$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft File: QELCSQ19r-wzIDFu1ap04L7Kqak.mft (raw, json) Hash identifier: htW5I4wR8qtLxX+h9XIDeXeEgu2EDnoxCyG6Ys6icIM= Subject key identifier: 65:7F:2F:4E:FC:C8:D1:91:AF:3B:8D:1D:94:9B:08:94:9E:F8:B1:30 Authority key identifier: 40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 Certificate issuer: /CN=A91A7169/serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Certificate serial: 019D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft Manifest number: 0162 Signing time: Sun 19 Oct 2025 07:31:55 +0000 Manifest this update: Sun 19 Oct 2025 07:31:54 +0000 Manifest next update: Sun 26 Oct 2025 07:31:54 +0000 Files and hashes: 1: QELCSQ19r-wzIDFu1ap04L7Kqak.crl (hash: fAXmrzGtHuk/oXF4TSAtQjNJhMZj1s4Uj7BdwKMRcS4=) 2: FCF99042301011EFBC350682C4F9AE02.roa (hash: L2/9JjFiWgQt59AFuV+uoqbPdz+ScN9QlotCi7wxs3k=) 3: 3B8DEBA06FD511F0BF33C829C4F9AE02.roa (hash: TD3x6cqMZ5LdB5sZi2QZSzPZxBxaRneEmC2qFVxnzxU=) 4: 3D937A30EBB211EEA93D9B14C4F9AE02.roa (hash: govSB7bwBcjLhKLkQmAfX8Kv8Fg3iLmAfWNtXCpGOvc=) 5: 72E97B3A1BDB11F0B77B1344C4F9AE02.roa (hash: dLZr6fxQD9+vNX/nMzjBW+2uiS4zZgIOchhbHeELI7w=) 6: 3E0BA21CEBB211EEA93D9B14C4F9AE02.roa (hash: N/ID+SY0JAy45rWeP36Bw1B7q4m3VaCJNW1Sv52Yw6c=) 7: 3C0376CC6FD511F0BF33C829C4F9AE02.roa (hash: tcVwqZZLgzM/JYa8wH8nV+ejGoZFhH0k2MAzqkTeLmo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:31:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 413 (0x19d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7169, serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Validity Not Before: Oct 19 07:31:54 2025 GMT Not After : Oct 26 07:31:54 2025 GMT Subject: CN=68f493ea-413f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ba:f0:5a:fb:9f:23:e2:27:34:75:f8:2b:16: d7:ea:5e:b2:7d:93:56:5f:bc:47:67:8e:58:41:a8: f7:7f:30:7b:19:d4:08:c1:94:bd:a9:1d:db:f0:95: 94:89:3f:60:ac:dd:b7:29:e9:a0:d4:1d:db:a8:62: a9:e7:c5:a0:e2:29:26:96:94:54:16:90:4c:31:8c: 2b:a4:44:ee:a0:8f:13:91:51:35:80:e9:07:c8:2f: 45:aa:b4:dd:31:f0:a7:08:25:cf:fc:4f:f7:e2:17: e6:67:d3:c6:88:ec:37:b9:67:3b:8c:55:23:91:6d: 40:66:d7:a7:e3:18:68:67:c9:c1:ac:85:41:2b:c0: 18:42:47:e4:cb:bb:80:64:8b:40:d3:ed:d1:cb:1c: a0:23:7f:ab:84:6b:3c:7f:0a:95:23:50:c3:c1:e4: 03:cd:5d:8d:bd:21:1b:1d:8d:35:2c:c8:84:b0:68: 3b:ce:57:5d:97:d2:34:74:40:99:32:66:96:13:a0: 7b:6b:89:13:45:bc:8c:2d:6a:75:aa:e0:32:aa:d0: 60:16:36:db:2f:46:7f:dd:c5:9f:b3:88:74:1e:65: 42:11:63:a1:89:fe:dd:54:13:76:72:4e:b3:06:b8: df:23:52:6c:1d:06:8c:98:a3:93:61:50:5a:03:80: 79:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:7F:2F:4E:FC:C8:D1:91:AF:3B:8D:1D:94:9B:08:94:9E:F8:B1:30 X509v3 Authority Key Identifier: keyid:40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:91:00:ad:db:cd:4d:d9:1e:61:f2:f9:78:a4:8e:82:b8:ec: 67:a2:2f:49:a4:a9:7a:73:c7:1a:05:a6:cb:3b:f5:cb:72:cf: f6:b3:38:89:67:b4:60:38:78:e4:8c:7e:af:5e:89:fb:2d:bd: e4:3c:d2:6d:cc:ec:65:49:aa:59:1a:a0:6d:bc:cc:3a:13:6a: bd:46:ee:34:dc:5e:10:7c:56:99:7e:e4:d5:41:71:4f:13:e6: 83:f6:a6:d7:82:af:1d:7c:94:18:e5:35:c4:7f:ea:4b:0d:de: 69:9b:b4:a8:88:90:b3:5d:b9:b5:f9:5b:61:84:5e:05:73:ff: 00:81:a6:cd:bf:a2:36:b3:4a:e9:50:34:0e:f7:50:d0:6d:ef: d1:d1:40:42:3f:38:8e:4f:d1:93:59:c7:e4:aa:25:7c:b9:a6: e4:07:4b:cb:89:ea:2c:12:99:9e:7d:cd:09:9a:e3:f3:7b:f9: 16:90:67:ae:b0:73:22:77:4d:54:7f:31:46:71:6a:03:f9:86: 74:a9:f1:84:a2:91:e5:86:9c:04:b8:43:16:58:69:6c:b9:c0: bc:64:64:1a:30:31:a6:9d:d1:9c:8a:f7:a8:1b:e8:88:de:35: 74:84:5d:73:50:a0:3b:44:07:25:1f:80:a9:07:5e:df:fd:81: 31:7d:73:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTcxNjkxMTAvBgNVBAUTKDQwNDJDMjQ5MEQ3REFGRUMzMzIwMzE2RUQ1QUE3NEUw QkVDQUE5QTkwHhcNMjUxMDE5MDczMTU0WhcNMjUxMDI2MDczMTU0WjAYMRYwFAYD VQQDEw02OGY0OTNlYS00MTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxLrwWvufI+InNHX4KxbX6l6yfZNWX7xHZ45YQaj3fzB7GdQIwZS9qR3b8JWU iT9grN23Kemg1B3bqGKp58Wg4ikmlpRUFpBMMYwrpETuoI8TkVE1gOkHyC9FqrTd MfCnCCXP/E/34hfmZ9PGiOw3uWc7jFUjkW1AZten4xhoZ8nBrIVBK8AYQkfky7uA ZItA0+3RyxygI3+rhGs8fwqVI1DDweQDzV2NvSEbHY01LMiEsGg7zlddl9I0dECZ MmaWE6B7a4kTRbyMLWp1quAyqtBgFjbbL0Z/3cWfs4h0HmVCEWOhif7dVBN2ck6z BrjfI1JsHQaMmKOTYVBaA4B5QwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGV/L078 yNGRrzuNHZSbCJSe+LEwMB8GA1UdIwQYMBaAFEBCwkkNfa/sMyAxbtWqdOC+yqmp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzE2OS82MjMzREQzRUVC QUUxMUVFOEEwRUQ5NjRDNEY5QUUwMi9RRUxDU1ExOXItd3pJREZ1MWFwMDRMN0tx YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FFTENTUTE5ci13eklERnUxYXAwNEw3S3Fhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzE2OS82MjMzREQzRUVCQUUxMUVFOEEwRUQ5NjRDNEY5QUUwMi9RRUxDU1ExOXIt d3pJREZ1MWFwMDRMN0txYWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlkQCt281N2R5h8vl4pI6CuOxnoi9JpKl6c8caBabLO/XLcs/2sziJ Z7RgOHjkjH6vXon7Lb3kPNJtzOxlSapZGqBtvMw6E2q9Ru403F4QfFaZfuTVQXFP E+aD9qbXgq8dfJQY5TXEf+pLDd5pm7SoiJCzXbm1+VthhF4Fc/8AgabNv6I2s0rp UDQO91DQbe/R0UBCPziOT9GTWcfkqiV8uabkB0vLieosEpmefc0JmuPze/kWkGeu sHMid01UfzFGcWoD+YZ0qfGEopHlhpwEuEMWWGlsucC8ZGQaMDGmndGciveoG+iI 3jV0hF1zUKA7RAclH4CpB17f/YExfXPi -----END CERTIFICATE-----Generated at Mon Oct 20 05:06:45 2025 by rpki-client