$ rpki-client -vvf rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft File: QG4t-6oOoAfdxmmT8sezCNoKGlc.mft (raw, json) Hash identifier: xgVx5IdLLltAhmGAvu1b1Vuj1IAawRL+OxQZy+qF8T4= Subject key identifier: 39:51:4F:46:A5:8D:CC:70:AC:9E:B9:EC:69:38:87:21:32:DE:91:A0 Authority key identifier: 40:6E:2D:FB:AA:0E:A0:07:DD:C6:69:93:F2:C7:B3:08:DA:0A:1A:57 Certificate issuer: /CN=A91315C1/serialNumber=406E2DFBAA0EA007DDC66993F2C7B308DA0A1A57 Certificate serial: 0C23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft Manifest number: 0C1B Signing time: Tue 04 Nov 2025 18:50:23 +0000 Manifest this update: Tue 04 Nov 2025 18:50:23 +0000 Manifest next update: Tue 11 Nov 2025 18:50:23 +0000 Files and hashes: 1: QG4t-6oOoAfdxmmT8sezCNoKGlc.crl (hash: e5vQfHO0IqXBVT+6pJ+iWTdmBWaEsXJcSuHZRon5S0k=) 2: 9D6DB59E1C5211EA8C6AAE37C4F9AE02.roa (hash: fjLr8uQxYz0b2IkiqsLdHlpaSbA1UhMnKJdo096hNVQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.crl rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:50:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3107 (0xc23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91315C1, serialNumber=406E2DFBAA0EA007DDC66993F2C7B308DA0A1A57 Validity Not Before: Nov 4 18:50:23 2025 GMT Not After : Nov 11 18:50:23 2025 GMT Subject: CN=690a4aef-49e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:c0:64:f4:e8:82:9a:a9:7a:36:08:fd:6a:4c: f8:cc:93:b6:e7:aa:86:c4:f8:05:be:72:40:c5:5f: bf:bb:08:8c:a8:cf:0f:66:04:66:ae:68:28:37:98: cc:48:7b:53:3d:17:6c:76:2a:bf:99:50:f0:8b:64: 7f:a4:fc:04:3d:8e:a6:a6:02:31:fd:d5:44:a7:09: 0e:47:21:c5:fe:cb:65:ec:81:d4:d0:59:a2:2c:73: b4:bb:d3:dd:d9:46:19:66:7e:07:51:37:26:2c:e5: ff:da:dc:c9:c6:ab:15:8b:3f:9e:56:28:bb:27:80: 06:17:55:ed:cd:52:2d:c0:01:e4:d7:db:db:36:48: 40:53:cc:d3:53:b2:75:58:df:da:88:8c:1d:84:7a: b3:92:7a:d9:b8:2c:36:7d:0f:32:c6:dd:ad:42:8b: 95:f1:ef:f5:7f:64:b7:7e:6f:01:f6:34:29:80:32: 5d:cd:2e:7b:b0:7d:15:c4:5e:cd:2b:80:de:9d:8d: 88:b1:3d:81:bb:6b:70:9c:a1:34:8b:96:9b:3d:57: 51:6e:65:d0:4e:48:94:9d:ad:46:31:57:bf:e2:74: a8:25:9e:9c:3a:d4:f5:e8:4d:7e:71:6e:09:42:db: fd:cc:3a:2c:1e:aa:52:6a:f5:1d:ea:7d:4b:3c:f6: 9a:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:51:4F:46:A5:8D:CC:70:AC:9E:B9:EC:69:38:87:21:32:DE:91:A0 X509v3 Authority Key Identifier: keyid:40:6E:2D:FB:AA:0E:A0:07:DD:C6:69:93:F2:C7:B3:08:DA:0A:1A:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:dd:03:d3:44:64:64:8b:6a:d1:e3:5b:d2:59:31:dd:c1:e0: 8e:58:da:50:15:ea:26:a5:48:9b:5c:6c:5b:fa:86:e9:f5:ff: 32:2f:dc:e0:10:c0:9f:3e:60:e9:90:50:e3:83:b1:69:bc:43: f3:4b:ae:a2:77:22:ce:e5:47:2b:0d:f0:52:2d:40:27:5c:8a: d4:90:3c:f8:d6:b3:01:ae:10:c0:0f:01:b7:eb:0b:b8:2c:f8: f5:b1:76:26:c7:cc:3e:1a:89:83:b2:9d:23:4a:08:0c:d9:75: ab:19:15:e4:5e:d3:6f:e9:6e:8b:df:13:e0:00:f6:74:b5:58: 92:33:2b:bb:73:b6:b7:de:ee:1d:c0:48:2b:bb:7f:b8:bd:45: ce:e6:b8:ed:cf:2b:18:fc:16:09:a0:f1:5d:6f:b4:9d:63:cb: 7d:96:d3:44:fa:f0:af:24:bc:7d:be:ab:3c:f7:80:8b:da:4d: cf:de:d1:bd:3b:a7:57:17:1c:28:ad:f2:87:c1:99:c2:53:69: 36:b1:58:a0:86:93:17:0f:4a:fc:ba:94:9d:1d:5e:8f:c3:d2: 06:75:01:24:e7:6f:f0:9d:3a:8d:c0:c1:e9:a9:d2:18:47:78: 2d:57:cf:c8:10:7a:a9:54:3b:9b:e1:90:f3:f7:25:ee:2e:51: 2c:81:50:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE1QzExMTAvBgNVBAUTKDQwNkUyREZCQUEwRUEwMDdEREM2Njk5M0YyQzdCMzA4 REEwQTFBNTcwHhcNMjUxMTA0MTg1MDIzWhcNMjUxMTExMTg1MDIzWjAYMRYwFAYD VQQDEw02OTBhNGFlZi00OWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp8Bk9OiCmql6Ngj9akz4zJO256qGxPgFvnJAxV+/uwiMqM8PZgRmrmgoN5jM SHtTPRdsdiq/mVDwi2R/pPwEPY6mpgIx/dVEpwkORyHF/stl7IHU0FmiLHO0u9Pd 2UYZZn4HUTcmLOX/2tzJxqsViz+eVii7J4AGF1XtzVItwAHk19vbNkhAU8zTU7J1 WN/aiIwdhHqzknrZuCw2fQ8yxt2tQouV8e/1f2S3fm8B9jQpgDJdzS57sH0VxF7N K4DenY2IsT2Bu2twnKE0i5abPVdRbmXQTkiUna1GMVe/4nSoJZ6cOtT16E1+cW4J Qtv9zDosHqpSavUd6n1LPPaa9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDlRT0al jcxwrJ657Gk4hyEy3pGgMB8GA1UdIwQYMBaAFEBuLfuqDqAH3cZpk/LHswjaChpX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTVDMS8zMDA5QThBQTFD NTIxMUVBODREMTk5MzdDNEY5QUUwMi9RRzR0LTZvT29BZmR4bW1UOHNlekNOb0tH bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FHNHQtNm9Pb0FmZHhtbVQ4c2V6Q05vS0dsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTVDMS8zMDA5QThBQTFDNTIxMUVBODREMTk5MzdDNEY5QUUwMi9RRzR0LTZvT29B ZmR4bW1UOHNlekNOb0tHbGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBU3QPTRGRki2rR41vSWTHdweCOWNpQFeompUibXGxb+obp9f8yL9zg EMCfPmDpkFDjg7FpvEPzS66idyLO5UcrDfBSLUAnXIrUkDz41rMBrhDADwG36wu4 LPj1sXYmx8w+GomDsp0jSggM2XWrGRXkXtNv6W6L3xPgAPZ0tViSMyu7c7a33u4d wEgru3+4vUXO5rjtzysY/BYJoPFdb7SdY8t9ltNE+vCvJLx9vqs894CL2k3P3tG9 O6dXFxworfKHwZnCU2k2sVighpMXD0r8upSdHV6Pw9IGdQEk52/wnTqNwMHpqdIY R3gtV8/IEHqpVDub4ZDz9yXuLlEsgVDD -----END CERTIFICATE-----Generated at Wed Nov 5 11:47:18 2025 by rpki-client