$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.mft File: qX6qTW8VW40nxAro4yfZulLDS0I.mft (raw, json) Hash identifier: hBkemPPOxUTrDF38rlAzNVbDnzzU2aeqUclcg5BiOOA= Subject key identifier: 25:AF:4E:40:B7:CC:86:04:30:CD:19:01:1B:1C:B4:38:F3:FC:31:89 Authority key identifier: A9:7E:AA:4D:6F:15:5B:8D:27:C4:0A:E8:E3:27:D9:BA:52:C3:4B:42 Certificate issuer: /CN=A91EB4AF/serialNumber=A97EAA4D6F155B8D27C40AE8E327D9BA52C34B42 Certificate serial: 036A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qX6qTW8VW40nxAro4yfZulLDS0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.mft Manifest number: 0357 Signing time: Mon 27 Oct 2025 02:28:03 +0000 Manifest this update: Mon 27 Oct 2025 02:28:03 +0000 Manifest next update: Mon 03 Nov 2025 02:28:03 +0000 Files and hashes: 1: qX6qTW8VW40nxAro4yfZulLDS0I.crl (hash: pJq0Euj20jtycTH/teiCxUdkDNNW4i2hSKq3rEz0A0Y=) 2: 595774341B6211F0B9733473C4F9AE02.roa (hash: 7H1WNXq4e92nwvgGNVFt3drbCtCA0vHzGWt+JS3qJgY=) 3: DCE70C6EF9B911ED8314C10EC4F9AE02.roa (hash: yEYfp9zlxIj6oN/RjQwAEbZkACgBbwz/31Qhgmxz4PU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.crl rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qX6qTW8VW40nxAro4yfZulLDS0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 02:28:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 874 (0x36a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB4AF, serialNumber=A97EAA4D6F155B8D27C40AE8E327D9BA52C34B42 Validity Not Before: Oct 27 02:28:03 2025 GMT Not After : Nov 3 02:28:03 2025 GMT Subject: CN=68fed8b3-3253 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:1b:63:ea:d7:8a:13:76:ae:f0:fa:2c:89:60: 75:df:52:01:d5:3e:65:c9:46:c8:ce:b0:e3:bd:30: 99:97:d8:73:8f:4e:4a:5e:7b:b3:b3:a6:43:3e:8c: 69:23:30:ea:ff:55:ee:2c:59:60:4c:ff:03:d0:0a: 0e:1b:02:83:5e:ad:6d:0f:66:81:d7:4e:16:a5:07: 95:2d:c8:61:bf:bb:d1:e0:b4:fc:a6:35:d4:26:5d: dd:72:24:66:a4:ff:66:a0:54:8a:1f:bc:27:39:43: ef:66:09:f0:b0:d7:1f:3c:e2:d5:21:69:12:f3:39: f8:7d:c0:7e:60:0f:5a:65:8c:80:82:af:9d:4e:e5: e1:1d:64:d5:8f:ad:50:7a:60:cf:d2:ba:db:53:6b: 87:61:89:a9:ee:09:1a:66:3c:82:10:b1:ad:f8:a2: c9:18:b6:12:4a:42:c1:38:72:28:b3:36:2c:08:cf: b5:06:7a:71:e3:1b:8f:c2:16:5b:5d:f1:a3:bd:27: da:6f:b9:4b:d5:02:04:71:09:2e:91:0a:44:ea:db: 4b:ab:59:c5:d6:c3:93:e3:99:5e:1d:f8:12:16:ab: 49:26:b0:15:91:4b:f0:86:c7:3d:a6:89:d7:a5:b5: 05:f9:1c:22:69:f8:21:fe:21:e6:38:2c:06:45:94: 7f:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:AF:4E:40:B7:CC:86:04:30:CD:19:01:1B:1C:B4:38:F3:FC:31:89 X509v3 Authority Key Identifier: keyid:A9:7E:AA:4D:6F:15:5B:8D:27:C4:0A:E8:E3:27:D9:BA:52:C3:4B:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qX6qTW8VW40nxAro4yfZulLDS0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB4AF/CC7B255ADCA911EC94E3E029C4F9AE02/qX6qTW8VW40nxAro4yfZulLDS0I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:62:97:81:15:9a:b8:ca:a4:55:81:df:27:dc:b2:ca:07:31: 59:1b:23:72:66:9d:36:a9:aa:23:c0:de:34:38:54:bb:8f:a8: 7c:8d:95:41:9b:a1:b2:0b:8a:a7:ee:2f:d6:75:7e:42:b0:2f: 03:e8:81:29:ae:86:64:7c:a1:ad:5b:e9:bd:5a:71:2d:49:11: 7f:be:2b:df:4d:4f:3d:22:e0:d0:22:74:19:28:4b:4e:7a:d9: 98:b6:de:a5:dd:58:22:34:c5:e6:ef:70:91:de:3b:74:8e:48: 50:1b:7d:5e:a2:80:a4:63:01:a8:53:d4:b3:74:c1:0e:da:ec: 24:9f:fc:80:a9:9b:b3:a6:9d:f8:65:63:b8:b3:b8:8a:ff:39: 91:b4:e8:fa:b8:e4:84:24:fa:78:14:af:a4:aa:a2:a6:36:ab: 15:b2:37:ef:e4:92:ce:3a:50:48:c9:1d:f0:30:98:d7:3b:f5: 2d:4b:a3:c3:8d:59:10:c4:1e:94:39:66:a8:65:72:82:a1:b6: 9c:e1:4d:ce:48:bc:72:77:bd:c2:eb:b2:9e:5c:4b:0b:51:ed: ba:12:04:1b:56:19:6d:49:65:41:a5:89:65:a0:82:ad:dd:78: 06:67:57:ee:c6:53:e3:26:cd:0a:06:d5:6f:7e:1a:7a:e6:2d: 9d:0c:9a:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI0QUYxMTAvBgNVBAUTKEE5N0VBQTRENkYxNTVCOEQyN0M0MEFFOEUzMjdEOUJB NTJDMzRCNDIwHhcNMjUxMDI3MDIyODAzWhcNMjUxMTAzMDIyODAzWjAYMRYwFAYD VQQDEw02OGZlZDhiMy0zMjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwBtj6teKE3au8PosiWB131IB1T5lyUbIzrDjvTCZl9hzj05KXnuzs6ZDPoxp IzDq/1XuLFlgTP8D0AoOGwKDXq1tD2aB104WpQeVLchhv7vR4LT8pjXUJl3dciRm pP9moFSKH7wnOUPvZgnwsNcfPOLVIWkS8zn4fcB+YA9aZYyAgq+dTuXhHWTVj61Q emDP0rrbU2uHYYmp7gkaZjyCELGt+KLJGLYSSkLBOHIoszYsCM+1Bnpx4xuPwhZb XfGjvSfab7lL1QIEcQkukQpE6ttLq1nF1sOT45leHfgSFqtJJrAVkUvwhsc9ponX pbUF+Rwiafgh/iHmOCwGRZR/QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCWvTkC3 zIYEMM0ZARsctDjz/DGJMB8GA1UdIwQYMBaAFKl+qk1vFVuNJ8QK6OMn2bpSw0tC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjRBRi9DQzdCMjU1QURD QTkxMUVDOTRFM0UwMjlDNEY5QUUwMi9xWDZxVFc4Vlc0MG54QXJvNHlmWnVsTERT MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FYNnFUVzhWVzQwbnhBcm80eWZadWxMRFMwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjRBRi9DQzdCMjU1QURDQTkxMUVDOTRFM0UwMjlDNEY5QUUwMi9xWDZxVFc4Vlc0 MG54QXJvNHlmWnVsTERTMEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFYpeBFZq4yqRVgd8n3LLKBzFZGyNyZp02qaojwN40OFS7j6h8jZVB m6GyC4qn7i/WdX5CsC8D6IEproZkfKGtW+m9WnEtSRF/vivfTU89IuDQInQZKEtO etmYtt6l3VgiNMXm73CR3jt0jkhQG31eooCkYwGoU9SzdMEO2uwkn/yAqZuzpp34 ZWO4s7iK/zmRtOj6uOSEJPp4FK+kqqKmNqsVsjfv5JLOOlBIyR3wMJjXO/UtS6PD jVkQxB6UOWaoZXKCobac4U3OSLxyd73C67KeXEsLUe26EgQbVhltSWVBpYlloIKt 3XgGZ1fuxlPjJs0KBtVvfhp65i2dDJoU -----END CERTIFICATE-----Generated at Mon Oct 27 09:32:11 2025 by rpki-client