$ rpki-client -vvf rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.mft File: qJaxcL8NiHI_NsesIIeFSqKEvXE.mft (raw, json) Hash identifier: sIbW4p7y+fnCmZ5AXwP08PxsA9PVUaZIuAM6YhGPEZo= Subject key identifier: E1:57:E8:95:6D:67:7A:4E:15:6A:B3:1D:B3:8E:AD:FC:0F:94:63:AC Authority key identifier: A8:96:B1:70:BF:0D:88:72:3F:36:C7:AC:20:87:85:4A:A2:84:BD:71 Certificate issuer: /CN=A913DF3B/serialNumber=A896B170BF0D88723F36C7AC2087854AA284BD71 Certificate serial: 0596 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qJaxcL8NiHI_NsesIIeFSqKEvXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.mft Manifest number: 0590 Signing time: Sun 19 Oct 2025 00:53:08 +0000 Manifest this update: Sun 19 Oct 2025 00:53:08 +0000 Manifest next update: Sun 26 Oct 2025 00:53:08 +0000 Files and hashes: 1: qJaxcL8NiHI_NsesIIeFSqKEvXE.crl (hash: kcVaVEKOvhpIGtq1hgX/pUtxx558WKo+zYN63KakZnU=) 2: 8D7E9B7EF03D11EB804DF61FC4F9AE02.roa (hash: 0C374rc1/yzntVHlBO2RHsCgAiQUBU23dQBcBVfekCo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.crl rsync://rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qJaxcL8NiHI_NsesIIeFSqKEvXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:53:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1430 (0x596) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913DF3B, serialNumber=A896B170BF0D88723F36C7AC2087854AA284BD71 Validity Not Before: Oct 19 00:53:08 2025 GMT Not After : Oct 26 00:53:08 2025 GMT Subject: CN=68f43674-0038 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:2b:2f:5f:19:8c:96:8f:a0:0d:8e:70:84:35: 3d:84:ae:ad:46:ee:95:6c:56:db:e9:c2:18:66:1e: 3a:e6:bc:39:54:a7:49:92:9d:48:74:1a:52:58:77: 5f:d6:98:9d:30:99:77:17:d1:22:7b:4b:d1:e5:0d: 88:5d:be:64:fe:c2:ee:90:1c:c6:c0:7a:72:29:77: e6:e4:ac:81:d9:f6:b1:72:e6:ca:13:fc:5a:e9:86: 62:1a:6c:0c:6d:d4:d6:35:c6:0c:58:27:4b:c1:01: 48:ce:93:02:4e:a8:8d:e5:39:47:0f:cc:40:c4:f3: 49:1b:95:d4:c7:98:73:1f:a7:55:63:a2:ef:4f:da: 68:51:6f:3a:73:10:2c:2d:6d:d0:64:03:8e:0b:86: 18:18:33:c4:4e:b2:f5:77:c0:4a:b2:4c:54:52:d9: 6e:e3:c4:1b:2d:fb:98:f3:16:eb:aa:7e:50:f5:86: 24:0f:30:da:98:63:b0:56:6d:00:aa:fe:a4:21:e7: ce:0b:32:33:54:bc:33:70:d2:0c:c9:5f:6a:14:4c: 04:26:c2:44:1d:13:3a:c5:75:64:4d:c7:0e:17:09: 88:9e:76:f2:02:19:93:ab:d2:63:20:4c:b5:0b:c1: d4:35:b2:39:07:ce:f6:b8:d2:6d:6c:a3:8f:99:12: e8:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:57:E8:95:6D:67:7A:4E:15:6A:B3:1D:B3:8E:AD:FC:0F:94:63:AC X509v3 Authority Key Identifier: keyid:A8:96:B1:70:BF:0D:88:72:3F:36:C7:AC:20:87:85:4A:A2:84:BD:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qJaxcL8NiHI_NsesIIeFSqKEvXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913DF3B/CDBA812EF03A11EB8D30E058C4F9AE02/qJaxcL8NiHI_NsesIIeFSqKEvXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:02:6e:4c:c6:47:b3:0b:11:ff:d2:44:e2:9a:0a:89:58:07: 50:a5:bf:6e:c3:9c:74:83:a5:f9:b7:fd:ab:cf:0b:d7:95:b7: de:d4:91:31:ed:6b:78:c5:a7:96:8e:ef:b5:c8:4d:b6:c9:2b: ef:7d:65:c0:1d:ef:f1:fb:8f:4c:92:f2:85:9c:e7:fa:ae:8c: a3:b9:cf:c8:ef:24:9f:0d:57:3f:b5:05:83:b2:56:c9:18:d3: d0:db:f5:85:22:06:d3:21:eb:94:6e:18:f5:7c:54:14:65:1f: 0f:1b:5f:03:9b:44:e6:fe:24:e2:57:7f:61:dd:6b:0c:0b:68: 81:00:7c:f3:2d:aa:de:37:83:fa:21:4a:5b:d2:55:99:3a:d8: 30:1b:51:5e:81:5a:3d:64:8d:52:34:e2:f8:8f:67:b0:c6:1a: 2e:e8:a9:f3:e6:23:8e:a6:77:8c:43:ce:c6:ab:fd:48:1b:3a: ad:03:5a:84:a3:74:ab:b2:79:81:5a:da:49:ad:a5:5d:b5:66: b7:13:49:ac:23:22:6e:eb:29:7f:2c:ae:b4:37:f3:d7:a0:c7: 5c:46:33:c4:aa:3d:d5:2d:1d:6d:44:44:bb:a8:90:b3:83:c8: 2b:49:4b:57:c4:67:8a:e7:9d:0f:83:60:c8:4d:d0:da:b1:39: 76:80:dc:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0RGM0IxMTAvBgNVBAUTKEE4OTZCMTcwQkYwRDg4NzIzRjM2QzdBQzIwODc4NTRB QTI4NEJENzEwHhcNMjUxMDE5MDA1MzA4WhcNMjUxMDI2MDA1MzA4WjAYMRYwFAYD VQQDEw02OGY0MzY3NC0wMDM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxisvXxmMlo+gDY5whDU9hK6tRu6VbFbb6cIYZh465rw5VKdJkp1IdBpSWHdf 1pidMJl3F9Eie0vR5Q2IXb5k/sLukBzGwHpyKXfm5KyB2faxcubKE/xa6YZiGmwM bdTWNcYMWCdLwQFIzpMCTqiN5TlHD8xAxPNJG5XUx5hzH6dVY6LvT9poUW86cxAs LW3QZAOOC4YYGDPETrL1d8BKskxUUtlu48QbLfuY8xbrqn5Q9YYkDzDamGOwVm0A qv6kIefOCzIzVLwzcNIMyV9qFEwEJsJEHRM6xXVkTccOFwmInnbyAhmTq9JjIEy1 C8HUNbI5B872uNJtbKOPmRLoJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOFX6JVt Z3pOFWqzHbOOrfwPlGOsMB8GA1UdIwQYMBaAFKiWsXC/DYhyPzbHrCCHhUqihL1x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzREYzQi9DREJBODEyRUYw M0ExMUVCOEQzMEUwNThDNEY5QUUwMi9xSmF4Y0w4TmlISV9Oc2VzSUllRlNxS0V2 WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FKYXhjTDhOaUhJX05zZXNJSWVGU3FLRXZYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz REYzQi9DREJBODEyRUYwM0ExMUVCOEQzMEUwNThDNEY5QUUwMi9xSmF4Y0w4TmlI SV9Oc2VzSUllRlNxS0V2WEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgAm5MxkezCxH/0kTimgqJWAdQpb9uw5x0g6X5t/2rzwvXlbfe1JEx 7Wt4xaeWju+1yE22ySvvfWXAHe/x+49MkvKFnOf6royjuc/I7ySfDVc/tQWDslbJ GNPQ2/WFIgbTIeuUbhj1fFQUZR8PG18Dm0Tm/iTiV39h3WsMC2iBAHzzLareN4P6 IUpb0lWZOtgwG1FegVo9ZI1SNOL4j2ewxhou6Knz5iOOpneMQ87Gq/1IGzqtA1qE o3SrsnmBWtpJraVdtWa3E0msIyJu6yl/LK60N/PXoMdcRjPEqj3VLR1tRES7qJCz g8grSUtXxGeK550Pg2DITdDasTl2gNz4 -----END CERTIFICATE-----Generated at Mon Oct 20 08:02:19 2025 by rpki-client