$ rpki-client -vvf rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft File: QN1mK29ul7NNO3WoAH3lOI2SclM.mft (raw, json) Hash identifier: qoKWaxksS7BtACBVa2pvXvmSViyNXrU93RFqO1dIsqw= Subject key identifier: A6:10:AF:0C:25:E2:76:F9:22:E8:F3:25:D3:42:64:46:F7:BE:98:3E Authority key identifier: 40:DD:66:2B:6F:6E:97:B3:4D:3B:75:A8:00:7D:E5:38:8D:92:72:53 Certificate issuer: /CN=A911CF44/serialNumber=40DD662B6F6E97B34D3B75A8007DE5388D927253 Certificate serial: 0699 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft Manifest number: 0691 Signing time: Sat 18 Oct 2025 23:52:18 +0000 Manifest this update: Sat 18 Oct 2025 23:52:17 +0000 Manifest next update: Sat 25 Oct 2025 23:52:17 +0000 Files and hashes: 1: QN1mK29ul7NNO3WoAH3lOI2SclM.crl (hash: sERAdn5LJJwxdxHNS/rkZzQ0PGfLYKdzFtHeOIeHQtc=) 2: 85613B4E8C8411EBB68DD829C4F9AE02.roa (hash: JUDELwHgPtKuVC+Zxi+8ziVhRWeVBos3PiAym1dLOsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.crl rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:52:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1689 (0x699) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CF44, serialNumber=40DD662B6F6E97B34D3B75A8007DE5388D927253 Validity Not Before: Oct 18 23:52:17 2025 GMT Not After : Oct 25 23:52:17 2025 GMT Subject: CN=68f42831-1c11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d3:49:1e:ca:8c:c5:21:ee:c4:f8:fd:89:46: 5d:bb:dd:b3:5e:24:98:c6:e9:85:b0:94:e6:a8:c7: 6e:73:f6:f1:af:b3:c3:0e:52:81:36:cf:39:94:ce: 6f:0b:d7:fc:e5:db:da:ab:13:b6:90:6c:19:5b:ee: e2:65:36:04:28:63:c9:d5:3f:70:eb:cf:28:57:75: bc:dc:c3:a2:81:cc:47:00:44:22:3a:ea:ec:d4:6f: 6f:ce:db:dd:e1:8a:7b:31:e9:2e:2c:d2:ee:04:d4: 04:4c:65:d9:a5:b7:80:88:86:4b:2f:8c:6c:10:c6: 4d:eb:ab:86:38:07:cf:05:9f:47:11:9b:22:2c:70: 6e:41:eb:59:57:82:89:8d:96:70:ef:42:37:8f:08: 57:7a:ca:e0:61:dc:58:6b:0a:34:df:d9:94:05:64: f0:36:1e:05:fd:20:c2:ea:da:d0:31:38:ed:e0:ac: c4:72:ef:12:0e:cf:ea:32:7c:21:02:17:37:c3:17: 83:e8:7b:66:8f:21:0e:b2:84:28:c8:66:82:47:37: 55:9a:2a:b4:be:7e:ec:ad:ce:b7:b3:b7:34:72:db: 5f:5f:ac:70:a5:ce:b9:3a:46:d4:ad:30:a3:50:f8: d6:55:ec:cb:ca:20:4b:0d:9b:23:32:5d:93:d0:bf: 5a:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:10:AF:0C:25:E2:76:F9:22:E8:F3:25:D3:42:64:46:F7:BE:98:3E X509v3 Authority Key Identifier: keyid:40:DD:66:2B:6F:6E:97:B3:4D:3B:75:A8:00:7D:E5:38:8D:92:72:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:ae:60:05:fa:62:02:b3:d0:4e:d4:13:a9:a4:48:a3:0d:76: d8:b8:67:18:ea:6d:8b:8a:1a:e7:06:48:80:61:fa:b5:f7:a7: 2a:7c:6b:81:1a:84:d1:fd:1b:82:8e:48:e0:bc:b5:37:3c:9a: ab:33:bd:e2:54:11:8b:c1:69:a5:d2:be:01:8d:c4:8d:b3:6c: 2e:d7:6b:4f:72:84:f0:28:6f:b7:9f:e1:55:4f:bc:16:97:9a: 57:b8:90:8d:cd:1d:6b:95:cc:13:b1:b2:2c:fc:8a:b6:6d:20: c7:b4:d7:78:bb:ee:d0:63:0b:66:0d:64:a8:1a:45:06:1d:7c: 31:b3:92:70:97:15:42:3e:fc:73:0d:df:e7:cc:0b:83:4c:09: 9f:21:4f:70:c9:35:3b:e0:9e:34:2a:cd:cd:f8:f6:77:a5:d8: e2:06:c8:c8:ce:98:42:d2:51:1b:b8:f6:df:34:0d:12:ae:43: 64:ac:36:f5:fd:ae:13:f8:ff:d2:a0:e6:22:99:52:29:45:ae: 79:cb:61:97:5d:fb:f0:37:30:90:4d:d5:d6:10:af:f3:a1:64: b9:58:b3:84:ff:89:2d:9a:ba:b4:93:3e:58:e4:81:bf:75:b2: 2e:92:21:e7:ff:2d:4c:d5:47:37:17:a4:b7:f9:c3:53:be:19: a2:be:0b:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNGNDQxMTAvBgNVBAUTKDQwREQ2NjJCNkY2RTk3QjM0RDNCNzVBODAwN0RFNTM4 OEQ5MjcyNTMwHhcNMjUxMDE4MjM1MjE3WhcNMjUxMDI1MjM1MjE3WjAYMRYwFAYD VQQDEw02OGY0MjgzMS0xYzExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAudNJHsqMxSHuxPj9iUZdu92zXiSYxumFsJTmqMduc/bxr7PDDlKBNs85lM5v C9f85dvaqxO2kGwZW+7iZTYEKGPJ1T9w688oV3W83MOigcxHAEQiOurs1G9vztvd 4Yp7MekuLNLuBNQETGXZpbeAiIZLL4xsEMZN66uGOAfPBZ9HEZsiLHBuQetZV4KJ jZZw70I3jwhXesrgYdxYawo039mUBWTwNh4F/SDC6trQMTjt4KzEcu8SDs/qMnwh Ahc3wxeD6HtmjyEOsoQoyGaCRzdVmiq0vn7src63s7c0cttfX6xwpc65OkbUrTCj UPjWVezLyiBLDZsjMl2T0L9aEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKYQrwwl 4nb5IujzJdNCZEb3vpg+MB8GA1UdIwQYMBaAFEDdZitvbpezTTt1qAB95TiNknJT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0Y0NC82Njc3QkVCNjhD ODMxMUVCODQ5RTYxMjlDNEY5QUUwMi9RTjFtSzI5dWw3Tk5PM1dvQUgzbE9JMlNj bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOMW1LMjl1bDdOTk8zV29BSDNsT0kyU2NsTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0Y0NC82Njc3QkVCNjhDODMxMUVCODQ5RTYxMjlDNEY5QUUwMi9RTjFtSzI5dWw3 Tk5PM1dvQUgzbE9JMlNjbE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwrmAF+mICs9BO1BOppEijDXbYuGcY6m2LihrnBkiAYfq196cqfGuB GoTR/RuCjkjgvLU3PJqrM73iVBGLwWml0r4BjcSNs2wu12tPcoTwKG+3n+FVT7wW l5pXuJCNzR1rlcwTsbIs/Iq2bSDHtNd4u+7QYwtmDWSoGkUGHXwxs5JwlxVCPvxz Dd/nzAuDTAmfIU9wyTU74J40Ks3N+PZ3pdjiBsjIzphC0lEbuPbfNA0SrkNkrDb1 /a4T+P/SoOYimVIpRa55y2GXXfvwNzCQTdXWEK/zoWS5WLOE/4ktmrq0kz5Y5IG/ dbIukiHn/y1M1Uc3F6S3+cNTvhmivgt0 -----END CERTIFICATE-----Generated at Sun Oct 19 23:28:14 2025 by rpki-client