$ rpki-client -vvf rpki.apnic.net/member_repository/A91C27E8/692F72F2F9BA11E7A4C2943BC4F9AE02/qXUlmYQNbuyqG_aMCQWtffRpouc.mft File: qXUlmYQNbuyqG_aMCQWtffRpouc.mft (raw, json) Hash identifier: 0EkZUdqUgkl6q+/BXs5QhB7GjLKSOXbffHVGKY6mzII= Subject key identifier: D2:B0:34:15:F3:F5:CA:91:06:29:A6:49:89:CA:5E:F3:CB:A7:9F:A5 Authority key identifier: A9:75:25:99:84:0D:6E:EC:AA:1B:F6:8C:09:05:AD:7D:F4:69:A2:E7 Certificate issuer: /CN=A91C27E8/serialNumber=A9752599840D6EECAA1BF68C0905AD7DF469A2E7 Certificate serial: 1705 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qXUlmYQNbuyqG_aMCQWtffRpouc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C27E8/692F72F2F9BA11E7A4C2943BC4F9AE02/qXUlmYQNbuyqG_aMCQWtffRpouc.mft Manifest number: 16F5 Signing time: Sat 18 Oct 2025 17:03:15 +0000 Manifest this update: Sat 18 Oct 2025 17:03:15 +0000 Manifest next update: Sat 25 Oct 2025 17:03:15 +0000 Files and hashes: 1: qXUlmYQNbuyqG_aMCQWtffRpouc.crl (hash: bOMacmnbU9IbJ/DZEBOzOH8afLFO7/qL2gFmgxfeTqE=) 2: BAD2356E153411E892E6D468C4F9AE02.roa (hash: ZwNXUOwbbGwEvsT0YYSZl1NqDpf0fkjGMPzYp65wdFE=) 3: 777FA9ECF9BC11E79E1A9E3FC4F9AE02.roa (hash: fI6pWEKhcfnz5T7b0Qu0ji5oi9dMvf4xCNtRiu+OZoY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C27E8/692F72F2F9BA11E7A4C2943BC4F9AE02/qXUlmYQNbuyqG_aMCQWtffRpouc.crl rsync://rpki.apnic.net/member_repository/A91C27E8/692F72F2F9BA11E7A4C2943BC4F9AE02/qXUlmYQNbuyqG_aMCQWtffRpouc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qXUlmYQNbuyqG_aMCQWtffRpouc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:03:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5893 (0x1705) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C27E8, serialNumber=A9752599840D6EECAA1BF68C0905AD7DF469A2E7 Validity Not Before: Oct 18 17:03:15 2025 GMT Not After : Oct 25 17:03:15 2025 GMT Subject: CN=68f3c853-6e56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:c2:7d:fc:23:31:67:12:bc:2f:0e:5d:db:87: 4d:88:7a:c7:d9:99:8a:fd:85:fe:0a:3f:c0:4e:6f: 58:cd:62:f6:d6:8a:5d:72:ef:fd:79:c5:b5:d6:3e: 61:58:f8:7b:1a:91:d3:da:07:cd:ed:d2:11:29:41: f1:35:90:ef:99:5c:ba:74:92:ea:ee:84:05:55:22: dc:8e:28:63:6c:3f:ee:36:7e:a3:21:b4:27:6b:41: d6:7f:16:e3:e1:85:df:61:dc:e2:50:42:a5:30:be: d5:3d:1f:01:c9:90:7a:b7:93:10:1e:94:97:86:06: 7c:78:c4:8e:c5:d4:d7:9e:4e:bc:ce:c4:0b:5d:90: be:f0:71:a0:98:12:1d:bf:b3:80:75:28:85:f5:2c: e5:c9:90:e2:e3:60:1b:bc:c7:b7:bf:a0:61:87:0d: f5:5c:57:5a:b6:79:53:c1:06:d1:d3:1b:e0:c4:75: bc:f5:b7:90:f1:d0:aa:4b:ae:93:2e:de:6b:9b:93: 40:5b:c1:ba:ac:9d:3f:85:6f:9d:b5:1f:d7:87:ff: d7:29:eb:3a:d5:0a:c9:3c:f2:2b:50:ce:27:eb:28: d0:2e:4c:74:29:fb:3c:22:ce:47:2d:b4:65:7c:66: bb:35:c7:10:f4:00:66:ab:35:94:1d:69:00:4d:e2: 51:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:B0:34:15:F3:F5:CA:91:06:29:A6:49:89:CA:5E:F3:CB:A7:9F:A5 X509v3 Authority Key Identifier: keyid:A9:75:25:99:84:0D:6E:EC:AA:1B:F6:8C:09:05:AD:7D:F4:69:A2:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C27E8/692F72F2F9BA11E7A4C2943BC4F9AE02/qXUlmYQNbuyqG_aMCQWtffRpouc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qXUlmYQNbuyqG_aMCQWtffRpouc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C27E8/692F72F2F9BA11E7A4C2943BC4F9AE02/qXUlmYQNbuyqG_aMCQWtffRpouc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:57:5f:81:f6:cf:03:c8:88:21:39:b8:af:d0:a9:fc:1e:6a: cd:07:ba:50:ba:0d:d2:aa:48:7c:0e:78:25:cc:b4:b0:1e:ac: 80:3b:dd:a6:76:5c:cd:58:36:79:b6:61:7c:d2:7b:c3:2f:17: 37:05:cb:1d:2f:97:77:06:a1:02:3d:b5:6c:4e:29:8d:32:ec: 8d:33:7c:39:f4:dd:5d:f2:8b:99:1c:e2:8e:b0:c8:c3:3e:f7: 41:19:87:45:e7:2f:fc:2b:be:51:12:98:5f:68:4b:65:43:96: e3:4c:98:f6:0c:c6:d6:30:53:0f:ac:92:88:8d:12:c7:62:c0: 8d:f5:1b:a7:a2:16:c7:ac:d6:f4:ce:3a:85:d9:02:8e:0f:6c: 59:eb:b1:06:d3:2c:d6:4a:0a:bd:34:f3:ac:15:00:9b:56:e0: 08:b5:ab:3d:87:49:57:a2:aa:43:a9:da:9f:74:b9:a3:a7:37: 26:db:fb:db:de:cb:6a:8a:3b:aa:b3:2d:b8:74:a3:e0:42:60: 9e:0a:63:15:24:7d:66:7e:b5:ca:9d:2a:7e:0a:05:bd:81:0a: 6a:1d:ea:7c:92:32:92:39:61:5e:bc:d6:cb:58:dc:3a:56:ff: 5d:cc:f4:c5:aa:7b:d9:51:bf:e0:96:ac:aa:ed:9a:b5:90:f0: 50:f1:b1:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFwUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI3RTgxMTAvBgNVBAUTKEE5NzUyNTk5ODQwRDZFRUNBQTFCRjY4QzA5MDVBRDdE RjQ2OUEyRTcwHhcNMjUxMDE4MTcwMzE1WhcNMjUxMDI1MTcwMzE1WjAYMRYwFAYD VQQDEw02OGYzYzg1My02ZTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA58J9/CMxZxK8Lw5d24dNiHrH2ZmK/YX+Cj/ATm9YzWL21opdcu/9ecW11j5h WPh7GpHT2gfN7dIRKUHxNZDvmVy6dJLq7oQFVSLcjihjbD/uNn6jIbQna0HWfxbj 4YXfYdziUEKlML7VPR8ByZB6t5MQHpSXhgZ8eMSOxdTXnk68zsQLXZC+8HGgmBId v7OAdSiF9SzlyZDi42AbvMe3v6Bhhw31XFdatnlTwQbR0xvgxHW89beQ8dCqS66T Lt5rm5NAW8G6rJ0/hW+dtR/Xh//XKes61QrJPPIrUM4n6yjQLkx0Kfs8Is5HLbRl fGa7NccQ9ABmqzWUHWkATeJRzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNKwNBXz 9cqRBimmSYnKXvPLp5+lMB8GA1UdIwQYMBaAFKl1JZmEDW7sqhv2jAkFrX30aaLn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjdFOC82OTJGNzJGMkY5 QkExMUU3QTRDMjk0M0JDNEY5QUUwMi9xWFVsbVlRTmJ1eXFHX2FNQ1FXdGZmUnBv dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FYVWxtWVFOYnV5cUdfYU1DUVd0ZmZScG91Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjdFOC82OTJGNzJGMkY5QkExMUU3QTRDMjk0M0JDNEY5QUUwMi9xWFVsbVlRTmJ1 eXFHX2FNQ1FXdGZmUnBvdWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBV1+B9s8DyIghObiv0Kn8HmrNB7pQug3Sqkh8DnglzLSwHqyAO92m dlzNWDZ5tmF80nvDLxc3BcsdL5d3BqECPbVsTimNMuyNM3w59N1d8ouZHOKOsMjD PvdBGYdF5y/8K75REphfaEtlQ5bjTJj2DMbWMFMPrJKIjRLHYsCN9RunohbHrNb0 zjqF2QKOD2xZ67EG0yzWSgq9NPOsFQCbVuAItas9h0lXoqpDqdqfdLmjpzcm2/vb 3stqijuqsy24dKPgQmCeCmMVJH1mfrXKnSp+CgW9gQpqHep8kjKSOWFevNbLWNw6 Vv9dzPTFqnvZUb/glqyq7Zq1kPBQ8bFo -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:38 2025 by rpki-client