$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.mft File: Qk4KOEPz-h9Etq8u8-4RgVxLUgk.mft (raw, json) Hash identifier: EinWwqgY2SZ2HV8/+dT8lII8QyZp8IfERq4jXczGrpU= Subject key identifier: 7F:88:27:21:65:70:C8:F5:63:9E:EF:AF:7E:F3:CF:BF:A2:BC:B9:66 Authority key identifier: 42:4E:0A:38:43:F3:FA:1F:44:B6:AF:2E:F3:EE:11:81:5C:4B:52:09 Certificate issuer: /CN=A912C8AF/serialNumber=424E0A3843F3FA1F44B6AF2EF3EE11815C4B5209 Certificate serial: 077F Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.mft Manifest number: 0775 Signing time: Tue 04 Nov 2025 19:33:21 +0000 Manifest this update: Tue 04 Nov 2025 19:33:20 +0000 Manifest next update: Tue 11 Nov 2025 19:33:20 +0000 Files and hashes: 1: Qk4KOEPz-h9Etq8u8-4RgVxLUgk.crl (hash: hfl+n79YbyO6E17CiZBYXAJcjfRW0GREqz3ElD25E2A=) 2: 510308503E8211EBA910FF57C4F9AE02.roa (hash: PjHH406K/ka7XNZ7a0h9GqbdKh0e4+H0cJO6YTJYTgA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.crl rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:33:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1919 (0x77f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF, serialNumber=424E0A3843F3FA1F44B6AF2EF3EE11815C4B5209 Validity Not Before: Nov 4 19:33:20 2025 GMT Not After : Nov 11 19:33:20 2025 GMT Subject: CN=690a5500-b0fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:91:09:4d:70:66:74:ed:1a:2b:54:16:78:b8: ac:fc:01:01:87:28:7a:60:4c:73:8d:a5:e9:d2:f2: 3f:c5:1f:6d:c7:45:76:2e:2c:46:6a:42:d1:50:5b: 0e:2e:ed:70:7c:46:15:07:3b:4c:30:e1:52:e9:c0: 4a:30:16:a5:6f:66:ab:62:4f:72:57:84:05:04:61: da:44:7b:dc:09:fb:ad:99:c8:1e:17:9b:5b:43:c8: 07:a0:27:f0:0a:9f:31:e4:6e:7f:d8:ce:4b:8a:6f: 2b:cf:ee:26:ba:2e:b4:03:43:de:42:a7:83:7f:38: e7:ef:63:66:30:62:40:44:ad:5d:45:62:6c:dd:56: ec:a8:63:c4:b8:43:ed:01:fb:82:8f:c9:a7:f2:9d: 98:a6:f5:4b:85:69:d9:b1:8b:8b:eb:0c:95:aa:f7: e4:47:63:6e:f7:fc:3a:be:a4:6a:1b:91:46:41:be: ac:22:12:f8:85:23:5c:71:93:72:ed:d4:ff:8c:4a: 5f:1f:28:e3:ff:b1:1b:f9:ba:d8:13:c0:97:47:a8: 85:7a:f3:fe:a1:05:85:7b:53:57:9c:74:8b:2c:25: 82:d1:de:42:81:e5:46:19:0a:88:c3:da:52:c1:74: 96:d9:35:da:bc:cd:10:bd:03:cb:c3:9d:8d:68:9d: ee:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:88:27:21:65:70:C8:F5:63:9E:EF:AF:7E:F3:CF:BF:A2:BC:B9:66 X509v3 Authority Key Identifier: keyid:42:4E:0A:38:43:F3:FA:1F:44:B6:AF:2E:F3:EE:11:81:5C:4B:52:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/EE0AEECA3E8111EB9ABD920FC4F9AE02/Qk4KOEPz-h9Etq8u8-4RgVxLUgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:70:6d:a3:76:38:39:cf:15:a9:cc:88:8b:4d:65:67:86:57: 41:74:d8:3b:6f:01:f7:8d:47:00:fc:43:ca:75:9c:1a:fd:1d: 55:3c:4a:f9:50:ca:1d:b0:23:fd:29:54:55:60:9a:c0:eb:1a: 95:4e:b6:4e:2a:a7:40:d6:32:ec:ce:e5:cf:94:56:97:74:64: 8d:81:e1:62:36:22:b2:35:72:7b:6f:8b:5d:c6:7b:4c:58:cd: 68:9f:f6:b9:6b:8b:cf:42:b6:79:58:c5:62:d3:42:31:d8:fe: 78:45:31:cc:eb:dc:0f:03:b0:9e:d5:b0:70:a3:64:f5:f1:7d: c9:48:83:47:ff:7e:02:f8:cd:16:a3:35:57:b3:a2:7a:6b:cc: fa:5b:51:e2:e1:0d:e0:51:96:e1:d5:c0:17:13:a5:a8:8f:92: 4d:a1:29:78:6d:7a:f2:5f:32:d5:fb:75:be:e5:46:ec:6b:04: 33:4b:99:4d:a2:44:ad:0b:7a:dc:67:66:53:f9:07:30:93:66: f8:1e:d3:52:9b:23:84:88:e4:ae:95:8a:dc:fd:4f:65:b5:d5: c2:32:51:ec:b4:0e:1b:65:b2:8c:b7:2b:12:b8:14:79:83:73: 60:25:38:ac:83:5b:1b:a1:62:6e:02:00:8e:1c:cf:df:09:e8: d8:44:3c:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB38wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4QUYxMTAvBgNVBAUTKDQyNEUwQTM4NDNGM0ZBMUY0NEI2QUYyRUYzRUUxMTgx NUM0QjUyMDkwHhcNMjUxMTA0MTkzMzIwWhcNMjUxMTExMTkzMzIwWjAYMRYwFAYD VQQDEw02OTBhNTUwMC1iMGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwpEJTXBmdO0aK1QWeLis/AEBhyh6YExzjaXp0vI/xR9tx0V2LixGakLRUFsO Lu1wfEYVBztMMOFS6cBKMBalb2arYk9yV4QFBGHaRHvcCfutmcgeF5tbQ8gHoCfw Cp8x5G5/2M5Lim8rz+4mui60A0PeQqeDfzjn72NmMGJARK1dRWJs3VbsqGPEuEPt AfuCj8mn8p2YpvVLhWnZsYuL6wyVqvfkR2Nu9/w6vqRqG5FGQb6sIhL4hSNccZNy 7dT/jEpfHyjj/7Eb+brYE8CXR6iFevP+oQWFe1NXnHSLLCWC0d5CgeVGGQqIw9pS wXSW2TXavM0QvQPLw52NaJ3utwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH+IJyFl cMj1Y57vr37zz7+ivLlmMB8GA1UdIwQYMBaAFEJOCjhD8/ofRLavLvPuEYFcS1IJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhBRi9FRTBBRUVDQTNF ODExMUVCOUFCRDkyMEZDNEY5QUUwMi9RazRLT0VQei1oOUV0cTh1OC00UmdWeExV Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1FrNEtPRVB6LWg5RXRxOHU4LTRSZ1Z4TFVnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzhBRi9FRTBBRUVDQTNFODExMUVCOUFCRDkyMEZDNEY5QUUwMi9RazRLT0VQei1o OUV0cTh1OC00UmdWeExVZ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5cG2jdjg5zxWpzIiLTWVnhldBdNg7bwH3jUcA/EPKdZwa/R1VPEr5 UModsCP9KVRVYJrA6xqVTrZOKqdA1jLszuXPlFaXdGSNgeFiNiKyNXJ7b4tdxntM WM1on/a5a4vPQrZ5WMVi00Ix2P54RTHM69wPA7Ce1bBwo2T18X3JSINH/34C+M0W ozVXs6J6a8z6W1Hi4Q3gUZbh1cAXE6Woj5JNoSl4bXryXzLV+3W+5UbsawQzS5lN okStC3rcZ2ZT+Qcwk2b4HtNSmyOEiOSulYrc/U9ltdXCMlHstA4bZbKMtysSuBR5 g3NgJTisg1sboWJuAgCOHM/fCejYRDzT -----END CERTIFICATE-----Generated at Wed Nov 5 11:44:26 2025 by rpki-client