$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft File: qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft (raw, json) Hash identifier: A1aym6mFsexCFLjD1Nsb0JMbfFQM/hbOd2XJHelD0aA= Subject key identifier: 00:F1:AD:21:74:02:AF:C2:75:15:AB:6F:25:B3:2D:83:97:6A:87:10 Authority key identifier: A8:9D:0F:D4:F4:8A:BF:69:4F:D9:DF:77:04:E5:96:46:4D:ED:21:79 Certificate issuer: /CN=A91E6CCA/serialNumber=A89D0FD4F48ABF694FD9DF7704E596464DED2179 Certificate serial: 6D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJ0P1PSKv2lP2d93BOWWRk3tIXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft Manifest number: 6A Signing time: Sun 19 Oct 2025 10:22:09 +0000 Manifest this update: Sun 19 Oct 2025 10:22:09 +0000 Manifest next update: Sun 26 Oct 2025 10:22:09 +0000 Files and hashes: 1: qJ0P1PSKv2lP2d93BOWWRk3tIXk.crl (hash: 9T4aYBI35VzMUDR/yyp9Y7GBHDQDqS1hJqvbDVn9zRs=) 2: A94836600F7111F08BC42022C4F9AE02.roa (hash: P0ugR8U/wyMnqraRD80X5tdZACXWqmlF+Xy2XfETkeY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.crl rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJ0P1PSKv2lP2d93BOWWRk3tIXk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:22:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6CCA, serialNumber=A89D0FD4F48ABF694FD9DF7704E596464DED2179 Validity Not Before: Oct 19 10:22:09 2025 GMT Not After : Oct 26 10:22:09 2025 GMT Subject: CN=68f4bbd1-e08a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:3e:dd:9c:dd:ad:78:ae:15:a8:5d:03:57:d9: 14:59:70:c3:65:63:f1:d3:a3:d4:c9:46:80:1b:3e: 4b:9a:b5:7e:45:d6:a3:59:b4:53:48:32:27:b3:c0: 31:2c:3f:ff:2c:45:63:ea:a2:81:3f:c4:ae:41:14: 79:9b:fb:a5:da:31:76:1f:d9:b1:0e:f8:68:89:58: c9:0f:e9:32:63:b1:07:f0:22:c5:05:d3:67:a9:a4: 8d:51:ff:7d:2a:3a:36:e7:33:6f:7b:54:12:da:0e: cd:8c:52:55:c4:48:6e:c7:cb:19:ab:19:1f:48:bf: 48:4d:45:91:3d:12:dc:6c:4d:bf:66:4e:91:fe:7c: dc:22:f5:98:66:51:f8:0b:ed:a4:71:3e:72:47:90: d3:d2:f2:e6:a3:1f:ed:ae:4a:17:04:2f:82:65:a9: 2f:73:9b:6c:68:7a:f2:d0:11:77:48:39:cf:ac:76: ac:00:2d:21:05:57:66:0b:67:24:df:59:60:f2:8b: c7:98:fa:87:a3:47:59:84:c1:d1:69:c8:f8:b5:62: 6a:2a:d4:5b:ec:1e:71:c1:9d:b3:9d:e3:a3:cb:e0: 69:8d:5e:dd:13:58:d6:72:ab:99:88:40:cc:ee:b4: 5f:8c:f8:02:11:ca:62:81:b2:4c:07:cc:20:35:65: e4:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:F1:AD:21:74:02:AF:C2:75:15:AB:6F:25:B3:2D:83:97:6A:87:10 X509v3 Authority Key Identifier: keyid:A8:9D:0F:D4:F4:8A:BF:69:4F:D9:DF:77:04:E5:96:46:4D:ED:21:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJ0P1PSKv2lP2d93BOWWRk3tIXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d2:c8:e1:64:cc:eb:ae:c9:b8:dc:3e:50:8c:af:0a:49:c9:d4: 69:ca:57:a0:65:68:e9:cf:bd:75:d4:f1:09:bd:64:51:9d:92: dc:7e:2f:76:2d:fa:b8:44:16:86:39:cf:f4:de:e4:cd:b1:ed: 89:84:61:7b:3d:3a:83:75:c5:0a:94:3f:37:69:a3:b8:49:9a: df:04:8b:28:ef:b1:50:98:bd:e1:11:0f:1e:99:e0:80:78:90: 87:a6:33:9c:e1:df:8e:1e:27:a3:91:63:d8:0f:03:26:dc:f5: a7:e4:67:c3:59:9a:4b:dd:99:99:5a:ca:14:a4:b2:29:15:36: 5a:43:56:89:5c:05:9b:b0:44:c6:b5:df:6f:dc:0e:bf:9c:dd: 5e:16:0f:63:cc:1d:46:de:25:7a:08:f7:10:f7:e5:4d:4a:a4: 25:8e:e1:0d:8c:8a:17:05:df:63:51:f1:22:66:c4:31:68:27: f6:d9:c9:3d:a6:f3:f7:0f:28:86:41:e4:b8:2b:e0:ba:4e:6c: 1f:20:35:9e:99:d8:e7:13:bd:5c:c2:c4:c2:e8:b7:42:44:6e: 90:8e:1b:ad:23:88:6c:e4:c7:c6:06:7d:f2:7b:4f:1b:70:e8: 67:ce:82:dc:9e:e9:cb:32:72:51:21:d5:9f:f0:9b:43:b2:60: 7f:19:3d:ff -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NkNDQTExMC8GA1UEBRMoQTg5RDBGRDRGNDhBQkY2OTRGRDlERjc3MDRFNTk2NDY0 REVEMjE3OTAeFw0yNTEwMTkxMDIyMDlaFw0yNTEwMjYxMDIyMDlaMBgxFjAUBgNV BAMTDTY4ZjRiYmQxLWUwOGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6Pt2c3a14rhWoXQNX2RRZcMNlY/HTo9TJRoAbPkuatX5F1qNZtFNIMiezwDEs P/8sRWPqooE/xK5BFHmb+6XaMXYf2bEO+GiJWMkP6TJjsQfwIsUF02eppI1R/30q OjbnM297VBLaDs2MUlXESG7HyxmrGR9Iv0hNRZE9EtxsTb9mTpH+fNwi9ZhmUfgL 7aRxPnJHkNPS8uajH+2uShcEL4JlqS9zm2xoevLQEXdIOc+sdqwALSEFV2YLZyTf WWDyi8eY+oejR1mEwdFpyPi1Ymoq1FvsHnHBnbOd46PL4GmNXt0TWNZyq5mIQMzu tF+M+AIRymKBskwHzCA1ZeS7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUAPGtIXQC r8J1FatvJbMtg5dqhxAwHwYDVR0jBBgwFoAUqJ0P1PSKv2lP2d93BOWWRk3tIXkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU2Q0NBLzFBN0FERUNBMEY3 MDExRjA5RTJGN0QxRkM0RjlBRTAyL3FKMFAxUFNLdjJsUDJkOTNCT1dXUmszdElY ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcUowUDFQU0t2MmxQMmQ5M0JPV1dSazN0SVhrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU2 Q0NBLzFBN0FERUNBMEY3MDExRjA5RTJGN0QxRkM0RjlBRTAyL3FKMFAxUFNLdjJs UDJkOTNCT1dXUmszdElYay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANLI4WTM667JuNw+UIyvCknJ1GnKV6BlaOnPvXXU8Qm9ZFGdktx+L3Yt +rhEFoY5z/Te5M2x7YmEYXs9OoN1xQqUPzdpo7hJmt8EiyjvsVCYveERDx6Z4IB4 kIemM5zh344eJ6ORY9gPAybc9afkZ8NZmkvdmZlayhSksikVNlpDVolcBZuwRMa1 32/cDr+c3V4WD2PMHUbeJXoI9xD35U1KpCWO4Q2MihcF32NR8SJmxDFoJ/bZyT2m 8/cPKIZB5Lgr4LpObB8gNZ6Z2OcTvVzCxMLot0JEbpCOG60jiGzkx8YGffJ7Txtw 6GfOgtye6csyclEh1Z/wm0OyYH8ZPf8= -----END CERTIFICATE-----Generated at Tue Oct 21 11:31:41 2025 by rpki-client