$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft File: Qql4rYPdXtKaTl3bYbVvExelpaQ.mft (raw, json) Hash identifier: hD2K9hFNj6FwT+veaetlvkZgCaTbi2Hdge6U52nzW04= Subject key identifier: AD:62:EB:42:EE:42:7D:E8:7A:EF:F1:AA:E0:D9:DD:59:44:FC:5B:E8 Authority key identifier: 42:A9:78:AD:83:DD:5E:D2:9A:4E:5D:DB:61:B5:6F:13:17:A5:A5:A4 Certificate issuer: /CN=A91D4803/serialNumber=42A978AD83DD5ED29A4E5DDB61B56F1317A5A5A4 Certificate serial: 0584 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft Manifest number: 057C Signing time: Sun 19 Oct 2025 00:58:34 +0000 Manifest this update: Sun 19 Oct 2025 00:58:34 +0000 Manifest next update: Sun 26 Oct 2025 00:58:34 +0000 Files and hashes: 1: Qql4rYPdXtKaTl3bYbVvExelpaQ.crl (hash: Lf+aSM++l8ss2UzytWYrbfW2sQgy0xg7eRxjQ+nGQR4=) 2: 2B1B8C92F9E511EBBB9B5D22C4F9AE02.roa (hash: /ckEG51NBhBYEZtZSbLBPmavN3UuTjHbEpYTSHsiIm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.crl rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:58:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1412 (0x584) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4803, serialNumber=42A978AD83DD5ED29A4E5DDB61B56F1317A5A5A4 Validity Not Before: Oct 19 00:58:34 2025 GMT Not After : Oct 26 00:58:34 2025 GMT Subject: CN=68f437ba-5826 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:44:4f:f6:9e:ea:4e:9f:f5:d2:df:03:f8:0f: a3:97:c5:a2:70:9f:e0:09:23:62:85:58:be:93:ab: 40:7e:f9:4f:66:d6:84:c0:b3:65:7a:1c:4d:90:e2: 40:81:ee:6f:ef:bb:c6:44:63:dd:cd:bd:1b:2c:66: 46:18:fd:6f:7a:04:63:6b:f1:9a:25:c8:ee:ea:17: 17:8c:a9:66:49:52:21:61:bb:11:ab:46:78:ff:9a: c9:5c:12:bf:9a:82:6a:25:62:1f:23:03:eb:bb:e1: 62:07:71:79:95:84:d9:c8:a7:e8:b8:6f:4b:b7:37: 05:8c:9f:64:87:9f:ca:c4:7e:2c:f1:b6:eb:bf:6d: 63:7b:08:a6:58:04:1b:69:a5:3f:e7:3e:ca:06:3c: 6a:ee:10:24:83:de:e0:68:f2:a0:52:fb:10:ab:48: 47:fa:93:a3:08:aa:00:b2:fb:34:35:80:13:85:35: a5:93:eb:d4:b1:9e:43:df:ae:d4:54:ed:bf:3e:ff: 57:4e:c2:90:8a:c9:5f:84:84:27:9d:b8:50:57:85: 05:fc:9f:90:61:d2:ff:c3:f5:72:03:e9:7f:57:4d: 1e:d9:49:f5:f9:64:32:94:19:1a:0c:c3:83:72:f3: 39:07:53:a9:e8:f8:72:d9:16:b5:3c:33:13:05:d3: 90:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:62:EB:42:EE:42:7D:E8:7A:EF:F1:AA:E0:D9:DD:59:44:FC:5B:E8 X509v3 Authority Key Identifier: keyid:42:A9:78:AD:83:DD:5E:D2:9A:4E:5D:DB:61:B5:6F:13:17:A5:A5:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:a8:86:3a:1c:9a:1c:07:16:cf:10:c3:aa:47:5d:6e:a7:40: 58:40:56:c6:67:2c:01:4c:db:72:1b:7a:8b:72:66:29:14:71: a4:05:50:ec:27:de:d9:f5:74:35:61:24:b4:0f:8c:6f:ec:f6: d0:1c:24:a7:1b:e4:b9:f2:0d:4c:5a:e3:94:95:93:be:01:9a: 83:32:72:b8:bf:b7:14:9e:e0:84:da:67:50:f5:19:f4:49:18: fc:6b:09:b9:0d:02:4d:c8:e4:b5:47:b0:f6:f6:ce:a0:7d:e3: f4:4a:1e:38:90:3d:5f:6f:9d:16:08:69:a5:17:29:6f:27:9b: 9b:c9:f7:45:c4:13:5b:cc:d2:30:ef:b8:53:c6:fb:f3:d1:8a: 2b:50:e8:8e:4a:59:8a:5d:94:3d:41:5b:29:f8:fa:04:4f:43: fc:4b:8c:bd:10:9f:41:27:29:61:08:f4:16:83:5f:41:c9:19: f1:fe:7a:c4:db:81:8c:85:a1:53:82:ea:39:92:d2:07:13:bd: 8c:e0:d2:47:24:bf:6e:c7:45:6b:7a:1f:1d:62:43:75:ba:59: 8a:d2:32:de:e9:bd:a5:c2:8e:b7:c5:f8:b4:24:ef:1d:5e:1d: aa:a1:db:a1:ea:5a:65:90:c0:6c:5d:a4:33:f3:78:73:51:45: 6d:7a:c0:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ4MDMxMTAvBgNVBAUTKDQyQTk3OEFEODNERDVFRDI5QTRFNUREQjYxQjU2RjEz MTdBNUE1QTQwHhcNMjUxMDE5MDA1ODM0WhcNMjUxMDI2MDA1ODM0WjAYMRYwFAYD VQQDEw02OGY0MzdiYS01ODI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3URP9p7qTp/10t8D+A+jl8WicJ/gCSNihVi+k6tAfvlPZtaEwLNlehxNkOJA ge5v77vGRGPdzb0bLGZGGP1vegRja/GaJcju6hcXjKlmSVIhYbsRq0Z4/5rJXBK/ moJqJWIfIwPru+FiB3F5lYTZyKfouG9LtzcFjJ9kh5/KxH4s8bbrv21jewimWAQb aaU/5z7KBjxq7hAkg97gaPKgUvsQq0hH+pOjCKoAsvs0NYAThTWlk+vUsZ5D367U VO2/Pv9XTsKQislfhIQnnbhQV4UF/J+QYdL/w/VyA+l/V00e2Un1+WQylBkaDMOD cvM5B1Op6Phy2Ra1PDMTBdOQPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK1i60Lu Qn3oeu/xquDZ3VlE/FvoMB8GA1UdIwQYMBaAFEKpeK2D3V7Smk5d22G1bxMXpaWk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDgwMy84MEYwMzRCRUY5 RTExMUVCQTMyQ0UyMUJDNEY5QUUwMi9RcWw0cllQZFh0S2FUbDNiWWJWdkV4ZWxw YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FxbDRyWVBkWHRLYVRsM2JZYlZ2RXhlbHBhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDgwMy84MEYwMzRCRUY5RTExMUVCQTMyQ0UyMUJDNEY5QUUwMi9RcWw0cllQZFh0 S2FUbDNiWWJWdkV4ZWxwYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8qIY6HJocBxbPEMOqR11up0BYQFbGZywBTNtyG3qLcmYpFHGkBVDs J97Z9XQ1YSS0D4xv7PbQHCSnG+S58g1MWuOUlZO+AZqDMnK4v7cUnuCE2mdQ9Rn0 SRj8awm5DQJNyOS1R7D29s6gfeP0Sh44kD1fb50WCGmlFylvJ5ubyfdFxBNbzNIw 77hTxvvz0YorUOiOSlmKXZQ9QVsp+PoET0P8S4y9EJ9BJylhCPQWg19ByRnx/nrE 24GMhaFTguo5ktIHE72M4NJHJL9ux0Vreh8dYkN1ulmK0jLe6b2lwo63xfi0JO8d Xh2qoduh6lplkMBsXaQz83hzUUVtesCJ -----END CERTIFICATE-----Generated at Mon Oct 20 00:21:11 2025 by rpki-client