$ rpki-client -vvf rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft File: QN1mK29ul7NNO3WoAH3lOI2SclM.mft (raw, json) Hash identifier: kj1F+UpWQlNY2gUkVg3iH5/Fs63+Tk9uCL2e45JraoY= Subject key identifier: 8A:43:DF:53:53:AB:15:4A:24:0C:F4:42:7B:26:7D:B6:1F:4C:CB:07 Authority key identifier: 40:DD:66:2B:6F:6E:97:B3:4D:3B:75:A8:00:7D:E5:38:8D:92:72:53 Certificate issuer: /CN=A911CF44/serialNumber=40DD662B6F6E97B34D3B75A8007DE5388D927253 Certificate serial: 06A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft Manifest number: 0699 Signing time: Tue 04 Nov 2025 22:26:01 +0000 Manifest this update: Tue 04 Nov 2025 22:26:01 +0000 Manifest next update: Tue 11 Nov 2025 22:26:01 +0000 Files and hashes: 1: QN1mK29ul7NNO3WoAH3lOI2SclM.crl (hash: 5j+e2giN+w9UXcJStl0enZiDpa2VNvUqWwuzZruU5MQ=) 2: 85613B4E8C8411EBB68DD829C4F9AE02.roa (hash: JUDELwHgPtKuVC+Zxi+8ziVhRWeVBos3PiAym1dLOsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.crl rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:26:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1697 (0x6a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CF44, serialNumber=40DD662B6F6E97B34D3B75A8007DE5388D927253 Validity Not Before: Nov 4 22:26:01 2025 GMT Not After : Nov 11 22:26:01 2025 GMT Subject: CN=690a7d79-8768 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:27:18:96:db:30:6e:d3:5d:f3:08:7c:2c:1f: 94:86:44:41:ec:a8:20:65:a1:9b:11:04:b1:8e:9e: f3:bd:78:cf:e2:bd:a0:52:f6:61:ae:e0:18:2b:5d: 13:b9:38:62:51:3e:be:16:84:e2:2a:30:2d:f6:5b: a3:30:d0:26:f2:d8:05:eb:20:29:09:b7:11:49:26: 74:06:b8:74:4c:17:64:69:3c:af:38:35:bc:cd:67: 27:92:7e:19:16:06:3b:b2:a3:9f:86:2f:3c:d1:6d: f1:fe:9a:b0:10:15:e9:79:59:1e:8e:c0:39:dd:ef: 6d:65:bf:f1:33:bc:42:d3:e8:8d:2c:08:66:7b:55: fa:39:2d:87:2a:e6:b3:d1:05:36:06:4f:ae:f4:a7: 9b:6e:d8:81:d7:60:c5:12:76:cf:48:e2:d4:80:38: 37:16:eb:cc:ab:79:76:e8:92:3d:52:8e:dc:9f:7b: 62:09:f2:f1:9b:bd:ac:80:19:c6:67:3f:56:f2:93: 3c:f5:ac:58:3e:bc:14:54:24:d7:9b:3b:cb:d1:43: 7a:f0:3f:7d:22:c3:9b:61:d9:fc:d4:c5:88:7c:6d: 01:6d:9d:81:87:43:33:67:f2:42:5d:90:d9:85:21: d3:70:98:33:5a:9e:51:e7:de:8a:b8:fe:7b:f7:1a: 7d:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:43:DF:53:53:AB:15:4A:24:0C:F4:42:7B:26:7D:B6:1F:4C:CB:07 X509v3 Authority Key Identifier: keyid:40:DD:66:2B:6F:6E:97:B3:4D:3B:75:A8:00:7D:E5:38:8D:92:72:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QN1mK29ul7NNO3WoAH3lOI2SclM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CF44/6677BEB68C8311EB849E6129C4F9AE02/QN1mK29ul7NNO3WoAH3lOI2SclM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:ed:e7:f9:0f:ae:c5:6a:d5:e4:04:8c:6a:9a:6f:31:07:38: 67:ab:c1:50:73:14:e8:b0:ae:00:c0:d7:a7:65:50:b7:52:3b: bc:ae:da:36:3a:94:d7:3e:53:7f:2a:9a:fa:ab:70:70:0a:56: 67:00:73:3c:21:e5:cb:02:28:24:60:6b:73:7f:7b:b2:dc:a0: 31:5d:16:68:af:24:27:59:98:8c:2d:fc:44:f5:77:38:a0:05: 90:89:f9:89:01:b9:27:52:d8:f4:98:6d:ee:4f:59:fc:74:79: 62:02:e5:61:72:d2:e5:6b:ce:b7:a9:6d:d8:d9:06:3a:7b:6f: e0:9f:af:27:12:24:02:57:da:a5:f4:a9:f7:ce:93:5b:67:b7: b1:a6:2c:5e:d1:b6:c0:7d:27:6c:6d:fb:0b:4b:4e:0d:45:3a: 79:96:2d:fb:6f:54:98:dd:71:bf:7a:59:f6:c2:bf:0c:ac:36: db:42:e7:a1:14:04:25:e9:5b:ba:27:09:a4:74:37:5b:0f:e2: 03:98:83:51:f6:19:40:41:86:89:1f:f4:f0:f0:01:39:0e:25: 53:f3:8c:97:e8:fd:ad:6c:0b:42:48:a4:16:a2:db:56:14:9a: 5e:1a:a2:c5:fd:5a:13:de:1a:2a:d2:e7:cb:8b:69:f4:1e:78: f2:1c:f4:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNGNDQxMTAvBgNVBAUTKDQwREQ2NjJCNkY2RTk3QjM0RDNCNzVBODAwN0RFNTM4 OEQ5MjcyNTMwHhcNMjUxMTA0MjIyNjAxWhcNMjUxMTExMjIyNjAxWjAYMRYwFAYD VQQDEw02OTBhN2Q3OS04NzY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwScYltswbtNd8wh8LB+UhkRB7KggZaGbEQSxjp7zvXjP4r2gUvZhruAYK10T uThiUT6+FoTiKjAt9lujMNAm8tgF6yApCbcRSSZ0Brh0TBdkaTyvODW8zWcnkn4Z FgY7sqOfhi880W3x/pqwEBXpeVkejsA53e9tZb/xM7xC0+iNLAhme1X6OS2HKuaz 0QU2Bk+u9KebbtiB12DFEnbPSOLUgDg3FuvMq3l26JI9Uo7cn3tiCfLxm72sgBnG Zz9W8pM89axYPrwUVCTXmzvL0UN68D99IsObYdn81MWIfG0BbZ2Bh0MzZ/JCXZDZ hSHTcJgzWp5R596KuP579xp9LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIpD31NT qxVKJAz0QnsmfbYfTMsHMB8GA1UdIwQYMBaAFEDdZitvbpezTTt1qAB95TiNknJT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0Y0NC82Njc3QkVCNjhD ODMxMUVCODQ5RTYxMjlDNEY5QUUwMi9RTjFtSzI5dWw3Tk5PM1dvQUgzbE9JMlNj bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOMW1LMjl1bDdOTk8zV29BSDNsT0kyU2NsTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0Y0NC82Njc3QkVCNjhDODMxMUVCODQ5RTYxMjlDNEY5QUUwMi9RTjFtSzI5dWw3 Tk5PM1dvQUgzbE9JMlNjbE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBb7ef5D67FatXkBIxqmm8xBzhnq8FQcxTosK4AwNenZVC3Uju8rto2 OpTXPlN/Kpr6q3BwClZnAHM8IeXLAigkYGtzf3uy3KAxXRZoryQnWZiMLfxE9Xc4 oAWQifmJAbknUtj0mG3uT1n8dHliAuVhctLla863qW3Y2QY6e2/gn68nEiQCV9ql 9Kn3zpNbZ7expixe0bbAfSdsbfsLS04NRTp5li37b1SY3XG/eln2wr8MrDbbQueh FAQl6Vu6JwmkdDdbD+IDmINR9hlAQYaJH/Tw8AE5DiVT84yX6P2tbAtCSKQWottW FJpeGqLF/VoT3hoq0ufLi2n0HnjyHPS+ -----END CERTIFICATE-----Generated at Wed Nov 5 05:50:07 2025 by rpki-client