$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/QB2L3IKjJEjJO6Og_pOvEGQjYqI.mft File: QB2L3IKjJEjJO6Og_pOvEGQjYqI.mft (raw, json) Hash identifier: SRPcAiTw/g0UIPlmLxia3KszpqJoesww+vgeMR+Ip/o= Subject key identifier: 2B:3D:61:D5:04:85:E6:E3:50:72:78:37:58:4F:1B:CD:FF:A9:54:47 Authority key identifier: 40:1D:8B:DC:82:A3:24:48:C9:3B:A3:A0:FE:93:AF:10:64:23:62:A2 Certificate issuer: /CN=A91F5756/serialNumber=401D8BDC82A32448C93BA3A0FE93AF10642362A2 Certificate serial: 37 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QB2L3IKjJEjJO6Og_pOvEGQjYqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/QB2L3IKjJEjJO6Og_pOvEGQjYqI.mft Manifest number: 35 Signing time: Sun 19 Oct 2025 11:07:31 +0000 Manifest this update: Sun 19 Oct 2025 11:07:30 +0000 Manifest next update: Sun 26 Oct 2025 11:07:30 +0000 Files and hashes: 1: QB2L3IKjJEjJO6Og_pOvEGQjYqI.crl (hash: DdaStiTOWR5ZDsEBU3pbJRiJUNxeupu4lwGOtEl6pv0=) 2: 2FD77F7E621511F09070587CC4F9AE02.roa (hash: DzXy8BEuESMOqIj1ZsPp4HtWDSpRtccWGiXvOFf8WyM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/QB2L3IKjJEjJO6Og_pOvEGQjYqI.crl rsync://rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/QB2L3IKjJEjJO6Og_pOvEGQjYqI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QB2L3IKjJEjJO6Og_pOvEGQjYqI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:07:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5756, serialNumber=401D8BDC82A32448C93BA3A0FE93AF10642362A2 Validity Not Before: Oct 19 11:07:30 2025 GMT Not After : Oct 26 11:07:30 2025 GMT Subject: CN=68f4c673-6486 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:49:ee:b1:ca:4f:5e:91:f4:5c:fb:ec:c2:d2: 6b:75:4e:a4:ba:4c:da:ff:5d:48:29:ab:6b:22:a6: 31:0a:ea:bd:a0:66:b8:50:74:b1:4c:e1:1d:09:67: e2:4d:ea:16:f8:3b:df:45:d4:c3:6f:71:ec:75:eb: 9d:d2:1d:e0:4a:20:c5:c1:4d:74:2f:e4:b7:53:43: 8d:60:61:c6:84:52:01:18:91:67:46:2a:fe:fb:2f: 93:90:4e:60:47:74:b9:22:04:c0:fe:5b:f8:f9:2e: 34:f7:7e:af:f0:34:cb:37:a3:77:43:09:aa:2c:fb: 29:63:9c:bb:b8:1e:7e:c0:5a:7e:ea:f6:43:86:4b: 3f:47:dd:af:9f:82:da:45:ea:8c:3e:61:84:e3:97: 9e:48:aa:08:33:74:9c:e1:0b:a8:31:eb:f0:c4:cf: 04:c6:a0:3e:fa:71:b2:d8:bb:bd:bf:cc:a9:5d:56: 52:55:53:7b:df:f4:4b:eb:f3:eb:14:fd:76:0a:8e: d2:67:03:be:b9:5e:7d:41:5f:7b:a6:57:94:0a:3b: 8d:99:e8:c6:0b:ba:50:c8:21:83:30:9a:e3:9e:c5: 71:ee:46:6a:0d:e3:99:58:56:f9:ee:23:e1:6f:a2: 85:2d:f9:c1:4f:3a:94:52:51:e2:3d:bc:b2:8b:0e: 98:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:3D:61:D5:04:85:E6:E3:50:72:78:37:58:4F:1B:CD:FF:A9:54:47 X509v3 Authority Key Identifier: keyid:40:1D:8B:DC:82:A3:24:48:C9:3B:A3:A0:FE:93:AF:10:64:23:62:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/QB2L3IKjJEjJO6Og_pOvEGQjYqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QB2L3IKjJEjJO6Og_pOvEGQjYqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5756/6B727F32621211F08CA6C154C4F9AE02/QB2L3IKjJEjJO6Og_pOvEGQjYqI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption f6:e9:2d:9d:7e:9b:8d:da:5e:6e:81:25:5d:a2:f1:11:5a:9f: 29:7d:fa:8d:33:35:06:c6:ac:3a:a8:fb:b3:7a:2e:78:4d:92: 17:af:8f:96:95:5f:19:05:09:49:43:dc:5d:c5:99:90:df:41: 18:35:d0:0f:b0:3a:d6:27:d1:83:9c:2e:ad:f3:55:f1:53:31: 0a:a9:1d:2b:18:8e:1c:6f:14:6e:03:8a:19:fe:f5:e2:a7:b9: bb:e9:10:62:4c:cd:ae:23:8c:54:09:ca:ae:f1:86:ef:a8:d2: 84:5c:54:0b:bf:ba:ad:aa:53:bc:2f:15:a3:3e:a6:8b:c2:cc: e4:58:c0:cc:85:af:60:ff:e9:02:09:68:4f:6e:76:f5:16:cd: d7:08:c7:38:bb:5a:ce:52:d3:06:15:ed:b9:6a:9d:62:e8:f8: 62:d7:4c:50:b7:52:f7:c1:b3:a3:67:05:9b:1f:1d:cd:00:c2: ab:90:1e:c9:d7:3e:50:d0:48:f2:f2:73:89:16:1a:bc:d7:eb: bc:08:96:b7:43:0b:4f:34:04:2e:ea:c9:38:e3:bf:ed:35:60: 3a:fd:bf:f5:f5:4b:1f:34:b4:bd:38:67:86:a5:0e:39:06:a9: 1d:86:9f:4e:6c:20:17:30:f8:db:b6:b3:8e:db:fb:8f:8e:b2: 6c:0b:ea:f3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NTc1NjExMC8GA1UEBRMoNDAxRDhCREM4MkEzMjQ0OEM5M0JBM0EwRkU5M0FGMTA2 NDIzNjJBMjAeFw0yNTEwMTkxMTA3MzBaFw0yNTEwMjYxMTA3MzBaMBgxFjAUBgNV BAMTDTY4ZjRjNjczLTY0ODYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSSe6xyk9ekfRc++zC0mt1TqS6TNr/XUgpq2sipjEK6r2gZrhQdLFM4R0JZ+JN 6hb4O99F1MNvcex1653SHeBKIMXBTXQv5LdTQ41gYcaEUgEYkWdGKv77L5OQTmBH dLkiBMD+W/j5LjT3fq/wNMs3o3dDCaos+yljnLu4Hn7AWn7q9kOGSz9H3a+fgtpF 6ow+YYTjl55IqggzdJzhC6gx6/DEzwTGoD76cbLYu72/zKldVlJVU3vf9Evr8+sU /XYKjtJnA765Xn1BX3umV5QKO42Z6MYLulDIIYMwmuOexXHuRmoN45lYVvnuI+Fv ooUt+cFPOpRSUeI9vLKLDpgrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUKz1h1QSF 5uNQcng3WE8bzf+pVEcwHwYDVR0jBBgwFoAUQB2L3IKjJEjJO6Og/pOvEGQjYqIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1NzU2LzZCNzI3RjMyNjIx MjExRjA4Q0E2QzE1NEM0RjlBRTAyL1FCMkwzSUtqSkVqSk82T2dfcE92RUdRallx SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUUIyTDNJS2pKRWpKTzZPZ19wT3ZFR1FqWXFJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1 NzU2LzZCNzI3RjMyNjIxMjExRjA4Q0E2QzE1NEM0RjlBRTAyL1FCMkwzSUtqSkVq Sk82T2dfcE92RUdRallxSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAPbpLZ1+m43aXm6BJV2i8RFanyl9+o0zNQbGrDqo+7N6LnhNkhevj5aV XxkFCUlD3F3FmZDfQRg10A+wOtYn0YOcLq3zVfFTMQqpHSsYjhxvFG4Dihn+9eKn ubvpEGJMza4jjFQJyq7xhu+o0oRcVAu/uq2qU7wvFaM+povCzORYwMyFr2D/6QIJ aE9udvUWzdcIxzi7Ws5S0wYV7blqnWLo+GLXTFC3UvfBs6NnBZsfHc0AwquQHsnX PlDQSPLyc4kWGrzX67wIlrdDC080BC7qyTjjv+01YDr9v/X1Sx80tL04Z4alDjkG qR2Gn05sIBcw+Nu2s47b+4+OsmwL6vM= -----END CERTIFICATE-----Generated at Tue Oct 21 02:11:34 2025 by rpki-client