$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4700/42CC0D50B3BB11F0A931BA6FC4F9AE02/QGOUHymkcXnuj_UfMB3x6kEfvTg.mft File: QGOUHymkcXnuj_UfMB3x6kEfvTg.mft (raw, json) Hash identifier: SSu84R8EBYJYwmQbZzDrKBG/soKsmvH3PgErkqugDAE= Subject key identifier: B7:50:3F:4D:19:0D:9B:CD:F2:D1:61:40:12:DA:59:59:58:10:2E:32 Authority key identifier: 40:63:94:1F:29:A4:71:79:EE:8F:F5:1F:30:1D:F1:EA:41:1F:BD:38 Certificate issuer: /CN=A91E4700/serialNumber=4063941F29A47179EE8FF51F301DF1EA411FBD38 Certificate serial: 07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGOUHymkcXnuj_UfMB3x6kEfvTg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4700/42CC0D50B3BB11F0A931BA6FC4F9AE02/QGOUHymkcXnuj_UfMB3x6kEfvTg.mft Manifest number: 06 Signing time: Mon 03 Nov 2025 08:03:39 +0000 Manifest this update: Mon 03 Nov 2025 08:03:39 +0000 Manifest next update: Mon 10 Nov 2025 08:03:39 +0000 Files and hashes: 1: QGOUHymkcXnuj_UfMB3x6kEfvTg.crl (hash: RuOEzw5AA/FgEjXPiNNfwU1Xog0QV0e8s4OjZh07+g4=) 2: E2CCAD50B3BB11F08D544F2FC4F9AE02.roa (hash: FAKsbhQXL8EIzyeaf7SAPzJQoDlYwpJTySFWs6Gy75Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4700/42CC0D50B3BB11F0A931BA6FC4F9AE02/QGOUHymkcXnuj_UfMB3x6kEfvTg.crl rsync://rpki.apnic.net/member_repository/A91E4700/42CC0D50B3BB11F0A931BA6FC4F9AE02/QGOUHymkcXnuj_UfMB3x6kEfvTg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGOUHymkcXnuj_UfMB3x6kEfvTg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 08:03:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4700, serialNumber=4063941F29A47179EE8FF51F301DF1EA411FBD38 Validity Not Before: Nov 3 08:03:39 2025 GMT Not After : Nov 10 08:03:39 2025 GMT Subject: CN=690861db-df24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:7a:ab:48:1a:3a:52:36:7d:f4:b5:18:d7:f5: 8a:f9:64:f5:26:26:51:c0:7e:65:a3:4c:a8:0e:cf: 19:8f:ca:67:c4:dd:4a:4c:2c:b5:6b:07:54:ed:a5: 29:83:74:8c:71:6e:b4:da:1a:49:33:df:95:9b:d9: 2d:d5:72:98:72:14:3c:e3:7a:50:c6:9c:63:36:08: b4:72:34:81:35:91:bb:20:28:03:2b:4d:25:8b:17: 49:e2:90:80:cb:45:d3:2d:80:d8:c8:cf:d7:dd:b1: dd:49:c0:0b:c5:38:c1:d0:26:25:a2:cb:af:47:c1: 0e:bb:3a:cd:00:82:c8:4a:4e:be:f2:1d:f5:1a:0d: 6e:53:89:b4:6d:7b:ca:f4:5a:4d:e2:18:b7:31:c2: d6:39:f6:e6:34:00:b5:de:09:f4:ba:97:14:21:de: 0e:4c:a7:f7:55:ee:25:f0:3c:d8:d0:1b:e3:77:51: 60:a0:3b:d5:7a:f1:62:2e:b4:31:ff:69:dc:9d:b4: 92:8a:dc:ef:78:98:c1:a7:81:f3:e0:19:c3:c3:65: a6:a0:7e:e6:56:11:da:28:91:99:e9:56:20:86:6f: 8d:f4:06:9c:fd:5c:05:56:c9:ce:e7:b4:d6:8d:0a: 7b:eb:74:4f:52:a1:c1:d4:80:8a:f8:b4:e7:50:68: a0:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:50:3F:4D:19:0D:9B:CD:F2:D1:61:40:12:DA:59:59:58:10:2E:32 X509v3 Authority Key Identifier: keyid:40:63:94:1F:29:A4:71:79:EE:8F:F5:1F:30:1D:F1:EA:41:1F:BD:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4700/42CC0D50B3BB11F0A931BA6FC4F9AE02/QGOUHymkcXnuj_UfMB3x6kEfvTg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGOUHymkcXnuj_UfMB3x6kEfvTg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4700/42CC0D50B3BB11F0A931BA6FC4F9AE02/QGOUHymkcXnuj_UfMB3x6kEfvTg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:ec:8d:3b:6a:50:29:95:6d:7d:f6:f7:38:d8:84:d7:97:b1: 77:88:0b:51:53:15:96:3b:ba:0b:4e:f6:07:53:e0:b5:ea:10: 42:65:bd:7f:4f:2a:8d:4b:26:ff:a1:48:34:a3:b7:c3:4f:e0: fc:50:34:b1:ab:0d:84:6a:ad:c5:a9:8d:fe:6d:d8:eb:7e:b0: 36:bc:fe:ca:4e:14:96:32:27:e4:5a:6d:f0:b5:12:cf:b4:b2: 4f:dd:40:97:d4:60:87:0f:d4:d0:4d:50:28:1a:63:9e:b9:a3: cb:ff:c7:d0:57:ec:7b:54:91:5b:83:07:7d:a3:47:3b:a2:6e: ee:df:7b:98:e5:1b:09:75:7c:ae:e3:c8:bf:66:9c:d9:5e:98: af:5f:bd:62:4a:b4:b5:a0:27:46:7e:d2:fc:ca:97:b7:8f:9f: c0:88:95:cb:0b:ef:b6:99:cb:d9:f4:2c:8c:5c:fb:86:03:44: 5c:d5:55:f8:12:10:c9:b8:e2:bf:69:f1:e0:89:00:78:f6:18: 78:cd:4c:91:18:17:aa:30:f6:b1:18:e4:14:ad:24:b5:ed:3c: 66:9d:cc:e9:4b:83:a7:fa:4f:15:52:43:a2:3b:93:04:35:13: 01:c6:ff:c7:f7:bf:98:96:62:af:a0:96:7a:c9:50:36:ec:b2: dd:5c:e7:74 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NDcwMDExMC8GA1UEBRMoNDA2Mzk0MUYyOUE0NzE3OUVFOEZGNTFGMzAxREYxRUE0 MTFGQkQzODAeFw0yNTExMDMwODAzMzlaFw0yNTExMTAwODAzMzlaMBgxFjAUBgNV BAMTDTY5MDg2MWRiLWRmMjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFeqtIGjpSNn30tRjX9Yr5ZPUmJlHAfmWjTKgOzxmPymfE3UpMLLVrB1TtpSmD dIxxbrTaGkkz35Wb2S3VcphyFDzjelDGnGM2CLRyNIE1kbsgKAMrTSWLF0nikIDL RdMtgNjIz9fdsd1JwAvFOMHQJiWiy69HwQ67Os0AgshKTr7yHfUaDW5TibRte8r0 Wk3iGLcxwtY59uY0ALXeCfS6lxQh3g5Mp/dV7iXwPNjQG+N3UWCgO9V68WIutDH/ adydtJKK3O94mMGngfPgGcPDZaagfuZWEdookZnpViCGb430Bpz9XAVWyc7ntNaN CnvrdE9SocHUgIr4tOdQaKAHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUt1A/TRkN m83y0WFAEtpZWVgQLjIwHwYDVR0jBBgwFoAUQGOUHymkcXnuj/UfMB3x6kEfvTgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0NzAwLzQyQ0MwRDUwQjNC QjExRjBBOTMxQkE2RkM0RjlBRTAyL1FHT1VIeW1rY1hudWpfVWZNQjN4NmtFZnZU Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUUdPVUh5bWtjWG51al9VZk1CM3g2a0VmdlRnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0 NzAwLzQyQ0MwRDUwQjNCQjExRjBBOTMxQkE2RkM0RjlBRTAyL1FHT1VIeW1rY1hu dWpfVWZNQjN4NmtFZnZUZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFPsjTtqUCmVbX329zjYhNeXsXeIC1FTFZY7ugtO9gdT4LXqEEJlvX9P Ko1LJv+hSDSjt8NP4PxQNLGrDYRqrcWpjf5t2Ot+sDa8/spOFJYyJ+RabfC1Es+0 sk/dQJfUYIcP1NBNUCgaY565o8v/x9BX7HtUkVuDB32jRzuibu7fe5jlGwl1fK7j yL9mnNlemK9fvWJKtLWgJ0Z+0vzKl7ePn8CIlcsL77aZy9n0LIxc+4YDRFzVVfgS EMm44r9p8eCJAHj2GHjNTJEYF6ow9rEY5BStJLXtPGadzOlLg6f6TxVSQ6I7kwQ1 EwHG/8f3v5iWYq+glnrJUDbsst1c53Q= -----END CERTIFICATE-----Generated at Mon Nov 3 18:09:40 2025 by rpki-client