$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft File: QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft (raw, json) Hash identifier: rPT9UTzMI2CbLaxQ3vNjwyka6hGUJzsj4f5agGaxqAA= Subject key identifier: ED:20:54:88:0F:C7:8A:C0:3B:06:E8:2F:1A:4E:B1:30:50:FC:A6:0B Authority key identifier: 40:E4:BD:36:AE:15:07:7F:E5:99:85:D1:37:0D:5D:64:67:0A:88:D9 Certificate issuer: /CN=A91BB492/serialNumber=40E4BD36AE15077FE59985D1370D5D64670A88D9 Certificate serial: 6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft Manifest number: 6B Signing time: Sun 19 Oct 2025 10:19:10 +0000 Manifest this update: Sun 19 Oct 2025 10:19:10 +0000 Manifest next update: Sun 26 Oct 2025 10:19:10 +0000 Files and hashes: 1: QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl (hash: M5y7G22VmQ0YbrbB/hmbAtKJ2bKf/HhoIcEKnaqEE5I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:19:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB492, serialNumber=40E4BD36AE15077FE59985D1370D5D64670A88D9 Validity Not Before: Oct 19 10:19:10 2025 GMT Not After : Oct 26 10:19:10 2025 GMT Subject: CN=68f4bb1e-ac27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c4:f6:1a:94:ca:43:a4:6d:0a:41:15:fa:6d: 0d:58:20:ba:50:57:1e:d4:58:8e:71:c4:52:e6:7b: b2:6c:b6:87:3c:05:26:37:fe:91:dd:0f:35:8f:4c: b4:d5:54:66:ff:15:d3:06:9e:2c:7d:f7:00:36:42: 32:c4:f7:d0:72:3b:7b:11:09:48:9c:ea:2e:45:db: ae:07:31:64:ed:0c:46:14:a1:e0:73:0b:8f:71:78: 39:56:c3:59:03:5b:68:1c:da:ae:41:64:d8:46:b9: 9d:59:ef:72:16:60:75:a1:20:5a:c4:07:55:8e:b1: ae:f0:84:83:1f:40:84:32:a4:af:64:8f:b8:2d:55: 88:67:19:20:e2:bc:e9:6c:6c:1e:4e:c1:64:ba:b5: 24:f5:9d:27:f4:23:9e:46:37:44:45:25:da:41:a8: cd:30:5a:10:99:29:2b:e8:ed:d9:46:fb:c5:ca:61: 51:fe:b1:16:cd:49:5a:0d:3d:99:e0:96:cd:29:16: 1c:ef:31:16:38:23:ea:cc:02:d9:10:d9:ba:84:89: 8c:73:4d:e8:30:4b:63:88:54:05:86:19:63:4c:63: 18:02:4c:98:5d:13:b8:4c:db:a1:59:9b:5d:9f:46: 16:db:28:08:96:24:be:58:cd:c0:f7:a2:c3:3e:43: bf:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:20:54:88:0F:C7:8A:C0:3B:06:E8:2F:1A:4E:B1:30:50:FC:A6:0B X509v3 Authority Key Identifier: keyid:40:E4:BD:36:AE:15:07:7F:E5:99:85:D1:37:0D:5D:64:67:0A:88:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:a3:5a:8a:66:9f:9a:83:0f:9b:50:ea:60:82:ba:37:21:28: d8:a2:86:96:86:9f:20:20:8c:12:03:ce:ab:c3:75:5a:cb:41: 14:8d:2b:d1:a0:58:c9:4a:52:15:27:8c:a4:39:b2:2d:a8:4c: 5d:69:05:63:3d:a5:86:8a:9c:58:36:7e:7d:be:4e:f0:8f:24: 38:b2:97:45:d0:d2:01:92:68:e7:28:0c:96:d9:da:f5:d9:aa: 4f:38:a4:68:f9:e5:9c:d1:f3:ef:1e:1b:5a:6e:de:c4:91:ff: ad:7e:a3:8c:27:c8:67:b5:41:20:b4:65:9b:b8:01:a9:54:c4: 0d:05:ed:b4:1d:24:3e:4b:c5:61:98:b2:08:40:41:53:df:44: 96:63:84:f7:8a:05:25:60:de:17:74:85:74:70:45:5a:ce:6c: bc:c9:d0:11:e3:b7:ef:b1:d6:e8:8d:49:90:3a:7f:08:62:6b: 1a:9a:9f:28:3f:8b:ee:df:b3:51:a8:bc:09:2a:cb:d8:b0:c5: a0:4d:59:7f:86:e7:17:34:c4:05:66:08:c4:39:41:8f:a2:5d: 1a:8d:a7:1b:a3:d4:19:9a:d8:b7:17:f0:bc:18:ef:33:4a:ae: 1a:fc:96:45:fd:e0:d2:26:0c:80:bc:18:24:05:75:4d:75:18: d8:d1:61:a3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QjQ5MjExMC8GA1UEBRMoNDBFNEJEMzZBRTE1MDc3RkU1OTk4NUQxMzcwRDVENjQ2 NzBBODhEOTAeFw0yNTEwMTkxMDE5MTBaFw0yNTEwMjYxMDE5MTBaMBgxFjAUBgNV BAMTDTY4ZjRiYjFlLWFjMjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5xPYalMpDpG0KQRX6bQ1YILpQVx7UWI5xxFLme7Jstoc8BSY3/pHdDzWPTLTV VGb/FdMGnix99wA2QjLE99ByO3sRCUic6i5F264HMWTtDEYUoeBzC49xeDlWw1kD W2gc2q5BZNhGuZ1Z73IWYHWhIFrEB1WOsa7whIMfQIQypK9kj7gtVYhnGSDivOls bB5OwWS6tST1nSf0I55GN0RFJdpBqM0wWhCZKSvo7dlG+8XKYVH+sRbNSVoNPZng ls0pFhzvMRY4I+rMAtkQ2bqEiYxzTegwS2OIVAWGGWNMYxgCTJhdE7hM26FZm12f RhbbKAiWJL5YzcD3osM+Q7+RAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU7SBUiA/H isA7BugvGk6xMFD8pgswHwYDVR0jBBgwFoAUQOS9Nq4VB3/lmYXRNw1dZGcKiNkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJCNDkyLzJDMEIzMkQ4MDkz NjExRjBBMjg0MkQ1N0M0RjlBRTAyL1FPUzlOcTRWQjNfbG1ZWFJOdzFkWkdjS2lO ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUU9TOU5xNFZCM19sbVlYUk53MWRaR2NLaU5rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJC NDkyLzJDMEIzMkQ4MDkzNjExRjBBMjg0MkQ1N0M0RjlBRTAyL1FPUzlOcTRWQjNf bG1ZWFJOdzFkWkdjS2lOay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIajWopmn5qDD5tQ6mCCujchKNiihpaGnyAgjBIDzqvDdVrLQRSNK9Gg WMlKUhUnjKQ5si2oTF1pBWM9pYaKnFg2fn2+TvCPJDiyl0XQ0gGSaOcoDJbZ2vXZ qk84pGj55ZzR8+8eG1pu3sSR/61+o4wnyGe1QSC0ZZu4AalUxA0F7bQdJD5LxWGY sghAQVPfRJZjhPeKBSVg3hd0hXRwRVrObLzJ0BHjt++x1uiNSZA6fwhiaxqanyg/ i+7fs1GovAkqy9iwxaBNWX+G5xc0xAVmCMQ5QY+iXRqNpxuj1Bma2LcX8LwY7zNK rhr8lkX94NImDIC8GCQFdU11GNjRYaM= -----END CERTIFICATE-----Generated at Mon Oct 20 16:19:12 2025 by rpki-client