$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.mft File: qSFNuZGEmynE8EXDNkcOnYLEjOI.mft (raw, json) Hash identifier: KORcTBj9nGe3hCL7K7UiMBuNt5nWvWtlRPSmWe3ONxs= Subject key identifier: 18:60:81:8F:76:47:6B:59:82:83:B7:CC:BA:F6:03:1B:4E:91:A9:CF Authority key identifier: A9:21:4D:B9:91:84:9B:29:C4:F0:45:C3:36:47:0E:9D:82:C4:8C:E2 Certificate issuer: /CN=A91EB929/serialNumber=A9214DB991849B29C4F045C336470E9D82C48CE2 Certificate serial: 013A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSFNuZGEmynE8EXDNkcOnYLEjOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.mft Manifest number: 0136 Signing time: Sun 19 Oct 2025 07:21:06 +0000 Manifest this update: Sun 19 Oct 2025 07:21:06 +0000 Manifest next update: Sun 26 Oct 2025 07:21:06 +0000 Files and hashes: 1: qSFNuZGEmynE8EXDNkcOnYLEjOI.crl (hash: 4hzTklgSrRcPmwS9agCPnU+ljFAOGofQKjUwB217SK4=) 2: 70C04006D5EF11EE8279357EC4F9AE02.roa (hash: Jluh9mrxLx3CmJG4INslPH8RKZMT0C9KwG0Dzzekk1I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.crl rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSFNuZGEmynE8EXDNkcOnYLEjOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:21:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 314 (0x13a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB929, serialNumber=A9214DB991849B29C4F045C336470E9D82C48CE2 Validity Not Before: Oct 19 07:21:06 2025 GMT Not After : Oct 26 07:21:06 2025 GMT Subject: CN=68f49162-f388 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:54:27:75:65:43:2c:ce:3f:e5:4a:aa:af:a9: b4:18:fe:eb:46:4a:c0:54:c3:07:a4:53:f2:09:5e: c4:e1:80:48:2c:24:73:92:f8:04:32:72:ea:3f:b4: f5:24:b9:56:0f:7b:80:b2:5a:02:19:eb:5d:90:43: e9:8f:9d:be:c8:c0:da:aa:a3:c9:68:c1:73:5a:29: 69:77:28:44:46:5d:f3:d5:07:87:05:69:35:47:71: ce:be:15:87:49:fc:59:35:56:ef:ed:44:88:58:ca: 00:71:b1:85:81:d9:83:f6:0d:60:70:aa:37:67:c7: 6b:a6:58:1f:f0:5a:45:2a:72:66:48:61:43:3a:08: 15:e3:11:16:ae:6b:d1:be:f9:05:dc:dc:c0:98:c2: ba:09:52:51:94:24:88:b5:c1:4f:be:36:f2:f2:ee: db:09:9f:85:47:bf:9e:44:da:d2:a1:d5:2f:d9:23: 83:40:62:db:e0:d4:1f:f0:c5:02:c2:97:e6:cf:7c: bc:3c:1b:ca:04:c3:eb:83:bc:ef:20:97:3b:86:79: 3e:ed:65:5a:08:5e:90:44:ef:32:58:30:c1:6b:c3: a7:4c:15:fa:66:fb:d1:4b:b6:44:54:23:08:2e:1c: b5:ab:a9:4b:7f:b6:9f:03:fa:3c:1c:5a:81:55:18: 59:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:60:81:8F:76:47:6B:59:82:83:B7:CC:BA:F6:03:1B:4E:91:A9:CF X509v3 Authority Key Identifier: keyid:A9:21:4D:B9:91:84:9B:29:C4:F0:45:C3:36:47:0E:9D:82:C4:8C:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSFNuZGEmynE8EXDNkcOnYLEjOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:cd:0a:f4:2a:aa:34:07:ea:06:c5:f4:81:e9:d2:8c:68:e1: 8d:27:46:38:19:10:20:77:61:69:71:61:9a:41:6b:40:1d:b9: ec:b2:02:44:b7:6a:22:8d:a2:12:5d:9b:fc:6d:39:b6:35:46: 68:d8:b1:4d:b4:e5:9f:1e:40:c7:4e:22:30:58:1d:44:f5:90: 5c:93:c6:48:b1:79:15:de:5d:8c:ac:39:80:ad:28:dd:77:f5: 03:f2:87:32:de:75:63:9b:58:9d:55:dc:08:ce:5b:af:f2:96: 3b:73:97:be:b9:90:4b:82:c4:d9:58:83:5b:0a:80:b5:aa:77: 61:81:9f:10:7d:9f:ba:53:5e:41:20:4f:f0:87:a4:47:14:22: e7:eb:61:a6:e8:c8:b5:e2:06:b8:20:3a:5e:be:3a:9c:1d:84: 7b:57:7c:e0:22:df:e6:9f:96:fe:f3:cc:f4:7d:25:d1:e2:3a: 56:9f:77:d9:0d:2a:a1:8d:f2:f9:3c:79:dd:55:4a:92:14:ff: d1:d1:17:6f:59:ee:37:a7:e6:5a:3b:ca:9d:ef:1b:20:6f:ed: 19:7c:0e:81:be:a4:53:8c:1b:6a:c6:4e:75:80:df:d7:72:70: 2d:a7:ce:fe:ed:65:80:60:17:96:32:68:ae:2f:f2:c0:89:44: 98:06:4d:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI5MjkxMTAvBgNVBAUTKEE5MjE0REI5OTE4NDlCMjlDNEYwNDVDMzM2NDcwRTlE ODJDNDhDRTIwHhcNMjUxMDE5MDcyMTA2WhcNMjUxMDI2MDcyMTA2WjAYMRYwFAYD VQQDEw02OGY0OTE2Mi1mMzg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyFQndWVDLM4/5Uqqr6m0GP7rRkrAVMMHpFPyCV7E4YBILCRzkvgEMnLqP7T1 JLlWD3uAsloCGetdkEPpj52+yMDaqqPJaMFzWilpdyhERl3z1QeHBWk1R3HOvhWH SfxZNVbv7USIWMoAcbGFgdmD9g1gcKo3Z8drplgf8FpFKnJmSGFDOggV4xEWrmvR vvkF3NzAmMK6CVJRlCSItcFPvjby8u7bCZ+FR7+eRNrSodUv2SODQGLb4NQf8MUC wpfmz3y8PBvKBMPrg7zvIJc7hnk+7WVaCF6QRO8yWDDBa8OnTBX6ZvvRS7ZEVCMI Lhy1q6lLf7afA/o8HFqBVRhZ4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBhggY92 R2tZgoO3zLr2AxtOkanPMB8GA1UdIwQYMBaAFKkhTbmRhJspxPBFwzZHDp2CxIzi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjkyOS9CRUJERUE5OEQ1 RUUxMUVFOUUyMDE3N0RDNEY5QUUwMi9xU0ZOdVpHRW15bkU4RVhETmtjT25ZTEVq T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FTRk51WkdFbXluRThFWEROa2NPbllMRWpPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjkyOS9CRUJERUE5OEQ1RUUxMUVFOUUyMDE3N0RDNEY5QUUwMi9xU0ZOdVpHRW15 bkU4RVhETmtjT25ZTEVqT0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9zQr0Kqo0B+oGxfSB6dKMaOGNJ0Y4GRAgd2FpcWGaQWtAHbnssgJE t2oijaISXZv8bTm2NUZo2LFNtOWfHkDHTiIwWB1E9ZBck8ZIsXkV3l2MrDmArSjd d/UD8ocy3nVjm1idVdwIzluv8pY7c5e+uZBLgsTZWINbCoC1qndhgZ8QfZ+6U15B IE/wh6RHFCLn62Gm6Mi14ga4IDpevjqcHYR7V3zgIt/mn5b+88z0fSXR4jpWn3fZ DSqhjfL5PHndVUqSFP/R0RdvWe43p+ZaO8qd7xsgb+0ZfA6BvqRTjBtqxk51gN/X cnAtp87+7WWAYBeWMmiuL/LAiUSYBk33 -----END CERTIFICATE-----Generated at Mon Oct 20 07:47:01 2025 by rpki-client