$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/qkjQtX4IXNlA26F5HapYc8wZx_4.mft File: qkjQtX4IXNlA26F5HapYc8wZx_4.mft (raw, json) Hash identifier: NtfH1CwQ+aSYPPVBFfZ8B9jbSt7agaZH9ynPJ9i1+9A= Subject key identifier: 47:B9:4D:CE:7E:E1:2D:88:61:C7:BB:24:82:3A:03:11:D7:76:A0:0F Authority key identifier: AA:48:D0:B5:7E:08:5C:D9:40:DB:A1:79:1D:AA:58:73:CC:19:C7:FE Certificate issuer: /CN=A91EA582/serialNumber=AA48D0B57E085CD940DBA1791DAA5873CC19C7FE Certificate serial: 03E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkjQtX4IXNlA26F5HapYc8wZx_4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/qkjQtX4IXNlA26F5HapYc8wZx_4.mft Manifest number: 03DC Signing time: Wed 05 Nov 2025 00:41:21 +0000 Manifest this update: Wed 05 Nov 2025 00:41:20 +0000 Manifest next update: Wed 12 Nov 2025 00:41:20 +0000 Files and hashes: 1: qkjQtX4IXNlA26F5HapYc8wZx_4.crl (hash: AZZYsgIbumn2u4qxjQDT9Bcr2kFd8ZFCB6PRZBfXO9k=) 2: 9924B750A1AF11EC9A73D814C4F9AE02.roa (hash: H07H0KC74DRAPdC4SUe3j+pKIkb6uyeJtaN+ueDEin0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/qkjQtX4IXNlA26F5HapYc8wZx_4.crl rsync://rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/qkjQtX4IXNlA26F5HapYc8wZx_4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkjQtX4IXNlA26F5HapYc8wZx_4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:41:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 994 (0x3e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA582, serialNumber=AA48D0B57E085CD940DBA1791DAA5873CC19C7FE Validity Not Before: Nov 5 00:41:20 2025 GMT Not After : Nov 12 00:41:20 2025 GMT Subject: CN=690a9d31-7302 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e0:22:ec:ed:41:44:ff:a6:66:66:be:7a:cf: d5:b1:06:a4:a6:0c:dc:e6:b7:f2:93:b3:8b:07:f9: 30:4a:e5:f1:c6:88:4f:98:5f:77:42:34:6d:c6:55: 3e:5c:21:76:e1:21:64:bf:11:52:4b:11:e9:15:3f: ae:0b:04:65:cc:28:b1:15:7f:92:3c:3d:36:48:6a: 73:92:c6:37:fc:25:43:28:95:07:7f:15:d4:c7:16: af:1c:09:97:8a:61:5f:d3:e7:e1:84:23:a9:f3:2a: 33:e5:0e:23:11:ba:1d:0d:3c:a0:18:08:5e:18:b3: b5:c6:0f:0c:20:9c:dc:ac:4c:46:c8:71:1b:df:fb: ca:ea:3a:91:12:5e:fd:0e:ac:90:5a:56:33:32:95: 4b:e2:fa:3d:29:21:eb:f6:af:9e:67:da:96:f3:5c: a0:26:d3:1a:d1:ef:a5:cf:82:4d:0d:6b:5d:21:37: 11:d5:84:0a:be:be:21:e6:ff:94:85:fa:6f:a1:89: c8:ea:78:60:37:eb:14:46:0a:dc:9b:d5:59:8f:47: 72:f2:7e:12:0d:07:c7:10:c3:0b:ae:54:52:8f:d1: fc:4a:90:82:cb:2c:39:31:bd:ad:88:27:07:78:e1: 20:bd:40:dd:d3:1d:64:67:ab:f7:49:b4:b2:c2:de: 9e:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:B9:4D:CE:7E:E1:2D:88:61:C7:BB:24:82:3A:03:11:D7:76:A0:0F X509v3 Authority Key Identifier: keyid:AA:48:D0:B5:7E:08:5C:D9:40:DB:A1:79:1D:AA:58:73:CC:19:C7:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/qkjQtX4IXNlA26F5HapYc8wZx_4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkjQtX4IXNlA26F5HapYc8wZx_4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/qkjQtX4IXNlA26F5HapYc8wZx_4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:13:22:bd:3f:9f:f4:c3:c1:18:e1:26:dd:75:35:af:c0:a4: 6e:cf:ed:74:a7:bd:3d:bf:28:9d:28:c8:5f:ce:4c:81:ea:4c: ac:43:a7:d8:64:b3:fb:a3:fc:e6:66:95:ed:2d:bd:25:06:eb: f7:2f:d1:38:d9:d3:97:fa:62:92:04:d1:ef:b9:15:14:e9:83: a8:37:d8:dd:30:9a:a6:5d:ba:cf:f9:a1:39:ef:50:e2:b2:6c: 35:af:bc:2a:13:2d:fa:68:17:e1:e8:d2:31:4d:9d:6b:48:9b: 31:64:0d:70:e9:52:f0:06:1d:f2:1b:92:31:0e:83:35:61:c8: 7d:3a:9e:a3:97:88:8a:5a:fe:47:25:cf:55:bb:23:7b:44:40: 06:98:65:9a:80:aa:91:6a:38:7d:72:fc:4d:b4:b9:37:8f:89: 5f:11:57:3d:f0:14:c6:f4:85:95:7b:b3:1a:bd:9a:d7:bd:c3: 1c:9c:66:97:5c:1f:47:bd:0d:21:b7:de:22:42:30:0a:d4:77: 6e:7e:bb:b7:7a:88:6b:35:59:d8:6b:0f:39:fa:00:a8:d0:30: ff:ac:c7:f9:18:36:43:65:42:ae:de:7d:30:95:cf:b7:d8:bd: 46:e0:76:cd:f9:c0:87:70:42:94:4d:95:ec:32:09:9b:86:7a: ac:cf:a8:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE1ODIxMTAvBgNVBAUTKEFBNDhEMEI1N0UwODVDRDk0MERCQTE3OTFEQUE1ODcz Q0MxOUM3RkUwHhcNMjUxMTA1MDA0MTIwWhcNMjUxMTEyMDA0MTIwWjAYMRYwFAYD VQQDEw02OTBhOWQzMS03MzAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtOAi7O1BRP+mZma+es/VsQakpgzc5rfyk7OLB/kwSuXxxohPmF93QjRtxlU+ XCF24SFkvxFSSxHpFT+uCwRlzCixFX+SPD02SGpzksY3/CVDKJUHfxXUxxavHAmX imFf0+fhhCOp8yoz5Q4jEbodDTygGAheGLO1xg8MIJzcrExGyHEb3/vK6jqREl79 DqyQWlYzMpVL4vo9KSHr9q+eZ9qW81ygJtMa0e+lz4JNDWtdITcR1YQKvr4h5v+U hfpvoYnI6nhgN+sURgrcm9VZj0dy8n4SDQfHEMMLrlRSj9H8SpCCyyw5Mb2tiCcH eOEgvUDd0x1kZ6v3SbSywt6elQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEe5Tc5+ 4S2IYce7JII6AxHXdqAPMB8GA1UdIwQYMBaAFKpI0LV+CFzZQNuheR2qWHPMGcf+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTU4Mi85NzRGQ0FBMEEx MTkxMUVDOEM0RkZBODNDNEY5QUUwMi9xa2pRdFg0SVhObEEyNkY1SGFwWWM4d1p4 XzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FralF0WDRJWE5sQTI2RjVIYXBZYzh3WnhfNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTU4Mi85NzRGQ0FBMEExMTkxMUVDOEM0RkZBODNDNEY5QUUwMi9xa2pRdFg0SVhO bEEyNkY1SGFwWWM4d1p4XzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5EyK9P5/0w8EY4SbddTWvwKRuz+10p709vyidKMhfzkyB6kysQ6fY ZLP7o/zmZpXtLb0lBuv3L9E42dOX+mKSBNHvuRUU6YOoN9jdMJqmXbrP+aE571Di smw1r7wqEy36aBfh6NIxTZ1rSJsxZA1w6VLwBh3yG5IxDoM1Ych9Op6jl4iKWv5H Jc9VuyN7REAGmGWagKqRajh9cvxNtLk3j4lfEVc98BTG9IWVe7MavZrXvcMcnGaX XB9HvQ0ht94iQjAK1Hdufru3eohrNVnYaw85+gCo0DD/rMf5GDZDZUKu3n0wlc+3 2L1G4HbN+cCHcEKUTZXsMgmbhnqsz6gP -----END CERTIFICATE-----Generated at Wed Nov 5 19:32:39 2025 by rpki-client