$ rpki-client -vvf rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft File: Q2XRedW3PoqX7eBQXynvAMLWPvk.mft (raw, json) Hash identifier: pGECdzjK0c2IuZmbqYX2jCbwpvt4A/8yj7ApvuMP8no= Subject key identifier: 54:A2:9E:CC:26:E6:F0:E8:34:03:C3:A0:3F:B0:3A:E6:9F:C5:3B:33 Authority key identifier: 43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 Certificate issuer: /CN=A9139555/serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Certificate serial: 02F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft Manifest number: 02ED Signing time: Wed 05 Nov 2025 01:21:41 +0000 Manifest this update: Wed 05 Nov 2025 01:21:41 +0000 Manifest next update: Wed 12 Nov 2025 01:21:41 +0000 Files and hashes: 1: Q2XRedW3PoqX7eBQXynvAMLWPvk.crl (hash: l+8zBt+RmEEZIqxODKjtZAmbHVeM9uBXCsBL0ZaET0w=) 2: E9A9531644D611F0ABB89277C4F9AE02.roa (hash: GeKHBnqKWQ5odcVSCSiPOuNHSoS5ENhlNwIJeq+zQ50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:21:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 758 (0x2f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139555, serialNumber=4365D179D5B73E8A97EDE0505F29EF00C2D63EF9 Validity Not Before: Nov 5 01:21:41 2025 GMT Not After : Nov 12 01:21:41 2025 GMT Subject: CN=690aa6a5-4c8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:a6:d7:69:6e:6f:08:4b:aa:34:1c:8a:11:ee: d3:67:bb:63:47:44:3a:57:71:0b:19:0f:ef:46:f0: 5e:76:7a:75:9c:f1:a6:cc:9c:0a:82:b0:f4:2a:86: b9:c7:d3:6f:00:3a:36:2b:8d:1e:22:53:e3:af:92: d7:44:e2:dd:4f:76:30:0a:42:3c:ab:a8:43:c0:1f: 90:20:f4:9e:b4:12:62:1e:9e:1c:02:4b:07:e1:3b: 51:20:54:10:21:58:b4:4b:c8:2d:ef:3c:e0:51:e7: ca:dc:ac:24:23:8d:19:7c:5e:a2:a0:43:61:0a:9d: 6a:e3:f2:b3:8c:56:c2:56:d4:f7:bf:b3:45:97:14: 5c:9a:2f:7c:c1:42:33:be:5a:0e:97:a5:ee:86:d2: c8:02:18:3e:79:63:a3:ef:8b:5a:f8:c0:0d:27:90: 37:4c:44:b7:32:62:56:f1:30:eb:34:ad:85:b0:3a: 3b:66:4e:21:2d:7e:2a:3f:83:8b:88:85:98:5b:e6: 84:14:ad:69:c1:1d:49:43:d7:49:d5:d7:04:98:bb: 70:7e:3f:c0:6e:f6:0d:0b:ca:66:bb:a2:1d:f8:05: b7:e6:85:f9:b5:0e:2d:0c:93:ed:a5:94:aa:94:25: e7:68:ea:59:38:16:0c:97:18:1c:b0:eb:c9:56:58: 53:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:A2:9E:CC:26:E6:F0:E8:34:03:C3:A0:3F:B0:3A:E6:9F:C5:3B:33 X509v3 Authority Key Identifier: keyid:43:65:D1:79:D5:B7:3E:8A:97:ED:E0:50:5F:29:EF:00:C2:D6:3E:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2XRedW3PoqX7eBQXynvAMLWPvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139555/DC7D145A022D11ED9D646B57C4F9AE02/Q2XRedW3PoqX7eBQXynvAMLWPvk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:7c:d0:c7:32:17:a8:f5:c5:8c:01:df:6e:8b:90:25:1e:6b: 9b:3c:86:d5:33:53:52:dd:60:bf:41:d2:a3:ba:76:0a:3d:b4: 6f:59:08:bc:0e:ef:a1:bc:74:27:6f:d5:5c:c7:9e:4c:48:5b: f3:bc:eb:86:8e:31:09:c3:c2:1e:22:7c:b8:ad:b1:0e:f8:c7: 10:34:30:f2:11:72:5f:f9:fa:46:dc:51:72:28:fb:e1:00:77: 12:76:70:21:81:51:6c:19:29:6b:c1:81:4b:ba:f8:9e:d2:c1: a1:25:95:d6:9d:da:94:20:ed:44:15:ce:32:87:d2:59:d7:7f: ea:41:59:63:c2:16:a7:12:c3:49:4f:a6:ab:15:00:6e:1b:f3: 5e:65:31:a2:9f:62:1f:e1:f1:e4:9e:3d:f0:b9:09:21:34:90: 43:d4:7e:fa:b0:84:68:8e:a4:c4:9b:02:55:96:d5:7a:47:8d: 2c:8c:03:ca:50:7f:97:4d:03:b6:2d:6c:e6:cc:91:d1:9d:2d: d9:d4:8d:f8:db:54:1b:a3:cd:7d:e5:d3:7e:c1:1d:0b:85:e5: eb:77:46:94:c3:02:5e:87:8d:23:4d:5e:71:16:9a:58:f2:a7: 06:65:22:16:20:5e:02:ec:8f:1f:4c:12:44:57:24:2b:cd:aa: 00:f8:52:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk1NTUxMTAvBgNVBAUTKDQzNjVEMTc5RDVCNzNFOEE5N0VERTA1MDVGMjlFRjAw QzJENjNFRjkwHhcNMjUxMTA1MDEyMTQxWhcNMjUxMTEyMDEyMTQxWjAYMRYwFAYD VQQDEw02OTBhYTZhNS00YzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3KbXaW5vCEuqNByKEe7TZ7tjR0Q6V3ELGQ/vRvBednp1nPGmzJwKgrD0Koa5 x9NvADo2K40eIlPjr5LXROLdT3YwCkI8q6hDwB+QIPSetBJiHp4cAksH4TtRIFQQ IVi0S8gt7zzgUefK3KwkI40ZfF6ioENhCp1q4/KzjFbCVtT3v7NFlxRcmi98wUIz vloOl6XuhtLIAhg+eWOj74ta+MANJ5A3TES3MmJW8TDrNK2FsDo7Zk4hLX4qP4OL iIWYW+aEFK1pwR1JQ9dJ1dcEmLtwfj/AbvYNC8pmu6Id+AW35oX5tQ4tDJPtpZSq lCXnaOpZOBYMlxgcsOvJVlhTzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFSinswm 5vDoNAPDoD+wOuafxTszMB8GA1UdIwQYMBaAFENl0XnVtz6Kl+3gUF8p7wDC1j75 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTU1NS9EQzdEMTQ1QTAy MkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1BvcVg3ZUJRWHludkFNTFdQ dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EyWFJlZFczUG9xWDdlQlFYeW52QU1MV1B2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTU1NS9EQzdEMTQ1QTAyMkQxMUVEOUQ2NDZCNTdDNEY5QUUwMi9RMlhSZWRXM1Bv cVg3ZUJRWHludkFNTFdQdmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHfNDHMheo9cWMAd9ui5AlHmubPIbVM1NS3WC/QdKjunYKPbRvWQi8 Du+hvHQnb9Vcx55MSFvzvOuGjjEJw8IeIny4rbEO+McQNDDyEXJf+fpG3FFyKPvh AHcSdnAhgVFsGSlrwYFLuvie0sGhJZXWndqUIO1EFc4yh9JZ13/qQVljwhanEsNJ T6arFQBuG/NeZTGin2If4fHknj3wuQkhNJBD1H76sIRojqTEmwJVltV6R40sjAPK UH+XTQO2LWzmzJHRnS3Z1I3421Qbo8195dN+wR0LheXrd0aUwwJeh40jTV5xFppY 8qcGZSIWIF4C7I8fTBJEVyQrzaoA+FLC -----END CERTIFICATE-----Generated at Wed Nov 5 20:53:58 2025 by rpki-client