$ rpki-client -vvf rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft File: QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft (raw, json) Hash identifier: N1UIwfJ3AUACbzsCFmzN4eTmnSTAGDox2FFrdXDtWQ4= Subject key identifier: BF:59:3B:56:F6:12:DD:9C:53:D6:C8:6F:20:3D:CD:40:AE:D1:75:CA Authority key identifier: 41:B4:34:91:5A:49:19:DC:EF:57:D6:97:7C:40:48:0D:FC:31:13:4D Certificate issuer: /CN=A91A25DF/serialNumber=41B434915A4919DCEF57D6977C40480DFC31134D Certificate serial: 37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbQ0kVpJGdzvV9aXfEBIDfwxE00.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft Manifest number: 36 Signing time: Sun 19 Oct 2025 11:04:23 +0000 Manifest this update: Sun 19 Oct 2025 11:04:22 +0000 Manifest next update: Sun 26 Oct 2025 11:04:22 +0000 Files and hashes: 1: QbQ0kVpJGdzvV9aXfEBIDfwxE00.crl (hash: tr92fft1d4TCu0r0JocLBXwy1wyRU6q9fJ0Zrh5GmBc=) 2: C5B717905EDA11F0A5EAB579C4F9AE02.roa (hash: PqNnMtc0YzN3eHNjrg0ykkeSPjuNLhEa4HAV6yMUzA8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.crl rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbQ0kVpJGdzvV9aXfEBIDfwxE00.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:04:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A25DF, serialNumber=41B434915A4919DCEF57D6977C40480DFC31134D Validity Not Before: Oct 19 11:04:22 2025 GMT Not After : Oct 26 11:04:22 2025 GMT Subject: CN=68f4c5b7-e2e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:cb:65:3d:d2:c3:04:33:70:4c:f1:d1:37:26: 69:3f:cd:3e:75:78:b5:8d:f7:cf:41:37:bb:38:a2: 4d:2f:d2:85:ad:db:a2:0c:99:0b:3f:8b:b9:ee:35: 83:f0:93:b8:5d:4a:56:14:ae:0f:a0:3c:35:25:ff: 8b:5a:6c:bf:be:64:74:39:de:33:da:ae:6d:6c:09: 53:8f:f5:53:2d:6b:ae:3f:32:53:fc:e2:33:cd:5b: 41:a0:09:e0:c9:11:3d:c2:8c:ce:ef:05:a7:ce:da: 2a:51:47:ce:3f:dc:0b:06:6c:c3:b8:33:51:64:6c: 2e:21:bd:9f:d6:a9:cf:a4:65:f6:dc:64:a1:87:a4: 41:27:ad:af:25:96:6e:69:26:ef:15:f1:df:30:42: 40:3e:e2:f9:81:de:4a:60:eb:16:c0:2f:9d:2f:77: e8:9c:76:78:52:30:3d:47:87:fe:d0:a5:ae:41:da: 74:e2:d9:ed:79:cc:52:76:26:df:99:9e:1f:07:78: 5b:05:58:ca:f3:e6:e8:c9:45:e8:09:86:78:4f:ea: dd:9e:01:0b:e5:93:92:b2:84:9c:83:32:c0:f1:69: 10:e5:6a:0f:60:8d:a2:6d:5b:98:e2:4c:7c:fa:71: bb:24:98:fc:ab:e2:8a:36:5e:7c:55:6c:27:bc:60: ce:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:59:3B:56:F6:12:DD:9C:53:D6:C8:6F:20:3D:CD:40:AE:D1:75:CA X509v3 Authority Key Identifier: keyid:41:B4:34:91:5A:49:19:DC:EF:57:D6:97:7C:40:48:0D:FC:31:13:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbQ0kVpJGdzvV9aXfEBIDfwxE00.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:f0:af:f5:f0:01:68:af:66:ad:a7:b5:24:54:15:c9:4a:14: 0a:b8:24:e5:23:30:81:25:36:60:a9:d0:69:60:31:66:4d:be: d6:a4:c2:9a:1f:6d:aa:7c:05:94:74:b6:f9:40:de:28:d2:18: 04:65:92:14:e3:d5:cd:da:ef:bf:c9:8c:02:9a:48:3b:98:71: 98:f6:0a:79:d7:1e:bf:ce:e7:40:63:34:fd:8d:5d:87:63:71: 54:77:8d:5d:8b:e7:ef:dc:65:66:f5:17:fe:d7:c4:82:ca:bd: e1:b7:a4:f8:d9:f5:32:e1:9e:8e:15:86:9d:b6:dc:02:c3:f9: 1f:9c:6c:c0:32:3c:e0:6f:dd:1a:d2:83:6e:e4:22:97:00:dc: bf:c6:25:27:53:81:fa:d8:b6:1a:0b:ea:5f:be:3f:64:bf:e0: 26:00:b7:41:d6:2f:4d:bc:a2:8b:22:3e:74:d8:9c:ed:aa:9b: d3:8e:f8:35:75:ba:29:86:df:dd:8e:30:6a:5d:87:18:0b:5c: ed:18:f3:0c:74:3d:22:1a:12:6a:34:2c:ce:76:ba:09:e7:a5: b6:f8:9c:80:83:7e:c7:3a:d3:b8:28:0e:21:ef:e5:28:b9:b5: 1f:df:b5:1c:0e:ee:1d:4e:63:fc:ef:e5:5a:db:3d:e5:cb:8e: e9:7b:3a:ff -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MjVERjExMC8GA1UEBRMoNDFCNDM0OTE1QTQ5MTlEQ0VGNTdENjk3N0M0MDQ4MERG QzMxMTM0RDAeFw0yNTEwMTkxMTA0MjJaFw0yNTEwMjYxMTA0MjJaMBgxFjAUBgNV BAMTDTY4ZjRjNWI3LWUyZTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRy2U90sMEM3BM8dE3Jmk/zT51eLWN989BN7s4ok0v0oWt26IMmQs/i7nuNYPw k7hdSlYUrg+gPDUl/4tabL++ZHQ53jParm1sCVOP9VMta64/MlP84jPNW0GgCeDJ ET3CjM7vBafO2ipRR84/3AsGbMO4M1FkbC4hvZ/Wqc+kZfbcZKGHpEEnra8llm5p Ju8V8d8wQkA+4vmB3kpg6xbAL50vd+icdnhSMD1Hh/7Qpa5B2nTi2e15zFJ2Jt+Z nh8HeFsFWMrz5ujJRegJhnhP6t2eAQvlk5KyhJyDMsDxaRDlag9gjaJtW5jiTHz6 cbskmPyr4oo2XnxVbCe8YM5HAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUv1k7VvYS 3ZxT1shvID3NQK7RdcowHwYDVR0jBBgwFoAUQbQ0kVpJGdzvV9aXfEBIDfwxE00w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEyNURGL0VGNEFENDUyNUVE NTExRjA5Q0YxRDUwQ0M0RjlBRTAyL1FiUTBrVnBKR2R6dlY5YVhmRUJJRGZ3eEUw MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUWJRMGtWcEpHZHp2VjlhWGZFQklEZnd4RTAwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEy NURGL0VGNEFENDUyNUVENTExRjA5Q0YxRDUwQ0M0RjlBRTAyL1FiUTBrVnBKR2R6 dlY5YVhmRUJJRGZ3eEUwMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABLwr/XwAWivZq2ntSRUFclKFAq4JOUjMIElNmCp0GlgMWZNvtakwpof bap8BZR0tvlA3ijSGARlkhTj1c3a77/JjAKaSDuYcZj2CnnXHr/O50BjNP2NXYdj cVR3jV2L5+/cZWb1F/7XxILKveG3pPjZ9TLhno4Vhp223ALD+R+cbMAyPOBv3RrS g27kIpcA3L/GJSdTgfrYthoL6l++P2S/4CYAt0HWL028oosiPnTYnO2qm9OO+DV1 uimG392OMGpdhxgLXO0Y8wx0PSIaEmo0LM52ugnnpbb4nICDfsc607goDiHv5Si5 tR/ftRwO7h1OY/zv5VrbPeXLjul7Ov8= -----END CERTIFICATE-----Generated at Mon Oct 20 04:49:14 2025 by rpki-client