$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8A55/5FC658260BC911EE9C6F185EC4F9AE02/QyiNyelBKGI4XB6D3TeGNYMyDRg.mft File: QyiNyelBKGI4XB6D3TeGNYMyDRg.mft (raw, json) Hash identifier: dBEZDY1CjYAH2ouH618czshPGBxrJ91pUvyrXLXENqQ= Subject key identifier: 99:C8:15:46:10:8F:D5:36:6D:03:69:27:6D:AD:BA:87:E9:D6:62:64 Authority key identifier: 43:28:8D:C9:E9:41:28:62:38:5C:1E:83:DD:37:86:35:83:32:0D:18 Certificate issuer: /CN=A91D8A55/serialNumber=43288DC9E9412862385C1E83DD37863583320D18 Certificate serial: 01BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QyiNyelBKGI4XB6D3TeGNYMyDRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8A55/5FC658260BC911EE9C6F185EC4F9AE02/QyiNyelBKGI4XB6D3TeGNYMyDRg.mft Manifest number: 01B9 Signing time: Sun 19 Oct 2025 05:35:23 +0000 Manifest this update: Sun 19 Oct 2025 05:35:23 +0000 Manifest next update: Sun 26 Oct 2025 05:35:23 +0000 Files and hashes: 1: QyiNyelBKGI4XB6D3TeGNYMyDRg.crl (hash: scdXLwUh2A5Rr7tBF4czr6wc2jVb+U9LxorhLrfQh90=) 2: D1596F0E0BCF11EE8FB8EE16C4F9AE02.roa (hash: JnZnYwDPY6T9KAqalaHmfpI6/yYUrsg6tF5XISERaGQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8A55/5FC658260BC911EE9C6F185EC4F9AE02/QyiNyelBKGI4XB6D3TeGNYMyDRg.crl rsync://rpki.apnic.net/member_repository/A91D8A55/5FC658260BC911EE9C6F185EC4F9AE02/QyiNyelBKGI4XB6D3TeGNYMyDRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QyiNyelBKGI4XB6D3TeGNYMyDRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:35:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 445 (0x1bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8A55, serialNumber=43288DC9E9412862385C1E83DD37863583320D18 Validity Not Before: Oct 19 05:35:23 2025 GMT Not After : Oct 26 05:35:23 2025 GMT Subject: CN=68f4789b-8a98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:98:aa:7a:6e:f2:c3:c7:26:4c:ab:9a:2b:bf: c3:ac:ae:51:44:67:dd:fa:e7:72:4b:95:1d:53:47: 7d:b8:d2:eb:d6:67:d6:8d:f4:b1:ca:18:55:8d:a9: f4:c9:5b:66:21:cf:5a:24:3a:15:d6:fd:e8:45:40: 91:e7:8e:1b:88:87:06:2c:00:1e:57:31:67:30:b6: 47:0a:b0:d7:20:78:92:1d:50:88:0f:90:33:f5:d1: e6:35:6f:54:87:2c:c5:01:3c:6e:74:94:86:e5:78: e3:c7:7f:00:71:73:c7:b4:a9:45:cf:3c:8a:9e:b1: 33:82:1f:11:2a:22:24:b7:eb:ce:54:e2:74:db:6a: 62:65:42:e3:3b:29:f8:e0:0f:94:cc:f8:3e:42:1a: cf:39:ef:e6:50:43:f2:1f:85:11:fd:44:f5:05:4b: 6a:b5:12:45:e3:b6:3e:9d:0f:a2:86:23:f3:af:0f: 9f:c1:59:7a:b4:b5:05:f8:97:a4:e0:70:bc:57:e8: cd:2d:90:bb:4d:f1:f3:ce:4f:72:8c:20:0f:71:99: a5:cf:6b:a8:b7:00:11:7b:f9:57:98:f9:8e:36:7f: 9f:1e:49:6f:49:4c:1f:5d:9d:cd:75:b7:cb:cd:e4: f2:ed:51:9c:20:8a:91:64:82:9d:55:6c:bf:79:81: ce:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:C8:15:46:10:8F:D5:36:6D:03:69:27:6D:AD:BA:87:E9:D6:62:64 X509v3 Authority Key Identifier: keyid:43:28:8D:C9:E9:41:28:62:38:5C:1E:83:DD:37:86:35:83:32:0D:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8A55/5FC658260BC911EE9C6F185EC4F9AE02/QyiNyelBKGI4XB6D3TeGNYMyDRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QyiNyelBKGI4XB6D3TeGNYMyDRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8A55/5FC658260BC911EE9C6F185EC4F9AE02/QyiNyelBKGI4XB6D3TeGNYMyDRg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:25:ba:fa:0d:31:51:52:a6:7a:bf:e2:b0:fa:44:1b:6f:74: 9d:d4:cb:63:29:19:b4:b9:36:f3:ee:18:3b:23:8c:cd:88:a5: ff:5f:96:2b:14:36:3a:8f:9a:a5:d1:07:56:61:b9:d6:36:0a: cb:db:00:00:45:46:82:a6:de:78:8a:c0:3b:08:d3:e7:35:0f: d8:34:67:df:f6:37:25:cd:80:25:1b:d6:c1:0c:4b:5c:47:b2: a6:2b:a5:83:67:5b:7c:1c:98:41:c2:32:6c:8c:a1:29:54:cd: 2f:1d:58:8a:24:a6:68:ff:2a:99:97:f8:be:d3:b7:f9:b4:40: 3d:31:62:1e:18:f9:e6:74:c2:92:7a:6f:51:d4:7c:49:67:84: 96:b2:6d:f7:b8:3b:37:16:38:1a:56:b1:5d:bf:c4:65:6d:2f: 37:b6:1a:b8:a9:35:de:01:9e:ae:c2:d6:1f:19:b7:66:08:a6: 76:9b:04:17:ba:9e:3e:d2:97:e7:da:e5:ac:cb:ac:3e:21:a2: c1:e6:97:cb:64:00:b9:85:10:1e:80:c2:ce:d4:7c:c4:fc:ce: f4:9f:6a:3f:0d:6f:26:21:1a:2e:e5:d8:a8:a6:d1:35:c6:63: 19:64:7c:6f:5b:37:71:2a:7d:b1:54:83:67:0a:b0:09:88:42: f1:a8:02:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAb0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhBNTUxMTAvBgNVBAUTKDQzMjg4REM5RTk0MTI4NjIzODVDMUU4M0REMzc4NjM1 ODMzMjBEMTgwHhcNMjUxMDE5MDUzNTIzWhcNMjUxMDI2MDUzNTIzWjAYMRYwFAYD VQQDEw02OGY0Nzg5Yi04YTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAppiqem7yw8cmTKuaK7/DrK5RRGfd+udyS5UdU0d9uNLr1mfWjfSxyhhVjan0 yVtmIc9aJDoV1v3oRUCR544biIcGLAAeVzFnMLZHCrDXIHiSHVCID5Az9dHmNW9U hyzFATxudJSG5Xjjx38AcXPHtKlFzzyKnrEzgh8RKiIkt+vOVOJ022piZULjOyn4 4A+UzPg+QhrPOe/mUEPyH4UR/UT1BUtqtRJF47Y+nQ+ihiPzrw+fwVl6tLUF+Jek 4HC8V+jNLZC7TfHzzk9yjCAPcZmlz2uotwARe/lXmPmONn+fHklvSUwfXZ3NdbfL zeTy7VGcIIqRZIKdVWy/eYHOAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJnIFUYQ j9U2bQNpJ22tuofp1mJkMB8GA1UdIwQYMBaAFEMojcnpQShiOFweg903hjWDMg0Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEE1NS81RkM2NTgyNjBC QzkxMUVFOUM2RjE4NUVDNEY5QUUwMi9ReWlOeWVsQktHSTRYQjZEM1RlR05ZTXlE UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F5aU55ZWxCS0dJNFhCNkQzVGVHTllNeURSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEE1NS81RkM2NTgyNjBCQzkxMUVFOUM2RjE4NUVDNEY5QUUwMi9ReWlOeWVsQktH STRYQjZEM1RlR05ZTXlEUmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSJbr6DTFRUqZ6v+Kw+kQbb3Sd1MtjKRm0uTbz7hg7I4zNiKX/X5Yr FDY6j5ql0QdWYbnWNgrL2wAARUaCpt54isA7CNPnNQ/YNGff9jclzYAlG9bBDEtc R7KmK6WDZ1t8HJhBwjJsjKEpVM0vHViKJKZo/yqZl/i+07f5tEA9MWIeGPnmdMKS em9R1HxJZ4SWsm33uDs3FjgaVrFdv8RlbS83thq4qTXeAZ6uwtYfGbdmCKZ2mwQX up4+0pfn2uWsy6w+IaLB5pfLZAC5hRAegMLO1HzE/M70n2o/DW8mIRou5dioptE1 xmMZZHxvWzdxKn2xVINnCrAJiELxqALz -----END CERTIFICATE-----Generated at Mon Oct 20 21:38:52 2025 by rpki-client