$ rpki-client -vvf rpki.apnic.net/member_repository/A9111ED2/621E8610845011EA8047CE7DC4F9AE02/QMCQUT8kAYkgsVHapVRJwV3IS-s.mft File: QMCQUT8kAYkgsVHapVRJwV3IS-s.mft (raw, json) Hash identifier: DpzFxJ/8f9cLh6pMK8TNKSkzMC3zkOvoJidL9JrJa2c= Subject key identifier: F4:38:83:61:1A:DA:B4:DF:25:10:35:05:9D:9A:8C:20:37:11:96:42 Authority key identifier: 40:C0:90:51:3F:24:01:89:20:B1:51:DA:A5:54:49:C1:5D:C8:4B:EB Certificate issuer: /CN=A9111ED2/serialNumber=40C090513F24018920B151DAA55449C15DC84BEB Certificate serial: 0A0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMCQUT8kAYkgsVHapVRJwV3IS-s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111ED2/621E8610845011EA8047CE7DC4F9AE02/QMCQUT8kAYkgsVHapVRJwV3IS-s.mft Manifest number: 0A07 Signing time: Tue 04 Nov 2025 19:56:04 +0000 Manifest this update: Tue 04 Nov 2025 19:56:04 +0000 Manifest next update: Tue 11 Nov 2025 19:56:04 +0000 Files and hashes: 1: QMCQUT8kAYkgsVHapVRJwV3IS-s.crl (hash: pPT2SS8RAfs8M0UdVOf/HI2GcHAqFLZgq0DZw8j2gr4=) 2: 1E809CD0845111EAA961467EC4F9AE02.roa (hash: daFA8yMRnffIfjJ7fLZ41ES4LLpPtN0oWTU77ItHPkU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111ED2/621E8610845011EA8047CE7DC4F9AE02/QMCQUT8kAYkgsVHapVRJwV3IS-s.crl rsync://rpki.apnic.net/member_repository/A9111ED2/621E8610845011EA8047CE7DC4F9AE02/QMCQUT8kAYkgsVHapVRJwV3IS-s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMCQUT8kAYkgsVHapVRJwV3IS-s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:56:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2575 (0xa0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111ED2, serialNumber=40C090513F24018920B151DAA55449C15DC84BEB Validity Not Before: Nov 4 19:56:04 2025 GMT Not After : Nov 11 19:56:04 2025 GMT Subject: CN=690a5a54-4882 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b1:3a:0c:2f:19:24:80:ac:a3:8d:ab:75:f2: de:12:3f:de:9f:85:3a:30:45:92:3d:59:aa:4c:ce: 8f:85:38:9c:c0:4b:83:7a:80:22:6a:8f:63:28:31: 69:df:c5:7e:f5:c0:1a:89:7c:9f:f3:bb:f2:b0:2a: 4f:b6:6b:b8:dd:da:aa:bc:73:bc:d3:9d:89:53:f5: 64:da:a7:fd:3a:dc:c7:d7:7d:fa:91:95:24:61:f2: c1:16:3f:2a:5f:03:8c:14:2b:c6:34:c7:40:cf:6c: 50:dc:bc:5e:6b:d9:b6:f4:a6:ca:b5:e2:3e:4f:70: 09:26:04:75:34:58:5d:56:ca:bc:27:88:aa:3e:b7: 58:3f:0c:5f:8e:c5:9c:2c:e3:45:a3:91:99:2e:ad: 03:1b:f0:86:e5:03:25:31:a4:ce:4f:54:b4:d9:1c: cc:cb:19:b4:88:06:d7:4f:8c:84:46:84:60:44:b3: 1c:20:29:f3:b3:00:6f:66:c3:86:b4:b1:df:5e:8b: 67:9d:47:fb:15:af:81:a2:14:65:32:2e:22:9e:58: a4:a8:07:bc:66:6c:ef:cd:1b:ba:28:80:ef:8b:1e: a5:b3:0e:39:3f:af:8b:cb:08:b4:5c:4f:9c:d1:b1: 85:68:bd:2c:ee:fd:c8:9c:9d:c4:36:80:9a:f3:49: 58:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:38:83:61:1A:DA:B4:DF:25:10:35:05:9D:9A:8C:20:37:11:96:42 X509v3 Authority Key Identifier: keyid:40:C0:90:51:3F:24:01:89:20:B1:51:DA:A5:54:49:C1:5D:C8:4B:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111ED2/621E8610845011EA8047CE7DC4F9AE02/QMCQUT8kAYkgsVHapVRJwV3IS-s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMCQUT8kAYkgsVHapVRJwV3IS-s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111ED2/621E8610845011EA8047CE7DC4F9AE02/QMCQUT8kAYkgsVHapVRJwV3IS-s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:26:d9:dd:c2:8f:1c:0d:07:e9:0b:1e:25:58:88:9a:42:95: 0d:4c:7d:23:fe:66:0f:28:75:cd:5c:94:e9:23:17:c3:7c:22: 7a:cb:a9:81:ce:15:c6:6d:4e:10:75:b3:d1:95:b5:f4:70:a0: b4:3c:cc:35:5f:39:8f:bd:e0:29:b9:01:36:8f:56:aa:39:fe: 98:25:cc:ce:3a:ac:db:fb:bc:62:7e:77:06:b3:50:8d:14:ff: 5c:07:46:d8:37:ed:df:3c:82:d8:b6:d7:70:74:0c:82:13:b4: 87:13:90:30:45:ef:e0:2d:2e:db:60:f5:3a:6e:f7:eb:e3:b5: e1:9c:12:6e:c2:d2:9c:50:b5:ed:aa:fb:08:2a:74:46:98:07: ee:93:16:f2:ba:05:91:d6:d4:db:5d:a9:55:36:b8:e2:e8:b2: 8e:eb:66:4b:39:51:e1:19:84:70:3e:98:a8:d7:f6:fb:0a:f8: 77:af:6b:c1:09:f3:dc:70:02:78:1c:0e:fe:ab:fc:63:17:80: a6:30:65:53:28:b2:a2:06:c3:45:8a:0b:8a:41:77:b3:a5:30: 2a:b3:08:e1:65:b2:1b:80:a0:0c:8a:97:f9:5a:1e:e0:3a:b8: 5e:c8:7e:57:7a:f3:43:eb:26:c1:81:5b:74:69:65:83:31:8d: 91:8c:3c:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCg8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFFRDIxMTAvBgNVBAUTKDQwQzA5MDUxM0YyNDAxODkyMEIxNTFEQUE1NTQ0OUMx NURDODRCRUIwHhcNMjUxMTA0MTk1NjA0WhcNMjUxMTExMTk1NjA0WjAYMRYwFAYD VQQDEw02OTBhNWE1NC00ODgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArrE6DC8ZJICso42rdfLeEj/en4U6MEWSPVmqTM6PhTicwEuDeoAiao9jKDFp 38V+9cAaiXyf87vysCpPtmu43dqqvHO8052JU/Vk2qf9OtzH1336kZUkYfLBFj8q XwOMFCvGNMdAz2xQ3Lxea9m29KbKteI+T3AJJgR1NFhdVsq8J4iqPrdYPwxfjsWc LONFo5GZLq0DG/CG5QMlMaTOT1S02RzMyxm0iAbXT4yERoRgRLMcICnzswBvZsOG tLHfXotnnUf7Fa+BohRlMi4inlikqAe8ZmzvzRu6KIDvix6lsw45P6+Lywi0XE+c 0bGFaL0s7v3InJ3ENoCa80lYsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPQ4g2Ea 2rTfJRA1BZ2ajCA3EZZCMB8GA1UdIwQYMBaAFEDAkFE/JAGJILFR2qVUScFdyEvr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUVEMi82MjFFODYxMDg0 NTAxMUVBODA0N0NFN0RDNEY5QUUwMi9RTUNRVVQ4a0FZa2dzVkhhcFZSSndWM0lT LXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FNQ1FVVDhrQVlrZ3NWSGFwVlJKd1YzSVMtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MUVEMi82MjFFODYxMDg0NTAxMUVBODA0N0NFN0RDNEY5QUUwMi9RTUNRVVQ4a0FZ a2dzVkhhcFZSSndWM0lTLXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzJtndwo8cDQfpCx4lWIiaQpUNTH0j/mYPKHXNXJTpIxfDfCJ6y6mB zhXGbU4QdbPRlbX0cKC0PMw1XzmPveApuQE2j1aqOf6YJczOOqzb+7xifncGs1CN FP9cB0bYN+3fPILYttdwdAyCE7SHE5AwRe/gLS7bYPU6bvfr47XhnBJuwtKcULXt qvsIKnRGmAfukxbyugWR1tTbXalVNrji6LKO62ZLOVHhGYRwPpio1/b7Cvh3r2vB CfPccAJ4HA7+q/xjF4CmMGVTKLKiBsNFiguKQXezpTAqswjhZbIbgKAMipf5Wh7g OrheyH5XevND6ybBgVt0aWWDMY2RjDxp -----END CERTIFICATE-----Generated at Wed Nov 5 11:46:41 2025 by rpki-client