$ rpki-client -vvf rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/QqhNjAiJrcVYYGY5k7zKg2EnG_4.mft File: QqhNjAiJrcVYYGY5k7zKg2EnG_4.mft (raw, json) Hash identifier: q7yhdLu+r6XmCjMB+cYH6MuQyfhbOdQEdabVhVIZKQg= Subject key identifier: 28:91:9C:F2:05:BF:1D:9C:72:6C:CE:D7:B4:5E:61:91:DE:52:F0:35 Authority key identifier: 42:A8:4D:8C:08:89:AD:C5:58:60:66:39:93:BC:CA:83:61:27:1B:FE Certificate issuer: /CN=A912087D/serialNumber=42A84D8C0889ADC55860663993BCCA8361271BFE Certificate serial: 027E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QqhNjAiJrcVYYGY5k7zKg2EnG_4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/QqhNjAiJrcVYYGY5k7zKg2EnG_4.mft Manifest number: 027A Signing time: Sun 19 Oct 2025 03:52:26 +0000 Manifest this update: Sun 19 Oct 2025 03:52:26 +0000 Manifest next update: Sun 26 Oct 2025 03:52:26 +0000 Files and hashes: 1: QqhNjAiJrcVYYGY5k7zKg2EnG_4.crl (hash: 2fyUJEW3uvL0CT6g118toSKRjAmw45Kui/3SltHOJ4Y=) 2: 07E789A228F011ED94BE9345C4F9AE02.roa (hash: UjqlRAwfwNLo2LEBYwVtNQxCTDJqJ6taRgiSuyPlUdk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/QqhNjAiJrcVYYGY5k7zKg2EnG_4.crl rsync://rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/QqhNjAiJrcVYYGY5k7zKg2EnG_4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QqhNjAiJrcVYYGY5k7zKg2EnG_4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:52:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 638 (0x27e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912087D, serialNumber=42A84D8C0889ADC55860663993BCCA8361271BFE Validity Not Before: Oct 19 03:52:26 2025 GMT Not After : Oct 26 03:52:26 2025 GMT Subject: CN=68f4607a-dc36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:36:f4:ce:1a:4b:35:c6:a0:32:f9:27:6e:69: 81:c0:a4:c2:6d:df:29:f0:e5:90:1b:ba:0c:25:4c: f3:00:15:13:dc:23:9e:9e:04:4b:27:42:69:47:88: 2a:00:b0:d7:37:51:39:29:71:56:f2:07:79:f6:21: b3:39:6f:f3:18:70:c4:d3:42:20:8b:17:ac:35:44: 8a:28:a5:f9:80:54:ef:c0:e2:d1:f3:da:26:75:95: 3a:e4:c9:2f:39:64:cb:81:c5:95:dc:65:e1:9b:b5: 1e:85:f0:a9:b2:6c:a4:2c:d2:c9:78:7e:db:56:de: 59:64:28:6f:04:e0:c7:dd:78:38:9b:c4:26:be:bb: 07:3d:f9:da:db:e6:af:d2:8b:0e:a8:fe:79:f7:45: be:2b:71:70:17:9c:d0:a1:ff:02:bf:5d:bf:0f:49: d0:54:4d:21:10:f9:d1:d2:5d:c8:85:27:ec:0f:b5: 25:c0:eb:cc:92:e2:87:a2:41:a8:66:5b:97:d1:27: 6a:33:b0:d0:f7:86:53:70:33:13:82:56:3f:e2:3a: 46:be:d8:2a:11:7b:db:fc:8d:f2:c0:23:0d:1b:12: 9b:e4:d7:a2:fa:8a:8b:61:2b:25:69:58:4f:c5:15: 3f:3b:9d:40:91:a5:f8:5d:33:0b:f4:fd:30:c0:66: 78:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:91:9C:F2:05:BF:1D:9C:72:6C:CE:D7:B4:5E:61:91:DE:52:F0:35 X509v3 Authority Key Identifier: keyid:42:A8:4D:8C:08:89:AD:C5:58:60:66:39:93:BC:CA:83:61:27:1B:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/QqhNjAiJrcVYYGY5k7zKg2EnG_4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QqhNjAiJrcVYYGY5k7zKg2EnG_4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912087D/4C15858C28ED11ED8B597B40C4F9AE02/QqhNjAiJrcVYYGY5k7zKg2EnG_4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:5b:7a:77:2b:13:8c:cf:90:ce:0b:1f:68:cd:e7:09:28:f2: db:f6:cb:05:ff:98:d4:2c:47:fd:98:b5:15:df:c0:20:b3:b0: 9f:60:1e:92:a4:b9:48:e7:2d:a0:d9:c6:43:e0:e6:8a:a9:25: 54:9b:81:44:70:6f:a5:73:43:72:3c:77:ec:8c:7e:2d:99:04: 8a:06:2a:42:59:85:45:31:e9:75:e9:0e:d2:8e:f3:db:bb:bb: 53:a0:47:6e:d8:b9:da:c9:c8:e5:5b:e8:e8:82:1e:b1:5c:4c: 65:77:08:c5:e3:e0:65:97:f0:cc:26:b9:e7:2c:fa:95:48:6d: 96:72:80:b2:9e:30:33:ab:6a:dd:7d:5a:71:99:08:8c:fe:27: af:c5:5c:9e:c2:a5:be:83:a3:2f:21:9a:8a:e1:17:4b:07:79: 17:a1:76:de:e2:bc:33:38:11:6b:9b:73:a2:45:35:06:99:5c: c4:e3:bc:7c:6e:ac:84:43:29:dd:9d:e8:c7:07:43:41:2a:a2: b0:0b:93:41:b0:9d:6f:20:09:ec:3b:45:f7:dd:64:b6:6f:5a: eb:2a:a0:07:b2:2c:7c:68:c3:d2:80:2e:58:4c:85:e8:69:4f: 51:4c:6b:c3:16:86:89:38:70:1c:23:c8:d0:69:59:95:13:90: 78:c6:13:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjA4N0QxMTAvBgNVBAUTKDQyQTg0RDhDMDg4OUFEQzU1ODYwNjYzOTkzQkNDQTgz NjEyNzFCRkUwHhcNMjUxMDE5MDM1MjI2WhcNMjUxMDI2MDM1MjI2WjAYMRYwFAYD VQQDEw02OGY0NjA3YS1kYzM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyDb0zhpLNcagMvknbmmBwKTCbd8p8OWQG7oMJUzzABUT3COengRLJ0JpR4gq ALDXN1E5KXFW8gd59iGzOW/zGHDE00IgixesNUSKKKX5gFTvwOLR89omdZU65Mkv OWTLgcWV3GXhm7UehfCpsmykLNLJeH7bVt5ZZChvBODH3Xg4m8QmvrsHPfna2+av 0osOqP5590W+K3FwF5zQof8Cv12/D0nQVE0hEPnR0l3IhSfsD7UlwOvMkuKHokGo ZluX0SdqM7DQ94ZTcDMTglY/4jpGvtgqEXvb/I3ywCMNGxKb5Nei+oqLYSslaVhP xRU/O51AkaX4XTML9P0wwGZ4VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCiRnPIF vx2ccmzO17ReYZHeUvA1MB8GA1UdIwQYMBaAFEKoTYwIia3FWGBmOZO8yoNhJxv+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDg3RC80QzE1ODU4QzI4 RUQxMUVEOEI1OTdCNDBDNEY5QUUwMi9RcWhOakFpSnJjVllZR1k1azd6S2cyRW5H XzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FxaE5qQWlKcmNWWVlHWTVrN3pLZzJFbkdfNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDg3RC80QzE1ODU4QzI4RUQxMUVEOEI1OTdCNDBDNEY5QUUwMi9RcWhOakFpSnJj VllZR1k1azd6S2cyRW5HXzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHW3p3KxOMz5DOCx9ozecJKPLb9ssF/5jULEf9mLUV38Ags7CfYB6S pLlI5y2g2cZD4OaKqSVUm4FEcG+lc0NyPHfsjH4tmQSKBipCWYVFMel16Q7SjvPb u7tToEdu2LnaycjlW+jogh6xXExldwjF4+Bll/DMJrnnLPqVSG2WcoCynjAzq2rd fVpxmQiM/ievxVyewqW+g6MvIZqK4RdLB3kXoXbe4rwzOBFrm3OiRTUGmVzE47x8 bqyEQyndnejHB0NBKqKwC5NBsJ1vIAnsO0X33WS2b1rrKqAHsix8aMPSgC5YTIXo aU9RTGvDFoaJOHAcI8jQaVmVE5B4xhMn -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:13 2025 by rpki-client