$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft File: qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft (raw, json) Hash identifier: O/+e0oX84msLB28l7C8v83f9k+91hrj1ETIsBke4OLg= Subject key identifier: B7:F4:41:8C:FC:AF:B0:8C:3E:A5:CC:2A:2E:A3:B2:70:2D:FD:0F:AB Authority key identifier: A8:9D:0F:D4:F4:8A:BF:69:4F:D9:DF:77:04:E5:96:46:4D:ED:21:79 Certificate issuer: /CN=A91E6CCA/serialNumber=A89D0FD4F48ABF694FD9DF7704E596464DED2179 Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJ0P1PSKv2lP2d93BOWWRk3tIXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft Manifest number: 73 Signing time: Wed 05 Nov 2025 07:06:51 +0000 Manifest this update: Wed 05 Nov 2025 07:06:51 +0000 Manifest next update: Wed 12 Nov 2025 07:06:51 +0000 Files and hashes: 1: qJ0P1PSKv2lP2d93BOWWRk3tIXk.crl (hash: mkDBKQu3kGQIiMsm1qByvITzoLFUrgcX5CZQvbPadNA=) 2: A94836600F7111F08BC42022C4F9AE02.roa (hash: P0ugR8U/wyMnqraRD80X5tdZACXWqmlF+Xy2XfETkeY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.crl rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJ0P1PSKv2lP2d93BOWWRk3tIXk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:06:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6CCA, serialNumber=A89D0FD4F48ABF694FD9DF7704E596464DED2179 Validity Not Before: Nov 5 07:06:51 2025 GMT Not After : Nov 12 07:06:51 2025 GMT Subject: CN=690af78b-1c66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ce:64:44:46:21:69:71:82:7e:b5:b6:b3:22: fa:ff:a1:e7:e2:26:d7:0e:1f:f7:fc:81:d7:de:75: 02:a0:96:a7:21:d6:00:d1:da:7d:cd:2c:0b:c4:59: 82:84:a1:c4:c0:e2:aa:c7:1e:f0:8a:a8:3c:bc:b8: 56:87:5e:e8:85:fa:e7:22:fc:74:3c:84:70:45:2a: 0d:b4:8a:d3:91:11:3f:36:b3:f1:bf:2c:0c:c3:46: 20:bc:ec:a9:87:a6:b8:24:33:ea:6b:c7:04:8a:aa: 6d:e7:f9:31:fc:ee:f9:b3:67:a8:9c:a4:90:c9:fa: e6:f6:c6:f2:67:27:ee:f9:45:e2:81:82:7a:ba:35: d8:f0:6b:ac:24:92:51:50:be:ea:1c:12:b3:4c:dc: 6d:90:9e:e4:fe:9d:24:5a:a2:f5:df:5e:86:2c:af: 70:4e:66:38:81:e9:b9:14:f9:f2:04:5e:88:07:ab: 39:d7:d2:35:11:d0:dd:95:13:b4:84:cb:cd:00:80: f1:70:fe:06:65:ca:8c:c9:6a:5c:fa:88:7a:d3:da: 97:dd:43:45:f4:04:90:55:8a:e0:03:c7:fb:6f:98: 83:3d:d0:a4:b8:fa:f9:ff:df:1b:dc:5a:81:01:fc: 58:86:7a:96:b7:7d:55:da:67:d8:c6:4a:7d:4d:2e: ba:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:F4:41:8C:FC:AF:B0:8C:3E:A5:CC:2A:2E:A3:B2:70:2D:FD:0F:AB X509v3 Authority Key Identifier: keyid:A8:9D:0F:D4:F4:8A:BF:69:4F:D9:DF:77:04:E5:96:46:4D:ED:21:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJ0P1PSKv2lP2d93BOWWRk3tIXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:8d:da:6a:8c:94:f4:48:58:e2:90:33:9e:c3:7b:62:20:65: 1c:08:12:3e:77:cd:1c:5b:28:22:a0:ea:69:20:3a:ae:46:a7: da:7e:1c:b1:39:71:27:ab:80:f8:02:17:a2:c5:69:d2:b8:13: f3:4e:f2:cd:f1:1d:7f:28:33:fc:18:db:8a:04:a2:3c:eb:d1: c1:f9:1c:cf:40:3d:4a:d6:2b:bb:99:a1:3e:7d:ab:c4:02:0b: 1b:99:cb:16:64:16:a2:a2:f4:8b:7b:1f:49:f0:6b:6f:ba:ac: d4:bf:c9:55:51:78:5f:5c:00:8d:f5:9c:46:c0:a9:24:41:87: b5:b9:c0:eb:53:6e:69:51:c5:12:8e:84:84:ea:d2:02:18:49: 8d:ed:19:ad:82:51:b4:a9:ea:25:6d:07:06:0e:4c:c4:f6:30: 0d:23:a2:8a:50:15:25:b6:e4:cc:35:88:bc:b7:a4:be:5c:f8: eb:49:9d:9e:32:03:e7:90:65:be:5f:38:dc:8a:61:d7:7b:9c: 88:62:9e:47:fb:a1:eb:4f:5b:a9:df:0a:6f:8a:c3:2d:10:10: 28:69:ae:e1:71:8e:68:4f:98:7b:41:53:99:aa:9a:7c:ae:de: 2e:cd:1b:c0:12:ac:44:e2:44:66:5d:46:f3:47:c7:79:b6:bc: dc:c4:65:90 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NkNDQTExMC8GA1UEBRMoQTg5RDBGRDRGNDhBQkY2OTRGRDlERjc3MDRFNTk2NDY0 REVEMjE3OTAeFw0yNTExMDUwNzA2NTFaFw0yNTExMTIwNzA2NTFaMBgxFjAUBgNV BAMTDTY5MGFmNzhiLTFjNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCfzmRERiFpcYJ+tbazIvr/oefiJtcOH/f8gdfedQKglqch1gDR2n3NLAvEWYKE ocTA4qrHHvCKqDy8uFaHXuiF+uci/HQ8hHBFKg20itORET82s/G/LAzDRiC87KmH prgkM+prxwSKqm3n+TH87vmzZ6icpJDJ+ub2xvJnJ+75ReKBgnq6Ndjwa6wkklFQ vuocErNM3G2QnuT+nSRaovXfXoYsr3BOZjiB6bkU+fIEXogHqznX0jUR0N2VE7SE y80AgPFw/gZlyozJalz6iHrT2pfdQ0X0BJBViuADx/tvmIM90KS4+vn/3xvcWoEB /FiGepa3fVXaZ9jGSn1NLrqBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUt/RBjPyv sIw+pcwqLqOycC39D6swHwYDVR0jBBgwFoAUqJ0P1PSKv2lP2d93BOWWRk3tIXkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU2Q0NBLzFBN0FERUNBMEY3 MDExRjA5RTJGN0QxRkM0RjlBRTAyL3FKMFAxUFNLdjJsUDJkOTNCT1dXUmszdElY ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcUowUDFQU0t2MmxQMmQ5M0JPV1dSazN0SVhrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU2 Q0NBLzFBN0FERUNBMEY3MDExRjA5RTJGN0QxRkM0RjlBRTAyL3FKMFAxUFNLdjJs UDJkOTNCT1dXUmszdElYay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALqN2mqMlPRIWOKQM57De2IgZRwIEj53zRxbKCKg6mkgOq5Gp9p+HLE5 cSergPgCF6LFadK4E/NO8s3xHX8oM/wY24oEojzr0cH5HM9APUrWK7uZoT59q8QC CxuZyxZkFqKi9It7H0nwa2+6rNS/yVVReF9cAI31nEbAqSRBh7W5wOtTbmlRxRKO hITq0gIYSY3tGa2CUbSp6iVtBwYOTMT2MA0joopQFSW25Mw1iLy3pL5c+OtJnZ4y A+eQZb5fONyKYdd7nIhinkf7oetPW6nfCm+Kwy0QEChpruFxjmhPmHtBU5mqmnyu 3i7NG8ASrETiRGZdRvNHx3m2vNzEZZA= -----END CERTIFICATE-----Generated at Wed Nov 5 16:09:28 2025 by rpki-client