$ rpki-client -vvf rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft File: QG4t-6oOoAfdxmmT8sezCNoKGlc.mft (raw, json) Hash identifier: vj3OmvWzs1VGpFJ6b9h0lJbEkgPM2UOnxOeILtpH704= Subject key identifier: FE:64:2D:BA:30:97:AE:77:26:04:5E:0B:39:19:B7:30:AE:EC:C8:0E Authority key identifier: 40:6E:2D:FB:AA:0E:A0:07:DD:C6:69:93:F2:C7:B3:08:DA:0A:1A:57 Certificate issuer: /CN=A91315C1/serialNumber=406E2DFBAA0EA007DDC66993F2C7B308DA0A1A57 Certificate serial: 0C1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft Manifest number: 0C12 Signing time: Sat 18 Oct 2025 19:33:26 +0000 Manifest this update: Sat 18 Oct 2025 19:33:26 +0000 Manifest next update: Sat 25 Oct 2025 19:33:26 +0000 Files and hashes: 1: QG4t-6oOoAfdxmmT8sezCNoKGlc.crl (hash: dclT6XgaL58hZqeYyjTHeulWizLUASJwzdd78D11+4k=) 2: 9D6DB59E1C5211EA8C6AAE37C4F9AE02.roa (hash: fjLr8uQxYz0b2IkiqsLdHlpaSbA1UhMnKJdo096hNVQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.crl rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:33:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3098 (0xc1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91315C1, serialNumber=406E2DFBAA0EA007DDC66993F2C7B308DA0A1A57 Validity Not Before: Oct 18 19:33:26 2025 GMT Not After : Oct 25 19:33:26 2025 GMT Subject: CN=68f3eb86-60e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:0d:a1:11:4a:65:81:7e:09:94:ca:90:70:9a: b5:62:78:7a:e8:64:7b:e5:04:e6:da:90:bc:8b:e5: f4:94:d2:b5:6b:82:4e:83:29:05:7b:6e:70:73:1a: 10:88:56:fd:6a:a9:2c:e9:8f:41:54:5c:22:9e:8b: e7:34:27:18:db:29:59:7d:9e:ef:2d:64:6e:64:6f: b7:7f:32:14:35:a0:0d:3c:cd:3b:54:88:d5:ef:aa: 8e:7b:3c:c8:ff:9e:4e:49:5b:20:ee:86:26:0d:8a: 3c:5c:ca:aa:a9:3a:c2:95:d1:e8:2d:4b:d6:6d:49: c2:a5:72:fe:d0:07:45:87:96:62:bf:63:3e:a9:96: 4b:e8:d2:70:3a:8e:03:d0:73:d3:00:bb:50:ba:e7: 0b:9c:f3:95:e9:d4:a5:35:b8:15:45:ee:6e:13:0d: 3d:58:11:2e:f1:c0:15:da:ca:ae:1d:27:dd:18:95: ce:5e:fa:cd:c3:d8:9e:f2:94:88:a7:e3:6a:9e:2b: e7:3a:da:4f:e6:d3:ed:d9:1c:57:ab:d7:e2:6c:38: a2:d6:5c:b1:ef:1a:04:0c:40:6e:9a:7a:20:85:f0: b1:27:22:b6:a9:60:6d:a8:65:6c:b5:d8:de:a4:f9: 16:a4:0a:48:a9:95:32:38:26:10:96:e4:25:b4:e4: d8:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:64:2D:BA:30:97:AE:77:26:04:5E:0B:39:19:B7:30:AE:EC:C8:0E X509v3 Authority Key Identifier: keyid:40:6E:2D:FB:AA:0E:A0:07:DD:C6:69:93:F2:C7:B3:08:DA:0A:1A:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:fe:a9:9d:17:db:cb:1c:17:69:fb:97:4f:0c:f4:be:3d:af: 65:4c:c0:6f:b9:ef:ad:d1:69:f3:06:f5:af:8e:44:3c:67:58: 93:ea:af:73:94:f9:18:6f:56:f5:0b:c2:4b:62:09:d3:fe:37: 3f:3d:95:d4:db:30:95:d3:42:c1:43:2c:14:df:5a:41:d9:ab: 05:4b:06:b6:ae:fe:71:25:e3:aa:c6:94:f2:d2:bd:1f:40:3d: b1:3c:15:21:2f:c0:1b:3a:7f:1a:e3:ed:90:bb:73:a9:c0:3e: 71:1f:a4:17:a9:56:bf:2e:e0:f1:31:b4:21:ad:12:b3:af:06: 0d:76:3f:76:d9:e1:0c:9d:a0:7c:e3:38:8f:fa:18:ef:aa:4b: 27:9e:47:b4:14:a4:f1:4f:a3:73:2e:18:2f:52:72:3b:35:a3: d2:de:ac:d5:74:53:0a:1c:19:d5:ce:6e:2b:8f:15:89:c9:5b: e9:d9:c7:68:d4:0f:fb:75:76:b2:2e:54:c5:d1:88:d5:07:8f: e6:ca:54:d3:14:d0:cd:1f:13:c0:8b:35:d5:33:5c:67:a1:2a: 00:e0:e4:05:c6:f5:5f:6b:5d:1e:e2:24:f1:78:b4:65:a1:f2: 5e:8b:4d:e4:ce:1d:28:de:ed:9c:c5:69:e6:52:6c:2b:32:2d: 3b:88:12:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE1QzExMTAvBgNVBAUTKDQwNkUyREZCQUEwRUEwMDdEREM2Njk5M0YyQzdCMzA4 REEwQTFBNTcwHhcNMjUxMDE4MTkzMzI2WhcNMjUxMDI1MTkzMzI2WjAYMRYwFAYD VQQDEw02OGYzZWI4Ni02MGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0w2hEUplgX4JlMqQcJq1Ynh66GR75QTm2pC8i+X0lNK1a4JOgykFe25wcxoQ iFb9aqks6Y9BVFwinovnNCcY2ylZfZ7vLWRuZG+3fzIUNaANPM07VIjV76qOezzI /55OSVsg7oYmDYo8XMqqqTrCldHoLUvWbUnCpXL+0AdFh5Ziv2M+qZZL6NJwOo4D 0HPTALtQuucLnPOV6dSlNbgVRe5uEw09WBEu8cAV2squHSfdGJXOXvrNw9ie8pSI p+NqnivnOtpP5tPt2RxXq9fibDii1lyx7xoEDEBumnoghfCxJyK2qWBtqGVstdje pPkWpApIqZUyOCYQluQltOTYOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP5kLbow l653JgReCzkZtzCu7MgOMB8GA1UdIwQYMBaAFEBuLfuqDqAH3cZpk/LHswjaChpX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTVDMS8zMDA5QThBQTFD NTIxMUVBODREMTk5MzdDNEY5QUUwMi9RRzR0LTZvT29BZmR4bW1UOHNlekNOb0tH bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FHNHQtNm9Pb0FmZHhtbVQ4c2V6Q05vS0dsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTVDMS8zMDA5QThBQTFDNTIxMUVBODREMTk5MzdDNEY5QUUwMi9RRzR0LTZvT29B ZmR4bW1UOHNlekNOb0tHbGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAr/qmdF9vLHBdp+5dPDPS+Pa9lTMBvue+t0WnzBvWvjkQ8Z1iT6q9z lPkYb1b1C8JLYgnT/jc/PZXU2zCV00LBQywU31pB2asFSwa2rv5xJeOqxpTy0r0f QD2xPBUhL8AbOn8a4+2Qu3OpwD5xH6QXqVa/LuDxMbQhrRKzrwYNdj922eEMnaB8 4ziP+hjvqksnnke0FKTxT6NzLhgvUnI7NaPS3qzVdFMKHBnVzm4rjxWJyVvp2cdo 1A/7dXayLlTF0YjVB4/mylTTFNDNHxPAizXVM1xnoSoA4OQFxvVfa10e4iTxeLRl ofJei03kzh0o3u2cxWnmUmwrMi07iBLg -----END CERTIFICATE-----Generated at Mon Oct 20 17:49:37 2025 by rpki-client