$ rpki-client -vvf rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft File: QIyZnDwewBZElFs0d6nyI061eRw.mft (raw, json) Hash identifier: MVDG9NjNMqnsc1n5piKyKOeiIrDTXm37E6V/wW7LwKY= Subject key identifier: EB:62:3D:23:76:68:15:07:B2:5C:C1:E1:2F:93:8B:5C:F6:C6:75:B3 Authority key identifier: 40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C Certificate issuer: /CN=A91650A5/serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Certificate serial: 24EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft Manifest number: 24CE Signing time: Sat 18 Oct 2025 16:00:43 +0000 Manifest this update: Sat 18 Oct 2025 16:00:42 +0000 Manifest next update: Sat 25 Oct 2025 16:00:42 +0000 Files and hashes: 1: QIyZnDwewBZElFs0d6nyI061eRw.crl (hash: bQt8OVfX/9SPenlRXsiovkPAhbdC1g21YwJHohYJw2A=) 2: 50A2F64264BC11E8ACC7951EC4F9AE02.roa (hash: mECvLTKiNtfSmorR6F/JjM52Np+0S4zr3je4uTIkUj8=) 3: 2486E806F0E311EAA1C58D62C4F9AE02.roa (hash: dltD8ogNsgEp1LNwu/hSjpxIyXjpYdO8Yd4ZGWGZBuI=) 4: ABA9F4B8AF8411EABF9F844DC4F9AE02.roa (hash: tv9RdWOPyxWE44FO50AuecGDdKWojTS5Z904qdTlAMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9454 (0x24ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91650A5, serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Validity Not Before: Oct 18 16:00:42 2025 GMT Not After : Oct 25 16:00:42 2025 GMT Subject: CN=68f3b9aa-9ad5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:7d:79:b1:65:ce:b1:7b:bf:48:23:ae:d1:23: 1d:be:48:f0:e7:83:a5:a7:7f:c7:d2:b9:69:a1:9a: 5d:69:25:c7:67:d9:64:ee:3a:47:07:f3:fc:15:57: f1:ad:a7:4a:ab:23:2a:b5:00:12:09:72:58:8a:c9: 9f:0c:e9:10:b6:80:09:e1:f9:d1:b7:98:37:80:54: 44:06:d8:fe:c1:c0:af:28:45:e5:3a:5b:8a:e4:2b: 7c:fd:49:1b:21:1e:ef:2c:b6:63:89:e3:a7:dc:ec: 13:7f:a1:31:32:70:24:5d:64:d7:36:19:c0:9e:1c: 0b:64:65:1d:6f:80:fe:98:3d:01:5e:b4:71:48:f4: 3b:c7:7b:54:22:bf:48:db:d5:ce:b1:99:fd:d8:dd: 99:24:c4:44:f1:88:92:41:3a:2e:0b:86:44:f1:16: 0a:58:e9:ca:7a:e9:83:b2:83:fa:a9:92:21:8f:15: 01:19:d1:4e:42:20:eb:44:55:4f:9b:2d:b2:db:2c: c7:67:22:73:1f:3a:51:0c:3e:5a:ff:8b:4b:1d:16: b7:72:84:5d:a7:59:e9:7c:e4:7e:57:21:eb:ff:6d: ec:c9:20:4b:30:17:e4:d6:9b:ca:7d:3e:08:81:7c: 40:db:48:fc:bc:9d:28:e0:7b:1c:db:66:d1:ac:7d: 31:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:62:3D:23:76:68:15:07:B2:5C:C1:E1:2F:93:8B:5C:F6:C6:75:B3 X509v3 Authority Key Identifier: keyid:40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:7a:47:ee:6e:dd:6f:42:4c:0a:f0:33:fd:90:5b:6d:32:e6: 46:1a:09:d0:22:f3:b4:54:02:ca:8b:5f:dc:49:2b:97:72:df: 92:3f:33:62:8e:16:22:f3:7d:14:d7:2e:5e:2a:9c:71:9b:e5: 80:c9:ce:a5:32:0c:69:0f:ce:ac:31:02:d7:bc:a9:36:60:cd: 72:62:9f:af:04:e4:9b:c7:19:0b:7e:93:07:05:7f:ad:65:1b: 88:c5:70:0d:62:a5:cf:94:63:35:df:73:af:21:4f:47:54:3e: 61:f1:54:12:53:8e:1d:c8:b4:12:1c:66:d7:20:66:4f:57:97: c8:b5:bf:91:19:f0:19:59:c3:75:e0:6e:d2:dd:ed:0e:f4:ce: 54:6b:01:20:22:d8:e7:fe:19:94:3d:b6:83:e0:e7:83:d1:31: 4a:e9:fd:ce:71:04:b0:c3:76:6b:ce:28:09:11:5f:a1:28:e6: c1:c7:99:80:77:15:ec:f5:34:c0:af:4e:1c:71:26:50:1a:3a: ce:f4:4f:fe:ae:69:1c:c6:c0:a9:40:a8:ab:15:47:62:ff:2f: c0:c8:91:96:7f:ab:af:a2:c6:f4:6c:be:2f:15:f2:dd:91:a1: d1:4b:cd:5e:2c:f9:d2:c6:11:8b:ba:c0:3e:fe:aa:c4:c7:6c: 5c:37:d5:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUwQTUxMTAvBgNVBAUTKDQwOEM5OTlDM0MxRUMwMTY0NDk0NUIzNDc3QTlGMjIz NEVCNTc5MUMwHhcNMjUxMDE4MTYwMDQyWhcNMjUxMDI1MTYwMDQyWjAYMRYwFAYD VQQDEw02OGYzYjlhYS05YWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqH15sWXOsXu/SCOu0SMdvkjw54Olp3/H0rlpoZpdaSXHZ9lk7jpHB/P8FVfx radKqyMqtQASCXJYismfDOkQtoAJ4fnRt5g3gFREBtj+wcCvKEXlOluK5Ct8/Ukb IR7vLLZjieOn3OwTf6ExMnAkXWTXNhnAnhwLZGUdb4D+mD0BXrRxSPQ7x3tUIr9I 29XOsZn92N2ZJMRE8YiSQTouC4ZE8RYKWOnKeumDsoP6qZIhjxUBGdFOQiDrRFVP my2y2yzHZyJzHzpRDD5a/4tLHRa3coRdp1npfOR+VyHr/23sySBLMBfk1pvKfT4I gXxA20j8vJ0o4Hsc22bRrH0xvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOtiPSN2 aBUHslzB4S+Ti1z2xnWzMB8GA1UdIwQYMBaAFECMmZw8HsAWRJRbNHep8iNOtXkc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTBBNS8xN0RGQjM1QTQ2 RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdCWkVsRnMwZDZueUkwNjFl UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FJeVpuRHdld0JaRWxGczBkNm55STA2MWVSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTBBNS8xN0RGQjM1QTQ2RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdC WkVsRnMwZDZueUkwNjFlUncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeekfubt1vQkwK8DP9kFttMuZGGgnQIvO0VALKi1/cSSuXct+SPzNi jhYi830U1y5eKpxxm+WAyc6lMgxpD86sMQLXvKk2YM1yYp+vBOSbxxkLfpMHBX+t ZRuIxXANYqXPlGM133OvIU9HVD5h8VQSU44dyLQSHGbXIGZPV5fItb+RGfAZWcN1 4G7S3e0O9M5UawEgItjn/hmUPbaD4OeD0TFK6f3OcQSww3ZrzigJEV+hKObBx5mA dxXs9TTAr04ccSZQGjrO9E/+rmkcxsCpQKirFUdi/y/AyJGWf6uvosb0bL4vFfLd kaHRS81eLPnSxhGLusA+/qrEx2xcN9Vi -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:37 2025 by rpki-client