$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB04D/E958AFE6019C11EC91644B7BC4F9AE02/qhOo9ipv0n6bme44axRRnm_MhjI.mft File: qhOo9ipv0n6bme44axRRnm_MhjI.mft (raw, json) Hash identifier: zX7nsNGBbnBdJy05yPqdOnZ39ZeEPqfV7WBoP2ki84Y= Subject key identifier: 70:B2:CF:7B:B6:B3:24:A6:20:7E:47:0D:0B:A2:CB:D8:32:74:7D:AC Authority key identifier: AA:13:A8:F6:2A:6F:D2:7E:9B:99:EE:38:6B:14:51:9E:6F:CC:86:32 Certificate issuer: /CN=A91DB04D/serialNumber=AA13A8F62A6FD27E9B99EE386B14519E6FCC8632 Certificate serial: 0577 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qhOo9ipv0n6bme44axRRnm_MhjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB04D/E958AFE6019C11EC91644B7BC4F9AE02/qhOo9ipv0n6bme44axRRnm_MhjI.mft Manifest number: 0571 Signing time: Sun 02 Nov 2025 23:19:32 +0000 Manifest this update: Sun 02 Nov 2025 23:19:32 +0000 Manifest next update: Sun 09 Nov 2025 23:19:32 +0000 Files and hashes: 1: qhOo9ipv0n6bme44axRRnm_MhjI.crl (hash: tnAqaZY+Zk9M2y9GpqgEIt3tUVqNgtyeBErlHPys9cI=) 2: 5913DBAA01A011ECBFF72849C4F9AE02.roa (hash: L2t/K4jYZMjKtZ2tLHjje+iSEvp8dgbz2aouwvg2y60=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB04D/E958AFE6019C11EC91644B7BC4F9AE02/qhOo9ipv0n6bme44axRRnm_MhjI.crl rsync://rpki.apnic.net/member_repository/A91DB04D/E958AFE6019C11EC91644B7BC4F9AE02/qhOo9ipv0n6bme44axRRnm_MhjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qhOo9ipv0n6bme44axRRnm_MhjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:19:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1399 (0x577) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB04D, serialNumber=AA13A8F62A6FD27E9B99EE386B14519E6FCC8632 Validity Not Before: Nov 2 23:19:32 2025 GMT Not After : Nov 9 23:19:32 2025 GMT Subject: CN=6907e704-2242 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e4:ca:7f:8d:a2:e3:1f:bc:a8:00:d6:03:5e: 49:d3:91:33:62:cc:35:a6:69:4d:9b:2c:11:15:a7: a8:60:a2:80:6a:d3:1e:5c:a4:3c:c5:47:46:f0:09: 40:4b:09:a7:24:aa:72:f2:74:df:41:b2:21:ce:d4: 4b:38:43:1d:60:34:c2:cb:b6:33:41:5e:52:6a:62: 7c:fa:58:73:32:07:1f:39:c8:b3:cc:5c:36:5e:3f: 9e:1d:a1:06:58:2c:03:7b:b6:4e:69:6f:0b:c0:e4: ae:64:f2:90:25:ba:ac:35:19:9f:42:5b:59:d9:04: e1:b8:23:fa:e7:c9:90:c4:4b:61:ab:fd:cb:29:d3: f1:bc:7a:30:38:fd:6f:2f:2b:ed:12:e5:30:90:af: 53:a1:28:b3:ed:50:8d:75:e1:07:bf:08:11:b4:f6: 8a:c6:77:af:fe:f7:f6:c7:1a:87:0b:f8:e4:0e:b6: 2f:c2:46:25:b3:35:96:1f:bc:6a:3f:8b:28:6b:3b: 0e:b2:c1:a5:b5:02:3a:56:4c:69:23:12:d9:72:d2: de:d4:eb:5a:0b:ba:5c:0b:63:ee:29:db:aa:d1:eb: ea:2e:55:7f:dc:d1:cb:92:46:08:a6:6c:d0:b2:61: 11:d8:31:0c:30:b5:28:6f:59:8a:fd:47:c2:f1:91: 3d:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:B2:CF:7B:B6:B3:24:A6:20:7E:47:0D:0B:A2:CB:D8:32:74:7D:AC X509v3 Authority Key Identifier: keyid:AA:13:A8:F6:2A:6F:D2:7E:9B:99:EE:38:6B:14:51:9E:6F:CC:86:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB04D/E958AFE6019C11EC91644B7BC4F9AE02/qhOo9ipv0n6bme44axRRnm_MhjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qhOo9ipv0n6bme44axRRnm_MhjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB04D/E958AFE6019C11EC91644B7BC4F9AE02/qhOo9ipv0n6bme44axRRnm_MhjI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:c4:2b:1e:28:e4:b9:f1:f1:36:8f:6b:69:97:1b:99:2a:33: 35:bb:34:98:c9:30:ad:69:6e:5c:84:6c:17:09:d3:e3:68:0b: f8:e5:5e:e7:0b:03:a6:a4:2c:6f:7c:b9:92:25:f5:06:ce:27: 10:b1:f9:21:20:05:45:94:5b:d3:b0:6e:f8:71:f6:98:ff:e6: 1f:24:18:9f:6f:42:f4:2b:d7:9e:7d:f0:6b:96:ee:1e:63:56: e6:a3:7c:e8:03:e9:70:21:f0:85:72:76:b1:d9:91:9e:98:d2: 33:36:dd:68:f2:01:65:7d:fa:bc:bd:bd:b8:59:c5:93:e1:1b: d6:92:fe:a8:c7:99:50:ae:42:2f:96:8e:f6:54:f6:6b:4d:b4: a6:a1:f5:75:47:33:08:61:c4:e7:35:a1:80:63:aa:dc:f6:68: 36:bf:ca:5d:45:9a:0d:df:56:fa:a8:7a:23:36:70:df:73:2b: 96:4f:47:f2:c1:46:bd:19:73:5f:db:32:96:d2:ec:d6:72:a6: 06:ba:30:61:38:96:1c:d3:2e:06:e7:2c:8a:2c:da:61:93:17: 3b:a5:a2:e7:fd:b3:63:9b:59:67:c4:01:be:1a:27:3a:c9:79: 9d:f2:24:e0:6c:de:45:a1:34:1f:b8:16:2b:ca:3a:ac:76:ab: 38:1e:d0:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REIwNEQxMTAvBgNVBAUTKEFBMTNBOEY2MkE2RkQyN0U5Qjk5RUUzODZCMTQ1MTlF NkZDQzg2MzIwHhcNMjUxMTAyMjMxOTMyWhcNMjUxMTA5MjMxOTMyWjAYMRYwFAYD VQQDEw02OTA3ZTcwNC0yMjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxOTKf42i4x+8qADWA15J05EzYsw1pmlNmywRFaeoYKKAatMeXKQ8xUdG8AlA SwmnJKpy8nTfQbIhztRLOEMdYDTCy7YzQV5SamJ8+lhzMgcfOcizzFw2Xj+eHaEG WCwDe7ZOaW8LwOSuZPKQJbqsNRmfQltZ2QThuCP658mQxEthq/3LKdPxvHowOP1v LyvtEuUwkK9ToSiz7VCNdeEHvwgRtPaKxnev/vf2xxqHC/jkDrYvwkYlszWWH7xq P4soazsOssGltQI6VkxpIxLZctLe1OtaC7pcC2PuKduq0evqLlV/3NHLkkYIpmzQ smER2DEMMLUob1mK/UfC8ZE9vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHCyz3u2 sySmIH5HDQuiy9gydH2sMB8GA1UdIwQYMBaAFKoTqPYqb9J+m5nuOGsUUZ5vzIYy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjA0RC9FOTU4QUZFNjAx OUMxMUVDOTE2NDRCN0JDNEY5QUUwMi9xaE9vOWlwdjBuNmJtZTQ0YXhSUm5tX01o akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FoT285aXB2MG42Ym1lNDRheFJSbm1fTWhqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjA0RC9FOTU4QUZFNjAxOUMxMUVDOTE2NDRCN0JDNEY5QUUwMi9xaE9vOWlwdjBu NmJtZTQ0YXhSUm5tX01oakkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXxCseKOS58fE2j2tplxuZKjM1uzSYyTCtaW5chGwXCdPjaAv45V7n CwOmpCxvfLmSJfUGzicQsfkhIAVFlFvTsG74cfaY/+YfJBifb0L0K9eeffBrlu4e Y1bmo3zoA+lwIfCFcnax2ZGemNIzNt1o8gFlffq8vb24WcWT4RvWkv6ox5lQrkIv lo72VPZrTbSmofV1RzMIYcTnNaGAY6rc9mg2v8pdRZoN31b6qHojNnDfcyuWT0fy wUa9GXNf2zKW0uzWcqYGujBhOJYc0y4G5yyKLNphkxc7paLn/bNjm1lnxAG+Gic6 yXmd8iTgbN5FoTQfuBYryjqsdqs4HtCj -----END CERTIFICATE-----Generated at Mon Nov 3 18:15:05 2025 by rpki-client