$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft File: QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft (raw, json) Hash identifier: Vs/28Le3bfiPtJw3CYu/ticPu3WpeixcRWl1q+sZXew= Subject key identifier: 99:1E:C1:FD:FE:39:D9:D4:3E:6A:B0:68:0B:DC:69:D3:A2:5D:20:97 Authority key identifier: 41:E3:80:A0:C9:FA:BC:C1:0F:8E:A3:29:63:52:E6:A7:87:8D:35:3B Certificate issuer: /CN=A91F4F4C/serialNumber=41E380A0C9FABCC10F8EA3296352E6A7878D353B Certificate serial: 0818 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft Manifest number: 0810 Signing time: Tue 04 Nov 2025 21:00:00 +0000 Manifest this update: Tue 04 Nov 2025 20:59:59 +0000 Manifest next update: Tue 11 Nov 2025 20:59:59 +0000 Files and hashes: 1: QeOAoMn6vMEPjqMpY1Lmp4eNNTs.crl (hash: slhHP9NZ1J6drNdR2Id7242AI28LdT8JmX8YpdywqoM=) 2: 770BCA98F97A11EAB938DA5DC4F9AE02.roa (hash: WFvsYGxGbZsMpR4I2mqKInKvSm7CH4Awmh5yfhBmFLM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.crl rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:59:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2072 (0x818) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4F4C, serialNumber=41E380A0C9FABCC10F8EA3296352E6A7878D353B Validity Not Before: Nov 4 20:59:59 2025 GMT Not After : Nov 11 20:59:59 2025 GMT Subject: CN=690a694f-f292 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:58:e3:b3:8e:af:88:38:68:f9:52:03:e8:d8: 12:4e:b8:c0:8d:c7:92:ce:ba:8f:7a:ad:84:7d:9e: db:c8:fc:af:ec:c8:9f:59:5a:8e:0b:57:73:72:f9: a6:e6:78:8b:81:14:80:f3:f2:50:24:b1:95:71:a1: 0f:8c:cd:1d:c6:18:3a:80:d2:43:4c:c1:59:ec:80: 35:81:ab:34:8c:fb:11:e1:ab:ec:ba:4b:40:6e:d1: a9:d2:36:06:ed:8f:eb:c4:f5:6a:da:c0:e8:8d:ca: d4:00:95:b6:d7:5e:14:d7:1f:39:98:ad:cd:81:b6: d6:ae:b0:e2:4b:38:86:4b:f9:b8:28:78:55:d9:37: 90:35:9d:7c:d6:db:25:21:5a:34:d0:93:74:52:8a: e3:5b:4a:c2:aa:3a:ad:96:d2:d5:a6:29:11:8a:ba: 35:5d:f9:22:2a:8d:20:24:68:54:d4:bd:bb:d4:9d: 62:97:30:ac:3f:d4:e7:b6:8f:f4:e5:7e:fe:c1:f7: f1:a2:6d:46:d4:71:01:4b:b8:83:49:53:95:d9:69: 28:46:f0:38:10:fe:c4:f5:2f:05:c2:8c:26:c7:b5: 3a:de:8e:51:70:20:f6:e9:36:3a:3c:88:41:3e:1c: 21:8c:9a:24:e0:12:58:c5:c0:92:3a:0e:1e:86:9e: 53:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:1E:C1:FD:FE:39:D9:D4:3E:6A:B0:68:0B:DC:69:D3:A2:5D:20:97 X509v3 Authority Key Identifier: keyid:41:E3:80:A0:C9:FA:BC:C1:0F:8E:A3:29:63:52:E6:A7:87:8D:35:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4F4C/940765FCF97611EA9534C043C4F9AE02/QeOAoMn6vMEPjqMpY1Lmp4eNNTs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:e3:25:ac:73:a2:2f:9f:bd:32:1b:5b:92:06:22:71:de:5d: 1d:d5:77:8c:a9:d9:b3:d2:e6:32:79:67:c6:5d:7c:10:f9:1e: 46:f2:e3:c2:6a:5d:61:51:10:42:0e:76:63:f9:71:e3:1e:d8: e1:13:2d:30:be:a2:ab:9c:44:c5:d2:7b:69:bd:fe:a8:bd:6b: b0:d8:d4:a2:f2:b1:54:1b:63:45:86:c0:e9:5d:74:3c:3d:5f: 3d:32:ac:c0:2b:82:e5:28:03:13:73:1d:87:25:52:98:c6:75: 58:dd:90:82:87:47:4e:c6:2d:cd:ea:b8:6f:4c:60:dd:89:2a: c3:8f:82:df:36:37:80:80:b9:97:b2:61:9f:91:8c:7b:e5:9d: d5:b9:0e:d4:56:0a:45:3c:36:af:5a:8c:c2:6e:ce:48:f8:38: a7:12:cb:39:6e:ab:69:71:e5:4d:80:39:ed:c6:e0:22:a6:73: 21:93:0a:2c:af:d5:3b:c9:0d:eb:e4:f0:dc:02:3b:e0:2a:57: 8c:53:3e:50:0b:a5:34:16:bd:33:9c:d7:a3:c3:07:6d:94:86: 0c:cb:12:87:0c:6f:c0:23:38:91:71:47:84:63:4d:16:47:2d: 22:b8:11:ad:1c:1c:c8:08:7f:bd:00:31:2e:dc:80:c2:59:a8: f1:34:d4:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRGNEMxMTAvBgNVBAUTKDQxRTM4MEEwQzlGQUJDQzEwRjhFQTMyOTYzNTJFNkE3 ODc4RDM1M0IwHhcNMjUxMTA0MjA1OTU5WhcNMjUxMTExMjA1OTU5WjAYMRYwFAYD VQQDEw02OTBhNjk0Zi1mMjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxljjs46viDho+VID6NgSTrjAjceSzrqPeq2EfZ7byPyv7MifWVqOC1dzcvmm 5niLgRSA8/JQJLGVcaEPjM0dxhg6gNJDTMFZ7IA1gas0jPsR4avsuktAbtGp0jYG 7Y/rxPVq2sDojcrUAJW2114U1x85mK3NgbbWrrDiSziGS/m4KHhV2TeQNZ181tsl IVo00JN0UorjW0rCqjqtltLVpikRiro1XfkiKo0gJGhU1L271J1ilzCsP9Tnto/0 5X7+wffxom1G1HEBS7iDSVOV2WkoRvA4EP7E9S8Fwowmx7U63o5RcCD26TY6PIhB PhwhjJok4BJYxcCSOg4ehp5TIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJkewf3+ OdnUPmqwaAvcadOiXSCXMB8GA1UdIwQYMBaAFEHjgKDJ+rzBD46jKWNS5qeHjTU7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEY0Qy85NDA3NjVGQ0Y5 NzYxMUVBOTUzNEMwNDNDNEY5QUUwMi9RZU9Bb01uNnZNRVBqcU1wWTFMbXA0ZU5O VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FlT0FvTW42dk1FUGpxTXBZMUxtcDRlTk5Ucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEY0Qy85NDA3NjVGQ0Y5NzYxMUVBOTUzNEMwNDNDNEY5QUUwMi9RZU9Bb01uNnZN RVBqcU1wWTFMbXA0ZU5OVHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCV4yWsc6Ivn70yG1uSBiJx3l0d1XeMqdmz0uYyeWfGXXwQ+R5G8uPC al1hURBCDnZj+XHjHtjhEy0wvqKrnETF0ntpvf6ovWuw2NSi8rFUG2NFhsDpXXQ8 PV89MqzAK4LlKAMTcx2HJVKYxnVY3ZCCh0dOxi3N6rhvTGDdiSrDj4LfNjeAgLmX smGfkYx75Z3VuQ7UVgpFPDavWozCbs5I+DinEss5bqtpceVNgDntxuAipnMhkwos r9U7yQ3r5PDcAjvgKleMUz5QC6U0Fr0znNejwwdtlIYMyxKHDG/AIziRcUeEY00W Ry0iuBGtHBzICH+9ADEu3IDCWajxNNQF -----END CERTIFICATE-----Generated at Wed Nov 5 19:29:40 2025 by rpki-client