$ rpki-client -vvf rpki.apnic.net/member_repository/A9113B73/BA6359822FE411EB8DB41B25C4F9AE02/QstM8CH28_wMgcT98cl9dCEAMXs.mft File: QstM8CH28_wMgcT98cl9dCEAMXs.mft (raw, json) Hash identifier: O5+kqnqz+JJJoARa/37Z6WfASYhVoh4lKSsrsxcIJH8= Subject key identifier: CF:84:EE:88:9D:43:FF:35:6F:12:45:0F:C2:05:C5:04:FC:D3:5D:26 Authority key identifier: 42:CB:4C:F0:21:F6:F3:FC:0C:81:C4:FD:F1:C9:7D:74:21:00:31:7B Certificate issuer: /CN=A9113B73/serialNumber=42CB4CF021F6F3FC0C81C4FDF1C97D742100317B Certificate serial: 0790 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QstM8CH28_wMgcT98cl9dCEAMXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9113B73/BA6359822FE411EB8DB41B25C4F9AE02/QstM8CH28_wMgcT98cl9dCEAMXs.mft Manifest number: 0787 Signing time: Sun 02 Nov 2025 21:31:54 +0000 Manifest this update: Sun 02 Nov 2025 21:31:54 +0000 Manifest next update: Sun 09 Nov 2025 21:31:54 +0000 Files and hashes: 1: QstM8CH28_wMgcT98cl9dCEAMXs.crl (hash: fjfdH4RRuOef7R4R1KhoK0fOANfPd2GeX6SHiWPt5Hg=) 2: 038C732E874611EB83B41D39C4F9AE02.roa (hash: xDFL83BDJofXsoqgs4IapCDppXS9oRsh4Talz2QouY4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9113B73/BA6359822FE411EB8DB41B25C4F9AE02/QstM8CH28_wMgcT98cl9dCEAMXs.crl rsync://rpki.apnic.net/member_repository/A9113B73/BA6359822FE411EB8DB41B25C4F9AE02/QstM8CH28_wMgcT98cl9dCEAMXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QstM8CH28_wMgcT98cl9dCEAMXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:31:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1936 (0x790) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9113B73, serialNumber=42CB4CF021F6F3FC0C81C4FDF1C97D742100317B Validity Not Before: Nov 2 21:31:54 2025 GMT Not After : Nov 9 21:31:54 2025 GMT Subject: CN=6907cdca-357c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:bc:d1:74:36:1e:23:37:f5:41:76:0a:86:46: 51:bb:33:ae:6c:4e:e0:de:ae:32:68:ee:fd:84:2d: a3:63:04:65:49:8d:75:74:31:16:97:16:b3:aa:62: 97:20:c3:cf:db:51:71:93:cc:33:4f:c0:85:87:70: 8e:b7:ca:14:49:74:28:82:25:43:7a:04:75:d0:f9: 35:a4:d7:c6:96:84:79:72:b9:62:e2:67:35:0c:05: 93:04:35:62:6f:86:30:e9:84:d9:4d:5e:fc:3a:3d: 23:bf:12:44:05:18:6e:7a:ad:21:37:e0:fa:29:be: f2:7a:d0:e9:c8:06:43:1f:c2:ca:e0:46:c2:8e:52: 37:ec:fc:10:a5:e2:df:2a:70:b0:59:b6:2e:41:f2: a4:6e:d5:07:9f:98:b8:d3:a7:32:c8:d6:f8:db:a4: 86:54:d3:fc:84:2c:e2:f5:7d:59:68:80:39:a5:ca: df:6c:48:6e:cc:94:f9:e3:cd:0f:ef:ad:00:7c:dd: 6e:63:2a:94:85:51:bd:35:95:89:c9:4d:7f:32:2c: 71:1b:53:73:3b:dd:e0:34:15:fa:68:90:c0:6b:9b: 31:74:ab:e0:b9:34:d8:a7:82:1f:e8:b1:66:a9:1a: 3e:15:22:01:f3:e2:de:c9:e3:9e:41:ab:37:3b:8d: 05:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:84:EE:88:9D:43:FF:35:6F:12:45:0F:C2:05:C5:04:FC:D3:5D:26 X509v3 Authority Key Identifier: keyid:42:CB:4C:F0:21:F6:F3:FC:0C:81:C4:FD:F1:C9:7D:74:21:00:31:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9113B73/BA6359822FE411EB8DB41B25C4F9AE02/QstM8CH28_wMgcT98cl9dCEAMXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QstM8CH28_wMgcT98cl9dCEAMXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9113B73/BA6359822FE411EB8DB41B25C4F9AE02/QstM8CH28_wMgcT98cl9dCEAMXs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:e9:69:a4:b0:c0:09:6e:63:2b:68:9d:5b:e9:1a:d8:80:1b: ce:d9:38:6a:a0:cf:b5:3e:de:76:dd:90:fa:2d:62:0c:0b:dd: 05:8f:2e:e6:f3:f7:a2:02:81:56:c4:9c:a8:f5:0d:51:bc:07: af:f2:9e:87:db:0c:8a:d3:61:80:52:e3:20:9e:db:73:b7:d2: f6:4a:96:92:bd:9a:32:d9:c9:ef:bc:65:2e:64:ee:15:8d:31: 4d:da:33:3a:8a:4c:f1:52:dc:dd:1f:b2:4c:76:a9:04:91:54: 24:a1:79:89:2d:b1:75:04:7b:cf:48:bf:5b:75:2c:d0:d7:03: 5a:7f:36:db:77:43:9d:e8:6d:0b:3d:84:5a:e0:fd:0a:f4:9a: 51:c6:e1:0c:be:59:85:ea:10:f0:fd:de:f2:a8:2c:ed:0f:da: 3b:46:3e:70:7f:3e:5d:18:bd:17:2f:98:20:c4:50:dc:bb:49: 1c:26:48:1c:84:90:e1:a9:2d:5b:c9:4c:1e:c3:62:66:a3:8e: d4:d1:52:03:1b:a9:f4:21:e2:1a:f4:79:b2:b1:9c:35:83:4d: 20:b3:b4:1a:af:4c:39:e3:52:93:60:9a:d4:78:0f:42:73:d1: 63:34:fd:1a:37:22:1b:11:47:7b:55:24:83:7b:bd:c3:15:71: 10:a9:cd:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTNCNzMxMTAvBgNVBAUTKDQyQ0I0Q0YwMjFGNkYzRkMwQzgxQzRGREYxQzk3RDc0 MjEwMDMxN0IwHhcNMjUxMTAyMjEzMTU0WhcNMjUxMTA5MjEzMTU0WjAYMRYwFAYD VQQDEw02OTA3Y2RjYS0zNTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmrzRdDYeIzf1QXYKhkZRuzOubE7g3q4yaO79hC2jYwRlSY11dDEWlxazqmKX IMPP21Fxk8wzT8CFh3COt8oUSXQogiVDegR10Pk1pNfGloR5crli4mc1DAWTBDVi b4Yw6YTZTV78Oj0jvxJEBRhueq0hN+D6Kb7yetDpyAZDH8LK4EbCjlI37PwQpeLf KnCwWbYuQfKkbtUHn5i406cyyNb426SGVNP8hCzi9X1ZaIA5pcrfbEhuzJT5480P 760AfN1uYyqUhVG9NZWJyU1/MixxG1NzO93gNBX6aJDAa5sxdKvguTTYp4If6LFm qRo+FSIB8+LeyeOeQas3O40F9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM+E7oid Q/81bxJFD8IFxQT8010mMB8GA1UdIwQYMBaAFELLTPAh9vP8DIHE/fHJfXQhADF7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExM0I3My9CQTYzNTk4MjJG RTQxMUVCOERCNDFCMjVDNEY5QUUwMi9Rc3RNOENIMjhfd01nY1Q5OGNsOWRDRUFN WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FzdE04Q0gyOF93TWdjVDk4Y2w5ZENFQU1Ycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx M0I3My9CQTYzNTk4MjJGRTQxMUVCOERCNDFCMjVDNEY5QUUwMi9Rc3RNOENIMjhf d01nY1Q5OGNsOWRDRUFNWHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBI6WmksMAJbmMraJ1b6RrYgBvO2ThqoM+1Pt523ZD6LWIMC90Fjy7m 8/eiAoFWxJyo9Q1RvAev8p6H2wyK02GAUuMgnttzt9L2SpaSvZoy2cnvvGUuZO4V jTFN2jM6ikzxUtzdH7JMdqkEkVQkoXmJLbF1BHvPSL9bdSzQ1wNafzbbd0Od6G0L PYRa4P0K9JpRxuEMvlmF6hDw/d7yqCztD9o7Rj5wfz5dGL0XL5ggxFDcu0kcJkgc hJDhqS1byUwew2Jmo47U0VIDG6n0IeIa9HmysZw1g00gs7Qar0w541KTYJrUeA9C c9FjNP0aNyIbEUd7VSSDe73DFXEQqc2+ -----END CERTIFICATE-----Generated at Tue Nov 4 08:20:05 2025 by rpki-client