$ rpki-client -vvf rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft File: QgBM9ryh-lZCT17qJPYqkrJc3s8.mft (raw, json) Hash identifier: LjSsPRQeexix2sJnuouwX6y/8nCecvVglvynp3RzX7o= Subject key identifier: 69:DD:41:B3:3D:B7:84:76:90:EE:FC:5A:6C:2C:14:20:98:F4:95:C6 Authority key identifier: 42:00:4C:F6:BC:A1:FA:56:42:4F:5E:EA:24:F6:2A:92:B2:5C:DE:CF Certificate issuer: /CN=A919960D/serialNumber=42004CF6BCA1FA56424F5EEA24F62A92B25CDECF Certificate serial: 0211 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft Manifest number: 020C Signing time: Sun 19 Oct 2025 04:37:54 +0000 Manifest this update: Sun 19 Oct 2025 04:37:53 +0000 Manifest next update: Sun 26 Oct 2025 04:37:53 +0000 Files and hashes: 1: QgBM9ryh-lZCT17qJPYqkrJc3s8.crl (hash: JOklTUQOEM/ylDYOmMq9zywN2BAgtOL53/kls19oUkk=) 2: BE9174768DDE11ED97AFDA82C4F9AE02.roa (hash: L+V30ULZZ1KBiifHC7zDGdNJ17lrpWMv8iHx76Nc92w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.crl rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:37:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 529 (0x211) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919960D, serialNumber=42004CF6BCA1FA56424F5EEA24F62A92B25CDECF Validity Not Before: Oct 19 04:37:53 2025 GMT Not After : Oct 26 04:37:53 2025 GMT Subject: CN=68f46b22-5100 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:32:48:28:49:c3:59:62:41:1c:65:14:92:ba: 58:32:d3:51:99:4f:49:f5:21:1a:34:09:94:01:c4: 55:00:0c:40:f9:1b:7f:89:4a:4c:7e:53:22:74:55: ea:b2:5e:27:91:2d:02:e5:14:60:a3:83:ea:c8:d1: 05:0d:93:9d:15:d8:77:12:91:e1:3d:d5:a0:bd:73: 9e:4b:6d:82:9a:37:d5:86:ca:05:b3:fd:00:aa:06: 9d:3f:ff:06:1e:3f:27:47:e1:92:1c:29:90:e4:a9: 60:e2:fd:dd:67:14:80:89:07:af:f2:46:df:48:4b: 0b:c7:d1:e6:7e:a2:33:98:cf:b7:22:14:39:7e:0a: 6d:05:27:73:43:cb:55:74:ba:ee:46:db:88:55:19: 4a:90:01:a3:ff:1b:cf:1e:7c:62:d3:5c:9d:85:87: 3a:2d:ba:88:64:c1:87:e0:34:44:55:7d:44:43:be: c4:9c:c1:b7:7d:da:51:f5:aa:4e:ac:f8:5a:36:cd: d4:83:21:22:0d:d8:45:97:29:6e:99:6b:0d:a9:0d: 38:cb:a3:3f:f4:92:46:20:26:d3:4d:ea:d7:36:f4: ee:e3:3e:d7:72:d1:cc:59:6d:3d:6a:0c:72:a2:51: 56:96:6d:3c:9f:db:59:4f:c5:96:94:10:c1:69:b0: 67:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:DD:41:B3:3D:B7:84:76:90:EE:FC:5A:6C:2C:14:20:98:F4:95:C6 X509v3 Authority Key Identifier: keyid:42:00:4C:F6:BC:A1:FA:56:42:4F:5E:EA:24:F6:2A:92:B2:5C:DE:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:cb:e3:63:42:17:de:94:5e:07:ce:4b:3e:03:7a:99:7a:ef: 76:27:64:c0:e1:c0:be:d6:c3:bc:f1:b9:7e:22:46:09:fe:ad: e8:d8:10:1f:01:3e:cc:95:ea:8a:2f:4f:bf:9f:f4:0f:c0:92: 49:7c:ce:ef:85:e5:14:fd:ab:4d:a5:40:1b:8e:26:53:80:e1: d9:72:a4:01:da:6d:d7:5b:c0:97:39:c1:5a:a6:8c:69:88:15: ec:03:07:8f:13:56:e4:6d:fb:7d:5d:1a:e1:28:3d:0c:f6:1e: ff:9c:c3:1d:7b:bb:3f:8e:70:bc:c8:0a:41:ac:d8:0e:20:38: 5f:01:31:18:0e:bb:f8:1e:48:1d:62:dd:95:55:48:92:44:54: ec:d7:b9:21:40:94:09:0a:b3:2d:7b:26:f6:e8:a7:56:04:38: a5:0b:88:ee:54:aa:83:5c:d7:03:17:e9:8f:91:cf:5b:c7:6f: b3:73:86:aa:93:5c:ad:8e:51:c8:ef:db:d2:3b:13:e3:8b:8a: 3d:fa:28:79:00:d2:53:5e:d7:99:af:a4:d2:7f:79:1f:dc:89: fe:0d:e2:fd:00:97:74:c0:6f:a1:9c:62:8a:d3:40:78:41:51: 99:ce:2a:b6:cd:bb:6f:7e:47:d4:29:21:6b:75:f8:af:26:d4: 70:61:1a:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk2MEQxMTAvBgNVBAUTKDQyMDA0Q0Y2QkNBMUZBNTY0MjRGNUVFQTI0RjYyQTky QjI1Q0RFQ0YwHhcNMjUxMDE5MDQzNzUzWhcNMjUxMDI2MDQzNzUzWjAYMRYwFAYD VQQDEw02OGY0NmIyMi01MTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmjJIKEnDWWJBHGUUkrpYMtNRmU9J9SEaNAmUAcRVAAxA+Rt/iUpMflMidFXq sl4nkS0C5RRgo4PqyNEFDZOdFdh3EpHhPdWgvXOeS22CmjfVhsoFs/0AqgadP/8G Hj8nR+GSHCmQ5Klg4v3dZxSAiQev8kbfSEsLx9HmfqIzmM+3IhQ5fgptBSdzQ8tV dLruRtuIVRlKkAGj/xvPHnxi01ydhYc6LbqIZMGH4DREVX1EQ77EnMG3fdpR9apO rPhaNs3UgyEiDdhFlylumWsNqQ04y6M/9JJGICbTTerXNvTu4z7XctHMWW09agxy olFWlm08n9tZT8WWlBDBabBnbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGndQbM9 t4R2kO78WmwsFCCY9JXGMB8GA1UdIwQYMBaAFEIATPa8ofpWQk9e6iT2KpKyXN7P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTYwRC9CRDBCNjRDNjhE REExMUVEODczQTc0ODdDNEY5QUUwMi9RZ0JNOXJ5aC1sWkNUMTdxSlBZcWtySmMz czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FnQk05cnloLWxaQ1QxN3FKUFlxa3JKYzNzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTYwRC9CRDBCNjRDNjhEREExMUVEODczQTc0ODdDNEY5QUUwMi9RZ0JNOXJ5aC1s WkNUMTdxSlBZcWtySmMzczgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpy+NjQhfelF4Hzks+A3qZeu92J2TA4cC+1sO88bl+IkYJ/q3o2BAf AT7MleqKL0+/n/QPwJJJfM7vheUU/atNpUAbjiZTgOHZcqQB2m3XW8CXOcFapoxp iBXsAwePE1bkbft9XRrhKD0M9h7/nMMde7s/jnC8yApBrNgOIDhfATEYDrv4Hkgd Yt2VVUiSRFTs17khQJQJCrMteyb26KdWBDilC4juVKqDXNcDF+mPkc9bx2+zc4aq k1ytjlHI79vSOxPji4o9+ih5ANJTXteZr6TSf3kf3In+DeL9AJd0wG+hnGKK00B4 QVGZziq2zbtvfkfUKSFrdfivJtRwYRr4 -----END CERTIFICATE-----Generated at Mon Oct 20 13:40:38 2025 by rpki-client