$ rpki-client -vvf rpki.apnic.net/member_repository/A91F783D/31DF1DEEB9B111E9990C0852C4F9AE02/q47HWiojWU9vKtMnsOa7wLCrm-4.mft File: q47HWiojWU9vKtMnsOa7wLCrm-4.mft (raw, json) Hash identifier: y7WUSEpTsIOCAomF25vkcNn3q+lDjelCE60oZgBex8g= Subject key identifier: FB:32:67:72:32:EF:98:DE:2C:8B:0E:33:57:20:75:CC:E4:EE:9D:5D Authority key identifier: AB:8E:C7:5A:2A:23:59:4F:6F:2A:D3:27:B0:E6:BB:C0:B0:AB:9B:EE Certificate issuer: /CN=A91F783D/serialNumber=AB8EC75A2A23594F6F2AD327B0E6BBC0B0AB9BEE Certificate serial: 0E19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q47HWiojWU9vKtMnsOa7wLCrm-4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F783D/31DF1DEEB9B111E9990C0852C4F9AE02/q47HWiojWU9vKtMnsOa7wLCrm-4.mft Manifest number: 0E0F Signing time: Sat 18 Oct 2025 18:30:35 +0000 Manifest this update: Sat 18 Oct 2025 18:30:35 +0000 Manifest next update: Sat 25 Oct 2025 18:30:35 +0000 Files and hashes: 1: q47HWiojWU9vKtMnsOa7wLCrm-4.crl (hash: VNo55F5Jz5Fp4RmDhDQkV93oFjv9h33GTYVbHq6HWaU=) 2: E3ACB710B9B211E9A9A37254C4F9AE02.roa (hash: Jg5gZD0YmKb91aw5MXsxMT3mckkXVt61eCbJBF82oak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F783D/31DF1DEEB9B111E9990C0852C4F9AE02/q47HWiojWU9vKtMnsOa7wLCrm-4.crl rsync://rpki.apnic.net/member_repository/A91F783D/31DF1DEEB9B111E9990C0852C4F9AE02/q47HWiojWU9vKtMnsOa7wLCrm-4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q47HWiojWU9vKtMnsOa7wLCrm-4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:30:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3609 (0xe19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F783D, serialNumber=AB8EC75A2A23594F6F2AD327B0E6BBC0B0AB9BEE Validity Not Before: Oct 18 18:30:35 2025 GMT Not After : Oct 25 18:30:35 2025 GMT Subject: CN=68f3dccb-06dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a8:f1:1f:7a:57:c0:e0:93:ea:7a:60:5b:ad: fe:1d:b1:09:8c:91:51:d9:54:03:a2:90:85:14:e1: 74:9c:16:0d:23:71:de:3a:8e:bc:cc:3e:d1:fd:a0: 5f:4e:eb:eb:7a:64:c0:79:e9:db:40:f4:48:44:77: 78:64:ca:77:0e:9b:4a:c7:d4:f9:cf:dc:19:e5:67: 86:16:36:a1:4b:07:0a:ec:43:bc:63:fc:91:16:79: 2e:a8:3e:36:93:29:ec:6a:f8:dc:92:f1:f6:c0:4c: 09:7e:4b:ee:03:82:e6:80:33:08:2e:38:46:17:54: 84:2a:ac:d4:79:e0:3a:20:1a:d8:f0:43:23:e7:a3: 2b:f8:94:d0:a8:ee:26:9b:38:20:e7:8a:9a:6d:a9: 06:a6:03:07:d4:f9:10:4f:27:23:39:cc:4c:ac:43: 8f:68:4b:8c:ae:68:dc:79:c4:4e:d3:b2:8c:24:6f: 09:4d:75:8b:3a:0f:50:21:f4:d0:14:53:b4:67:17: 4b:52:df:79:85:fe:7d:f7:de:d0:ee:2e:4d:59:43: 78:f4:18:9c:3b:09:ac:1c:24:44:57:b2:22:23:91: 54:c1:e6:c8:a2:bb:41:98:1c:da:38:e0:7b:9b:ae: f2:c7:bc:40:ee:79:71:06:a5:c8:2b:da:e6:4e:b4: 4a:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:32:67:72:32:EF:98:DE:2C:8B:0E:33:57:20:75:CC:E4:EE:9D:5D X509v3 Authority Key Identifier: keyid:AB:8E:C7:5A:2A:23:59:4F:6F:2A:D3:27:B0:E6:BB:C0:B0:AB:9B:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F783D/31DF1DEEB9B111E9990C0852C4F9AE02/q47HWiojWU9vKtMnsOa7wLCrm-4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q47HWiojWU9vKtMnsOa7wLCrm-4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F783D/31DF1DEEB9B111E9990C0852C4F9AE02/q47HWiojWU9vKtMnsOa7wLCrm-4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d3:f9:73:76:9d:8e:e6:df:f9:a7:18:d2:df:b8:c4:ac:8a:cc: 02:f4:8f:93:c4:47:83:f9:51:1a:06:d8:d3:8d:71:1f:3b:e1: 8a:97:91:3b:c4:7b:31:4a:7b:78:b3:01:38:16:a5:e8:72:ec: 77:b6:08:0c:dc:41:ba:de:c2:6f:e9:3c:97:59:e1:46:df:48: f9:98:7c:ee:7c:f2:2a:61:91:67:47:ca:41:fc:f1:fe:1e:38: a3:a1:01:12:3e:a3:6a:25:28:a6:7e:4b:54:1e:4e:c5:ad:2b: 15:2c:39:bb:31:7f:00:71:6c:11:77:58:e7:2f:5c:bd:ed:99: 2d:83:df:d8:d0:e5:98:5c:fd:59:6d:ce:1c:6f:ad:80:66:87: ec:66:20:6e:16:7c:f6:79:6e:95:c5:04:1e:e7:28:5a:f2:08: b0:2a:78:e0:a7:dc:07:7c:c1:61:12:27:91:ba:37:93:a4:d8: dc:0c:d8:1b:2c:fa:09:36:dd:9d:58:96:53:dd:a2:14:5d:ae: 7d:17:87:6c:68:2b:3b:fd:82:39:95:ae:96:46:e9:4e:6a:b4: 3c:ac:ad:62:4d:4f:cd:2f:f5:e5:b4:48:02:1a:86:da:b6:03: 8a:31:1e:a3:6a:b3:1d:22:ca:31:62:4e:8e:0d:04:99:d0:91: be:db:a0:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDhkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjc4M0QxMTAvBgNVBAUTKEFCOEVDNzVBMkEyMzU5NEY2RjJBRDMyN0IwRTZCQkMw QjBBQjlCRUUwHhcNMjUxMDE4MTgzMDM1WhcNMjUxMDI1MTgzMDM1WjAYMRYwFAYD VQQDEw02OGYzZGNjYi0wNmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs6jxH3pXwOCT6npgW63+HbEJjJFR2VQDopCFFOF0nBYNI3HeOo68zD7R/aBf TuvremTAeenbQPRIRHd4ZMp3DptKx9T5z9wZ5WeGFjahSwcK7EO8Y/yRFnkuqD42 kynsavjckvH2wEwJfkvuA4LmgDMILjhGF1SEKqzUeeA6IBrY8EMj56Mr+JTQqO4m mzgg54qabakGpgMH1PkQTycjOcxMrEOPaEuMrmjcecRO07KMJG8JTXWLOg9QIfTQ FFO0ZxdLUt95hf59997Q7i5NWUN49BicOwmsHCREV7IiI5FUwebIortBmBzaOOB7 m67yx7xA7nlxBqXIK9rmTrRKIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPsyZ3Iy 75jeLIsOM1cgdczk7p1dMB8GA1UdIwQYMBaAFKuOx1oqI1lPbyrTJ7Dmu8Cwq5vu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzgzRC8zMURGMURFRUI5 QjExMUU5OTkwQzA4NTJDNEY5QUUwMi9xNDdIV2lvaldVOXZLdE1uc09hN3dMQ3Jt LTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3E0N0hXaW9qV1U5dkt0TW5zT2E3d0xDcm0tNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzgzRC8zMURGMURFRUI5QjExMUU5OTkwQzA4NTJDNEY5QUUwMi9xNDdIV2lvaldV OXZLdE1uc09hN3dMQ3JtLTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDT+XN2nY7m3/mnGNLfuMSsiswC9I+TxEeD+VEaBtjTjXEfO+GKl5E7 xHsxSnt4swE4FqXocux3tggM3EG63sJv6TyXWeFG30j5mHzufPIqYZFnR8pB/PH+ HjijoQESPqNqJSimfktUHk7FrSsVLDm7MX8AcWwRd1jnL1y97Zktg9/Y0OWYXP1Z bc4cb62AZofsZiBuFnz2eW6VxQQe5yha8giwKnjgp9wHfMFhEieRujeTpNjcDNgb LPoJNt2dWJZT3aIUXa59F4dsaCs7/YI5la6WRulOarQ8rK1iTU/NL/XltEgCGoba tgOKMR6jarMdIsoxYk6ODQSZ0JG+26Cg -----END CERTIFICATE-----Generated at Mon Oct 20 08:00:11 2025 by rpki-client