$ rpki-client -vvf rpki.apnic.net/member_repository/A91580E4/5C0C955008BC11F0BEB4F552C4F9AE02/QuOGLXRTXCypqrN6cZW1keruIeU.mft File: QuOGLXRTXCypqrN6cZW1keruIeU.mft (raw, json) Hash identifier: qJRmnTkdxDAI5w3ewGk1sTdFoUfhUO/d685HyLcP0Sw= Subject key identifier: 32:10:F8:A0:F4:F1:ED:AC:5D:17:06:F3:FA:52:8B:E1:93:39:6E:AB Authority key identifier: 42:E3:86:2D:74:53:5C:2C:A9:AA:B3:7A:71:95:B5:91:EA:EE:21:E5 Certificate issuer: /CN=A91580E4/serialNumber=42E3862D74535C2CA9AAB37A7195B591EAEE21E5 Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QuOGLXRTXCypqrN6cZW1keruIeU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91580E4/5C0C955008BC11F0BEB4F552C4F9AE02/QuOGLXRTXCypqrN6cZW1keruIeU.mft Manifest number: 6D Signing time: Sun 19 Oct 2025 14:21:18 +0000 Manifest this update: Sun 19 Oct 2025 14:21:18 +0000 Manifest next update: Sun 26 Oct 2025 14:21:18 +0000 Files and hashes: 1: QuOGLXRTXCypqrN6cZW1keruIeU.crl (hash: mBJq1DA2zLne99e2woIo5WA6s1W3DGGExMuv2xBF+M8=) 2: 78DE938EACF611F0B7108B77C4F9AE02.roa (hash: 0lWMdOzn8JsOFNV5zHVowX9ZpAtUiG0Mngxq9SwqdPw=) 3: DE48485AACF611F09C3A4F81C4F9AE02.roa (hash: cP40ap8CBMpy7Xix6leaPe20TppMEaWJFbCrqt13ecE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91580E4/5C0C955008BC11F0BEB4F552C4F9AE02/QuOGLXRTXCypqrN6cZW1keruIeU.crl rsync://rpki.apnic.net/member_repository/A91580E4/5C0C955008BC11F0BEB4F552C4F9AE02/QuOGLXRTXCypqrN6cZW1keruIeU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QuOGLXRTXCypqrN6cZW1keruIeU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 14:21:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91580E4, serialNumber=42E3862D74535C2CA9AAB37A7195B591EAEE21E5 Validity Not Before: Oct 19 14:21:18 2025 GMT Not After : Oct 26 14:21:18 2025 GMT Subject: CN=68f4f3de-1d00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:03:bc:29:5e:2e:6d:19:65:44:c2:cc:88:f3: 99:47:bf:7a:54:59:66:69:6c:72:f5:45:bd:fc:44: 93:96:66:37:2c:03:a5:29:f4:fc:9b:ad:cd:e9:82: 80:e3:aa:75:9b:de:a7:d6:38:12:a7:4f:21:6e:8c: 4c:12:7e:45:96:29:cd:4d:f9:a5:a0:08:b1:5d:a5: 5f:7c:bb:d6:a8:6c:e8:83:e8:88:50:98:cc:dd:e8: 08:3b:bc:77:95:5c:26:c9:80:69:ad:37:83:79:0a: 13:d4:86:b5:e9:9a:20:e9:2a:35:ab:41:5f:81:32: 11:46:be:bc:69:85:29:31:fe:8f:99:0a:99:b0:d9: cc:8f:39:28:b6:dc:0b:b2:c0:df:00:77:7b:02:f0: 63:18:b9:ab:13:12:2c:09:0a:17:23:a0:72:3a:de: 68:1e:fd:b1:1c:24:e9:ae:1f:ad:6f:38:c7:a4:01: 9e:4e:21:3c:a5:b6:b5:47:1d:c9:5a:0f:a5:47:36: 35:2f:b3:7f:f4:23:2f:46:58:13:83:55:a9:89:a5: 54:e7:9e:7d:21:95:e2:61:73:bb:d6:18:05:bc:ef: da:ab:dd:37:ba:5b:bb:ab:c3:34:8d:e7:a9:94:17: 8f:90:1f:74:b4:dc:1a:f9:35:d9:8d:64:7b:9e:e1: b9:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:10:F8:A0:F4:F1:ED:AC:5D:17:06:F3:FA:52:8B:E1:93:39:6E:AB X509v3 Authority Key Identifier: keyid:42:E3:86:2D:74:53:5C:2C:A9:AA:B3:7A:71:95:B5:91:EA:EE:21:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91580E4/5C0C955008BC11F0BEB4F552C4F9AE02/QuOGLXRTXCypqrN6cZW1keruIeU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QuOGLXRTXCypqrN6cZW1keruIeU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91580E4/5C0C955008BC11F0BEB4F552C4F9AE02/QuOGLXRTXCypqrN6cZW1keruIeU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:9a:cd:64:61:d7:fe:bd:a3:e6:29:5d:23:e5:5a:2c:15:2a: d0:01:2c:68:a4:d0:2b:65:8e:d8:d2:75:67:7e:93:e2:2f:2f: 66:a6:53:a2:1c:79:bc:61:cb:37:34:d7:03:1d:79:d4:a1:38: 44:8d:49:91:02:b5:0d:ae:07:41:65:6e:fb:dc:bd:58:bf:f4: 4b:61:25:cc:0b:03:42:74:d4:39:73:df:a3:19:bd:26:a0:f1: 47:45:be:e5:19:64:d7:d3:3b:02:b4:b5:d5:3c:ad:db:77:cf: 7c:8b:e2:dd:4f:85:60:d1:50:d7:f1:33:49:4b:3e:41:5e:f5: ca:ed:e7:3b:06:b8:f7:9b:e8:e8:5e:7b:33:41:63:7c:14:dd: e0:fe:3d:f1:a2:e6:81:e9:61:15:e4:0c:30:b4:81:a7:ab:01: 23:53:b1:da:4c:65:99:ed:60:ef:7e:b4:23:0f:39:18:8d:64: 7e:0b:7e:b6:94:07:1b:9b:5a:c2:87:38:b0:23:2a:5e:20:8c: a4:64:12:e3:ea:44:a1:3a:de:8a:01:23:74:63:da:be:64:e8: 60:b8:47:d1:4a:3d:23:b8:1d:1b:33:3a:ab:0c:5c:d1:8b:b3: 2d:3a:fa:00:7c:b2:94:82:62:7c:87:87:40:3d:c3:5a:39:f9: b1:cf:9d:97 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 ODBFNDExMC8GA1UEBRMoNDJFMzg2MkQ3NDUzNUMyQ0E5QUFCMzdBNzE5NUI1OTFF QUVFMjFFNTAeFw0yNTEwMTkxNDIxMThaFw0yNTEwMjYxNDIxMThaMBgxFjAUBgNV BAMTDTY4ZjRmM2RlLTFkMDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWA7wpXi5tGWVEwsyI85lHv3pUWWZpbHL1Rb38RJOWZjcsA6Up9Pybrc3pgoDj qnWb3qfWOBKnTyFujEwSfkWWKc1N+aWgCLFdpV98u9aobOiD6IhQmMzd6Ag7vHeV XCbJgGmtN4N5ChPUhrXpmiDpKjWrQV+BMhFGvrxphSkx/o+ZCpmw2cyPOSi23Auy wN8Ad3sC8GMYuasTEiwJChcjoHI63mge/bEcJOmuH61vOMekAZ5OITyltrVHHcla D6VHNjUvs3/0Iy9GWBODVamJpVTnnn0hleJhc7vWGAW879qr3Te6W7urwzSN56mU F4+QH3S03Br5NdmNZHue4bldAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUMhD4oPTx 7axdFwbz+lKL4ZM5bqswHwYDVR0jBBgwFoAUQuOGLXRTXCypqrN6cZW1keruIeUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4MEU0LzVDMEM5NTUwMDhC QzExRjBCRUI0RjU1MkM0RjlBRTAyL1F1T0dMWFJUWEN5cHFyTjZjWlcxa2VydUll VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUXVPR0xYUlRYQ3lwcXJONmNaVzFrZXJ1SWVVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4 MEU0LzVDMEM5NTUwMDhCQzExRjBCRUI0RjU1MkM0RjlBRTAyL1F1T0dMWFJUWEN5 cHFyTjZjWlcxa2VydUllVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAACazWRh1/69o+YpXSPlWiwVKtABLGik0CtljtjSdWd+k+IvL2amU6Ic ebxhyzc01wMdedShOESNSZECtQ2uB0FlbvvcvVi/9EthJcwLA0J01Dlz36MZvSag 8UdFvuUZZNfTOwK0tdU8rdt3z3yL4t1PhWDRUNfxM0lLPkFe9crt5zsGuPeb6Ohe ezNBY3wU3eD+PfGi5oHpYRXkDDC0gaerASNTsdpMZZntYO9+tCMPORiNZH4LfraU BxubWsKHOLAjKl4gjKRkEuPqRKE63ooBI3Rj2r5k6GC4R9FKPSO4HRszOqsMXNGL sy06+gB8spSCYnyHh0A9w1o5+bHPnZc= -----END CERTIFICATE-----Generated at Mon Oct 20 10:52:09 2025 by rpki-client