$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft File: 1QwK07StgdVVlFzH8_HuHB-t5hc.mft (raw, json) Hash identifier: Uc6EOM44k8NdbeZognTHoODHISsIpcmZoBA/D3K0QrI= Subject key identifier: 0E:9B:24:AA:E8:28:2E:50:C9:89:DB:1B:15:20:77:B8:44:C4:2D:E2 Authority key identifier: D5:0C:0A:D3:B4:AD:81:D5:55:94:5C:C7:F3:F1:EE:1C:1F:AD:E6:17 Certificate issuer: /CN=A91DB475/serialNumber=D50C0AD3B4AD81D555945CC7F3F1EE1C1FADE617 Certificate serial: 0B6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft Manifest number: 0B61 Signing time: Fri 24 Oct 2025 19:47:46 +0000 Manifest this update: Fri 24 Oct 2025 19:47:45 +0000 Manifest next update: Fri 31 Oct 2025 19:47:45 +0000 Files and hashes: 1: 1QwK07StgdVVlFzH8_HuHB-t5hc.crl (hash: Ifc5lw20hqqJhTNGS0eeaNj4fiSob545n5qRo4BkHhA=) 2: 1E6B12EC049F11F0AD5C7C33C4F9AE02.roa (hash: V1nVjcRX5R04AqVfR5w5cXlLTGnKcZ3YhA/Vr4DbC7g=) 3: 74CA44AA049F11F087661234C4F9AE02.roa (hash: Dt3Rxw54HIQ46kEi6T0edZoyMwWemQneM/8kvnTf7jo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.crl rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 19:47:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2927 (0xb6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB475, serialNumber=D50C0AD3B4AD81D555945CC7F3F1EE1C1FADE617 Validity Not Before: Oct 24 19:47:45 2025 GMT Not After : Oct 31 19:47:45 2025 GMT Subject: CN=68fbd7e1-7efa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:49:85:63:de:35:8a:45:78:df:14:ca:03:13: 9c:dd:2f:3c:3c:fb:e3:64:ab:f2:7b:0b:7c:69:c0: 8e:0c:2b:6b:ca:e6:08:d1:46:da:d2:84:c6:42:97: 57:60:48:67:2b:2b:50:84:5a:d0:53:31:ef:33:20: e0:29:b0:70:f0:4a:10:12:56:91:06:a6:dd:f4:02: 0b:7d:a5:11:31:74:a1:7a:d4:42:b2:00:88:a6:3f: c8:28:89:a2:42:95:9f:de:42:20:83:b4:b7:f4:79: a2:9a:4b:63:5f:34:3b:30:97:04:43:bc:a1:0c:5c: 2a:a0:7e:d5:6e:58:eb:b0:e1:02:a3:9c:6d:74:a6: 7f:1e:11:d1:fe:0c:47:b1:a1:94:50:8f:37:95:14: 09:8f:20:f1:67:e1:5d:9c:c8:a3:ee:24:bf:57:53: 66:6b:2e:89:41:85:ec:33:bd:a6:d4:d7:80:82:e2: 8a:64:ce:3f:9f:13:59:27:15:7c:e6:b1:69:97:b3: 72:ae:8b:53:a7:68:80:03:00:fb:26:ec:a4:f6:97: 2e:ca:59:c7:23:11:8c:87:03:94:2c:27:5f:d9:6d: 6b:e5:16:c0:43:09:f5:05:e2:5f:8c:bd:e6:2a:1b: 00:cf:c8:bb:50:53:38:0f:8b:9c:6f:c7:7a:eb:e3: 88:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:9B:24:AA:E8:28:2E:50:C9:89:DB:1B:15:20:77:B8:44:C4:2D:E2 X509v3 Authority Key Identifier: keyid:D5:0C:0A:D3:B4:AD:81:D5:55:94:5C:C7:F3:F1:EE:1C:1F:AD:E6:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1QwK07StgdVVlFzH8_HuHB-t5hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB475/208FB730417211EA98A3686DC4F9AE02/1QwK07StgdVVlFzH8_HuHB-t5hc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:8b:71:cd:19:fc:fe:d7:1f:0d:97:c2:bd:17:9f:cd:99:bc: 15:bb:d3:15:f1:fe:7e:dc:28:cb:eb:79:94:6e:38:fa:85:13: 93:e6:c3:fd:56:01:22:fb:77:83:c3:4d:35:04:7b:aa:e4:f8: 7a:62:90:e5:46:bb:fd:fc:84:69:b2:4b:ea:0c:ea:03:b4:6d: da:c9:35:33:25:dc:05:5d:e5:ed:4f:a4:18:05:a1:2d:2f:f2: 2d:ae:05:2a:40:7c:89:34:77:8b:2c:9f:33:91:e3:17:e3:99: 8c:0a:d2:0b:db:0c:9d:b6:b7:b8:25:1f:12:45:f8:bd:49:33: d2:2c:97:3f:3b:bc:0e:ab:e7:b1:23:f8:6c:7c:11:77:11:40: 68:4b:ad:b4:60:3d:4e:0d:07:7d:9b:2b:ae:cb:fd:ce:0a:fa: fb:79:80:6c:84:35:a2:3b:1b:dc:3c:28:2d:ae:65:7c:4d:39: 4f:07:c4:61:61:20:c4:69:7f:19:80:d3:5d:f9:6c:ff:9c:d7: 62:5e:d9:81:57:0f:96:47:d8:1a:02:cd:53:1c:64:a9:fc:23: d9:7a:c8:6f:53:6e:84:c7:96:79:65:d8:b2:35:b4:ca:67:82: 6e:95:97:c3:fd:5e:25:20:a5:24:39:f3:72:25:03:7d:09:b2: 66:d7:77:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC28wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI0NzUxMTAvBgNVBAUTKEQ1MEMwQUQzQjRBRDgxRDU1NTk0NUNDN0YzRjFFRTFD MUZBREU2MTcwHhcNMjUxMDI0MTk0NzQ1WhcNMjUxMDMxMTk0NzQ1WjAYMRYwFAYD VQQDEw02OGZiZDdlMS03ZWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUmFY941ikV43xTKAxOc3S88PPvjZKvyewt8acCODCtryuYI0Uba0oTGQpdX YEhnKytQhFrQUzHvMyDgKbBw8EoQElaRBqbd9AILfaURMXShetRCsgCIpj/IKImi QpWf3kIgg7S39HmimktjXzQ7MJcEQ7yhDFwqoH7VbljrsOECo5xtdKZ/HhHR/gxH saGUUI83lRQJjyDxZ+FdnMij7iS/V1Nmay6JQYXsM72m1NeAguKKZM4/nxNZJxV8 5rFpl7NyrotTp2iAAwD7Juyk9pcuylnHIxGMhwOULCdf2W1r5RbAQwn1BeJfjL3m KhsAz8i7UFM4D4ucb8d66+OI1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA6bJKro KC5QyYnbGxUgd7hExC3iMB8GA1UdIwQYMBaAFNUMCtO0rYHVVZRcx/Px7hwfreYX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjQ3NS8yMDhGQjczMDQx NzIxMUVBOThBMzY4NkRDNEY5QUUwMi8xUXdLMDdTdGdkVlZsRnpIOF9IdUhCLXQ1 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFRd0swN1N0Z2RWVmxGekg4X0h1SEItdDVoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjQ3NS8yMDhGQjczMDQxNzIxMUVBOThBMzY4NkRDNEY5QUUwMi8xUXdLMDdTdGdk VlZsRnpIOF9IdUhCLXQ1aGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwi3HNGfz+1x8Nl8K9F5/NmbwVu9MV8f5+3CjL63mUbjj6hROT5sP9 VgEi+3eDw001BHuq5Ph6YpDlRrv9/IRpskvqDOoDtG3ayTUzJdwFXeXtT6QYBaEt L/ItrgUqQHyJNHeLLJ8zkeMX45mMCtIL2wydtre4JR8SRfi9STPSLJc/O7wOq+ex I/hsfBF3EUBoS620YD1ODQd9myuuy/3OCvr7eYBshDWiOxvcPCgtrmV8TTlPB8Rh YSDEaX8ZgNNd+Wz/nNdiXtmBVw+WR9gaAs1THGSp/CPZeshvU26Ex5Z5ZdiyNbTK Z4JulZfD/V4lIKUkOfNyJQN9CbJm13cs -----END CERTIFICATE-----Generated at Sat Oct 25 17:21:33 2025 by rpki-client