$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft File: QidVkJNLMeOdgd28nAmFa39OWIQ.mft (raw, json) Hash identifier: ms6ej2PayQIbqu/pOVSYdj/2p91e6ecY1Teh4FpzxNI= Subject key identifier: 89:4D:78:21:66:C9:AA:F2:43:D5:6D:90:3B:17:86:3D:19:C2:55:1E Authority key identifier: 42:27:55:90:93:4B:31:E3:9D:81:DD:BC:9C:09:85:6B:7F:4E:58:84 Certificate issuer: /CN=A91DC009/serialNumber=42275590934B31E39D81DDBC9C09856B7F4E5884 Certificate serial: 0237 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QidVkJNLMeOdgd28nAmFa39OWIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft Manifest number: 0234 Signing time: Sun 19 Oct 2025 04:04:30 +0000 Manifest this update: Sun 19 Oct 2025 04:04:29 +0000 Manifest next update: Sun 26 Oct 2025 04:04:29 +0000 Files and hashes: 1: QidVkJNLMeOdgd28nAmFa39OWIQ.crl (hash: nIGXUiIFpurjYTxtMkA6bPrd7eoK+iOv01nITVehNZ4=) 2: 754A1888490D11ED95C7C86EC4F9AE02.roa (hash: CSIt/M+JZX1zt8oTEtouM1TXpeh5gYbtlEsnigR0HLQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.crl rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QidVkJNLMeOdgd28nAmFa39OWIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:04:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 567 (0x237) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC009, serialNumber=42275590934B31E39D81DDBC9C09856B7F4E5884 Validity Not Before: Oct 19 04:04:29 2025 GMT Not After : Oct 26 04:04:29 2025 GMT Subject: CN=68f4634e-faf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:58:30:b3:d6:8b:97:ff:21:79:30:cc:ac:ed: 3d:22:bd:32:07:7e:8b:ff:a3:4e:1a:6f:38:57:9a: a7:b5:45:9d:76:aa:82:e4:8a:b1:cc:44:5e:0c:be: d7:38:ac:f3:9e:23:22:e6:fa:6d:b3:b0:a3:01:14: 92:13:0b:a1:5a:ec:6b:b7:4d:0a:3f:17:8e:d0:7f: 4d:21:18:6d:0f:07:09:eb:c5:72:15:21:cd:aa:35: 8d:0b:e1:53:90:37:54:cf:3d:f7:68:e6:09:8a:d4: 08:6a:27:bd:f7:8b:4a:a2:bb:cf:d2:cf:59:7a:3c: 72:9e:a8:70:0d:92:27:8e:0d:07:20:c1:6c:75:d3: c5:9d:d0:5b:5f:f6:de:a1:cc:e4:d8:e6:72:8d:8b: 20:7c:87:bc:ed:4c:12:94:0f:85:a2:95:d7:c8:2e: 53:82:1e:82:67:bd:69:37:f5:c5:dd:c4:4c:58:2f: 23:3c:5b:53:63:49:43:e7:89:af:29:44:d0:34:da: 01:62:0b:70:ca:d9:71:c2:e1:60:cd:a6:34:83:35: e6:2d:8e:0f:a7:e2:05:a2:dc:3c:67:8e:11:88:30: d7:54:c5:96:61:73:df:6f:2f:fe:44:32:eb:50:2c: 2e:21:58:cb:06:38:72:58:70:37:1d:4a:8d:b2:46: a5:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:4D:78:21:66:C9:AA:F2:43:D5:6D:90:3B:17:86:3D:19:C2:55:1E X509v3 Authority Key Identifier: keyid:42:27:55:90:93:4B:31:E3:9D:81:DD:BC:9C:09:85:6B:7F:4E:58:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QidVkJNLMeOdgd28nAmFa39OWIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:a6:fb:50:3f:2a:7f:64:6f:55:dc:e4:6a:39:96:43:ba:4d: 58:58:ed:73:18:73:d7:ea:b9:de:d6:36:ac:ab:a6:e0:8e:db: 79:49:82:92:92:9f:15:3c:6f:54:b1:c6:b3:b0:f6:eb:18:1b: b6:76:b9:b4:5d:66:a6:ec:10:4f:a9:c3:b9:7f:09:63:99:f7: 4c:6f:20:7b:7a:c6:bb:9e:2d:1c:2b:f9:be:5e:ca:29:e6:ab: be:b0:1c:b1:ca:3a:6d:87:02:ea:2b:ac:23:14:f8:df:b8:31: f2:15:bd:68:c4:6f:e9:74:cd:22:ac:22:c6:10:dc:6d:1c:0a: 44:64:8d:e3:45:63:a5:45:91:ef:c9:0a:ad:55:43:01:e1:2b: ca:05:df:bd:dd:73:f5:c9:d0:7f:f4:bc:3f:28:45:2d:85:51: 2f:cc:7a:ff:8d:9f:58:14:23:10:3c:04:5b:0b:ee:26:bf:2a: 16:f2:db:a0:1e:00:d2:7c:c2:8e:be:fe:9b:53:73:7c:49:67: a6:cb:6b:88:70:1a:e5:2a:a3:54:72:4e:31:d8:f1:4f:87:2d: 5c:54:1a:99:66:9f:b1:68:99:4a:dc:ab:10:ae:64:dd:20:0c: cb:70:8c:a5:6d:cd:7e:84:13:d4:40:07:b9:ab:3d:70:c5:47: 03:1e:dc:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwMDkxMTAvBgNVBAUTKDQyMjc1NTkwOTM0QjMxRTM5RDgxRERCQzlDMDk4NTZC N0Y0RTU4ODQwHhcNMjUxMDE5MDQwNDI5WhcNMjUxMDI2MDQwNDI5WjAYMRYwFAYD VQQDEw02OGY0NjM0ZS1mYWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzlgws9aLl/8heTDMrO09Ir0yB36L/6NOGm84V5qntUWddqqC5IqxzEReDL7X OKzzniMi5vpts7CjARSSEwuhWuxrt00KPxeO0H9NIRhtDwcJ68VyFSHNqjWNC+FT kDdUzz33aOYJitQIaie994tKorvP0s9ZejxynqhwDZInjg0HIMFsddPFndBbX/be oczk2OZyjYsgfIe87UwSlA+FopXXyC5Tgh6CZ71pN/XF3cRMWC8jPFtTY0lD54mv KUTQNNoBYgtwytlxwuFgzaY0gzXmLY4Pp+IFotw8Z44RiDDXVMWWYXPfby/+RDLr UCwuIVjLBjhyWHA3HUqNskaliwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIlNeCFm yaryQ9VtkDsXhj0ZwlUeMB8GA1UdIwQYMBaAFEInVZCTSzHjnYHdvJwJhWt/TliE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzAwOS85NTlEQjg1RTQ5 MEExMUVEQkI3Njc4NDhDNEY5QUUwMi9RaWRWa0pOTE1lT2RnZDI4bkFtRmEzOU9X SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FpZFZrSk5MTWVPZGdkMjhuQW1GYTM5T1dJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzAwOS85NTlEQjg1RTQ5MEExMUVEQkI3Njc4NDhDNEY5QUUwMi9RaWRWa0pOTE1l T2RnZDI4bkFtRmEzOU9XSVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTpvtQPyp/ZG9V3ORqOZZDuk1YWO1zGHPX6rne1jasq6bgjtt5SYKS kp8VPG9UscazsPbrGBu2drm0XWam7BBPqcO5fwljmfdMbyB7esa7ni0cK/m+Xsop 5qu+sByxyjpthwLqK6wjFPjfuDHyFb1oxG/pdM0irCLGENxtHApEZI3jRWOlRZHv yQqtVUMB4SvKBd+93XP1ydB/9Lw/KEUthVEvzHr/jZ9YFCMQPARbC+4mvyoW8tug HgDSfMKOvv6bU3N8SWemy2uIcBrlKqNUck4x2PFPhy1cVBqZZp+xaJlK3KsQrmTd IAzLcIylbc1+hBPUQAe5qz1wxUcDHtxZ -----END CERTIFICATE-----Generated at Sun Oct 19 23:34:03 2025 by rpki-client