$ rpki-client -vvf rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/qz22NdhTYB5LpVUAZxIB2Jb-za0.mft File: qz22NdhTYB5LpVUAZxIB2Jb-za0.mft (raw, json) Hash identifier: aiTHUSy/M1nG857H4BX/2Qiks0sqznvay6FXDRJRqTI= Subject key identifier: B5:F4:1B:DF:F1:05:BD:86:67:64:29:BE:F9:72:F8:C3:E4:EA:96:1B Authority key identifier: AB:3D:B6:35:D8:53:60:1E:4B:A5:55:00:67:12:01:D8:96:FE:CD:AD Certificate issuer: /CN=A917FDF3/serialNumber=AB3DB635D853601E4BA55500671201D896FECDAD Certificate serial: 0909 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qz22NdhTYB5LpVUAZxIB2Jb-za0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/qz22NdhTYB5LpVUAZxIB2Jb-za0.mft Manifest number: 0901 Signing time: Sat 18 Oct 2025 21:26:04 +0000 Manifest this update: Sat 18 Oct 2025 21:26:03 +0000 Manifest next update: Sat 25 Oct 2025 21:26:03 +0000 Files and hashes: 1: qz22NdhTYB5LpVUAZxIB2Jb-za0.crl (hash: dX+ts9PY9wnojQjHL4/oh3RWmCPP5bms5HyeH8e3Lrc=) 2: 0FE0AF42B5DB11EA9DA12556C4F9AE02.roa (hash: Fs5lIXhoeLDLVgaGXIOh275fjXBBfxZsCamTtOxAxUw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/qz22NdhTYB5LpVUAZxIB2Jb-za0.crl rsync://rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/qz22NdhTYB5LpVUAZxIB2Jb-za0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qz22NdhTYB5LpVUAZxIB2Jb-za0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:26:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2313 (0x909) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FDF3, serialNumber=AB3DB635D853601E4BA55500671201D896FECDAD Validity Not Before: Oct 18 21:26:03 2025 GMT Not After : Oct 25 21:26:03 2025 GMT Subject: CN=68f405ec-7df2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a5:fe:c1:14:9b:bc:6e:a1:57:7f:c9:08:5f: 40:16:32:a8:5c:9a:f6:dc:ed:aa:51:96:3d:df:5c: 6c:53:75:04:fe:10:68:52:ab:3e:20:8b:d8:31:88: 18:ca:88:06:92:a5:bc:98:17:1c:f1:e6:7f:40:46: f8:79:3b:5f:d2:14:e0:89:8d:48:b1:7a:0f:f7:9d: 83:d7:74:16:11:d0:c9:27:be:b7:9d:c0:25:a0:61: d7:dd:56:2a:a1:98:7c:13:e2:22:9d:f5:31:a9:8a: 2d:d8:89:5a:7a:c4:35:86:62:1f:f1:b7:05:77:68: 38:1d:b2:1e:bb:bc:21:6c:ba:d1:0f:d1:3d:26:eb: 88:11:57:d0:ed:78:19:f6:81:6d:43:a8:b5:ca:96: df:87:02:63:02:26:d8:a1:08:f6:b1:4b:a1:6f:5e: 90:21:79:45:7d:36:c6:58:1f:c5:0a:ca:8a:97:52: c4:4a:0d:b5:cd:c4:aa:d8:79:13:0b:76:a0:1d:a7: 8f:a6:89:74:98:30:e7:bf:fd:5e:4a:f6:89:e2:a8: 4c:63:76:41:98:db:d8:29:5b:13:79:6b:e4:23:f4: 35:da:d3:13:38:8e:5e:e7:89:3b:12:eb:8a:6e:3d: 98:fc:fd:1e:ee:c1:ab:93:e7:70:cd:96:9f:fc:98: 18:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:F4:1B:DF:F1:05:BD:86:67:64:29:BE:F9:72:F8:C3:E4:EA:96:1B X509v3 Authority Key Identifier: keyid:AB:3D:B6:35:D8:53:60:1E:4B:A5:55:00:67:12:01:D8:96:FE:CD:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/qz22NdhTYB5LpVUAZxIB2Jb-za0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qz22NdhTYB5LpVUAZxIB2Jb-za0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FDF3/B3A852B2B5D911EAA6B88754C4F9AE02/qz22NdhTYB5LpVUAZxIB2Jb-za0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:d2:f5:ce:8d:df:1d:79:3b:fa:c0:4e:5f:a7:d3:30:bd:80: e4:d9:cd:1a:28:49:ee:4c:0c:9d:57:cf:f7:f1:9f:85:38:6c: 03:e9:b1:3f:ac:c1:0b:2a:ac:69:a5:4e:1a:45:f8:15:af:20: 27:94:f7:86:4f:65:6c:9d:05:58:fb:ba:d9:3b:89:44:99:ed: 25:40:11:fe:6c:c1:5d:c3:9d:5d:5b:71:8a:30:d6:59:5b:13: b4:3d:17:70:b3:20:eb:26:ea:b8:8e:9d:fe:66:c3:1c:a7:e1: 41:8a:b3:1f:f0:bc:f1:18:18:d5:eb:36:70:51:34:57:64:a9: 73:d3:71:4c:84:80:c9:d2:e6:2c:33:fc:93:fe:2a:2a:50:7a: 72:79:83:a7:61:b3:07:9d:90:32:e4:b6:ab:59:cd:35:00:3c: c0:bc:bb:59:b2:a4:b7:19:c4:3f:4c:e8:3b:32:a4:d2:ef:79: c0:b6:12:14:99:e1:c9:c9:d0:37:68:43:5c:6d:e8:20:95:cd: 17:65:c1:f0:70:b7:3c:57:e0:2c:25:e7:c5:1d:a0:e7:d7:a3: 0c:05:3e:72:8c:44:be:5b:64:3f:0f:74:63:66:40:ec:d5:4c: 30:c1:f6:03:af:da:a1:15:b6:9b:ce:2a:8a:0b:6a:56:d2:fb: 70:1d:19:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZERjMxMTAvBgNVBAUTKEFCM0RCNjM1RDg1MzYwMUU0QkE1NTUwMDY3MTIwMUQ4 OTZGRUNEQUQwHhcNMjUxMDE4MjEyNjAzWhcNMjUxMDI1MjEyNjAzWjAYMRYwFAYD VQQDEw02OGY0MDVlYy03ZGYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtKX+wRSbvG6hV3/JCF9AFjKoXJr23O2qUZY931xsU3UE/hBoUqs+IIvYMYgY yogGkqW8mBcc8eZ/QEb4eTtf0hTgiY1IsXoP952D13QWEdDJJ763ncAloGHX3VYq oZh8E+IinfUxqYot2IlaesQ1hmIf8bcFd2g4HbIeu7whbLrRD9E9JuuIEVfQ7XgZ 9oFtQ6i1ypbfhwJjAibYoQj2sUuhb16QIXlFfTbGWB/FCsqKl1LESg21zcSq2HkT C3agHaePpol0mDDnv/1eSvaJ4qhMY3ZBmNvYKVsTeWvkI/Q12tMTOI5e54k7EuuK bj2Y/P0e7sGrk+dwzZaf/JgY1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLX0G9/x Bb2GZ2Qpvvly+MPk6pYbMB8GA1UdIwQYMBaAFKs9tjXYU2AeS6VVAGcSAdiW/s2t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkRGMy9CM0E4NTJCMkI1 RDkxMUVBQTZCODg3NTRDNEY5QUUwMi9xejIyTmRoVFlCNUxwVlVBWnhJQjJKYi16 YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3F6MjJOZGhUWUI1THBWVUFaeElCMkpiLXphMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RkRGMy9CM0E4NTJCMkI1RDkxMUVBQTZCODg3NTRDNEY5QUUwMi9xejIyTmRoVFlC NUxwVlVBWnhJQjJKYi16YTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCr0vXOjd8deTv6wE5fp9MwvYDk2c0aKEnuTAydV8/38Z+FOGwD6bE/ rMELKqxppU4aRfgVryAnlPeGT2VsnQVY+7rZO4lEme0lQBH+bMFdw51dW3GKMNZZ WxO0PRdwsyDrJuq4jp3+ZsMcp+FBirMf8LzxGBjV6zZwUTRXZKlz03FMhIDJ0uYs M/yT/ioqUHpyeYOnYbMHnZAy5LarWc01ADzAvLtZsqS3GcQ/TOg7MqTS73nAthIU meHJydA3aENcbegglc0XZcHwcLc8V+AsJefFHaDn16MMBT5yjES+W2Q/D3RjZkDs 1UwwwfYDr9qhFbabziqKC2pW0vtwHRlN -----END CERTIFICATE-----Generated at Mon Oct 20 06:53:45 2025 by rpki-client