$ rpki-client -vvf rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft File: QELW5jee2AQkizYN7Zhe9_VlIBE.mft (raw, json) Hash identifier: wKvusXUQVcElBjcucH30jPNjlRUbK68dE8LsN0x2YQ0= Subject key identifier: 09:1D:16:88:02:08:5D:51:11:C1:84:66:1F:43:6C:45:CE:8E:5F:3A Authority key identifier: 40:42:D6:E6:37:9E:D8:04:24:8B:36:0D:ED:98:5E:F7:F5:65:20:11 Certificate issuer: /CN=A9148465/serialNumber=4042D6E6379ED804248B360DED985EF7F5652011 Certificate serial: 0280 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft Manifest number: 027C Signing time: Sun 19 Oct 2025 03:52:10 +0000 Manifest this update: Sun 19 Oct 2025 03:52:09 +0000 Manifest next update: Sun 26 Oct 2025 03:52:09 +0000 Files and hashes: 1: QELW5jee2AQkizYN7Zhe9_VlIBE.crl (hash: AwnXefw/4Fmz+SIJov6aDOAJBpzbjUZkhQrvLPhgGPA=) 2: 7777513828C011EDBEC6D287C4F9AE02.roa (hash: KysVMiyZcH0HX0OV6c/BvTG9IGFmIflJ1zJN81z9Xf0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.crl rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:52:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 640 (0x280) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148465, serialNumber=4042D6E6379ED804248B360DED985EF7F5652011 Validity Not Before: Oct 19 03:52:09 2025 GMT Not After : Oct 26 03:52:09 2025 GMT Subject: CN=68f4606a-2030 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c9:41:a6:7f:1b:47:57:71:6f:e1:2f:f1:f9: 07:60:28:a2:88:73:ec:db:d5:36:61:27:e4:55:83: d6:f9:79:ab:c1:99:f7:14:eb:ed:7b:91:3d:8f:e3: 37:25:0f:36:20:78:fa:1a:b6:be:b7:b6:6b:aa:de: fa:8d:ee:4a:a9:85:7f:72:1b:5d:9a:b5:66:b7:87: 90:40:c4:14:83:45:1a:9a:84:27:6a:bf:66:02:eb: 6e:f1:49:da:09:af:8c:67:a8:7b:cd:2c:80:0c:43: b0:8a:d0:7a:f9:99:d8:54:5c:02:6b:ce:7a:e5:46: 49:cb:62:51:65:d5:85:1f:df:03:03:5d:b7:63:8f: a0:e7:e5:57:cb:2f:b6:ab:cc:78:cb:ab:3c:03:45: a7:88:5a:82:52:a9:75:de:48:c3:b9:da:91:cb:bd: 6f:f8:11:f0:c1:63:89:40:3c:0f:52:db:84:55:81: c6:7c:5d:90:da:66:97:7e:87:6a:d5:7a:1d:30:cd: 59:41:ae:45:e2:25:66:ac:46:ed:49:8b:95:85:24: 29:96:33:98:68:f8:36:2a:95:33:26:f3:8e:af:c2: f8:14:02:11:8d:a5:74:2c:27:2f:1b:e0:b8:a0:21: 12:85:2e:87:76:08:d5:58:cb:74:22:67:63:a2:17: 4a:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:1D:16:88:02:08:5D:51:11:C1:84:66:1F:43:6C:45:CE:8E:5F:3A X509v3 Authority Key Identifier: keyid:40:42:D6:E6:37:9E:D8:04:24:8B:36:0D:ED:98:5E:F7:F5:65:20:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:63:31:72:cc:eb:d2:f3:c3:5e:b2:89:36:60:83:97:e2:73: 34:5e:94:8d:93:d7:80:0f:e6:81:bb:9c:db:f3:3d:24:2d:3a: c2:2f:34:52:ad:9b:46:cb:93:1b:79:5d:f1:89:a2:ce:4b:03: bc:09:24:6f:a2:e0:3a:e9:7a:51:bd:af:60:fd:ad:08:3c:50: 5b:8e:57:8a:3f:3f:08:b8:19:fd:c4:1c:c0:f1:3c:c0:fc:1f: f1:45:26:43:1a:70:ac:ff:93:74:7b:79:f7:a0:48:46:0e:f6: ae:44:5e:6e:87:65:1b:22:ae:30:e8:f7:8c:68:83:dc:fe:df: d7:05:5f:d1:6a:95:2c:b2:1e:1a:67:6f:85:77:e2:e0:a8:2a: a4:96:4c:61:df:3d:51:cd:a7:96:fb:59:a0:05:62:bc:c7:26: ab:9d:91:61:bd:b6:18:2a:10:e9:77:29:2e:44:9a:45:50:c5: 63:74:13:3e:45:23:aa:1c:2e:c3:9e:9c:74:34:68:e1:2d:d7: 93:ba:7e:80:34:41:7c:12:19:d6:09:94:a0:31:74:f7:9f:8b: 45:30:6a:22:26:a2:58:8c:29:22:c4:94:0d:2d:24:ce:04:88: c3:b8:a6:21:ef:22:62:3f:09:01:57:5b:f0:82:4d:42:b2:82: 27:d3:8c:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg0NjUxMTAvBgNVBAUTKDQwNDJENkU2Mzc5RUQ4MDQyNDhCMzYwREVEOTg1RUY3 RjU2NTIwMTEwHhcNMjUxMDE5MDM1MjA5WhcNMjUxMDI2MDM1MjA5WjAYMRYwFAYD VQQDEw02OGY0NjA2YS0yMDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtclBpn8bR1dxb+Ev8fkHYCiiiHPs29U2YSfkVYPW+XmrwZn3FOvte5E9j+M3 JQ82IHj6Gra+t7Zrqt76je5KqYV/chtdmrVmt4eQQMQUg0UamoQnar9mAutu8Una Ca+MZ6h7zSyADEOwitB6+ZnYVFwCa8565UZJy2JRZdWFH98DA123Y4+g5+VXyy+2 q8x4y6s8A0WniFqCUql13kjDudqRy71v+BHwwWOJQDwPUtuEVYHGfF2Q2maXfodq 1XodMM1ZQa5F4iVmrEbtSYuVhSQpljOYaPg2KpUzJvOOr8L4FAIRjaV0LCcvG+C4 oCEShS6HdgjVWMt0ImdjohdKyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAkdFogC CF1REcGEZh9DbEXOjl86MB8GA1UdIwQYMBaAFEBC1uY3ntgEJIs2De2YXvf1ZSAR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODQ2NS9ENjBGMDI3MjI4 QkIxMUVEQTU5QzMwODFDNEY5QUUwMi9RRUxXNWplZTJBUWtpellON1poZTlfVmxJ QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FFTFc1amVlMkFRa2l6WU43WmhlOV9WbElCRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 ODQ2NS9ENjBGMDI3MjI4QkIxMUVEQTU5QzMwODFDNEY5QUUwMi9RRUxXNWplZTJB UWtpellON1poZTlfVmxJQkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHYzFyzOvS88Nesok2YIOX4nM0XpSNk9eAD+aBu5zb8z0kLTrCLzRS rZtGy5MbeV3xiaLOSwO8CSRvouA66XpRva9g/a0IPFBbjleKPz8IuBn9xBzA8TzA /B/xRSZDGnCs/5N0e3n3oEhGDvauRF5uh2UbIq4w6PeMaIPc/t/XBV/RapUssh4a Z2+Fd+LgqCqklkxh3z1RzaeW+1mgBWK8xyarnZFhvbYYKhDpdykuRJpFUMVjdBM+ RSOqHC7Dnpx0NGjhLdeTun6ANEF8EhnWCZSgMXT3n4tFMGoiJqJYjCkixJQNLSTO BIjDuKYh7yJiPwkBV1vwgk1CsoIn04yV -----END CERTIFICATE-----Generated at Mon Oct 20 01:43:58 2025 by rpki-client