$ rpki-client -vvf rpki.apnic.net/member_repository/A91E80FB/628D520C8FB611EC92BD2510C4F9AE02/QIWuE0tjOKEnZXKD67wWwS8guGI.mft File: QIWuE0tjOKEnZXKD67wWwS8guGI.mft (raw, json) Hash identifier: QCmkNjWOxSLhiiEc+X041WMz1WOs1qcCP17EKI/a47Y= Subject key identifier: F6:6A:CF:07:AB:12:82:0E:BD:96:FC:AD:19:7E:47:57:24:BE:70:90 Authority key identifier: 40:85:AE:13:4B:63:38:A1:27:65:72:83:EB:BC:16:C1:2F:20:B8:62 Certificate issuer: /CN=A91E80FB/serialNumber=4085AE134B6338A127657283EBBC16C12F20B862 Certificate serial: 0415 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIWuE0tjOKEnZXKD67wWwS8guGI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E80FB/628D520C8FB611EC92BD2510C4F9AE02/QIWuE0tjOKEnZXKD67wWwS8guGI.mft Manifest number: 040A Signing time: Sun 19 Oct 2025 02:23:32 +0000 Manifest this update: Sun 19 Oct 2025 02:23:31 +0000 Manifest next update: Sun 26 Oct 2025 02:23:31 +0000 Files and hashes: 1: QIWuE0tjOKEnZXKD67wWwS8guGI.crl (hash: biFWKlhfik7H8dGs5PXfubZclzjBJA54Mdl9wsN61Sg=) 2: 9FBFD358C0F911EFA63F3E64C4F9AE02.roa (hash: yc1nPimI0kUiUPjKIX7+rUbHKCs59csyBzZSSe87J8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E80FB/628D520C8FB611EC92BD2510C4F9AE02/QIWuE0tjOKEnZXKD67wWwS8guGI.crl rsync://rpki.apnic.net/member_repository/A91E80FB/628D520C8FB611EC92BD2510C4F9AE02/QIWuE0tjOKEnZXKD67wWwS8guGI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIWuE0tjOKEnZXKD67wWwS8guGI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:23:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1045 (0x415) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E80FB, serialNumber=4085AE134B6338A127657283EBBC16C12F20B862 Validity Not Before: Oct 19 02:23:31 2025 GMT Not After : Oct 26 02:23:31 2025 GMT Subject: CN=68f44ba4-c840 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:3f:2a:e2:99:e8:bc:62:5b:b0:2e:f0:ad:a9: 77:27:c2:73:6b:89:90:fe:ca:51:92:f6:e8:e5:c2: e7:15:73:c9:9f:b2:29:d8:33:73:a5:8c:5d:b9:e0: 53:d7:b4:bf:f3:8b:33:02:09:9d:f2:78:84:8e:94: b4:32:27:0a:74:ef:17:b4:21:6e:e9:9c:7f:3b:cc: c1:df:b5:83:d3:e5:44:6e:a8:ff:16:d8:54:d7:96: e7:0f:2e:f2:dc:c8:de:27:1d:af:9d:ce:c7:db:cf: 98:fe:e2:f0:0e:81:54:f3:5e:65:8c:61:0a:25:1d: 34:9f:0e:b0:d9:02:ae:e0:6e:66:00:71:d2:f9:88: e3:68:61:fc:b9:e8:6d:81:9f:cf:d1:f9:d5:78:e6: f1:f4:81:ed:14:2c:9d:a4:35:e6:1f:d0:5e:db:33: 0b:e3:9d:41:d6:88:06:5f:d1:e0:a6:c3:fb:82:e7: 8b:14:7e:4b:c4:fc:4e:4d:d4:47:ee:61:52:a3:65: 04:79:c9:0c:49:40:12:aa:d8:d1:54:29:75:f4:65: 6b:f1:df:3c:f7:9d:4a:40:1a:52:9a:db:f8:06:46: 26:28:24:be:a6:e1:db:07:2d:e9:9b:2a:0b:f2:cc: de:ec:34:04:1b:52:14:3f:2e:44:a1:ee:d4:4d:9c: 76:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:6A:CF:07:AB:12:82:0E:BD:96:FC:AD:19:7E:47:57:24:BE:70:90 X509v3 Authority Key Identifier: keyid:40:85:AE:13:4B:63:38:A1:27:65:72:83:EB:BC:16:C1:2F:20:B8:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E80FB/628D520C8FB611EC92BD2510C4F9AE02/QIWuE0tjOKEnZXKD67wWwS8guGI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIWuE0tjOKEnZXKD67wWwS8guGI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E80FB/628D520C8FB611EC92BD2510C4F9AE02/QIWuE0tjOKEnZXKD67wWwS8guGI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:c0:3f:cf:a6:50:7f:a4:62:bc:41:4b:54:72:73:53:5f:4f: 31:9e:c7:52:af:cf:92:f0:e5:9f:0a:06:2f:02:f8:e8:df:cf: e7:d9:a9:67:cb:bf:43:61:77:57:24:d4:68:b5:b8:da:bf:78: 00:0c:22:6c:fa:8d:b4:a8:05:4f:57:76:fc:e2:48:2a:e3:9b: 6f:92:fa:87:19:db:86:28:43:ca:16:e6:58:47:23:e7:2d:9e: 64:6c:55:f5:51:bd:c8:f1:1d:99:45:97:23:82:9e:6e:11:bf: e3:7d:ee:5c:33:fb:31:12:4d:1a:ee:ab:56:d9:5b:69:5a:b9: aa:b4:a7:d2:06:eb:89:5e:ac:bf:ec:9e:6c:3b:59:a9:f8:7e: 81:09:ef:56:4a:0b:39:ad:2d:b9:c9:d8:25:d1:1f:61:a4:d3: 77:c3:64:15:5d:40:e4:83:4f:1c:57:f1:8e:4d:b0:05:fb:c9: 67:7a:8d:94:b2:20:cc:93:45:83:5d:ba:b3:72:bf:4b:4f:75: 78:68:ba:b5:e2:f1:3b:89:f5:59:17:d0:40:c8:3f:33:8a:50: 91:20:3b:5c:27:26:d8:71:fa:f7:c9:48:03:e2:d7:17:03:ce: 37:cf:3b:fb:7f:40:a6:9d:9b:bf:08:e7:dc:2f:3a:8c:dd:e9: cb:5e:47:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTgwRkIxMTAvBgNVBAUTKDQwODVBRTEzNEI2MzM4QTEyNzY1NzI4M0VCQkMxNkMx MkYyMEI4NjIwHhcNMjUxMDE5MDIyMzMxWhcNMjUxMDI2MDIyMzMxWjAYMRYwFAYD VQQDEw02OGY0NGJhNC1jODQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApz8q4pnovGJbsC7wral3J8Jza4mQ/spRkvbo5cLnFXPJn7Ip2DNzpYxdueBT 17S/84szAgmd8niEjpS0MicKdO8XtCFu6Zx/O8zB37WD0+VEbqj/FthU15bnDy7y 3MjeJx2vnc7H28+Y/uLwDoFU815ljGEKJR00nw6w2QKu4G5mAHHS+YjjaGH8ueht gZ/P0fnVeObx9IHtFCydpDXmH9Be2zML451B1ogGX9HgpsP7gueLFH5LxPxOTdRH 7mFSo2UEeckMSUASqtjRVCl19GVr8d88951KQBpSmtv4BkYmKCS+puHbBy3pmyoL 8sze7DQEG1IUPy5Eoe7UTZx2DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPZqzwer EoIOvZb8rRl+R1ckvnCQMB8GA1UdIwQYMBaAFECFrhNLYzihJ2Vyg+u8FsEvILhi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODBGQi82MjhENTIwQzhG QjYxMUVDOTJCRDI1MTBDNEY5QUUwMi9RSVd1RTB0ak9LRW5aWEtENjd3V3dTOGd1 R0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FJV3VFMHRqT0tFblpYS0Q2N3dXd1M4Z3VHSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODBGQi82MjhENTIwQzhGQjYxMUVDOTJCRDI1MTBDNEY5QUUwMi9RSVd1RTB0ak9L RW5aWEtENjd3V3dTOGd1R0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjwD/PplB/pGK8QUtUcnNTX08xnsdSr8+S8OWfCgYvAvjo38/n2aln y79DYXdXJNRotbjav3gADCJs+o20qAVPV3b84kgq45tvkvqHGduGKEPKFuZYRyPn LZ5kbFX1Ub3I8R2ZRZcjgp5uEb/jfe5cM/sxEk0a7qtW2VtpWrmqtKfSBuuJXqy/ 7J5sO1mp+H6BCe9WSgs5rS25ydgl0R9hpNN3w2QVXUDkg08cV/GOTbAF+8lneo2U siDMk0WDXbqzcr9LT3V4aLq14vE7ifVZF9BAyD8zilCRIDtcJybYcfr3yUgD4tcX A843zzv7f0CmnZu/COfcLzqM3enLXkf8 -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:24 2025 by rpki-client