$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/spEQIVRHIYPPUNKub6MOG940K_Q.mft File: spEQIVRHIYPPUNKub6MOG940K_Q.mft (raw, json) Hash identifier: VQSK9Lc/p2NWm2E8yp6+79OfF+6iL8UUkuROIeeOo1Q= Subject key identifier: 55:C9:C2:FF:F2:7C:91:5D:0A:CF:0E:17:DB:D6:6E:77:22:4D:CE:66 Authority key identifier: B2:91:10:21:54:47:21:83:CF:50:D2:AE:6F:A3:0E:1B:DE:34:2B:F4 Certificate issuer: /CN=A91FB095/serialNumber=B291102154472183CF50D2AE6FA30E1BDE342BF4 Certificate serial: 01BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/spEQIVRHIYPPUNKub6MOG940K_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/spEQIVRHIYPPUNKub6MOG940K_Q.mft Manifest number: 01B6 Signing time: Sun 19 Oct 2025 05:40:13 +0000 Manifest this update: Sun 19 Oct 2025 05:40:12 +0000 Manifest next update: Sun 26 Oct 2025 05:40:12 +0000 Files and hashes: 1: spEQIVRHIYPPUNKub6MOG940K_Q.crl (hash: /ZapzuZ9aWy1ac6fkz1HnMeJSs58YZfEPjBfZrJZNwQ=) 2: 35A46D4E1A5611EE93742844C4F9AE02.roa (hash: d+JJ+I8S/10V6aRjr1ig3NwOOf5vZtvPjsJauOreVMs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/spEQIVRHIYPPUNKub6MOG940K_Q.crl rsync://rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/spEQIVRHIYPPUNKub6MOG940K_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/spEQIVRHIYPPUNKub6MOG940K_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:40:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 445 (0x1bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB095, serialNumber=B291102154472183CF50D2AE6FA30E1BDE342BF4 Validity Not Before: Oct 19 05:40:12 2025 GMT Not After : Oct 26 05:40:12 2025 GMT Subject: CN=68f479bc-9b1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:73:d8:7e:43:06:0c:9c:6f:9b:72:8c:3b:7c: b5:b0:1d:85:05:9e:90:ce:d0:ad:60:ac:9f:72:27: 8f:1a:70:cf:38:b5:aa:d7:64:53:65:59:60:70:91: 27:3d:fe:a8:ae:a5:8a:92:57:fd:a8:aa:c1:f6:6e: 09:12:1f:3e:59:aa:c4:84:ae:e8:ba:a5:cb:60:b4: 7a:94:05:63:76:5d:e5:46:de:b4:6e:8f:91:63:87: e4:99:af:e6:22:ee:8a:61:1e:c1:c0:6c:ae:a6:33: 05:e1:d8:ec:bb:83:e6:35:d0:e3:52:a1:f2:bc:d9: 2b:ab:da:42:b2:fe:08:e6:d0:74:92:06:4c:34:0c: 91:e5:0f:8d:5a:e7:f9:3c:38:73:d5:75:cc:3a:48: 4c:bd:e8:5a:0e:4d:3e:f4:50:7b:d5:31:ba:44:6f: 0e:f4:6b:56:f3:17:0f:5f:c3:40:68:d0:98:b3:1f: 64:c5:a4:af:b3:8d:10:71:f9:46:57:ed:d8:f1:f5: 68:b7:b5:27:3c:9f:36:b5:fb:88:87:48:a4:3e:2c: 2c:1b:61:07:0d:64:87:76:8b:70:3f:a4:c6:e3:8b: b6:d2:42:81:9c:81:cd:62:49:be:35:67:72:42:73: 24:cb:77:9b:07:2d:10:07:e2:36:40:e9:f0:6a:a2: df:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:C9:C2:FF:F2:7C:91:5D:0A:CF:0E:17:DB:D6:6E:77:22:4D:CE:66 X509v3 Authority Key Identifier: keyid:B2:91:10:21:54:47:21:83:CF:50:D2:AE:6F:A3:0E:1B:DE:34:2B:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/spEQIVRHIYPPUNKub6MOG940K_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/spEQIVRHIYPPUNKub6MOG940K_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/spEQIVRHIYPPUNKub6MOG940K_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:f5:ba:d0:18:53:d1:3e:c6:ad:a6:a7:18:2f:00:2b:b4:e8: e1:25:2f:a9:94:35:0d:7b:fc:74:c5:3b:68:ff:bf:71:18:b5: f5:7d:b0:01:c1:4f:de:65:97:b7:a4:8c:b1:b0:45:74:0b:0d: 8c:91:34:ee:d8:74:43:9c:60:04:8b:72:f7:62:56:92:23:54: 90:42:2d:f1:99:0e:8b:90:f1:e0:6b:50:de:de:45:5e:dd:7d: e6:b9:00:78:02:2b:f4:95:1d:82:03:10:11:87:b7:e6:0e:10: bd:f9:1a:30:4c:02:74:0d:c8:22:e9:d4:e0:0e:51:81:15:14: e0:79:35:5b:fb:75:f3:61:0d:b3:37:73:1d:32:b1:7b:48:93: 48:b9:e1:10:ae:d8:86:17:d2:80:09:0b:43:ac:fa:20:ce:1c: 9f:29:f3:9b:6c:d7:d2:1d:df:02:17:45:dc:ba:d5:46:a2:d1: 6b:f5:cd:bc:65:42:85:83:15:a0:10:21:8b:27:1b:d5:11:0d: c1:f9:4f:2b:1b:81:51:5f:76:b3:d5:ba:83:48:48:2e:80:8f: 71:df:37:fe:72:10:31:54:e0:b1:1a:82:32:c4:4f:6a:51:00: e8:17:9e:4a:ce:73:0d:c4:9f:59:51:c0:51:77:e4:1e:95:55: b4:ee:a5:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAb0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkIwOTUxMTAvBgNVBAUTKEIyOTExMDIxNTQ0NzIxODNDRjUwRDJBRTZGQTMwRTFC REUzNDJCRjQwHhcNMjUxMDE5MDU0MDEyWhcNMjUxMDI2MDU0MDEyWjAYMRYwFAYD VQQDEw02OGY0NzliYy05YjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3PYfkMGDJxvm3KMO3y1sB2FBZ6QztCtYKyfciePGnDPOLWq12RTZVlgcJEn Pf6orqWKklf9qKrB9m4JEh8+WarEhK7ouqXLYLR6lAVjdl3lRt60bo+RY4fkma/m Iu6KYR7BwGyupjMF4djsu4PmNdDjUqHyvNkrq9pCsv4I5tB0kgZMNAyR5Q+NWuf5 PDhz1XXMOkhMvehaDk0+9FB71TG6RG8O9GtW8xcPX8NAaNCYsx9kxaSvs40QcflG V+3Y8fVot7UnPJ82tfuIh0ikPiwsG2EHDWSHdotwP6TG44u20kKBnIHNYkm+NWdy QnMky3ebBy0QB+I2QOnwaqLfqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFXJwv/y fJFdCs8OF9vWbnciTc5mMB8GA1UdIwQYMBaAFLKRECFURyGDz1DSrm+jDhveNCv0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjA5NS9BQUJFQjU2QTFB NTMxMUVFQTQ2MDg4MTRDNEY5QUUwMi9zcEVRSVZSSElZUFBVTkt1YjZNT0c5NDBL X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NwRVFJVlJISVlQUFVOS3ViNk1PRzk0MEtfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjA5NS9BQUJFQjU2QTFBNTMxMUVFQTQ2MDg4MTRDNEY5QUUwMi9zcEVRSVZSSElZ UFBVTkt1YjZNT0c5NDBLX1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCP9brQGFPRPsatpqcYLwArtOjhJS+plDUNe/x0xTto/79xGLX1fbAB wU/eZZe3pIyxsEV0Cw2MkTTu2HRDnGAEi3L3YlaSI1SQQi3xmQ6LkPHga1De3kVe 3X3muQB4Aiv0lR2CAxARh7fmDhC9+RowTAJ0Dcgi6dTgDlGBFRTgeTVb+3XzYQ2z N3MdMrF7SJNIueEQrtiGF9KACQtDrPogzhyfKfObbNfSHd8CF0XcutVGotFr9c28 ZUKFgxWgECGLJxvVEQ3B+U8rG4FRX3az1bqDSEgugI9x3zf+chAxVOCxGoIyxE9q UQDoF55KznMNxJ9ZUcBRd+QelVW07qVx -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:29 2025 by rpki-client