$ rpki-client -vvf rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft File: QgHlq32GvGha8R8C3mhAUVttgFg.mft (raw, json) Hash identifier: aiXfNtViq6YA1Y/Yd7BZZfRARHK+etZqfKB5NHnuwv4= Subject key identifier: 72:41:45:24:5E:70:11:CA:3C:AE:5D:40:6D:C0:28:06:68:59:93:E3 Authority key identifier: 42:01:E5:AB:7D:86:BC:68:5A:F1:1F:02:DE:68:40:51:5B:6D:80:58 Certificate issuer: /CN=A91454B0/serialNumber=4201E5AB7D86BC685AF11F02DE6840515B6D8058 Certificate serial: 34D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft Manifest number: 34D1 Signing time: Sat 18 Oct 2025 14:42:13 +0000 Manifest this update: Sat 18 Oct 2025 14:42:12 +0000 Manifest next update: Sat 25 Oct 2025 14:42:12 +0000 Files and hashes: 1: QgHlq32GvGha8R8C3mhAUVttgFg.crl (hash: ktaKTrEn/K/DBRiwmKc+fF6SEl8DTcPa0VJ1XPHV3Fg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.crl rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:42:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13521 (0x34d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91454B0, serialNumber=4201E5AB7D86BC685AF11F02DE6840515B6D8058 Validity Not Before: Oct 18 14:42:12 2025 GMT Not After : Oct 25 14:42:12 2025 GMT Subject: CN=68f3a744-e5bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:4e:ac:59:59:1e:83:df:74:97:60:5e:5c:78: 3b:40:d0:6c:37:bb:bf:5f:0c:ff:8d:3f:c8:3b:2e: 58:7a:82:53:ba:2b:31:1f:53:e4:8b:1e:32:4a:93: 04:59:e3:7a:e6:52:05:3e:ce:61:79:b5:f3:0c:fd: da:1f:68:f6:96:87:07:cf:64:f2:a7:de:a6:5e:c5: ba:7c:63:56:4d:96:ce:96:34:2b:d2:55:98:a3:cf: 96:d2:a5:fe:98:49:d1:ca:1f:57:07:c7:59:48:c2: ee:2f:e3:8d:a9:aa:97:2a:37:fa:b0:7e:df:4d:5b: c5:84:58:21:ca:73:ed:60:b4:57:b4:4d:44:6c:e0: 5c:d6:ff:57:f3:25:74:e2:eb:2b:2f:16:5f:7d:70: 45:b0:19:aa:19:3d:06:de:d7:dc:05:0f:ea:b9:5f: 4b:01:03:c9:50:e7:f3:0e:7b:1b:71:e8:c4:6e:0a: 9a:6a:00:e5:d6:ea:3c:1b:23:59:da:6b:c7:f9:bf: a8:c5:55:1a:a2:6a:cd:e7:b8:ca:40:db:75:24:90: cf:ef:fb:41:9c:2f:88:4c:2f:bb:16:28:d3:d6:3c: d2:ff:72:46:16:26:cf:d8:f7:a8:41:c8:ed:b5:29: 31:5c:a6:65:9b:60:19:fb:78:13:c4:c2:37:7b:e3: e2:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:41:45:24:5E:70:11:CA:3C:AE:5D:40:6D:C0:28:06:68:59:93:E3 X509v3 Authority Key Identifier: keyid:42:01:E5:AB:7D:86:BC:68:5A:F1:1F:02:DE:68:40:51:5B:6D:80:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:d4:b5:06:28:61:6d:14:3c:ff:4b:dc:a1:31:ed:1c:bb:55: c1:80:3b:a6:ed:33:88:17:0a:88:7d:f1:5c:33:a6:24:b3:9f: 1d:ba:6b:6a:31:fe:b6:fe:3f:ee:f0:22:13:cf:84:bd:6c:4a: ec:e6:e1:80:0a:74:b6:c1:b0:15:40:70:d5:9d:9f:21:b5:5e: 0f:fc:fc:37:26:3d:88:a9:d3:75:27:b2:dd:f4:d0:56:26:f3: 42:84:a1:40:0d:65:fb:6a:e7:d7:d8:d6:4e:72:52:9f:a8:02: 8f:a8:14:4a:ea:d2:71:94:a7:de:31:22:ef:0b:c5:ff:8f:1c: e1:f1:9c:a7:44:41:3e:cc:c8:06:f6:8d:04:cd:42:6b:8b:2b: eb:03:74:b7:28:50:34:41:6f:a2:ea:a7:f4:18:d6:bd:5e:4a: 5a:c9:31:20:4f:1f:5a:c5:54:43:ca:1d:43:01:3f:6f:33:be: 20:c0:6a:15:fd:ad:cd:71:f3:1d:23:de:b5:83:a2:18:f7:5e: 71:f2:3f:f2:97:d6:49:bb:13:53:9c:0b:e2:4f:69:da:68:ca: 8b:8e:9c:20:0d:98:4c:34:51:7f:fe:46:1b:3f:65:90:e2:ff: ca:d1:b1:3f:e7:f1:45:70:16:6d:97:97:6a:bd:78:52:1e:2f: ad:61:02:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0QjAxMTAvBgNVBAUTKDQyMDFFNUFCN0Q4NkJDNjg1QUYxMUYwMkRFNjg0MDUx NUI2RDgwNTgwHhcNMjUxMDE4MTQ0MjEyWhcNMjUxMDI1MTQ0MjEyWjAYMRYwFAYD VQQDEw02OGYzYTc0NC1lNWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuU6sWVkeg990l2BeXHg7QNBsN7u/Xwz/jT/IOy5YeoJTuisxH1Pkix4ySpME WeN65lIFPs5hebXzDP3aH2j2locHz2Typ96mXsW6fGNWTZbOljQr0lWYo8+W0qX+ mEnRyh9XB8dZSMLuL+ONqaqXKjf6sH7fTVvFhFghynPtYLRXtE1EbOBc1v9X8yV0 4usrLxZffXBFsBmqGT0G3tfcBQ/quV9LAQPJUOfzDnsbcejEbgqaagDl1uo8GyNZ 2mvH+b+oxVUaomrN57jKQNt1JJDP7/tBnC+ITC+7FijT1jzS/3JGFibP2PeoQcjt tSkxXKZlm2AZ+3gTxMI3e+PiVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHJBRSRe cBHKPK5dQG3AKAZoWZPjMB8GA1UdIwQYMBaAFEIB5at9hrxoWvEfAt5oQFFbbYBY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTRCMC8xQ0M0RERCNjFE OEUxMUUyOTAyRTNDRUMwOEIwMkNEMi9RZ0hscTMyR3ZHaGE4UjhDM21oQVVWdHRn RmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FnSGxxMzJHdkdoYThSOEMzbWhBVVZ0dGdGZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTRCMC8xQ0M0RERCNjFEOEUxMUUyOTAyRTNDRUMwOEIwMkNEMi9RZ0hscTMyR3ZH aGE4UjhDM21oQVVWdHRnRmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCj1LUGKGFtFDz/S9yhMe0cu1XBgDum7TOIFwqIffFcM6Yks58dumtq Mf62/j/u8CITz4S9bErs5uGACnS2wbAVQHDVnZ8htV4P/Pw3Jj2IqdN1J7Ld9NBW JvNChKFADWX7aufX2NZOclKfqAKPqBRK6tJxlKfeMSLvC8X/jxzh8ZynREE+zMgG 9o0EzUJriyvrA3S3KFA0QW+i6qf0GNa9XkpayTEgTx9axVRDyh1DAT9vM74gwGoV /a3NcfMdI961g6IY915x8j/yl9ZJuxNTnAviT2naaMqLjpwgDZhMNFF//kYbP2WQ 4v/K0bE/5/FFcBZtl5dqvXhSHi+tYQIT -----END CERTIFICATE-----Generated at Mon Oct 20 05:37:45 2025 by rpki-client