$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft File: Qf4dQTWrLWdiPnYIM5hGitT6odw.mft (raw, json) Hash identifier: ILzgj5AaamXLinRRO73khbqhvDNNW6RADuQcsy9+Tls= Subject key identifier: D2:84:D3:89:38:D2:80:70:6E:1B:57:93:A8:3D:74:77:84:F1:65:E4 Authority key identifier: 41:FE:1D:41:35:AB:2D:67:62:3E:76:08:33:98:46:8A:D4:FA:A1:DC Certificate issuer: /CN=A911B5D7/serialNumber=41FE1D4135AB2D67623E76083398468AD4FAA1DC Certificate serial: 1C3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft Manifest number: 1C0D Signing time: Sat 18 Oct 2025 16:34:13 +0000 Manifest this update: Sat 18 Oct 2025 16:34:13 +0000 Manifest next update: Sat 25 Oct 2025 16:34:13 +0000 Files and hashes: 1: Qf4dQTWrLWdiPnYIM5hGitT6odw.crl (hash: SdbwhcryGNfhCsJey9ijRSDH8J69EcSZ6+9mO+kxXV0=) 2: C177A6728D2011EF97C11D3CC4F9AE02.roa (hash: DzfAqd947/aw0GqhghbdVi3PbAms0DDMSaZSwYpp3rk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.crl rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:34:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7231 (0x1c3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5D7, serialNumber=41FE1D4135AB2D67623E76083398468AD4FAA1DC Validity Not Before: Oct 18 16:34:13 2025 GMT Not After : Oct 25 16:34:13 2025 GMT Subject: CN=68f3c185-f855 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:cb:88:3f:65:73:bf:87:56:65:1d:c2:a9:fb: 1b:fb:b2:d3:d2:d2:3e:86:d4:1d:56:02:7e:5b:70: 31:93:0f:6e:21:d8:af:fb:61:3c:9b:22:c2:32:62: a4:23:13:ad:3a:13:10:82:38:da:2f:cb:5d:1c:e3: 28:27:84:84:3a:df:9d:73:d2:03:a9:d2:6c:b6:6f: a1:9d:b7:20:46:94:4e:33:64:01:d9:6b:4e:b7:e9: 8e:e7:4b:90:f4:bf:28:c4:43:d8:ab:fb:40:78:7a: 38:28:33:d3:8f:cb:b8:f9:7b:af:e9:bf:ca:fe:af: 92:d8:84:ea:3b:1a:fe:c3:e4:39:6f:46:1c:a1:64: 8d:46:6e:aa:cd:89:b4:5d:9d:ed:bd:c0:1d:72:ae: 24:2c:49:ea:cd:21:af:98:e9:71:ee:af:89:21:ec: 1b:de:33:17:c6:fc:07:33:95:43:3d:9c:26:7f:3a: 44:2f:69:0c:61:a1:65:3d:83:ca:cf:ba:a7:de:c9: 06:91:83:b1:36:9a:d2:cb:99:50:68:2a:f5:52:10: 89:db:b8:d6:44:80:75:90:8e:a8:05:de:b7:d4:3d: 5d:40:cb:72:5c:c5:ce:d0:66:57:8f:ce:fa:91:37: 8a:83:2f:c3:46:35:2b:43:19:e5:aa:ad:68:71:16: b3:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:84:D3:89:38:D2:80:70:6E:1B:57:93:A8:3D:74:77:84:F1:65:E4 X509v3 Authority Key Identifier: keyid:41:FE:1D:41:35:AB:2D:67:62:3E:76:08:33:98:46:8A:D4:FA:A1:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:55:74:22:28:68:e9:94:38:46:16:5a:68:44:4a:7b:d3:bd: 37:1b:92:a5:4b:85:9d:32:98:1f:2e:d9:9d:84:6d:bc:7e:3f: 3e:d3:98:b0:92:95:e5:ae:7e:fe:59:e2:72:90:75:19:2b:b5: 4d:da:a8:c8:e7:2a:b0:9c:92:b7:31:7f:aa:00:08:73:e7:67: 24:0c:1e:28:50:21:5e:83:2d:e1:b0:06:76:67:70:5a:f9:f7: b9:d9:80:21:17:eb:ce:a0:eb:fa:21:19:3e:e8:63:19:44:75: d3:e7:9a:54:22:be:16:40:99:eb:25:41:10:56:ce:22:f3:2d: 71:16:8d:93:fe:18:4e:69:cc:54:96:0f:83:a3:db:43:3c:ef: ef:82:84:cd:7b:46:4c:3a:0a:cd:0c:e8:fe:bd:38:d3:ab:a7: 3c:35:94:ed:1d:0b:e3:22:f9:92:68:17:cd:04:b7:d2:55:bf: 1a:b6:75:70:c1:c6:46:76:27:d9:a3:a9:c5:0b:3a:6c:5a:19: 75:fc:0e:63:70:3e:8d:9e:34:6d:ff:1d:10:33:f2:9d:40:b4: 8b:bf:2a:82:f0:f5:4f:3e:26:59:8e:4f:d9:0d:46:3c:20:b7: 16:4d:a8:af:a3:dd:9b:7d:14:cb:c6:69:8a:3f:f8:70:d0:0a: 15:98:88:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHD8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1RDcxMTAvBgNVBAUTKDQxRkUxRDQxMzVBQjJENjc2MjNFNzYwODMzOTg0NjhB RDRGQUExREMwHhcNMjUxMDE4MTYzNDEzWhcNMjUxMDI1MTYzNDEzWjAYMRYwFAYD VQQDEw02OGYzYzE4NS1mODU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3MuIP2Vzv4dWZR3Cqfsb+7LT0tI+htQdVgJ+W3Axkw9uIdiv+2E8myLCMmKk IxOtOhMQgjjaL8tdHOMoJ4SEOt+dc9IDqdJstm+hnbcgRpROM2QB2WtOt+mO50uQ 9L8oxEPYq/tAeHo4KDPTj8u4+Xuv6b/K/q+S2ITqOxr+w+Q5b0YcoWSNRm6qzYm0 XZ3tvcAdcq4kLEnqzSGvmOlx7q+JIewb3jMXxvwHM5VDPZwmfzpEL2kMYaFlPYPK z7qn3skGkYOxNprSy5lQaCr1UhCJ27jWRIB1kI6oBd631D1dQMtyXMXO0GZXj876 kTeKgy/DRjUrQxnlqq1ocRazkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNKE04k4 0oBwbhtXk6g9dHeE8WXkMB8GA1UdIwQYMBaAFEH+HUE1qy1nYj52CDOYRorU+qHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVENy8yNTg3MkJCRTAz QjQxMUU3QjgxMUFBMTRDNEY5QUUwMi9RZjRkUVRXckxXZGlQbllJTTVoR2l0VDZv ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FmNGRRVFdyTFdkaVBuWUlNNWhHaXRUNm9kdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVENy8yNTg3MkJCRTAzQjQxMUU3QjgxMUFBMTRDNEY5QUUwMi9RZjRkUVRXckxX ZGlQbllJTTVoR2l0VDZvZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1VXQiKGjplDhGFlpoREp70703G5KlS4WdMpgfLtmdhG28fj8+05iw kpXlrn7+WeJykHUZK7VN2qjI5yqwnJK3MX+qAAhz52ckDB4oUCFegy3hsAZ2Z3Ba +fe52YAhF+vOoOv6IRk+6GMZRHXT55pUIr4WQJnrJUEQVs4i8y1xFo2T/hhOacxU lg+Do9tDPO/vgoTNe0ZMOgrNDOj+vTjTq6c8NZTtHQvjIvmSaBfNBLfSVb8atnVw wcZGdifZo6nFCzpsWhl1/A5jcD6NnjRt/x0QM/KdQLSLvyqC8PVPPiZZjk/ZDUY8 ILcWTaivo92bfRTLxmmKP/hw0AoVmIi1 -----END CERTIFICATE-----Generated at Mon Oct 20 10:44:23 2025 by rpki-client