$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.mft File: qpoNy1ExOS1xlqhEGKioRkVTH5c.mft (raw, json) Hash identifier: oNyBG8dxaNE0O7+tvWABpkxDrewfVT4X3pj/TyObHHM= Subject key identifier: 8E:3F:FB:0C:2B:39:93:33:0C:1B:6C:4C:BA:F0:7B:ED:37:BB:EE:12 Authority key identifier: AA:9A:0D:CB:51:31:39:2D:71:96:A8:44:18:A8:A8:46:45:53:1F:97 Certificate issuer: /CN=A91EF66D/serialNumber=AA9A0DCB5131392D7196A84418A8A84645531F97 Certificate serial: 0186 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qpoNy1ExOS1xlqhEGKioRkVTH5c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.mft Manifest number: 0180 Signing time: Wed 05 Nov 2025 03:51:36 +0000 Manifest this update: Wed 05 Nov 2025 03:51:35 +0000 Manifest next update: Wed 12 Nov 2025 03:51:35 +0000 Files and hashes: 1: qpoNy1ExOS1xlqhEGKioRkVTH5c.crl (hash: 1FmBelN00Q1jYHkO4CBX1VpbLFZyFJGEbF2NCFws608=) 2: C2D66F8271A911EEAEEE351CC4F9AE02.roa (hash: 182Ac4fyaiVrniCYLGV61RP5qpWrfJewUwg3lX5zumg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.crl rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qpoNy1ExOS1xlqhEGKioRkVTH5c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:51:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 390 (0x186) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF66D, serialNumber=AA9A0DCB5131392D7196A84418A8A84645531F97 Validity Not Before: Nov 5 03:51:35 2025 GMT Not After : Nov 12 03:51:35 2025 GMT Subject: CN=690ac9c7-d3a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:be:15:9e:60:d5:c4:33:1d:1f:63:3a:08:46: 6e:56:b7:ae:00:d9:2d:a5:63:b0:92:a6:fc:08:16: 4a:f2:b7:df:a2:ce:cf:ef:54:11:48:70:2c:d6:4a: e9:d8:dd:d6:ac:b4:91:0e:67:5c:f6:e3:8a:9a:85: 49:e3:05:01:49:4f:64:e7:fb:24:11:4e:66:ed:cf: 7f:33:fa:5f:98:7d:a9:af:ef:3c:31:e8:84:5c:95: a7:db:e1:14:ba:79:6a:1f:d2:0a:d2:e3:1c:e4:29: 8e:20:69:3a:73:45:17:06:b9:fc:11:d8:46:9f:9a: 0a:95:ca:f7:6a:65:ee:fa:da:60:bb:b2:04:d5:fe: bb:ec:00:03:4d:67:2e:7e:22:23:71:79:d7:71:a1: b2:fe:20:74:55:dc:46:b8:94:05:0c:fa:ed:61:fb: 6e:2f:42:14:89:94:d4:16:65:6c:15:99:47:84:b1: 99:f4:57:7d:74:f6:e4:bb:cf:31:d6:66:1d:bc:21: 56:0b:da:b3:9a:5c:c4:ba:ae:ac:6c:6e:43:c2:85: 06:16:6b:19:a5:64:01:a7:6b:21:ce:93:4b:bb:13: 0d:1c:cf:3c:47:4b:c0:8f:de:18:c1:a5:d4:62:fe: ea:32:bb:46:bb:3c:0f:ab:67:eb:7a:6e:93:c3:7c: 78:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:3F:FB:0C:2B:39:93:33:0C:1B:6C:4C:BA:F0:7B:ED:37:BB:EE:12 X509v3 Authority Key Identifier: keyid:AA:9A:0D:CB:51:31:39:2D:71:96:A8:44:18:A8:A8:46:45:53:1F:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qpoNy1ExOS1xlqhEGKioRkVTH5c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:7f:81:9b:ac:00:d2:ee:8d:35:aa:c0:61:c1:fe:5a:2c:35: b5:85:96:25:81:71:fa:92:4f:8b:ce:a7:1a:e2:8a:58:3e:0b: 1f:4e:38:17:57:86:64:13:ea:54:b4:8d:b8:ca:60:50:25:8b: dd:bc:e5:d6:79:39:fc:c8:3f:a2:46:cd:ec:ec:39:9a:41:a7: ed:bc:97:da:49:ff:69:b5:2e:ce:40:b9:a2:1d:02:67:6c:61: f2:73:d2:67:d2:a4:29:4b:9d:a5:54:1e:f5:0e:ac:ec:ca:6b: 6a:41:3f:74:e7:d3:48:df:91:3c:e8:d1:dc:4b:fa:e6:f0:4a: c3:6e:25:c1:16:1a:84:63:5c:ab:e0:05:15:e4:b2:49:29:79: c7:a1:d5:e6:df:03:7c:3f:a8:bf:b4:45:60:53:c5:1a:66:3f: 37:4d:65:c3:2f:ad:e2:66:f7:3f:eb:b3:40:84:29:21:2e:d1: e8:f7:58:91:4a:b3:99:e4:32:13:8b:be:8b:aa:99:f6:89:fb: fd:1d:81:5a:db:a3:c5:49:c1:46:c2:50:a7:9d:c6:18:1d:e3: 0c:17:b5:d3:37:20:fc:77:90:a6:c0:9a:61:e8:ef:5b:c9:d4: 22:5c:5e:eb:4c:e0:89:1a:99:9f:12:f2:8a:cf:86:e2:7a:1e: fb:ca:f4:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY2NkQxMTAvBgNVBAUTKEFBOUEwRENCNTEzMTM5MkQ3MTk2QTg0NDE4QThBODQ2 NDU1MzFGOTcwHhcNMjUxMTA1MDM1MTM1WhcNMjUxMTEyMDM1MTM1WjAYMRYwFAYD VQQDEw02OTBhYzljNy1kM2E2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA674VnmDVxDMdH2M6CEZuVreuANktpWOwkqb8CBZK8rffos7P71QRSHAs1krp 2N3WrLSRDmdc9uOKmoVJ4wUBSU9k5/skEU5m7c9/M/pfmH2pr+88MeiEXJWn2+EU unlqH9IK0uMc5CmOIGk6c0UXBrn8EdhGn5oKlcr3amXu+tpgu7IE1f677AADTWcu fiIjcXnXcaGy/iB0VdxGuJQFDPrtYftuL0IUiZTUFmVsFZlHhLGZ9Fd9dPbku88x 1mYdvCFWC9qzmlzEuq6sbG5DwoUGFmsZpWQBp2shzpNLuxMNHM88R0vAj94YwaXU Yv7qMrtGuzwPq2frem6Tw3x43wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI4/+wwr OZMzDBtsTLrwe+03u+4SMB8GA1UdIwQYMBaAFKqaDctRMTktcZaoRBioqEZFUx+X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjY2RC81MTFBODkyRTcx QTgxMUVFQjQzN0YxODFDNEY5QUUwMi9xcG9OeTFFeE9TMXhscWhFR0tpb1JrVlRI NWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Fwb055MUV4T1MxeGxxaEVHS2lvUmtWVEg1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjY2RC81MTFBODkyRTcxQTgxMUVFQjQzN0YxODFDNEY5QUUwMi9xcG9OeTFFeE9T MXhscWhFR0tpb1JrVlRINWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCf4GbrADS7o01qsBhwf5aLDW1hZYlgXH6kk+Lzqca4opYPgsfTjgX V4ZkE+pUtI24ymBQJYvdvOXWeTn8yD+iRs3s7DmaQaftvJfaSf9ptS7OQLmiHQJn bGHyc9Jn0qQpS52lVB71DqzsymtqQT9059NI35E86NHcS/rm8ErDbiXBFhqEY1yr 4AUV5LJJKXnHodXm3wN8P6i/tEVgU8UaZj83TWXDL63iZvc/67NAhCkhLtHo91iR SrOZ5DITi76Lqpn2ifv9HYFa26PFScFGwlCnncYYHeMMF7XTNyD8d5CmwJph6O9b ydQiXF7rTOCJGpmfEvKKz4bieh77yvSc -----END CERTIFICATE-----Generated at Wed Nov 5 05:22:54 2025 by rpki-client