$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft File: QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft (raw, json) Hash identifier: 6NI2bF2DHJTOkDFRZrgpzcsHrb0d5j+vfsGJflB5O4I= Subject key identifier: 21:F5:54:A4:7F:33:CA:07:A9:D4:1C:6B:3B:1D:59:06:53:E2:57:DA Authority key identifier: 41:6D:6C:D6:03:90:FB:7C:96:ED:79:D7:8C:E7:6F:54:AF:CF:44:58 Certificate issuer: /CN=A91E5D61/serialNumber=416D6CD60390FB7C96ED79D78CE76F54AFCF4458 Certificate serial: 12D5 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft Manifest number: 47BD Signing time: Sat 18 Oct 2025 14:22:32 +0000 Manifest this update: Sat 18 Oct 2025 14:22:32 +0000 Manifest next update: Sat 25 Oct 2025 14:22:32 +0000 Files and hashes: 1: QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl (hash: n/mUhtWZNgM28pWXN5UAsljaYLGCQeNQSCAKFzhz9y0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:22:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4821 (0x12d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D61, serialNumber=416D6CD60390FB7C96ED79D78CE76F54AFCF4458 Validity Not Before: Oct 18 14:22:32 2025 GMT Not After : Oct 25 14:22:32 2025 GMT Subject: CN=68f3a2a8-f1fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:3a:59:b6:c5:54:f1:75:84:88:0b:b3:04:07: 46:e8:c5:f1:d4:d4:48:45:5d:fc:e3:d3:e9:69:a9: f6:12:31:b6:1c:58:2a:7d:a4:75:89:4f:3e:d2:89: b1:98:38:b6:60:21:e1:c2:a5:ac:0d:81:e3:92:b1: 58:9f:10:ba:f3:49:07:45:a1:a6:07:4c:4b:4e:be: fb:33:ac:93:6d:80:ea:ce:dd:80:c4:a7:3a:de:2e: e9:30:f2:88:c3:14:ae:c2:97:a7:b7:ee:05:4b:bf: 86:df:d8:e5:57:1d:54:6b:1d:2f:22:70:48:15:22: e1:81:59:87:8e:c5:c8:76:65:eb:83:43:ff:ef:12: e6:dc:c7:21:3b:7b:8a:02:5d:6d:65:f2:a8:b6:d2: 53:fc:f0:2d:fa:07:fd:5b:9b:d1:27:d8:96:7a:06: bf:22:7d:38:03:0c:da:b5:bc:95:ab:ef:78:b6:03: 4a:2f:6c:42:c7:fd:ef:55:ed:76:d3:e0:51:08:e0: 70:59:d1:4e:c4:13:36:47:b2:8a:fe:d8:87:0e:63: 37:ea:a0:aa:1f:5c:fc:2a:2a:2f:7a:97:31:36:c3: 55:11:38:84:67:3d:5f:c2:8c:e1:b0:e4:eb:4d:52: d1:e2:1b:b8:aa:d0:42:14:6a:00:40:b4:0f:a4:e7: 66:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:F5:54:A4:7F:33:CA:07:A9:D4:1C:6B:3B:1D:59:06:53:E2:57:DA X509v3 Authority Key Identifier: keyid:41:6D:6C:D6:03:90:FB:7C:96:ED:79:D7:8C:E7:6F:54:AF:CF:44:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:34:d1:9b:3e:cf:01:82:24:44:ee:6c:89:4a:38:6c:15:31: 66:f5:73:55:cc:17:67:b9:0a:64:18:ae:aa:40:48:da:95:70: 85:fe:db:6e:ce:c1:2e:af:53:ac:bf:f4:01:ee:03:6e:3b:0c: 49:62:b7:08:85:c6:3b:4c:73:c0:9f:1e:42:f6:bd:44:31:e0: 14:8e:26:73:c2:78:0d:f7:f9:00:fa:91:af:bb:4c:d2:e1:5c: 27:8b:b9:aa:ba:1a:a9:f6:3e:29:a2:fd:b5:af:7a:a3:ab:12: b8:b0:79:a0:ed:4a:d7:7c:03:87:25:b2:8c:9c:54:4e:09:11: 2f:67:fd:19:0d:67:3d:ad:37:ef:b3:45:ee:88:10:84:fc:d3: 06:ba:fb:0c:ec:25:f8:6e:17:c1:6a:c8:2c:77:73:35:ce:e3: e9:40:69:33:f4:19:f5:5a:10:fe:30:50:e2:25:d9:aa:3c:8d: 32:2e:33:08:83:ff:42:98:95:6c:82:05:3d:c6:68:3c:78:0d: cf:05:28:90:f0:1d:b6:bf:dc:c3:7f:47:cc:35:18:1d:3a:61: 7a:d0:22:40:bf:94:06:fa:63:e4:c0:19:20:1c:d2:7c:82:e3: ef:44:21:e4:39:c2:3a:63:23:93:81:04:2e:ee:cb:87:96:c3: aa:e3:48:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEtUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVENjExMTAvBgNVBAUTKDQxNkQ2Q0Q2MDM5MEZCN0M5NkVENzlENzhDRTc2RjU0 QUZDRjQ0NTgwHhcNMjUxMDE4MTQyMjMyWhcNMjUxMDI1MTQyMjMyWjAYMRYwFAYD VQQDEw02OGYzYTJhOC1mMWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5jpZtsVU8XWEiAuzBAdG6MXx1NRIRV3849Ppaan2EjG2HFgqfaR1iU8+0omx mDi2YCHhwqWsDYHjkrFYnxC680kHRaGmB0xLTr77M6yTbYDqzt2AxKc63i7pMPKI wxSuwpent+4FS7+G39jlVx1Uax0vInBIFSLhgVmHjsXIdmXrg0P/7xLm3MchO3uK Al1tZfKottJT/PAt+gf9W5vRJ9iWega/In04AwzatbyVq+94tgNKL2xCx/3vVe12 0+BRCOBwWdFOxBM2R7KK/tiHDmM36qCqH1z8KiovepcxNsNVETiEZz1fwozhsOTr TVLR4hu4qtBCFGoAQLQPpOdmTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCH1VKR/ M8oHqdQcazsdWQZT4lfaMB8GA1UdIwQYMBaAFEFtbNYDkPt8lu1514znb1Svz0RY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUQ2MS8yQTdDN0Q5ODFE NzkxMUUyODc5RTM4QzUwOEIwMkNEMi9RVzFzMWdPUS0zeVc3WG5Yak9kdlZLX1BS RmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1FXMXMxZ09RLTN5VzdYblhqT2R2VktfUFJGZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUQ2MS8yQTdDN0Q5ODFENzkxMUUyODc5RTM4QzUwOEIwMkNEMi9RVzFzMWdPUS0z eVc3WG5Yak9kdlZLX1BSRmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoNNGbPs8BgiRE7myJSjhsFTFm9XNVzBdnuQpkGK6qQEjalXCF/ttu zsEur1Osv/QB7gNuOwxJYrcIhcY7THPAnx5C9r1EMeAUjiZzwngN9/kA+pGvu0zS 4Vwni7mquhqp9j4pov21r3qjqxK4sHmg7UrXfAOHJbKMnFROCREvZ/0ZDWc9rTfv s0XuiBCE/NMGuvsM7CX4bhfBasgsd3M1zuPpQGkz9Bn1WhD+MFDiJdmqPI0yLjMI g/9CmJVsggU9xmg8eA3PBSiQ8B22v9zDf0fMNRgdOmF60CJAv5QG+mPkwBkgHNJ8 guPvRCHkOcI6YyOTgQQu7suHlsOq40hA -----END CERTIFICATE-----Generated at Mon Oct 20 15:10:55 2025 by rpki-client