$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft File: QeHsF957pw-MEkF3aWN3AjclGd4.mft (raw, json) Hash identifier: xgtNeUnoWNbHqDtbnVEB9c4kVfKf2CAqY7QtyAZAfw4= Subject key identifier: AD:36:3A:69:FA:48:75:7A:07:2F:26:EA:5E:E4:CB:E9:1E:9A:3D:72 Authority key identifier: 41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE Certificate issuer: /CN=A913AE23/serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE Certificate serial: 0105 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft Manifest number: 0100 Signing time: Sun 19 Oct 2025 08:03:37 +0000 Manifest this update: Sun 19 Oct 2025 08:03:37 +0000 Manifest next update: Sun 26 Oct 2025 08:03:37 +0000 Files and hashes: 1: QeHsF957pw-MEkF3aWN3AjclGd4.crl (hash: 66CA7E6qq6xmlFIocDC7xDeTYcHMOveGLuozuCqOsn4=) 2: 8CF832322C6C11EFB50AD22EC4F9AE02.roa (hash: 2CA+qteNBX78NJxTKhwS/FKIzkSLCeJanQWnrGhStgI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:03:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 261 (0x105) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE23, serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE Validity Not Before: Oct 19 08:03:37 2025 GMT Not After : Oct 26 08:03:37 2025 GMT Subject: CN=68f49b59-8776 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:be:fa:c8:8b:2d:cf:e3:21:d2:de:f8:c4:b7: ca:35:3b:82:93:c2:73:6e:59:ed:7f:a1:61:4f:8d: 37:0b:ad:21:a4:3f:50:59:08:8c:e4:0c:8b:b9:5f: f9:4e:74:05:33:73:34:84:57:d1:d7:29:13:3a:50: 49:e2:97:03:c9:ed:96:e5:92:14:aa:5c:74:83:61: 8e:2f:d1:6b:a3:6d:23:d9:a3:a2:1f:23:8e:74:3d: ae:f5:4b:b1:18:04:d5:3d:56:5a:4c:18:a5:57:f0: f3:4b:60:6c:33:b5:cd:cd:7c:a5:18:9c:43:76:e6: 6b:c1:b2:e4:21:03:49:32:7b:61:2a:44:09:25:a9: d2:69:63:a7:83:0a:5b:a3:fd:b3:0a:65:c9:94:ed: cb:e9:9e:bd:d4:3b:0c:37:bc:e1:05:ad:8c:73:db: 96:da:be:cc:1c:17:e6:6c:28:d6:64:94:7c:e0:0c: d8:de:66:e0:2e:d9:d2:11:72:55:b8:2e:9a:57:62: cd:c5:7b:dc:9a:b7:56:fa:e0:ad:52:4e:da:62:d9: c0:87:d4:6c:c6:0f:47:73:af:c4:f1:84:12:38:95: c4:76:02:b2:0f:93:0b:a2:61:41:74:06:70:f9:21: 7d:1f:58:e7:dd:47:c7:71:87:76:ab:43:a1:a9:84: 6f:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:36:3A:69:FA:48:75:7A:07:2F:26:EA:5E:E4:CB:E9:1E:9A:3D:72 X509v3 Authority Key Identifier: keyid:41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:70:b7:a4:d2:9a:40:53:53:db:81:61:75:85:7f:11:a0:f1: 42:b7:fb:69:94:16:ec:37:69:1b:18:c6:28:20:81:12:b2:77: 55:ce:d3:98:d9:9e:1c:83:c3:cc:93:55:65:5e:52:02:f0:5a: cd:ac:9d:0b:00:56:79:a5:0c:2f:1f:df:bb:74:9f:87:d4:93: 48:21:df:20:24:e8:c8:cf:69:9a:5f:cc:16:8a:34:79:c1:39: af:eb:bf:bf:f8:7e:60:05:50:0f:a0:32:a0:0d:9c:ed:2f:18: 2b:74:12:12:7b:b1:a9:a9:d2:63:e2:5e:1b:e8:8c:7d:d9:d6: b3:d5:ea:54:4a:15:56:3c:d1:7b:f3:04:fa:19:65:ad:1b:5e: 4a:c9:5d:33:7f:15:b1:7c:42:9c:78:24:f6:39:22:b5:96:51: 00:3e:ce:ce:0d:47:bd:8d:b8:5b:14:8a:3b:31:cc:ec:b6:17: 23:ee:09:b4:08:95:3e:36:7c:74:36:a7:87:aa:a6:c6:97:90: 3f:40:42:bf:81:da:3a:7f:36:07:85:ce:23:60:f8:73:7c:06: 86:0c:43:0e:7b:5d:bf:e5:17:cd:4c:7e:ef:0a:73:6e:50:1d: 8f:c7:89:a7:cb:91:7d:14:57:df:61:3d:09:21:30:41:51:75: 0f:7c:a6:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFMjMxMTAvBgNVBAUTKDQxRTFFQzE3REU3QkE3MEY4QzEyNDE3NzY5NjM3NzAy MzcyNTE5REUwHhcNMjUxMDE5MDgwMzM3WhcNMjUxMDI2MDgwMzM3WjAYMRYwFAYD VQQDEw02OGY0OWI1OS04Nzc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp776yIstz+Mh0t74xLfKNTuCk8Jzblntf6FhT403C60hpD9QWQiM5AyLuV/5 TnQFM3M0hFfR1ykTOlBJ4pcDye2W5ZIUqlx0g2GOL9Fro20j2aOiHyOOdD2u9Uux GATVPVZaTBilV/DzS2BsM7XNzXylGJxDduZrwbLkIQNJMnthKkQJJanSaWOngwpb o/2zCmXJlO3L6Z691DsMN7zhBa2Mc9uW2r7MHBfmbCjWZJR84AzY3mbgLtnSEXJV uC6aV2LNxXvcmrdW+uCtUk7aYtnAh9Rsxg9Hc6/E8YQSOJXEdgKyD5MLomFBdAZw +SF9H1jn3UfHcYd2q0OhqYRvRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK02Omn6 SHV6By8m6l7ky+kemj1yMB8GA1UdIwQYMBaAFEHh7Bfee6cPjBJBd2ljdwI3JRne MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUUyMy8zMDFBMUU0QTJD NkMxMUVGQTM0Njk0MkRDNEY5QUUwMi9RZUhzRjk1N3B3LU1Fa0YzYVdOM0FqY2xH ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FlSHNGOTU3cHctTUVrRjNhV04zQWpjbEdkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUUyMy8zMDFBMUU0QTJDNkMxMUVGQTM0Njk0MkRDNEY5QUUwMi9RZUhzRjk1N3B3 LU1Fa0YzYVdOM0FqY2xHZDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAocLek0ppAU1PbgWF1hX8RoPFCt/tplBbsN2kbGMYoIIESsndVztOY 2Z4cg8PMk1VlXlIC8FrNrJ0LAFZ5pQwvH9+7dJ+H1JNIId8gJOjIz2maX8wWijR5 wTmv67+/+H5gBVAPoDKgDZztLxgrdBISe7GpqdJj4l4b6Ix92daz1epUShVWPNF7 8wT6GWWtG15KyV0zfxWxfEKceCT2OSK1llEAPs7ODUe9jbhbFIo7Mczsthcj7gm0 CJU+Nnx0NqeHqqbGl5A/QEK/gdo6fzYHhc4jYPhzfAaGDEMOe12/5RfNTH7vCnNu UB2Px4mny5F9FFffYT0JITBBUXUPfKYs -----END CERTIFICATE-----Generated at Tue Oct 21 15:15:15 2025 by rpki-client