$ rpki-client -vvf rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft File: QL0lotYDGHPlXfzdrTpI97z4jIs.mft (raw, json) Hash identifier: +7DDIo3QHotFOF/NA13LhyTTBVhfknCW5GQ7Gi8UITM= Subject key identifier: 28:3C:E8:C7:ED:F9:A3:80:CC:75:AB:7E:C9:58:3A:A1:55:E4:C1:71 Authority key identifier: 40:BD:25:A2:D6:03:18:73:E5:5D:FC:DD:AD:3A:48:F7:BC:F8:8C:8B Certificate issuer: /CN=A9194A58/serialNumber=40BD25A2D6031873E55DFCDDAD3A48F7BCF88C8B Certificate serial: 1889 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QL0lotYDGHPlXfzdrTpI97z4jIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft Manifest number: 187D Signing time: Sat 18 Oct 2025 16:52:46 +0000 Manifest this update: Sat 18 Oct 2025 16:52:45 +0000 Manifest next update: Sat 25 Oct 2025 16:52:45 +0000 Files and hashes: 1: QL0lotYDGHPlXfzdrTpI97z4jIs.crl (hash: BBaG50YATaYS6VzAiFZURlA3YkaIu9cFyv0EE0aP+tI=) 2: 42D0E9A4AFD911E7B8A7E96CC4F9AE02.roa (hash: p9zhGKCO2BBzL3wnYhT/qvWZC/Mb1+QSPyP9kvTHJK4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.crl rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QL0lotYDGHPlXfzdrTpI97z4jIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:52:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6281 (0x1889) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194A58, serialNumber=40BD25A2D6031873E55DFCDDAD3A48F7BCF88C8B Validity Not Before: Oct 18 16:52:45 2025 GMT Not After : Oct 25 16:52:45 2025 GMT Subject: CN=68f3c5de-9bcb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:92:2f:44:ff:3a:38:9f:0e:93:cb:65:91:4f: 70:5a:42:8e:97:1d:cd:4c:fe:4d:29:53:c0:ea:98: fd:87:1d:dd:f7:a1:e5:7f:cf:5a:fd:07:22:6f:81: 59:ae:b8:b3:fd:27:2d:a4:f1:4e:ea:5b:a2:a0:95: d6:ac:f8:d7:f1:09:19:08:b1:b5:ae:98:5b:b7:6f: 77:1b:50:cb:be:0c:ed:2d:f9:38:4e:fb:b1:22:72: 39:83:a5:7a:64:6e:a8:29:11:7d:4f:73:97:dd:c7: aa:ac:cb:8e:8d:ce:77:4a:22:ca:8c:a6:73:c4:40: 27:80:39:cc:fe:12:c4:3f:b6:62:da:c3:00:46:f6: 24:50:d3:4b:52:af:55:db:8e:3b:ee:13:7b:6e:6a: c0:23:60:aa:fd:e4:49:70:a5:38:91:dd:19:3a:99: ae:3f:7f:df:eb:3f:4f:96:9f:9a:7a:52:15:b5:d6: a3:08:c6:9d:72:63:57:76:1a:cc:67:17:64:53:3f: f5:bc:c6:9b:1d:67:59:04:14:9e:d8:fe:a6:b9:38: fd:f6:35:be:c3:5b:59:d9:ac:70:db:eb:33:33:fb: fa:18:d6:73:54:ab:25:84:8a:4d:35:8b:a2:ff:3b: 1d:2e:d0:da:f6:4d:d8:ef:e4:09:42:b7:fa:e8:5a: d8:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:3C:E8:C7:ED:F9:A3:80:CC:75:AB:7E:C9:58:3A:A1:55:E4:C1:71 X509v3 Authority Key Identifier: keyid:40:BD:25:A2:D6:03:18:73:E5:5D:FC:DD:AD:3A:48:F7:BC:F8:8C:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QL0lotYDGHPlXfzdrTpI97z4jIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:21:97:3e:30:cc:8d:d9:31:f0:0e:85:e6:50:ea:51:cc:20: c0:e1:ad:37:1b:c3:ee:71:09:4c:1f:6a:d5:ac:29:5f:86:60: 10:3d:10:cf:1a:95:37:94:cb:5e:91:16:23:ea:ff:f6:f9:fb: 1f:82:df:7d:3c:6e:62:d5:a3:a5:f7:35:b9:e5:10:61:30:86: dd:13:de:33:b2:25:03:9c:de:c4:8d:86:cb:5d:84:5e:d2:4c: d1:f2:6e:fd:63:39:2a:70:1c:11:91:49:4b:59:64:8d:4b:da: 9a:ee:b6:f7:17:eb:ee:88:95:35:93:c3:39:04:20:89:34:11: c4:0b:49:1b:a4:00:1b:b9:09:f9:76:84:dd:f1:f1:6e:fd:81: 93:df:8f:b4:3e:c9:74:83:25:e6:1e:8b:d3:57:39:e2:90:38: 12:44:ab:ea:a8:f0:75:c0:56:67:15:66:b8:f7:66:5d:5b:ba: 42:81:6d:a8:d1:51:40:59:1b:bd:7e:13:b9:fe:96:04:3f:f4: 9a:48:e3:ff:39:59:ca:5a:1a:9d:75:1c:c8:2a:21:3f:f5:a3: 71:f0:b9:b5:97:d3:ae:d6:7f:f2:3d:d6:84:c7:e1:ff:9f:5c: 3c:02:9b:a2:c3:dc:5b:76:ba:f2:42:40:80:2e:9b:a3:0e:a2: cf:a2:38:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRBNTgxMTAvBgNVBAUTKDQwQkQyNUEyRDYwMzE4NzNFNTVERkNEREFEM0E0OEY3 QkNGODhDOEIwHhcNMjUxMDE4MTY1MjQ1WhcNMjUxMDI1MTY1MjQ1WjAYMRYwFAYD VQQDEw02OGYzYzVkZS05YmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzJIvRP86OJ8Ok8tlkU9wWkKOlx3NTP5NKVPA6pj9hx3d96Hlf89a/Qcib4FZ rriz/SctpPFO6luioJXWrPjX8QkZCLG1rphbt293G1DLvgztLfk4TvuxInI5g6V6 ZG6oKRF9T3OX3ceqrMuOjc53SiLKjKZzxEAngDnM/hLEP7Zi2sMARvYkUNNLUq9V 24477hN7bmrAI2Cq/eRJcKU4kd0ZOpmuP3/f6z9Plp+aelIVtdajCMadcmNXdhrM ZxdkUz/1vMabHWdZBBSe2P6muTj99jW+w1tZ2axw2+szM/v6GNZzVKslhIpNNYui /zsdLtDa9k3Y7+QJQrf66FrYaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCg86Mft +aOAzHWrfslYOqFV5MFxMB8GA1UdIwQYMBaAFEC9JaLWAxhz5V383a06SPe8+IyL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEE1OC80RUFDRTQ5MEFF NDMxMUU3ODgxQzY0MTZDNEY5QUUwMi9RTDBsb3RZREdIUGxYZnpkclRwSTk3ejRq SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FMMGxvdFlER0hQbFhmemRyVHBJOTd6NGpJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEE1OC80RUFDRTQ5MEFFNDMxMUU3ODgxQzY0MTZDNEY5QUUwMi9RTDBsb3RZREdI UGxYZnpkclRwSTk3ejRqSXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKIZc+MMyN2THwDoXmUOpRzCDA4a03G8PucQlMH2rVrClfhmAQPRDP GpU3lMtekRYj6v/2+fsfgt99PG5i1aOl9zW55RBhMIbdE94zsiUDnN7EjYbLXYRe 0kzR8m79YzkqcBwRkUlLWWSNS9qa7rb3F+vuiJU1k8M5BCCJNBHEC0kbpAAbuQn5 doTd8fFu/YGT34+0Psl0gyXmHovTVznikDgSRKvqqPB1wFZnFWa492ZdW7pCgW2o 0VFAWRu9fhO5/pYEP/SaSOP/OVnKWhqddRzIKiE/9aNx8Lm1l9Ou1n/yPdaEx+H/ n1w8Apuiw9xbdrryQkCALpujDqLPojie -----END CERTIFICATE-----Generated at Sun Oct 19 23:33:18 2025 by rpki-client