Oct 2025 20:39:57 +0000 Manifest this update: Fri 24 Oct 2025 20:39:57 +0000 Manifest next update: Fri 31 Oct 2025 20:39:57 +0000 Files and hashes: 1: qK6pspMKYU1coxq59-hDeTYaL0M.crl (hash: cqjSp2+AAzzY0cuW5DJeiH1ZSqKHNuCWNNkC9rmzWRI=) 2: A292E3529E9711EEB6899B1CC4F9AE02.roa (hash: Ogu9kxXrFRJanE7jcwo9P/mePv/PXm/3vRabACePad8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.crl rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qK6pspMKYU1coxq59-hDeTYaL0M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 20:39:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2553 (0x9f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7C1D, serialNumber=A8AEA9B2930A614D5CA31AB9F7E84379361A2F43 Validity Not Before: Oct 24 20:39:57 2025 GMT Not After : Oct 31 20:39:57 2025 GMT Subject: CN=68fbe41d-3dce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:40:ef:b8:eb:f7:95:20:18:11:ae:b5:bc:6d: b3:95:15:f5:36:83:e1:a1:1d:f9:94:86:4b:f2:41: 44:10:71:fb:82:97:b4:9b:af:1b:64:a4:2e:f2:d9: b7:3c:b3:96:12:6c:74:68:ce:23:02:90:00:46:ed: 09:21:02:6a:d1:16:7f:77:65:9a:f8:8f:c9:3e:d3: 34:db:80:e7:c3:51:76:44:52:e3:67:d4:4b:e5:f1: 1a:c9:9a:55:14:40:bf:8b:95:e4:65:eb:0d:27:37: 72:3a:91:96:78:34:c7:9e:1f:91:95:22:15:93:87: 2d:0e:60:5d:7e:c0:4a:fc:ec:ef:49:a5:a3:fb:b8: 30:f6:2c:c5:48:50:6f:4c:0d:aa:fe:e9:d8:d5:6f: 26:c1:f3:5d:c0:94:d7:e6:3d:e7:06:b7:26:69:28: ff:70:3d:61:87:14:9a:7b:64:88:92:be:00:a1:4d: 2e:9a:40:57:e1:8d:86:ea:d7:e8:7f:72:2b:a0:a0: 0e:57:83:75:e5:29:f9:af:ed:9a:7a:14:7a:21:4a: 11:ed:8b:84:70:e5:54:f1:83:6a:c6:fd:49:78:08: 6d:a7:22:a1:18:6d:39:69:e9:53:10:46:e6:be:91: d6:6d:1d:d0:60:76:3f:5b:2d:90:ee:cf:55:06:5c: da:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:0A:9E:FE:22:D3:13:34:F1:C4:29:15:BF:2D:DF:31:0B:FF:B6:8C X509v3 Authority Key Identifier: keyid:A8:AE:A9:B2:93:0A:61:4D:5C:A3:1A:B9:F7:E8:43:79:36:1A:2F:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qK6pspMKYU1coxq59-hDeTYaL0M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7C1D/A8070AF28AF011EAA9528309C4F9AE02/qK6pspMKYU1coxq59-hDeTYaL0M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:34:48:25:f5:59:51:aa:0c:80:06:d0:7a:db:a3:9e:6c:e8: 3f:72:27:9b:d0:19:b3:02:ec:b8:8f:4f:25:19:54:9b:23:7e: 33:78:ba:46:c1:1b:c8:e9:9c:1e:49:95:b1:f3:f5:26:02:69: a8:13:31:6d:17:20:3c:00:08:4a:b0:06:5b:7f:cb:56:24:68: 93:61:39:42:7f:39:5c:ff:88:ec:95:bf:bb:23:f5:6d:c1:e2: c3:33:a6:99:6f:da:23:0a:dd:1e:14:b7:95:4a:e1:52:02:67: aa:bf:5d:f8:74:43:a6:04:48:8e:b0:f0:49:9f:e8:ea:4b:21: b7:87:d4:a6:f6:91:df:17:b5:24:ab:72:8b:33:70:d0:a2:f8: ec:ff:81:99:61:95:74:e4:ce:5f:f6:60:6e:04:44:f2:ed:c9: 6b:d1:61:e8:cf:61:49:7c:c6:00:c9:7e:b2:3c:11:6e:6e:81: 95:e6:bd:71:a5:01:76:12:2d:a7:ed:a3:18:3d:26:1f:dc:72: 21:b8:37:e7:28:3a:12:b0:1d:1d:9a:2f:4b:de:a1:8f:b5:1a: fd:7b:bc:f2:2c:8d:77:a4:62:99:96:a0:2d:be:00:65:9c:62: 70:1d:0d:39:06:20:9e:59:59:5d:d8:d0:9b:eb:3a:f9:09:9c: f0:1b:65:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCfkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDdDMUQxMTAvBgNVBAUTKEE4QUVBOUIyOTMwQTYxNEQ1Q0EzMUFCOUY3RTg0Mzc5 MzYxQTJGNDMwHhcNMjUxMDI0MjAzOTU3WhcNMjUxMDMxMjAzOTU3WjAYMRYwFAYD VQQDEw02OGZiZTQxZC0zZGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtkDvuOv3lSAYEa61vG2zlRX1NoPhoR35lIZL8kFEEHH7gpe0m68bZKQu8tm3 PLOWEmx0aM4jApAARu0JIQJq0RZ/d2Wa+I/JPtM024Dnw1F2RFLjZ9RL5fEayZpV FEC/i5XkZesNJzdyOpGWeDTHnh+RlSIVk4ctDmBdfsBK/OzvSaWj+7gw9izFSFBv TA2q/unY1W8mwfNdwJTX5j3nBrcmaSj/cD1hhxSae2SIkr4AoU0umkBX4Y2G6tfo f3IroKAOV4N15Sn5r+2aehR6IUoR7YuEcOVU8YNqxv1JeAhtpyKhGG05aelTEEbm vpHWbR3QYHY/Wy2Q7s9VBlzadQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFwKnv4i 0xM08cQpFb8t3zEL/7aMMB8GA1UdIwQYMBaAFKiuqbKTCmFNXKMauffoQ3k2Gi9D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEN0MxRC9BODA3MEFGMjhB RjAxMUVBQTk1MjgzMDlDNEY5QUUwMi9xSzZwc3BNS1lVMWNveHE1OS1oRGVUWWFM ME0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FLNnBzcE1LWVUxY294cTU5LWhEZVRZYUwwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE N0MxRC9BODA3MEFGMjhBRjAxMUVBQTk1MjgzMDlDNEY5QUUwMi9xSzZwc3BNS1lV MWNveHE1OS1oRGVUWWFMME0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtNEgl9VlRqgyABtB626OebOg/cieb0BmzAuy4j08lGVSbI34zeLpG wRvI6ZweSZWx8/UmAmmoEzFtFyA8AAhKsAZbf8tWJGiTYTlCfzlc/4jslb+7I/Vt weLDM6aZb9ojCt0eFLeVSuFSAmeqv134dEOmBEiOsPBJn+jqSyG3h9Sm9pHfF7Uk q3KLM3DQovjs/4GZYZV05M5f9mBuBETy7clr0WHoz2FJfMYAyX6yPBFuboGV5r1x pQF2Ei2n7aMYPSYf3HIhuDfnKDoSsB0dmi9L3qGPtRr9e7zyLI13pGKZlqAtvgBl nGJwHQ05BiCeWVld2NCb6zr5CZzwG2U0 -----END CERTIFICATE-----Generated at Sun Oct 26 08:48:22 2025 by rpki-client