$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft File: qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft (raw, json) Hash identifier: 92p2lNiGL3zYDdxsQQ6iymUsHQ7xFkCw5A/XzWlULw8= Subject key identifier: 71:46:1B:75:EE:61:5E:0D:AC:12:D4:D1:10:BC:6B:0C:A9:CB:C2:25 Authority key identifier: AA:21:B6:90:C1:D6:3C:BF:44:1A:A3:BD:11:7E:D8:B7:86:88:22:29 Certificate issuer: /CN=A91C0BE1/serialNumber=AA21B690C1D63CBF441AA3BD117ED8B786882229 Certificate serial: 063C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft Manifest number: 0638 Signing time: Sun 19 Oct 2025 00:17:10 +0000 Manifest this update: Sun 19 Oct 2025 00:17:09 +0000 Manifest next update: Sun 26 Oct 2025 00:17:09 +0000 Files and hashes: 1: qiG2kMHWPL9EGqO9EX7Yt4aIIik.crl (hash: SuzjVZlONXiwXl8Vjja1MAuLBCf1fnBWK38L4Wessik=) 2: 0C3EAFF6F84111EC926CBF53C4F9AE02.roa (hash: gGaPSZTXBZeyhBvTnRDrA4x3lhLiqzg2ne+ktqQeFQM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.crl rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:17:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1596 (0x63c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0BE1, serialNumber=AA21B690C1D63CBF441AA3BD117ED8B786882229 Validity Not Before: Oct 19 00:17:09 2025 GMT Not After : Oct 26 00:17:09 2025 GMT Subject: CN=68f42e05-9a02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:7b:0a:b4:db:4a:4a:33:06:42:dc:89:f3:93: e7:a6:e4:ef:33:39:fd:86:d1:da:46:0e:de:dc:d2: 85:a5:f8:13:91:9c:c0:fc:e0:5e:45:48:ef:f1:95: 9f:a9:39:ff:0d:31:04:e5:b5:af:96:b6:b3:fa:c3: c7:7d:eb:b8:42:f6:d8:38:21:e9:53:f0:da:c2:14: 6c:4b:4a:6b:2f:02:bb:f8:c0:fe:18:99:34:b7:dd: e0:33:63:49:ae:ec:61:d8:8e:d8:5b:b3:0e:60:70: fc:f8:2d:60:4b:69:29:4c:06:f7:35:ee:1d:a4:16: 38:dc:75:b3:7d:c7:6c:ee:b5:58:7b:4d:f2:6d:a0: 93:a5:c7:7f:b1:97:79:e9:f5:0e:56:49:cb:f2:9a: f4:43:04:02:c9:a4:89:8f:6d:1f:58:8b:f0:81:96: f5:91:74:da:b2:55:bf:7c:68:93:d9:68:bf:1c:a5: 0e:4b:e2:10:c9:0a:7b:61:1a:54:2b:75:af:8d:76: 18:cf:ff:8f:9b:8b:90:2d:bf:c6:ed:14:57:94:bb: 04:68:3b:8e:9a:8e:3b:f4:cb:bb:61:2c:21:01:30: c4:52:12:98:57:42:8f:4a:97:67:9f:03:9f:5a:d2: b6:51:b1:7e:4c:f0:40:36:fb:f9:12:7b:a4:5e:23: 1a:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:46:1B:75:EE:61:5E:0D:AC:12:D4:D1:10:BC:6B:0C:A9:CB:C2:25 X509v3 Authority Key Identifier: keyid:AA:21:B6:90:C1:D6:3C:BF:44:1A:A3:BD:11:7E:D8:B7:86:88:22:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:09:ab:ab:97:32:e2:a6:6b:f3:63:c7:d6:89:da:75:fc:f5: 7f:35:a3:71:7c:87:17:86:6c:20:81:17:d5:dd:9d:fe:1a:df: 1b:df:8c:0e:5c:a2:aa:71:13:5b:dc:1f:8a:4a:ad:b9:28:d5: 68:16:1b:a6:49:72:40:7c:13:1c:72:a9:fc:6f:68:13:05:0a: 07:6c:33:5d:06:5a:2b:53:5f:b7:2f:29:72:a5:8c:ce:67:ca: e5:79:90:b1:ee:a0:2d:03:60:c2:ea:86:9c:16:a6:3f:67:b0: 47:8c:ad:36:15:8b:e3:63:ef:23:2e:de:86:82:2f:6d:10:57: 17:b1:ea:d1:a2:fd:a5:c3:35:4f:61:11:05:31:9e:e9:3f:01: f9:4c:99:b9:82:d6:ad:9a:c1:cf:c6:aa:50:0f:ed:fa:fd:3e: a8:ed:ff:29:0d:60:d3:77:ab:44:7e:01:4d:df:4b:47:9a:91: c3:c2:b2:68:5f:6d:ec:0a:b3:69:9d:5f:52:d4:01:90:e0:bc: 08:15:1d:c7:ee:41:be:91:56:35:76:7b:43:c9:0f:3b:b2:a1: 1a:b9:e4:e0:2a:fe:ee:da:5f:ef:68:6f:3f:be:87:42:d6:91: f6:1b:fc:a1:5e:ce:25:32:84:6b:22:4d:37:3b:44:bd:ba:c7: 84:6a:86:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBCRTExMTAvBgNVBAUTKEFBMjFCNjkwQzFENjNDQkY0NDFBQTNCRDExN0VEOEI3 ODY4ODIyMjkwHhcNMjUxMDE5MDAxNzA5WhcNMjUxMDI2MDAxNzA5WjAYMRYwFAYD VQQDEw02OGY0MmUwNS05YTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2XsKtNtKSjMGQtyJ85PnpuTvMzn9htHaRg7e3NKFpfgTkZzA/OBeRUjv8ZWf qTn/DTEE5bWvlraz+sPHfeu4QvbYOCHpU/DawhRsS0prLwK7+MD+GJk0t93gM2NJ ruxh2I7YW7MOYHD8+C1gS2kpTAb3Ne4dpBY43HWzfcds7rVYe03ybaCTpcd/sZd5 6fUOVknL8pr0QwQCyaSJj20fWIvwgZb1kXTaslW/fGiT2Wi/HKUOS+IQyQp7YRpU K3WvjXYYz/+Pm4uQLb/G7RRXlLsEaDuOmo479Mu7YSwhATDEUhKYV0KPSpdnnwOf WtK2UbF+TPBANvv5EnukXiMaAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHFGG3Xu YV4NrBLU0RC8awypy8IlMB8GA1UdIwQYMBaAFKohtpDB1jy/RBqjvRF+2LeGiCIp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEJFMS9FNDZGRjQ5MEFF MkIxMUVCOTU2MjdGODJDNEY5QUUwMi9xaUcya01IV1BMOUVHcU85RVg3WXQ0YUlJ aWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FpRzJrTUhXUEw5RUdxTzlFWDdZdDRhSUlpay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEJFMS9FNDZGRjQ5MEFFMkIxMUVCOTU2MjdGODJDNEY5QUUwMi9xaUcya01IV1BM OUVHcU85RVg3WXQ0YUlJaWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyCaurlzLipmvzY8fWidp1/PV/NaNxfIcXhmwggRfV3Z3+Gt8b34wO XKKqcRNb3B+KSq25KNVoFhumSXJAfBMccqn8b2gTBQoHbDNdBlorU1+3LylypYzO Z8rleZCx7qAtA2DC6oacFqY/Z7BHjK02FYvjY+8jLt6Ggi9tEFcXserRov2lwzVP YREFMZ7pPwH5TJm5gtatmsHPxqpQD+36/T6o7f8pDWDTd6tEfgFN30tHmpHDwrJo X23sCrNpnV9S1AGQ4LwIFR3H7kG+kVY1dntDyQ87sqEaueTgKv7u2l/vaG8/vodC 1pH2G/yhXs4lMoRrIk03O0S9useEaobj -----END CERTIFICATE-----Generated at Mon Oct 20 09:46:07 2025 by rpki-client