$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.mft File: QSOsLsBp0u8nIB9NvKrGwZEhkCw.mft (raw, json) Hash identifier: 91uKoEMn4aUYpThBjoyHlsFJUx1SBcv9xGtnoUE5xbU= Subject key identifier: 6F:63:AF:F1:51:92:67:13:62:3E:26:F0:6B:28:39:8F:E8:2F:13:C9 Authority key identifier: 41:23:AC:2E:C0:69:D2:EF:27:20:1F:4D:BC:AA:C6:C1:91:21:90:2C Certificate issuer: /CN=A91EC8C9/serialNumber=4123AC2EC069D2EF27201F4DBCAAC6C19121902C Certificate serial: 03F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSOsLsBp0u8nIB9NvKrGwZEhkCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.mft Manifest number: 03F4 Signing time: Sun 19 Oct 2025 02:25:43 +0000 Manifest this update: Sun 19 Oct 2025 02:25:42 +0000 Manifest next update: Sun 26 Oct 2025 02:25:42 +0000 Files and hashes: 1: QSOsLsBp0u8nIB9NvKrGwZEhkCw.crl (hash: uv5AAPQP6750ucQhl5EGeZIJQRN+rvdJ9+p2P7tILxE=) 2: FFDA736894CB11ECA827746DC4F9AE02.roa (hash: pj2LnVj5JMKgQoW/CIO4SmTNgNuQfByzQiOUhiNM/dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.crl rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSOsLsBp0u8nIB9NvKrGwZEhkCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:25:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1017 (0x3f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC8C9, serialNumber=4123AC2EC069D2EF27201F4DBCAAC6C19121902C Validity Not Before: Oct 19 02:25:42 2025 GMT Not After : Oct 26 02:25:42 2025 GMT Subject: CN=68f44c26-9fdc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:06:c3:73:0d:bd:00:97:42:07:92:01:3c:f2: ed:48:26:8b:47:96:e6:cb:06:af:94:b9:dc:1e:86: ec:ec:94:a7:d5:9e:08:85:4c:21:3e:77:a0:d3:33: a1:02:7d:0a:e4:a1:93:70:b5:2b:6e:b8:b0:30:c2: f7:44:bf:b6:a2:a9:bc:61:b7:ed:db:e8:b1:b9:30: 71:63:2f:34:7c:67:ef:e8:bc:52:fe:c4:2f:1d:f0: 26:e0:d7:4a:89:55:5d:17:c9:67:d9:b6:61:ed:a1: a9:79:a4:8d:ca:19:03:cb:22:a0:a2:9f:f4:be:f5: 29:c9:95:7e:46:4f:a6:33:2c:b6:de:a8:53:c0:09: 6e:2d:fa:74:ed:de:9c:ca:78:7d:a5:9a:16:c0:c5: 6a:11:ee:1f:a8:73:ee:18:9b:70:be:37:62:c8:49: 27:58:96:c9:cb:9f:68:d5:10:ec:9b:53:ac:69:c9: 5f:68:c1:02:99:94:eb:4a:8f:2a:f3:e9:a3:8f:65: fe:6f:9d:79:bd:31:92:af:b9:d2:02:b1:3b:0e:30: c2:c3:40:4d:cc:74:59:fd:35:b4:7e:7d:d8:2e:c3: 1c:d6:44:3f:e2:5c:6f:59:a8:6a:52:c2:16:50:15: 1d:ad:6e:96:0b:9e:45:50:ea:52:87:e1:a1:9b:72: c1:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:63:AF:F1:51:92:67:13:62:3E:26:F0:6B:28:39:8F:E8:2F:13:C9 X509v3 Authority Key Identifier: keyid:41:23:AC:2E:C0:69:D2:EF:27:20:1F:4D:BC:AA:C6:C1:91:21:90:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSOsLsBp0u8nIB9NvKrGwZEhkCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:fc:de:fa:52:65:c0:bd:db:89:cc:84:d1:c7:32:10:42:d0: 9a:42:a5:63:ed:04:55:79:4e:aa:cd:80:bf:6b:67:e1:6a:af: 99:f2:4b:1d:19:ca:e8:93:d1:23:57:1e:40:62:de:39:92:21: 43:0b:c1:92:1e:68:f8:f7:84:e1:e8:7a:d3:d1:00:12:14:78: d7:79:dc:e9:03:ad:ad:ef:8e:a1:60:43:a4:bb:27:a8:67:cd: 62:82:2d:0a:98:d3:be:97:7d:86:07:6c:12:5f:16:91:63:9f: c8:16:ee:93:29:ef:9f:87:c9:95:ee:aa:38:c3:b6:41:1b:3e: 40:32:84:13:b2:da:91:34:56:5b:ba:0d:af:5b:80:9b:6c:39: 83:00:58:df:a6:ad:3e:1a:b6:6f:ce:ac:aa:a0:fb:e3:bf:9b: 84:9b:cf:8e:29:1c:21:cc:ee:a6:d0:f0:ea:dd:80:da:89:cf: 98:2c:7d:4c:ff:db:ac:b0:5a:2f:78:8e:7f:3b:9e:b3:02:ad: c2:ed:25:b1:c5:98:6d:be:32:ca:8a:c4:fe:2f:e4:ab:f6:ff: de:42:c0:a3:ed:5d:9a:1c:4e:a1:5e:cd:57:42:75:a4:cc:5d: b8:44:9d:2e:f5:98:3b:66:e3:72:19:12:1e:92:6d:c5:2c:30: 8a:e0:75:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM4QzkxMTAvBgNVBAUTKDQxMjNBQzJFQzA2OUQyRUYyNzIwMUY0REJDQUFDNkMx OTEyMTkwMkMwHhcNMjUxMDE5MDIyNTQyWhcNMjUxMDI2MDIyNTQyWjAYMRYwFAYD VQQDEw02OGY0NGMyNi05ZmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzAbDcw29AJdCB5IBPPLtSCaLR5bmywavlLncHobs7JSn1Z4IhUwhPneg0zOh An0K5KGTcLUrbriwMML3RL+2oqm8Ybft2+ixuTBxYy80fGfv6LxS/sQvHfAm4NdK iVVdF8ln2bZh7aGpeaSNyhkDyyKgop/0vvUpyZV+Rk+mMyy23qhTwAluLfp07d6c ynh9pZoWwMVqEe4fqHPuGJtwvjdiyEknWJbJy59o1RDsm1OsaclfaMECmZTrSo8q 8+mjj2X+b515vTGSr7nSArE7DjDCw0BNzHRZ/TW0fn3YLsMc1kQ/4lxvWahqUsIW UBUdrW6WC55FUOpSh+Ghm3LB5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG9jr/FR kmcTYj4m8GsoOY/oLxPJMB8GA1UdIwQYMBaAFEEjrC7AadLvJyAfTbyqxsGRIZAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzhDOS83MzhEREZDNDk0 QzgxMUVDOTVDQjk3NjVDNEY5QUUwMi9RU09zTHNCcDB1OG5JQjlOdktyR3daRWhr Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FTT3NMc0JwMHU4bklCOU52S3JHd1pFaGtDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzhDOS83MzhEREZDNDk0QzgxMUVDOTVDQjk3NjVDNEY5QUUwMi9RU09zTHNCcDB1 OG5JQjlOdktyR3daRWhrQ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBh/N76UmXAvduJzITRxzIQQtCaQqVj7QRVeU6qzYC/a2fhaq+Z8ksd Gcrok9EjVx5AYt45kiFDC8GSHmj494Th6HrT0QASFHjXedzpA62t746hYEOkuyeo Z81igi0KmNO+l32GB2wSXxaRY5/IFu6TKe+fh8mV7qo4w7ZBGz5AMoQTstqRNFZb ug2vW4CbbDmDAFjfpq0+GrZvzqyqoPvjv5uEm8+OKRwhzO6m0PDq3YDaic+YLH1M /9ussFoveI5/O56zAq3C7SWxxZhtvjLKisT+L+Sr9v/eQsCj7V2aHE6hXs1XQnWk zF24RJ0u9Zg7ZuNyGRIekm3FLDCK4HUG -----END CERTIFICATE-----Generated at Mon Oct 20 14:41:17 2025 by rpki-client