$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft File: q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft (raw, json) Hash identifier: yqZVFnRRBwmnvT2KqxcXmjoBj/+8FlKr/vtatvRAm3U= Subject key identifier: 63:E8:ED:15:89:9F:5F:F0:76:72:A2:4E:3B:29:F8:CE:CB:FD:E9:1A Authority key identifier: AB:53:D9:92:81:02:B9:19:DB:7C:54:65:C8:DD:5F:F2:66:74:43:B3 Certificate issuer: /CN=A91C7E5B/serialNumber=AB53D9928102B919DB7C5465C8DD5FF2667443B3 Certificate serial: 4C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft Manifest number: 4B Signing time: Sun 19 Oct 2025 10:46:09 +0000 Manifest this update: Sun 19 Oct 2025 10:46:08 +0000 Manifest next update: Sun 26 Oct 2025 10:46:08 +0000 Files and hashes: 1: q1PZkoECuRnbfFRlyN1f8mZ0Q7M.crl (hash: rHc+DTdG6cjPuwRrQqmrwWcdQYOvZHwPYkqztiSggJQ=) 2: 765A9AEC3C6F11F0A83E954EC4F9AE02.roa (hash: 1LK4ltfDfUObnmcEpgqLd5X9zDYVgPh3Q6BVcaMlN3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.crl rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:46:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7E5B, serialNumber=AB53D9928102B919DB7C5465C8DD5FF2667443B3 Validity Not Before: Oct 19 10:46:08 2025 GMT Not After : Oct 26 10:46:08 2025 GMT Subject: CN=68f4c171-3f1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:a7:8c:bb:df:03:6c:a4:5b:88:e8:cf:c1:9a: a6:3f:e6:b1:7d:8f:14:b7:16:c3:c5:c1:01:0d:da: e0:8e:02:ab:38:9c:34:9c:44:e1:bf:e2:8f:5b:0e: b6:f3:72:c6:f8:f8:24:f1:23:8a:eb:68:e5:1d:94: 9b:af:60:81:7f:99:f4:61:f2:15:2f:54:41:64:f7: c6:80:82:1a:61:5b:a2:13:30:cd:b2:e3:7f:e8:b4: c2:96:5e:77:a6:4e:bb:ad:f0:98:4d:d5:fd:98:9f: ab:2b:40:9f:15:fa:b7:ba:aa:7d:8f:69:0d:d2:d3: d1:ca:ef:b6:55:20:ea:eb:dc:5d:15:9b:e1:fa:98: 7d:6a:4f:5c:3e:97:71:9e:6c:0e:7d:b2:78:43:c4: 99:53:66:cc:98:c7:e2:62:3d:bd:cf:a3:3a:5e:95: e0:c2:20:22:66:28:20:d8:81:c6:4a:46:68:ce:55: 2d:81:68:5e:2e:2c:23:57:b8:aa:c2:27:2b:48:f7: 74:1b:cc:4e:e0:df:86:d1:b0:5a:de:30:21:11:7e: fd:9f:16:98:96:58:63:ba:6e:bc:b9:0d:62:e9:ab: 03:2e:3d:a4:81:af:64:53:00:90:d4:4d:05:36:42: a9:97:8e:15:4f:1c:60:0f:80:84:2d:8e:1a:06:be: 99:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:E8:ED:15:89:9F:5F:F0:76:72:A2:4E:3B:29:F8:CE:CB:FD:E9:1A X509v3 Authority Key Identifier: keyid:AB:53:D9:92:81:02:B9:19:DB:7C:54:65:C8:DD:5F:F2:66:74:43:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:b3:96:1b:e9:ac:cc:6c:d9:4b:48:2b:79:d6:33:e1:47:71: cf:28:73:c6:25:ec:74:7e:01:84:74:a4:ec:1c:3a:b9:be:37: 88:90:23:bd:07:cd:8f:24:07:fb:67:31:bc:69:db:83:31:94: e7:d1:99:06:0c:88:8e:16:13:f1:4e:dd:9a:62:ae:17:85:4f: 69:08:6b:d1:4c:06:36:aa:76:39:15:49:ee:16:14:5c:ba:73: 68:70:ad:ff:fc:41:6b:a6:8e:6c:4b:17:c7:c9:7e:c6:b6:2c: 22:db:85:7a:09:6a:9c:0c:c6:56:f1:ec:61:4b:3d:9d:08:e8: fe:74:e0:49:cc:24:3f:5c:87:d9:fb:a4:c8:56:ae:89:b6:76: a3:fc:2b:2c:eb:c3:24:67:3b:aa:8b:86:0f:c7:0b:b3:3e:d9: 34:c1:4b:a8:2b:bf:8e:2e:04:1b:b3:01:9b:26:62:28:26:ba: c7:6c:50:56:6a:41:b5:00:43:42:2f:ef:2c:ab:da:f3:8e:40: f2:11:d7:38:34:25:1c:76:c4:47:ef:38:dd:fa:3a:5b:f3:35: 27:ca:01:bf:30:5a:18:6b:9f:57:cf:e9:9d:f8:b4:89:63:3d: 8e:ad:c3:c7:1f:df:87:78:47:11:4c:99:9f:b6:23:21:fa:6d: a7:51:96:87 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD N0U1QjExMC8GA1UEBRMoQUI1M0Q5OTI4MTAyQjkxOURCN0M1NDY1QzhERDVGRjI2 Njc0NDNCMzAeFw0yNTEwMTkxMDQ2MDhaFw0yNTEwMjYxMDQ2MDhaMBgxFjAUBgNV BAMTDTY4ZjRjMTcxLTNmMWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDdp4y73wNspFuI6M/BmqY/5rF9jxS3FsPFwQEN2uCOAqs4nDScROG/4o9bDrbz csb4+CTxI4rraOUdlJuvYIF/mfRh8hUvVEFk98aAghphW6ITMM2y43/otMKWXnem Trut8JhN1f2Yn6srQJ8V+re6qn2PaQ3S09HK77ZVIOrr3F0Vm+H6mH1qT1w+l3Ge bA59snhDxJlTZsyYx+JiPb3PozpeleDCICJmKCDYgcZKRmjOVS2BaF4uLCNXuKrC JytI93QbzE7g34bRsFreMCERfv2fFpiWWGO6bry5DWLpqwMuPaSBr2RTAJDUTQU2 QqmXjhVPHGAPgIQtjhoGvpldAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUY+jtFYmf X/B2cqJOOyn4zsv96RowHwYDVR0jBBgwFoAUq1PZkoECuRnbfFRlyN1f8mZ0Q7Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3RTVCL0Q4NEU3QkYyM0M2 RTExRjA5RDc2QTI0REM0RjlBRTAyL3ExUFprb0VDdVJuYmZGUmx5TjFmOG1aMFE3 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcTFQWmtvRUN1Um5iZkZSbHlOMWY4bVowUTdNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3 RTVCL0Q4NEU3QkYyM0M2RTExRjA5RDc2QTI0REM0RjlBRTAyL3ExUFprb0VDdVJu YmZGUmx5TjFmOG1aMFE3TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC2zlhvprMxs2UtIK3nWM+FHcc8oc8Yl7HR+AYR0pOwcOrm+N4iQI70H zY8kB/tnMbxp24MxlOfRmQYMiI4WE/FO3ZpirheFT2kIa9FMBjaqdjkVSe4WFFy6 c2hwrf/8QWumjmxLF8fJfsa2LCLbhXoJapwMxlbx7GFLPZ0I6P504EnMJD9ch9n7 pMhWrom2dqP8KyzrwyRnO6qLhg/HC7M+2TTBS6grv44uBBuzAZsmYigmusdsUFZq QbUAQ0Iv7yyr2vOOQPIR1zg0JRx2xEfvON36OlvzNSfKAb8wWhhrn1fP6Z34tIlj PY6tw8cf34d4RxFMmZ+2IyH6badRloc= -----END CERTIFICATE-----Generated at Mon Oct 20 11:05:01 2025 by rpki-client