$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.mft File: qEG9xa-p6aCpW4hUYRPKdF7pY7U.mft (raw, json) Hash identifier: PQLnojZKuuUfmyIvyz4cy4dBN/hFQcILKYbZJpDCF7o= Subject key identifier: 65:47:F8:B4:F5:42:C4:FE:7E:0E:DF:3B:54:46:CE:0F:50:35:04:B6 Authority key identifier: A8:41:BD:C5:AF:A9:E9:A0:A9:5B:88:54:61:13:CA:74:5E:E9:63:B5 Certificate issuer: /CN=A91F5216/serialNumber=A841BDC5AFA9E9A0A95B88546113CA745EE963B5 Certificate serial: 0228 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qEG9xa-p6aCpW4hUYRPKdF7pY7U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.mft Manifest number: 0222 Signing time: Sun 19 Oct 2025 04:21:47 +0000 Manifest this update: Sun 19 Oct 2025 04:21:47 +0000 Manifest next update: Sun 26 Oct 2025 04:21:47 +0000 Files and hashes: 1: qEG9xa-p6aCpW4hUYRPKdF7pY7U.crl (hash: by8TaUD1j+6qVW+VLAHEcIqiLc1oxhN9Pz4mz2T2Fc4=) 2: CDA9BB546E0C11ED8BF41547C4F9AE02.roa (hash: 5xUQVljU0BWWuc6LYolHHzG3Hqi8KmssX696YCKuce8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.crl rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qEG9xa-p6aCpW4hUYRPKdF7pY7U.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:21:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 552 (0x228) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5216, serialNumber=A841BDC5AFA9E9A0A95B88546113CA745EE963B5 Validity Not Before: Oct 19 04:21:47 2025 GMT Not After : Oct 26 04:21:47 2025 GMT Subject: CN=68f4675b-932a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:12:36:36:10:16:86:c7:7a:eb:48:65:76:91: 6d:0c:fa:25:af:60:12:a6:45:0f:ef:f3:fb:17:b2: 20:33:da:21:bb:be:86:84:d0:3c:54:66:1b:63:15: ae:95:b1:a2:01:be:44:20:c8:fd:3c:c1:69:7c:7e: 53:d1:fe:59:e6:de:e6:b6:69:7e:78:d5:a4:d0:9c: ec:42:94:d8:cd:23:3b:30:e6:32:a2:f2:86:4a:54: 50:06:94:fe:ec:49:4f:01:28:1c:2a:52:d3:44:ce: 28:1a:58:d1:92:8a:21:95:27:3d:28:d1:2e:23:2e: dc:71:59:2f:68:d0:ed:bf:d9:28:12:6a:06:3a:a2: 0c:ac:31:a2:c4:11:b8:15:f0:81:68:50:61:01:21: 58:04:7a:73:bb:ca:e9:a7:14:b7:8b:cb:5d:43:74: 5e:82:ab:84:80:17:16:a3:99:73:29:fb:b1:59:b9: 19:23:24:9c:a6:9f:91:3e:43:86:df:5f:26:06:eb: 2f:f6:f4:1c:a6:eb:a1:e8:d3:2b:33:00:3a:9f:66: cf:d9:d3:46:05:2b:b6:56:06:bd:84:cd:3f:4f:0b: d7:d2:91:3b:7c:98:03:ea:a8:95:93:ac:d8:a7:89: 7b:7f:06:ee:cf:c2:c3:20:7d:6b:c8:b9:79:5a:30: 1f:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:47:F8:B4:F5:42:C4:FE:7E:0E:DF:3B:54:46:CE:0F:50:35:04:B6 X509v3 Authority Key Identifier: keyid:A8:41:BD:C5:AF:A9:E9:A0:A9:5B:88:54:61:13:CA:74:5E:E9:63:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qEG9xa-p6aCpW4hUYRPKdF7pY7U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5216/5CD5E7306E0811EDBEED6284C4F9AE02/qEG9xa-p6aCpW4hUYRPKdF7pY7U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:8b:24:a7:a1:c9:a5:f7:4d:c7:42:b9:96:8c:27:25:bf:a6: 64:44:82:2c:0a:aa:23:ec:55:60:3e:6e:ca:53:98:8e:e7:a6: e7:9d:a5:4c:d2:69:cb:a2:fd:73:97:53:ba:54:24:c8:c8:89: 76:5b:88:7e:13:01:81:a8:de:1d:0a:d2:9c:f2:d4:b8:5b:bc: fd:ce:38:ec:d6:99:23:8b:6a:40:7c:cb:b5:56:05:6d:01:7c: ca:bf:3d:8f:c9:2c:3f:96:bf:eb:92:86:76:35:1f:34:01:0f: bb:e3:dc:22:6f:bc:1b:f6:5b:81:87:34:09:23:bf:4f:26:17: bd:a5:71:80:9d:0f:5b:f6:e5:93:c1:c4:c2:77:43:58:0a:7e: e0:73:cb:f1:11:6b:28:76:b5:f8:19:02:da:3f:1a:92:9d:e8: 12:a1:72:5e:9b:58:f6:6f:27:d4:c5:be:c7:50:ce:c0:7f:3d: 6a:34:55:13:34:b8:14:b5:17:40:1e:c8:45:5d:58:94:32:42: fc:75:d7:b0:c1:3b:0d:b2:2c:c3:4e:f9:73:13:0c:21:7e:1d: 0b:06:1c:9b:88:c6:d5:6d:e5:c3:1f:4a:46:e7:32:a3:9c:72: e9:ca:e2:a2:93:e4:7f:71:a6:44:5e:47:69:c8:42:04:6f:5b: 2a:16:bb:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyMTYxMTAvBgNVBAUTKEE4NDFCREM1QUZBOUU5QTBBOTVCODg1NDYxMTNDQTc0 NUVFOTYzQjUwHhcNMjUxMDE5MDQyMTQ3WhcNMjUxMDI2MDQyMTQ3WjAYMRYwFAYD VQQDEw02OGY0Njc1Yi05MzJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8BI2NhAWhsd660hldpFtDPolr2ASpkUP7/P7F7IgM9ohu76GhNA8VGYbYxWu lbGiAb5EIMj9PMFpfH5T0f5Z5t7mtml+eNWk0JzsQpTYzSM7MOYyovKGSlRQBpT+ 7ElPASgcKlLTRM4oGljRkoohlSc9KNEuIy7ccVkvaNDtv9koEmoGOqIMrDGixBG4 FfCBaFBhASFYBHpzu8rppxS3i8tdQ3RegquEgBcWo5lzKfuxWbkZIyScpp+RPkOG 318mBusv9vQcpuuh6NMrMwA6n2bP2dNGBSu2Vga9hM0/TwvX0pE7fJgD6qiVk6zY p4l7fwbuz8LDIH1ryLl5WjAfmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGVH+LT1 QsT+fg7fO1RGzg9QNQS2MB8GA1UdIwQYMBaAFKhBvcWvqemgqVuIVGETynRe6WO1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTIxNi81Q0Q1RTczMDZF MDgxMUVEQkVFRDYyODRDNEY5QUUwMi9xRUc5eGEtcDZhQ3BXNGhVWVJQS2RGN3BZ N1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3FFRzl4YS1wNmFDcFc0aFVZUlBLZEY3cFk3VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTIxNi81Q0Q1RTczMDZFMDgxMUVEQkVFRDYyODRDNEY5QUUwMi9xRUc5eGEtcDZh Q3BXNGhVWVJQS2RGN3BZN1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADiySnocml903HQrmWjCclv6ZkRIIsCqoj7FVgPm7KU5iO56bnnaVM 0mnLov1zl1O6VCTIyIl2W4h+EwGBqN4dCtKc8tS4W7z9zjjs1pkji2pAfMu1VgVt AXzKvz2PySw/lr/rkoZ2NR80AQ+749wib7wb9luBhzQJI79PJhe9pXGAnQ9b9uWT wcTCd0NYCn7gc8vxEWsodrX4GQLaPxqSnegSoXJem1j2byfUxb7HUM7Afz1qNFUT NLgUtRdAHshFXViUMkL8ddewwTsNsizDTvlzEwwhfh0LBhybiMbVbeXDH0pG5zKj nHLpyuKik+R/caZEXkdpyEIEb1sqFrut -----END CERTIFICATE-----Generated at Mon Oct 20 23:31:57 2025 by rpki-client