$ rpki-client -vvf rpki.apnic.net/member_repository/A91127A2/D1CD5458B1CE11EB8FF1C067C4F9AE02/qSHPiNjIngus1O4YU4wzsnipWSw.mft File: qSHPiNjIngus1O4YU4wzsnipWSw.mft (raw, json) Hash identifier: K9ZOafEwFBahxpp3v8yXyHUfgMcpYExrNYj35tgX/mM= Subject key identifier: 4C:5A:C6:61:09:B3:DD:6A:98:D7:1C:0F:F3:0C:3D:52:E8:AA:3C:04 Authority key identifier: A9:21:CF:88:D8:C8:9E:0B:AC:D4:EE:18:53:8C:33:B2:78:A9:59:2C Certificate issuer: /CN=A91127A2/serialNumber=A921CF88D8C89E0BACD4EE18538C33B278A9592C Certificate serial: 0639 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSHPiNjIngus1O4YU4wzsnipWSw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91127A2/D1CD5458B1CE11EB8FF1C067C4F9AE02/qSHPiNjIngus1O4YU4wzsnipWSw.mft Manifest number: 0633 Signing time: Sun 19 Oct 2025 00:18:24 +0000 Manifest this update: Sun 19 Oct 2025 00:18:23 +0000 Manifest next update: Sun 26 Oct 2025 00:18:23 +0000 Files and hashes: 1: qSHPiNjIngus1O4YU4wzsnipWSw.crl (hash: 5Nkk9KhuJW0VCvEco+OQG6To0DdghkHUk6GKJuc6C/w=) 2: 07332486B1D111EBA956F96AC4F9AE02.roa (hash: ttRZLKoMySXPeabXatArFdOxpzq9cRtpWwNwu6sfYas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91127A2/D1CD5458B1CE11EB8FF1C067C4F9AE02/qSHPiNjIngus1O4YU4wzsnipWSw.crl rsync://rpki.apnic.net/member_repository/A91127A2/D1CD5458B1CE11EB8FF1C067C4F9AE02/qSHPiNjIngus1O4YU4wzsnipWSw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSHPiNjIngus1O4YU4wzsnipWSw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:18:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1593 (0x639) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91127A2, serialNumber=A921CF88D8C89E0BACD4EE18538C33B278A9592C Validity Not Before: Oct 19 00:18:23 2025 GMT Not After : Oct 26 00:18:23 2025 GMT Subject: CN=68f42e4f-5ca9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:78:5c:9f:21:dd:ab:cb:f0:26:e4:eb:07:d9: d5:85:07:31:f5:3d:a8:c9:a5:1c:cc:a8:34:67:e7: 5b:e4:4c:55:2b:c1:fb:ec:9f:6c:36:7f:d7:4a:40: ba:d3:f0:54:29:65:d0:89:a6:97:67:d6:7d:00:86: 99:c2:30:03:ea:e2:cd:70:70:34:e8:1c:25:60:b3: cd:0d:17:19:53:39:a6:27:86:2a:d8:bd:da:84:43: ff:e9:c5:ca:60:79:11:31:29:ad:66:0a:9f:52:dc: 0d:c5:b6:15:e9:b3:ed:d0:36:c9:af:c1:4f:7b:04: 56:ff:2f:96:ae:bd:96:ed:ea:1e:e2:30:4f:1e:ca: 04:ea:8f:25:e0:03:fb:ed:a9:ff:1b:40:49:25:d9: 3e:9c:a1:0b:b6:b8:cd:ad:6f:ab:ff:6f:e6:92:b6: 7d:1d:72:c1:ef:c4:ad:8a:0a:2b:ab:05:1d:46:f0: 81:2d:c7:4e:38:17:27:ab:ae:6d:f4:ef:b9:47:00: c9:e4:88:eb:09:77:5f:55:f6:c5:a0:25:1f:81:a4: 72:4a:aa:fb:e0:c9:a6:7d:b9:13:3f:4a:0e:92:ee: 35:9d:4e:d2:a8:97:8a:55:b5:56:b9:c3:73:32:3f: 5f:64:c8:33:52:7b:6b:b7:59:ea:71:07:15:ad:e0: c5:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:5A:C6:61:09:B3:DD:6A:98:D7:1C:0F:F3:0C:3D:52:E8:AA:3C:04 X509v3 Authority Key Identifier: keyid:A9:21:CF:88:D8:C8:9E:0B:AC:D4:EE:18:53:8C:33:B2:78:A9:59:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91127A2/D1CD5458B1CE11EB8FF1C067C4F9AE02/qSHPiNjIngus1O4YU4wzsnipWSw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSHPiNjIngus1O4YU4wzsnipWSw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91127A2/D1CD5458B1CE11EB8FF1C067C4F9AE02/qSHPiNjIngus1O4YU4wzsnipWSw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:b9:da:6a:7f:6b:60:a7:4f:c6:b6:6e:f6:f5:a1:55:0c:65: 71:bf:7f:b8:68:e5:c8:27:2e:3e:d5:13:b1:dc:2d:64:72:8c: 9e:b6:45:bc:ab:df:36:89:52:ce:1f:d9:a9:5e:a4:2e:27:84: 68:ca:65:fd:70:02:12:8b:cc:93:8d:1a:80:70:24:9d:3b:85: a4:48:18:77:2a:19:8e:92:68:8b:b2:df:9b:3d:73:f4:d3:70: 84:fe:36:4b:37:88:30:8c:b2:64:17:e7:da:66:71:5d:93:17: e2:9f:29:b7:12:2f:a8:cb:46:0b:fe:07:07:2f:9e:db:9c:21: 8a:9e:13:31:20:c2:fb:53:b9:27:71:2e:a6:13:a9:ca:90:8e: f5:a8:60:26:98:83:d7:45:2b:95:81:08:ad:57:01:a8:47:7d: 63:93:ea:7b:d8:5f:aa:78:0f:f6:1d:9d:01:8a:6f:42:d8:41: 29:fb:4d:75:02:87:ff:cd:42:7d:ae:16:0c:61:ed:61:a6:8c: 06:7a:eb:ab:a9:6e:2c:9c:fe:71:3c:09:ff:f4:91:d2:f7:d8: ec:36:0d:3c:34:e2:7b:16:27:4a:84:3e:66:6f:a7:a3:fb:2e: 48:37:db:c2:92:3c:1b:22:a0:95:27:f0:3a:c6:21:21:25:92: ed:dd:2e:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI3QTIxMTAvBgNVBAUTKEE5MjFDRjg4RDhDODlFMEJBQ0Q0RUUxODUzOEMzM0Iy NzhBOTU5MkMwHhcNMjUxMDE5MDAxODIzWhcNMjUxMDI2MDAxODIzWjAYMRYwFAYD VQQDEw02OGY0MmU0Zi01Y2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXhcnyHdq8vwJuTrB9nVhQcx9T2oyaUczKg0Z+db5ExVK8H77J9sNn/XSkC6 0/BUKWXQiaaXZ9Z9AIaZwjAD6uLNcHA06BwlYLPNDRcZUzmmJ4Yq2L3ahEP/6cXK YHkRMSmtZgqfUtwNxbYV6bPt0DbJr8FPewRW/y+Wrr2W7eoe4jBPHsoE6o8l4AP7 7an/G0BJJdk+nKELtrjNrW+r/2/mkrZ9HXLB78StigorqwUdRvCBLcdOOBcnq65t 9O+5RwDJ5IjrCXdfVfbFoCUfgaRySqr74MmmfbkTP0oOku41nU7SqJeKVbVWucNz Mj9fZMgzUntrt1nqcQcVreDFNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFExaxmEJ s91qmNccD/MMPVLoqjwEMB8GA1UdIwQYMBaAFKkhz4jYyJ4LrNTuGFOMM7J4qVks MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjdBMi9EMUNENTQ1OEIx Q0UxMUVCOEZGMUMwNjdDNEY5QUUwMi9xU0hQaU5qSW5ndXMxTzRZVTR3enNuaXBX U3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FTSFBpTmpJbmd1czFPNFlVNHd6c25pcFdTdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjdBMi9EMUNENTQ1OEIxQ0UxMUVCOEZGMUMwNjdDNEY5QUUwMi9xU0hQaU5qSW5n dXMxTzRZVTR3enNuaXBXU3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/udpqf2tgp0/Gtm729aFVDGVxv3+4aOXIJy4+1ROx3C1kcoyetkW8 q982iVLOH9mpXqQuJ4RoymX9cAISi8yTjRqAcCSdO4WkSBh3KhmOkmiLst+bPXP0 03CE/jZLN4gwjLJkF+faZnFdkxfinym3Ei+oy0YL/gcHL57bnCGKnhMxIML7U7kn cS6mE6nKkI71qGAmmIPXRSuVgQitVwGoR31jk+p72F+qeA/2HZ0Bim9C2EEp+011 Aof/zUJ9rhYMYe1hpowGeuurqW4snP5xPAn/9JHS99jsNg08NOJ7FidKhD5mb6ej +y5IN9vCkjwbIqCVJ/A6xiEhJZLt3S5M -----END CERTIFICATE-----Generated at Mon Oct 20 04:11:52 2025 by rpki-client