$ rpki-client -vvf rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft File: qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft (raw, json) Hash identifier: az+ejJi2fvwiFmymdqMVk++EQRYzkrhET3Assxk9ibc= Subject key identifier: DA:35:FD:C0:58:7B:47:6C:54:EF:5B:68:8C:72:76:B7:EA:04:3B:31 Authority key identifier: A8:72:42:B7:36:27:D4:29:23:4A:5F:54:C5:23:BB:41:EB:BE:87:AA Certificate issuer: /CN=A911FABC/serialNumber=A87242B73627D429234A5F54C523BB41EBBE87AA Certificate serial: 01FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft Manifest number: 01F4 Signing time: Sun 19 Oct 2025 05:02:18 +0000 Manifest this update: Sun 19 Oct 2025 05:02:17 +0000 Manifest next update: Sun 26 Oct 2025 05:02:17 +0000 Files and hashes: 1: qHJCtzYn1CkjSl9UxSO7Qeu-h6o.crl (hash: FZOcOmUGkY3tcZX1U9+crV3YArJ/4gwILOiOw4i++Po=) 2: 9BF55430C4D611EDA65E8C87C4F9AE02.roa (hash: yQWifcUacebm0QWmZ7UB602HfF6Yw1unRDBx3kif0PM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.crl rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:02:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 506 (0x1fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FABC, serialNumber=A87242B73627D429234A5F54C523BB41EBBE87AA Validity Not Before: Oct 19 05:02:17 2025 GMT Not After : Oct 26 05:02:17 2025 GMT Subject: CN=68f470d9-d9c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:08:60:52:5f:9d:17:f8:4f:13:b0:bd:d4:c6: 05:e2:16:8f:63:12:79:e4:02:af:70:0b:3a:e2:14: 6a:5e:ff:3d:ec:10:49:87:fe:68:65:06:cf:f7:7c: f1:b9:c4:42:ed:bb:fc:fe:2f:6b:20:27:5b:75:27: b4:82:66:f0:8e:75:fa:5f:b0:f7:8c:96:69:31:cb: 22:22:44:f2:6a:6d:c8:7b:5e:c4:86:c1:7a:01:c0: e3:65:7c:6e:fa:62:d2:59:a8:82:49:0c:1c:67:b0: da:b2:9d:d1:50:7c:22:35:fa:e2:6d:4b:76:78:e8: cd:62:01:2c:8c:98:2e:88:0c:7f:36:9a:e8:d8:a2: b8:16:9a:bf:54:fe:12:e9:c4:97:12:97:e7:7e:f2: 86:98:67:61:bf:b0:56:d8:fb:12:81:12:a7:66:8c: c4:e2:2a:75:1e:45:9c:ac:8a:02:ec:99:e5:ae:51: c3:a6:66:6a:3c:7b:bc:e3:ed:48:9e:ad:d2:f4:a1: ca:22:bb:bb:0f:dc:8b:be:79:56:ba:6a:44:e4:53: 87:11:05:84:51:ab:8e:41:41:e9:b1:8d:ac:5c:c9: a2:ff:44:df:3c:44:0d:ee:05:be:c2:8f:ad:9b:01: 9a:7f:c4:eb:1e:6a:48:11:b9:77:52:1d:77:db:e6: 9b:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:35:FD:C0:58:7B:47:6C:54:EF:5B:68:8C:72:76:B7:EA:04:3B:31 X509v3 Authority Key Identifier: keyid:A8:72:42:B7:36:27:D4:29:23:4A:5F:54:C5:23:BB:41:EB:BE:87:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:3b:c3:05:ed:c4:e5:f9:86:ee:e5:9b:69:98:d2:03:17:31: a6:03:67:d5:59:c2:c7:2f:73:1f:03:fc:c9:a2:a9:86:b4:57: 94:4e:9a:04:71:cd:db:74:dd:43:c2:0c:90:6b:b4:96:12:4f: 44:99:47:37:96:43:be:68:98:3b:ca:82:ef:68:3a:d4:73:3a: 98:58:0d:33:cc:2a:d7:88:72:ff:ed:dc:0f:2f:20:c9:b0:51: 60:6f:34:4f:85:c6:5d:2a:38:6b:2a:d7:03:d9:36:5b:df:4f: ea:2c:89:87:a3:56:51:97:39:4c:24:b0:da:28:51:e7:11:2e: 05:36:1d:88:b1:ae:d0:a6:4b:b9:03:94:b0:d8:50:df:bd:f9: 9c:74:d4:7b:8c:47:af:24:bc:1d:33:16:13:05:dd:6e:32:6c: e2:15:ef:0b:11:0a:42:68:1e:b6:3e:0e:52:c3:f3:bb:f5:a9: ee:c4:73:71:6e:4d:a9:11:a7:87:c5:7d:a6:24:97:f3:5e:21: 84:84:9c:95:0f:d0:63:ad:cb:e8:77:6f:75:f6:bb:f7:62:cc: 71:9c:ff:0d:e7:f2:0c:4c:5a:dd:07:18:6e:3d:d8:de:e0:78: 19:0b:31:2b:c7:68:04:7d:18:0f:61:f6:e6:43:a6:0c:f7:7a: bc:d8:9b:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZBQkMxMTAvBgNVBAUTKEE4NzI0MkI3MzYyN0Q0MjkyMzRBNUY1NEM1MjNCQjQx RUJCRTg3QUEwHhcNMjUxMDE5MDUwMjE3WhcNMjUxMDI2MDUwMjE3WjAYMRYwFAYD VQQDEw02OGY0NzBkOS1kOWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4QhgUl+dF/hPE7C91MYF4haPYxJ55AKvcAs64hRqXv897BBJh/5oZQbP93zx ucRC7bv8/i9rICdbdSe0gmbwjnX6X7D3jJZpMcsiIkTyam3Ie17EhsF6AcDjZXxu +mLSWaiCSQwcZ7Dasp3RUHwiNfribUt2eOjNYgEsjJguiAx/Npro2KK4Fpq/VP4S 6cSXEpfnfvKGmGdhv7BW2PsSgRKnZozE4ip1HkWcrIoC7JnlrlHDpmZqPHu84+1I nq3S9KHKIru7D9yLvnlWumpE5FOHEQWEUauOQUHpsY2sXMmi/0TfPEQN7gW+wo+t mwGaf8TrHmpIEbl3Uh132+abcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNo1/cBY e0dsVO9baIxydrfqBDsxMB8GA1UdIwQYMBaAFKhyQrc2J9QpI0pfVMUju0Hrvoeq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkFCQy9EOTQyMDA3NkM0 RDIxMUVEQkYwRTE5ODJDNEY5QUUwMi9xSEpDdHpZbjFDa2pTbDlVeFNPN1FldS1o Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FISkN0elluMUNralNsOVV4U083UWV1LWg2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RkFCQy9EOTQyMDA3NkM0RDIxMUVEQkYwRTE5ODJDNEY5QUUwMi9xSEpDdHpZbjFD a2pTbDlVeFNPN1FldS1oNm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmO8MF7cTl+Ybu5ZtpmNIDFzGmA2fVWcLHL3MfA/zJoqmGtFeUTpoE cc3bdN1DwgyQa7SWEk9EmUc3lkO+aJg7yoLvaDrUczqYWA0zzCrXiHL/7dwPLyDJ sFFgbzRPhcZdKjhrKtcD2TZb30/qLImHo1ZRlzlMJLDaKFHnES4FNh2Isa7Qpku5 A5Sw2FDfvfmcdNR7jEevJLwdMxYTBd1uMmziFe8LEQpCaB62Pg5Sw/O79anuxHNx bk2pEaeHxX2mJJfzXiGEhJyVD9Bjrcvod2919rv3YsxxnP8N5/IMTFrdBxhuPdje 4HgZCzErx2gEfRgPYfbmQ6YM93q82Jui -----END CERTIFICATE-----Generated at Mon Oct 20 09:37:58 2025 by rpki-client