$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.mft File: Qp7OGTjMiSSxEQllyc9PlkhgIBg.mft (raw, json) Hash identifier: 4/RpvdDuVraMMqUPb/qBL94QUyYIgpx5z+578nHM/Ak= Subject key identifier: 0B:F4:7A:09:B6:F1:0C:E6:9C:6E:8A:70:87:2F:62:9F:8A:B2:BA:26 Authority key identifier: 42:9E:CE:19:38:CC:89:24:B1:11:09:65:C9:CF:4F:96:48:60:20:18 Certificate issuer: /CN=A914EAE4/serialNumber=429ECE1938CC8924B1110965C9CF4F9648602018 Certificate serial: 1B5D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qp7OGTjMiSSxEQllyc9PlkhgIBg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.mft Manifest number: 1B58 Signing time: Mon 20 Oct 2025 16:35:51 +0000 Manifest this update: Mon 20 Oct 2025 16:35:50 +0000 Manifest next update: Mon 27 Oct 2025 16:35:50 +0000 Files and hashes: 1: Qp7OGTjMiSSxEQllyc9PlkhgIBg.crl (hash: KAZmMOZQ8seWb7LoKvN6ssvA9KzStOwkLJ+DdlyAU/E=) 2: 7E1ADD74E00E11EDA7E1B640C4F9AE02.roa (hash: f7v965g9bOSdEznd3YTHpzh8If/rvk4WHQj9sYnabU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.crl rsync://rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qp7OGTjMiSSxEQllyc9PlkhgIBg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 16:35:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7005 (0x1b5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4, serialNumber=429ECE1938CC8924B1110965C9CF4F9648602018 Validity Not Before: Oct 20 16:35:50 2025 GMT Not After : Oct 27 16:35:50 2025 GMT Subject: CN=68f664e7-f5d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:40:e3:c4:90:20:73:66:5c:ea:7f:90:2b:a6: 8d:0c:d8:07:2d:db:e6:a4:bb:df:4f:f1:3f:c3:06: b7:d5:4a:8c:90:cc:82:e7:22:74:2e:38:73:30:56: 88:dc:b5:66:15:2b:d4:13:ef:7b:a8:c4:de:10:31: 06:18:bf:d0:30:20:5b:53:80:69:63:1a:98:b5:5f: 7b:e6:08:6d:5d:5f:0d:9d:7e:fe:3e:f2:fc:6c:ea: 92:08:a4:ec:cc:c1:6b:97:05:97:4f:7f:de:92:81: 45:21:80:c2:f7:75:4a:79:9a:55:c7:e5:a0:77:9c: 7a:9f:8d:46:3c:60:e2:33:68:3c:cf:20:e6:4b:da: 23:b0:61:4e:e0:a2:0e:59:12:a3:c2:da:b8:a0:2d: 3b:1c:59:08:bb:a0:82:a1:1b:2d:85:24:bc:65:22: 70:3a:df:31:2b:6b:c6:cf:a8:23:7f:83:c4:28:27: d8:1e:7d:7f:31:09:6e:39:38:cf:5c:60:24:bb:3c: dc:e9:8f:85:30:38:87:dd:e4:77:dc:2f:8c:0e:09: b5:b1:3b:ac:78:38:57:17:26:b3:6b:49:46:71:41: cb:ea:c1:2f:fb:54:8d:9e:14:45:2e:f3:dd:fe:ff: c5:1b:55:dd:52:06:fe:a7:50:3b:52:3a:43:f0:cb: f9:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:F4:7A:09:B6:F1:0C:E6:9C:6E:8A:70:87:2F:62:9F:8A:B2:BA:26 X509v3 Authority Key Identifier: keyid:42:9E:CE:19:38:CC:89:24:B1:11:09:65:C9:CF:4F:96:48:60:20:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qp7OGTjMiSSxEQllyc9PlkhgIBg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:a5:9a:3a:87:71:9d:af:d8:51:f8:85:bc:2d:18:8e:ab:4c: 68:9a:9e:56:8d:60:06:2c:d4:af:95:10:3f:a3:b1:7c:6b:9c: 86:32:77:7f:72:e0:e9:13:11:8e:66:14:99:e0:1c:99:bb:18: 22:b0:9a:28:6a:ba:2e:9b:ca:05:7a:6d:74:06:2a:55:39:15: 20:54:8e:60:be:bb:5f:3f:d6:bc:44:1e:27:3d:5a:ad:d8:71: 80:a7:1e:d4:0c:ef:e7:c0:20:3c:ab:13:dd:96:0d:83:41:ba: 62:4a:4c:91:0d:a4:2e:f2:53:3c:e5:1e:89:90:55:44:d1:75: eb:0c:cc:e4:6a:96:32:6e:78:b5:04:01:9c:88:7d:09:f5:da: 1c:87:33:54:5f:88:dc:f0:e5:c8:4b:44:ae:0d:8f:11:43:3e: bc:36:ad:3e:ce:bf:ec:2d:f6:a7:c4:3d:f9:6a:b8:39:bb:a6: f5:9d:4d:5e:8d:35:9b:b1:4c:78:2e:4f:f7:35:21:cb:07:cd: 48:52:44:6b:65:fe:b6:03:cf:e6:a7:41:18:d7:10:22:99:95: 1e:2c:25:20:b8:66:ec:7c:78:4f:1c:0f:92:bc:45:88:71:82: 20:b2:11:8d:7c:ee:4e:30:3d:4e:7c:be:98:e1:4b:53:a0:aa: 5f:66:ae:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG10wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKDQyOUVDRTE5MzhDQzg5MjRCMTExMDk2NUM5Q0Y0Rjk2 NDg2MDIwMTgwHhcNMjUxMDIwMTYzNTUwWhcNMjUxMDI3MTYzNTUwWjAYMRYwFAYD VQQDEw02OGY2NjRlNy1mNWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqEDjxJAgc2Zc6n+QK6aNDNgHLdvmpLvfT/E/wwa31UqMkMyC5yJ0LjhzMFaI 3LVmFSvUE+97qMTeEDEGGL/QMCBbU4BpYxqYtV975ghtXV8NnX7+PvL8bOqSCKTs zMFrlwWXT3/ekoFFIYDC93VKeZpVx+Wgd5x6n41GPGDiM2g8zyDmS9ojsGFO4KIO WRKjwtq4oC07HFkIu6CCoRsthSS8ZSJwOt8xK2vGz6gjf4PEKCfYHn1/MQluOTjP XGAkuzzc6Y+FMDiH3eR33C+MDgm1sTuseDhXFyaza0lGcUHL6sEv+1SNnhRFLvPd /v/FG1XdUgb+p1A7UjpD8Mv5XwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAv0egm2 8QzmnG6KcIcvYp+KsromMB8GA1UdIwQYMBaAFEKezhk4zIkksREJZcnPT5ZIYCAY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC81RUNDMTVBQTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9RcDdPR1RqTWlTU3hFUWxseWM5UGxraGdJ QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FwN09HVGpNaVNTeEVRbGx5YzlQbGtoZ0lCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUFFNC81RUNDMTVBQTI1NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9RcDdPR1RqTWlT U3hFUWxseWM5UGxraGdJQmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBapZo6h3Gdr9hR+IW8LRiOq0xomp5WjWAGLNSvlRA/o7F8a5yGMnd/ cuDpExGOZhSZ4ByZuxgisJooaroum8oFem10BipVORUgVI5gvrtfP9a8RB4nPVqt 2HGApx7UDO/nwCA8qxPdlg2DQbpiSkyRDaQu8lM85R6JkFVE0XXrDMzkapYybni1 BAGciH0J9dochzNUX4jc8OXIS0SuDY8RQz68Nq0+zr/sLfanxD35arg5u6b1nU1e jTWbsUx4Lk/3NSHLB81IUkRrZf62A8/mp0EY1xAimZUeLCUguGbsfHhPHA+SvEWI cYIgshGNfO5OMD1OfL6Y4UtToKpfZq6v -----END CERTIFICATE-----Generated at Mon Oct 20 19:57:44 2025 by rpki-client