$ rpki-client -vvf rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft File: QJ0BHok_2Mjws-isFGkqp7udAlk.mft (raw, json) Hash identifier: /Cf9ru5t0VaOnU142+9h1Hbxnr/kAiS07uBtDXkst28= Subject key identifier: 07:B1:6D:CE:7C:5C:BF:72:5A:20:E2:93:53:DB:95:40:32:60:7B:9C Authority key identifier: 40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59 Certificate issuer: /CN=A91808E1/serialNumber=409D011E893FD8C8F0B3E8AC14692AA7BB9D0259 Certificate serial: 0437 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft Manifest number: 0431 Signing time: Sun 19 Oct 2025 02:12:04 +0000 Manifest this update: Sun 19 Oct 2025 02:12:04 +0000 Manifest next update: Sun 26 Oct 2025 02:12:04 +0000 Files and hashes: 1: QJ0BHok_2Mjws-isFGkqp7udAlk.crl (hash: eibggChAG/OL9/mJxNXO3KIX4CKbvc3M9x4ajJjtEV8=) 2: E7FE45667E8311ECA552B67FC4F9AE02.roa (hash: vev8cF3wVonEj/spB6AbH6AE+o8N+kb1JbFrPlAS1N8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:12:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1079 (0x437) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91808E1, serialNumber=409D011E893FD8C8F0B3E8AC14692AA7BB9D0259 Validity Not Before: Oct 19 02:12:04 2025 GMT Not After : Oct 26 02:12:04 2025 GMT Subject: CN=68f448f4-cc61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:29:80:e9:59:9a:2f:89:a3:76:78:ba:3a:96: 96:33:87:b9:1c:92:5f:4f:77:5b:3e:18:ca:52:d2: 6c:85:74:c1:a4:21:29:a9:1f:ef:95:86:0c:e6:d1: c2:bc:22:c4:03:06:a2:0b:75:67:39:cd:e3:40:8e: 34:95:e3:14:1e:2b:d3:29:d0:40:39:fd:b0:d0:38: 7a:96:bb:1f:7f:d3:9f:b6:65:e4:35:2d:f9:95:d3: 37:f9:f5:99:8a:76:c9:4c:28:cd:79:dc:86:ec:fd: 36:a2:ce:f4:00:78:2e:0c:a9:cd:0f:11:fc:2e:d9: 3f:f1:44:e1:31:19:65:51:c1:19:da:59:bb:33:a6: b1:d7:65:e0:6a:94:52:a2:14:77:50:bc:b1:f9:3f: 17:09:51:dd:96:c8:e6:c4:88:3f:ed:ec:b2:d3:e2: be:c3:08:02:fe:49:2e:50:93:d3:aa:77:25:af:e0: ee:ab:cc:16:77:c2:a6:d9:73:45:29:7a:fc:44:e8: 32:b8:80:a7:1f:32:1d:06:29:9b:2a:0c:d1:46:ca: 21:c6:68:14:75:0d:ac:08:d2:dd:cd:26:11:eb:1b: be:d0:19:89:3b:f2:2e:7e:c6:85:bd:aa:f8:dc:fc: 13:f9:85:bb:22:e2:1a:5f:43:40:ad:8b:db:cd:7b: fd:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:B1:6D:CE:7C:5C:BF:72:5A:20:E2:93:53:DB:95:40:32:60:7B:9C X509v3 Authority Key Identifier: keyid:40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:ae:1a:51:ba:2e:34:f6:5d:83:7d:76:43:85:d6:15:75:77: fc:63:32:41:7f:65:45:2a:81:7a:76:92:4c:ae:96:fb:a9:04: 1f:d3:59:f8:cc:7d:30:46:5a:25:90:4c:18:7d:55:f5:15:2b: c4:49:ea:e7:89:6f:cc:77:f0:d4:ba:35:4f:d2:ca:a2:0b:d9: 03:86:f6:ff:d4:16:1d:68:5b:a5:69:58:d7:eb:f9:32:0c:bb: 37:24:63:d2:6e:f8:6c:08:e3:c8:e4:54:5d:0d:3a:49:1e:cf: 96:e3:0b:cd:75:83:e6:8a:4f:8d:33:3b:09:d7:f5:1d:b8:de: b5:62:45:cc:9c:ac:ef:a2:7b:55:2f:f4:3d:71:cb:88:c0:57: 63:73:16:1e:69:af:a3:04:c2:74:29:30:a2:9f:81:f7:14:92: 56:d0:b0:c5:b3:7c:bc:c6:4d:36:4e:80:42:a5:c4:bf:13:85: 14:1d:d8:fc:bc:0b:1b:39:18:16:b5:8d:d4:1e:6e:84:2a:6a: b9:3f:de:1c:1a:e7:d8:8b:b8:fe:ce:ad:4d:c2:fa:88:44:01: 3b:0a:95:27:ef:b0:59:fb:fc:77:8b:12:a3:f0:2d:09:3b:73: 2e:7f:4c:7e:51:a9:7c:dc:81:bd:b0:ff:df:8b:ae:81:2f:57: a8:4c:db:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA4RTExMTAvBgNVBAUTKDQwOUQwMTFFODkzRkQ4QzhGMEIzRThBQzE0NjkyQUE3 QkI5RDAyNTkwHhcNMjUxMDE5MDIxMjA0WhcNMjUxMDI2MDIxMjA0WjAYMRYwFAYD VQQDEw02OGY0NDhmNC1jYzYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvSmA6VmaL4mjdni6OpaWM4e5HJJfT3dbPhjKUtJshXTBpCEpqR/vlYYM5tHC vCLEAwaiC3VnOc3jQI40leMUHivTKdBAOf2w0Dh6lrsff9OftmXkNS35ldM3+fWZ inbJTCjNedyG7P02os70AHguDKnNDxH8Ltk/8UThMRllUcEZ2lm7M6ax12XgapRS ohR3ULyx+T8XCVHdlsjmxIg/7eyy0+K+wwgC/kkuUJPTqnclr+Duq8wWd8Km2XNF KXr8ROgyuICnHzIdBimbKgzRRsohxmgUdQ2sCNLdzSYR6xu+0BmJO/IufsaFvar4 3PwT+YW7IuIaX0NArYvbzXv9LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAexbc58 XL9yWiDik1PblUAyYHucMB8GA1UdIwQYMBaAFECdAR6JP9jI8LPorBRpKqe7nQJZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDhFMS9GOTBGOUU4ODdF ODExMUVDQjg4NzNBN0ZDNEY5QUUwMi9RSjBCSG9rXzJNandzLWlzRkdrcXA3dWRB bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FKMEJIb2tfMk1qd3MtaXNGR2txcDd1ZEFsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDhFMS9GOTBGOUU4ODdFODExMUVDQjg4NzNBN0ZDNEY5QUUwMi9RSjBCSG9rXzJN andzLWlzRkdrcXA3dWRBbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxrhpRui409l2DfXZDhdYVdXf8YzJBf2VFKoF6dpJMrpb7qQQf01n4 zH0wRlolkEwYfVX1FSvESerniW/Md/DUujVP0sqiC9kDhvb/1BYdaFulaVjX6/ky DLs3JGPSbvhsCOPI5FRdDTpJHs+W4wvNdYPmik+NMzsJ1/UduN61YkXMnKzvontV L/Q9ccuIwFdjcxYeaa+jBMJ0KTCin4H3FJJW0LDFs3y8xk02ToBCpcS/E4UUHdj8 vAsbORgWtY3UHm6EKmq5P94cGufYi7j+zq1NwvqIRAE7CpUn77BZ+/x3ixKj8C0J O3Muf0x+Ual83IG9sP/fi66BL1eoTNsf -----END CERTIFICATE-----Generated at Tue Oct 21 00:10:01 2025 by rpki-client