$ rpki-client -vvf rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft File: QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft (raw, json) Hash identifier: lhVe4fBk2dnuRfHzhmQk3enVRt7EW8XFZX+iwr7/zP8= Subject key identifier: D2:11:C8:53:77:75:C4:D8:4F:BA:28:4B:E4:FB:38:16:0A:73:33:2F Authority key identifier: 40:FA:A7:0F:8A:23:A0:3D:16:A1:10:86:DB:E5:02:E8:62:16:49:67 Certificate issuer: /CN=A918C31C/serialNumber=40FAA70F8A23A03D16A11086DBE502E862164967 Certificate serial: B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QPqnD4ojoD0WoRCG2-UC6GIWSWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft Manifest number: AF Signing time: Sun 19 Oct 2025 09:20:19 +0000 Manifest this update: Sun 19 Oct 2025 09:20:18 +0000 Manifest next update: Sun 26 Oct 2025 09:20:18 +0000 Files and hashes: 1: QPqnD4ojoD0WoRCG2-UC6GIWSWc.crl (hash: OqZNOs2nuctGqjKokZitU5Xvl34RQl58RaBvZ1YrC7I=) 2: 7C616486A6EF11EF9EB0B473C4F9AE02.roa (hash: j5rVzYxmjqZEY8FEsWt1qRbBmnhP9Qi2T1I55K8uP3k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.crl rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QPqnD4ojoD0WoRCG2-UC6GIWSWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:20:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C31C, serialNumber=40FAA70F8A23A03D16A11086DBE502E862164967 Validity Not Before: Oct 19 09:20:18 2025 GMT Not After : Oct 26 09:20:18 2025 GMT Subject: CN=68f4ad52-abd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:65:f0:12:f9:bd:27:ec:4b:a4:30:b3:4a:21: 23:4e:c6:b7:db:87:00:63:42:c6:9f:17:6f:ef:62: 81:17:0a:b6:c5:82:54:3f:78:0e:9b:75:6b:ae:64: 63:46:f8:4b:8b:09:63:f6:dc:5d:9f:3c:66:d4:cc: dd:1a:a6:cf:f3:1a:4f:b1:49:ff:30:8b:bf:c9:55: df:6a:f6:b2:00:8e:17:b6:a2:1b:21:03:81:6a:0a: 2d:d7:27:7b:a5:c4:96:a6:cd:0c:82:00:31:64:15: 54:22:ab:ef:63:81:35:8d:0a:08:c6:63:98:0a:22: 31:28:0d:e4:32:08:0a:e3:e0:c2:38:2e:52:20:db: 14:26:f3:98:79:a4:4e:2e:02:1a:c8:45:bf:57:ab: 66:b7:a0:7b:47:e5:fd:ab:4c:2e:19:56:0a:00:fc: 56:97:04:55:b9:12:7f:f1:68:dc:ff:01:7c:2b:6c: 5e:ac:91:a5:30:14:47:12:f6:9c:53:50:66:75:92: ac:84:8d:d1:b8:9e:ce:c6:15:ee:b1:85:39:0f:5c: 2f:9f:f2:e7:70:08:e7:87:33:2e:9c:8e:97:39:10: e9:6a:c2:37:36:bf:16:f3:9a:37:0f:b5:10:b8:da: 55:0f:b1:69:10:ab:17:ea:8b:e4:d6:2e:cd:dc:cf: 19:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:11:C8:53:77:75:C4:D8:4F:BA:28:4B:E4:FB:38:16:0A:73:33:2F X509v3 Authority Key Identifier: keyid:40:FA:A7:0F:8A:23:A0:3D:16:A1:10:86:DB:E5:02:E8:62:16:49:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QPqnD4ojoD0WoRCG2-UC6GIWSWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C31C/F107DA10A6CF11EFB2FBB57DC4F9AE02/QPqnD4ojoD0WoRCG2-UC6GIWSWc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:7c:e9:bb:e7:44:38:df:6e:74:24:85:56:21:f7:54:f1:09: ee:d6:f5:46:f5:83:b5:56:fd:7b:c7:9b:33:a7:09:bf:92:8d: 3a:3b:94:83:21:25:7a:04:1a:d4:c5:5f:a9:4a:ef:b9:0b:d5: 46:61:0c:08:6b:e9:d3:9c:67:d5:15:78:fe:3f:a6:0c:b4:e5: 6f:b5:72:7f:73:1e:fb:e2:2b:98:af:37:30:19:90:86:d6:af: 62:71:d4:ef:e0:7e:bd:e3:44:a4:dc:39:a5:38:57:37:e3:16: 7f:37:c8:e0:09:14:b1:fe:b2:8a:20:a3:a2:a4:a7:49:77:9d: d9:3e:c8:51:19:c4:46:ff:7d:2b:20:02:62:e4:7f:80:85:99: 7e:b1:ed:56:ea:d8:fd:0c:64:0a:82:15:79:03:f8:2d:60:c5: 4c:1b:91:94:08:97:64:4c:bb:0d:d9:57:aa:bb:35:cc:dc:75: 36:12:b9:5a:00:00:4d:e7:be:83:cb:0a:50:12:d6:53:98:9a: 5f:27:66:c5:ec:8b:a1:09:3c:85:b3:e9:13:e5:65:9d:f5:de: 74:48:d5:e5:66:cf:56:ad:2e:40:82:d6:d3:c0:86:78:eb:f7: d2:f6:eb:b7:04:33:26:ee:b2:42:07:29:cf:35:89:91:a5:5b: 98:d0:a5:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMzMUMxMTAvBgNVBAUTKDQwRkFBNzBGOEEyM0EwM0QxNkExMTA4NkRCRTUwMkU4 NjIxNjQ5NjcwHhcNMjUxMDE5MDkyMDE4WhcNMjUxMDI2MDkyMDE4WjAYMRYwFAYD VQQDEw02OGY0YWQ1Mi1hYmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs2XwEvm9J+xLpDCzSiEjTsa324cAY0LGnxdv72KBFwq2xYJUP3gOm3VrrmRj RvhLiwlj9txdnzxm1MzdGqbP8xpPsUn/MIu/yVXfavayAI4XtqIbIQOBagot1yd7 pcSWps0MggAxZBVUIqvvY4E1jQoIxmOYCiIxKA3kMggK4+DCOC5SINsUJvOYeaRO LgIayEW/V6tmt6B7R+X9q0wuGVYKAPxWlwRVuRJ/8Wjc/wF8K2xerJGlMBRHEvac U1BmdZKshI3RuJ7OxhXusYU5D1wvn/LncAjnhzMunI6XORDpasI3Nr8W85o3D7UQ uNpVD7FpEKsX6ovk1i7N3M8Z2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNIRyFN3 dcTYT7ooS+T7OBYKczMvMB8GA1UdIwQYMBaAFED6pw+KI6A9FqEQhtvlAuhiFkln MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzMxQy9GMTA3REExMEE2 Q0YxMUVGQjJGQkI1N0RDNEY5QUUwMi9RUHFuRDRvam9EMFdvUkNHMi1VQzZHSVdT V2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FQcW5ENG9qb0QwV29SQ0cyLVVDNkdJV1NXYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzMxQy9GMTA3REExMEE2Q0YxMUVGQjJGQkI1N0RDNEY5QUUwMi9RUHFuRDRvam9E MFdvUkNHMi1VQzZHSVdTV2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcfOm750Q43250JIVWIfdU8Qnu1vVG9YO1Vv17x5szpwm/ko06O5SD ISV6BBrUxV+pSu+5C9VGYQwIa+nTnGfVFXj+P6YMtOVvtXJ/cx774iuYrzcwGZCG 1q9icdTv4H6940Sk3DmlOFc34xZ/N8jgCRSx/rKKIKOipKdJd53ZPshRGcRG/30r IAJi5H+AhZl+se1W6tj9DGQKghV5A/gtYMVMG5GUCJdkTLsN2VequzXM3HU2Erla AABN576DywpQEtZTmJpfJ2bF7IuhCTyFs+kT5WWd9d50SNXlZs9WrS5AgtbTwIZ4 6/fS9uu3BDMm7rJCBynPNYmRpVuY0KUr -----END CERTIFICATE-----Generated at Mon Oct 20 01:43:09 2025 by rpki-client