$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft File: QNueLLrezam5cjUQIVB63NGlYn8.mft (raw, json) Hash identifier: 5QCsT5JnikTUCduq9i5xyoCOmfj3ITFfqoXvlO6BTik= Subject key identifier: 13:15:35:60:17:DC:88:B2:67:8C:CD:0E:34:28:5F:2E:72:B0:68:B6 Authority key identifier: 40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F Certificate issuer: /CN=A91C8B4F/serialNumber=40DB9E2CBADECDA9B972351021507ADCD1A5627F Certificate serial: 0470 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft Manifest number: 0467 Signing time: Sun 19 Oct 2025 02:03:23 +0000 Manifest this update: Sun 19 Oct 2025 02:03:22 +0000 Manifest next update: Sun 26 Oct 2025 02:03:22 +0000 Files and hashes: 1: QNueLLrezam5cjUQIVB63NGlYn8.crl (hash: mh+eppcuNumJAZxI5YebjUXs0NfO7+cYeaJliswL53s=) 2: 18E79956BAA811ECB07DA44BC4F9AE02.roa (hash: 5latq2+YRolk+7/RCZ77DIkjarUkzR1toXI6OoV7ng8=) 3: 43540B7A0EE311EF9E24862BC4F9AE02.roa (hash: 06e2Kd9kP50w5XlMiJZ3tSgrZONMMPBPJ5HjMD4Ujzw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:03:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1136 (0x470) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8B4F, serialNumber=40DB9E2CBADECDA9B972351021507ADCD1A5627F Validity Not Before: Oct 19 02:03:22 2025 GMT Not After : Oct 26 02:03:22 2025 GMT Subject: CN=68f446ea-82f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:90:00:7c:1d:22:1e:d8:39:8a:73:12:7f:ac: 18:93:f4:df:a6:3c:99:df:f9:ef:57:04:d6:1d:40: 06:0b:4e:0d:44:69:ed:22:a2:69:41:e9:8a:94:4e: 14:97:4a:d1:ce:ca:29:00:11:73:eb:62:27:4e:2b: 7b:3e:ed:6a:fc:7c:02:b7:6b:2d:76:d9:b7:e7:9d: cf:1b:63:6c:58:d0:bb:36:6d:39:e5:30:ce:e7:53: 40:42:c8:11:01:24:7d:88:03:81:26:37:3c:0b:cd: a5:5e:9e:8d:f3:65:02:b2:eb:f5:55:e7:35:6c:7e: 5c:ff:12:89:55:c1:ab:cf:51:20:04:42:5a:41:e1: cb:fb:dc:a1:72:0d:4d:c8:30:b0:6b:5e:71:1b:99: ea:7a:7a:3d:b0:c9:62:2d:ec:79:84:fe:2e:14:30: c9:b4:3b:15:8f:e9:0d:be:6c:dd:78:67:ca:21:51: 02:11:62:ca:e9:79:0a:a3:09:f4:97:cc:07:85:16: 84:90:aa:cd:bc:b8:03:f1:5b:fe:25:1c:8b:0c:78: f6:27:eb:69:da:4a:84:cd:35:f5:24:00:c4:64:51: 10:2e:63:4e:aa:c2:a8:95:4e:c5:9c:1b:7b:d7:a9: ac:cb:89:02:42:e1:e0:c2:40:95:b5:e4:62:55:20: e0:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:15:35:60:17:DC:88:B2:67:8C:CD:0E:34:28:5F:2E:72:B0:68:B6 X509v3 Authority Key Identifier: keyid:40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:4b:38:ae:26:26:38:02:a2:0b:cd:20:31:a6:bc:81:31:4e: 7e:6f:54:cc:cd:eb:b3:05:4b:09:9b:f4:4d:b4:5e:2d:60:3f: 88:f1:9a:c7:43:57:95:aa:f8:ea:6f:26:80:0d:39:66:93:96: 0a:a7:70:df:3c:34:d0:bd:9e:30:93:08:b4:24:05:20:02:95: 47:fa:2c:36:d4:2a:fd:ee:23:49:05:9f:04:a2:41:1e:b1:7a: 63:8e:b4:bd:b0:1d:af:25:45:05:cb:53:91:d4:80:23:bd:d4: f5:b1:63:64:8f:a3:45:5d:8c:e5:37:98:02:c5:51:a1:91:4a: e5:f7:e2:cf:b0:64:7d:57:08:b9:66:e2:de:b8:d5:c1:e5:20: a8:5b:02:58:67:9e:26:2d:4e:8a:ff:29:48:b1:bd:7f:f2:1e: 0b:a0:3e:6f:b2:21:f1:46:6e:73:a9:00:04:5b:c7:d7:05:86: d8:cb:7b:fb:be:a4:36:7f:7a:24:6a:1c:a0:75:7e:49:34:c0: dc:20:60:fc:19:bb:3e:f2:67:04:ae:4e:22:7f:1d:59:69:1d: 42:bd:fd:be:83:a2:47:d9:9f:64:05:05:5f:84:bb:24:59:b2: 44:40:3d:38:ba:4a:16:64:4d:a1:fa:28:2d:27:ba:d1:c3:11: 63:06:f9:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhCNEYxMTAvBgNVBAUTKDQwREI5RTJDQkFERUNEQTlCOTcyMzUxMDIxNTA3QURD RDFBNTYyN0YwHhcNMjUxMDE5MDIwMzIyWhcNMjUxMDI2MDIwMzIyWjAYMRYwFAYD VQQDEw02OGY0NDZlYS04MmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzJAAfB0iHtg5inMSf6wYk/TfpjyZ3/nvVwTWHUAGC04NRGntIqJpQemKlE4U l0rRzsopABFz62InTit7Pu1q/HwCt2stdtm3553PG2NsWNC7Nm055TDO51NAQsgR ASR9iAOBJjc8C82lXp6N82UCsuv1Vec1bH5c/xKJVcGrz1EgBEJaQeHL+9yhcg1N yDCwa15xG5nqeno9sMliLex5hP4uFDDJtDsVj+kNvmzdeGfKIVECEWLK6XkKown0 l8wHhRaEkKrNvLgD8Vv+JRyLDHj2J+tp2kqEzTX1JADEZFEQLmNOqsKolU7FnBt7 16msy4kCQuHgwkCVteRiVSDgHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBMVNWAX 3IiyZ4zNDjQoXy5ysGi2MB8GA1UdIwQYMBaAFEDbniy63s2puXI1ECFQetzRpWJ/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEI0Ri9ERDczMjY0ODY4 QkMxMUVDODc4MDc5NDhDNEY5QUUwMi9RTnVlTExyZXphbTVjalVRSVZCNjNOR2xZ bjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOdWVMTHJlemFtNWNqVVFJVkI2M05HbFluOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEI0Ri9ERDczMjY0ODY4QkMxMUVDODc4MDc5NDhDNEY5QUUwMi9RTnVlTExyZXph bTVjalVRSVZCNjNOR2xZbjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqSziuJiY4AqILzSAxpryBMU5+b1TMzeuzBUsJm/RNtF4tYD+I8ZrH Q1eVqvjqbyaADTlmk5YKp3DfPDTQvZ4wkwi0JAUgApVH+iw21Cr97iNJBZ8EokEe sXpjjrS9sB2vJUUFy1OR1IAjvdT1sWNkj6NFXYzlN5gCxVGhkUrl9+LPsGR9Vwi5 ZuLeuNXB5SCoWwJYZ54mLU6K/ylIsb1/8h4LoD5vsiHxRm5zqQAEW8fXBYbYy3v7 vqQ2f3okahygdX5JNMDcIGD8Gbs+8mcErk4ifx1ZaR1Cvf2+g6JH2Z9kBQVfhLsk WbJEQD04ukoWZE2h+igtJ7rRwxFjBvmg -----END CERTIFICATE-----Generated at Mon Oct 20 17:13:19 2025 by rpki-client