$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft File: QeHsF957pw-MEkF3aWN3AjclGd4.mft (raw, json) Hash identifier: GrwovxwjO2Ebwx+SEkTQ0MKsASrhULBE3unvjRq7bfA= Subject key identifier: AD:47:72:0B:20:78:FA:4A:61:7F:56:9A:64:8B:61:B3:72:63:B6:D7 Authority key identifier: 41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE Certificate issuer: /CN=A913AE23/serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE Certificate serial: 010C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft Manifest number: 0107 Signing time: Mon 03 Nov 2025 05:02:09 +0000 Manifest this update: Mon 03 Nov 2025 05:02:09 +0000 Manifest next update: Mon 10 Nov 2025 05:02:09 +0000 Files and hashes: 1: QeHsF957pw-MEkF3aWN3AjclGd4.crl (hash: HkeyZpknxE1EtvXIsNRJrDIVI0SCclHvnxA9lj5vILM=) 2: 8CF832322C6C11EFB50AD22EC4F9AE02.roa (hash: 2CA+qteNBX78NJxTKhwS/FKIzkSLCeJanQWnrGhStgI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:02:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 268 (0x10c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE23, serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE Validity Not Before: Nov 3 05:02:09 2025 GMT Not After : Nov 10 05:02:09 2025 GMT Subject: CN=69083751-c645 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a6:7c:02:3c:41:5e:e1:82:b7:ee:3d:b0:08: 87:31:bb:6c:bc:9f:40:c7:54:d3:d0:69:23:2f:31: 70:21:bc:d2:ee:25:0f:c6:e0:77:ff:10:95:84:6f: 43:2a:b7:eb:82:e7:05:02:47:34:7c:e3:62:dc:f0: 7c:1c:77:38:ae:37:f4:e2:5e:22:24:01:d1:4f:cd: 7b:e9:bd:b3:37:77:89:bd:a8:0c:15:8b:00:bd:31: 38:72:56:b5:ed:33:34:f1:9d:8f:84:ae:58:be:e8: 49:b0:94:5e:1f:3b:63:5e:4b:9f:b2:49:ea:20:f7: 71:c4:17:ff:8e:32:95:7e:32:de:3d:94:51:c5:63: ff:fd:35:7e:d4:b3:1a:87:67:84:8f:07:65:0f:a2: be:c6:62:b1:82:69:1c:82:b9:b0:08:9e:80:0f:a4: 1d:6f:33:85:74:9c:83:05:a9:59:c5:28:38:da:39: 93:65:5a:70:33:65:cc:2c:fa:ff:f2:dc:bc:b4:d7: 58:fa:17:77:dc:c2:f9:88:6d:86:60:a8:39:62:d5: 61:48:41:ff:5f:f8:04:83:25:cf:f0:4a:d3:7a:3d: 07:0d:80:8b:3b:2e:74:87:8c:53:3c:97:9a:a8:b3: cb:78:8d:ce:e8:29:dc:7d:cd:8e:a8:d3:32:a9:5a: 77:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:47:72:0B:20:78:FA:4A:61:7F:56:9A:64:8B:61:B3:72:63:B6:D7 X509v3 Authority Key Identifier: keyid:41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:67:bb:0e:e0:76:1d:f2:2a:6c:33:a1:4a:8b:13:28:c7:40: 3c:f4:3e:3c:9b:0e:61:55:17:f0:a0:e0:5e:cc:7e:33:09:23: 91:93:3a:21:f6:e4:b9:df:61:0e:fd:10:a6:9d:8d:e2:ed:93: 75:8f:cb:4b:05:61:1c:8d:53:d7:87:7c:90:4c:4e:02:3c:0c: e3:15:01:c2:87:e7:62:a8:31:d2:db:ff:83:4f:93:ef:91:7b: 91:34:7e:57:8f:27:e0:bd:18:e4:5b:93:ad:dd:a7:74:30:33: 05:05:57:95:8b:b6:f7:6c:56:34:b3:f0:a7:54:88:31:8d:be: b1:b5:76:2f:31:fb:82:2f:d9:87:9d:96:c4:73:71:5f:5e:a7: cb:5d:44:4d:88:54:0f:a9:07:cd:cb:95:36:db:4a:95:48:02: 95:1a:2e:95:40:da:a4:66:8e:b2:8f:60:d5:f4:e3:5d:8f:32: ab:48:38:e9:5c:b5:85:33:4a:61:fd:1e:78:43:6c:da:6b:49: df:f1:55:72:e9:00:3d:3a:b0:21:80:41:e6:9f:2d:ac:ad:f5: 23:bd:7c:f3:85:7a:89:80:6b:82:0d:b4:66:97:77:a4:82:af: 51:dd:63:84:ef:28:b2:fb:c3:68:51:d1:3c:75:24:56:0d:fd: 31:48:3f:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFMjMxMTAvBgNVBAUTKDQxRTFFQzE3REU3QkE3MEY4QzEyNDE3NzY5NjM3NzAy MzcyNTE5REUwHhcNMjUxMTAzMDUwMjA5WhcNMjUxMTEwMDUwMjA5WjAYMRYwFAYD VQQDEw02OTA4Mzc1MS1jNjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyKZ8AjxBXuGCt+49sAiHMbtsvJ9Ax1TT0GkjLzFwIbzS7iUPxuB3/xCVhG9D KrfrgucFAkc0fONi3PB8HHc4rjf04l4iJAHRT8176b2zN3eJvagMFYsAvTE4cla1 7TM08Z2PhK5YvuhJsJReHztjXkufsknqIPdxxBf/jjKVfjLePZRRxWP//TV+1LMa h2eEjwdlD6K+xmKxgmkcgrmwCJ6AD6QdbzOFdJyDBalZxSg42jmTZVpwM2XMLPr/ 8ty8tNdY+hd33ML5iG2GYKg5YtVhSEH/X/gEgyXP8ErTej0HDYCLOy50h4xTPJea qLPLeI3O6Cncfc2OqNMyqVp3/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK1Hcgsg ePpKYX9WmmSLYbNyY7bXMB8GA1UdIwQYMBaAFEHh7Bfee6cPjBJBd2ljdwI3JRne MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUUyMy8zMDFBMUU0QTJD NkMxMUVGQTM0Njk0MkRDNEY5QUUwMi9RZUhzRjk1N3B3LU1Fa0YzYVdOM0FqY2xH ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FlSHNGOTU3cHctTUVrRjNhV04zQWpjbEdkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUUyMy8zMDFBMUU0QTJDNkMxMUVGQTM0Njk0MkRDNEY5QUUwMi9RZUhzRjk1N3B3 LU1Fa0YzYVdOM0FqY2xHZDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6Z7sO4HYd8ipsM6FKixMox0A89D48mw5hVRfwoOBezH4zCSORkzoh 9uS532EO/RCmnY3i7ZN1j8tLBWEcjVPXh3yQTE4CPAzjFQHCh+diqDHS2/+DT5Pv kXuRNH5XjyfgvRjkW5Ot3ad0MDMFBVeVi7b3bFY0s/CnVIgxjb6xtXYvMfuCL9mH nZbEc3FfXqfLXURNiFQPqQfNy5U220qVSAKVGi6VQNqkZo6yj2DV9ONdjzKrSDjp XLWFM0ph/R54Q2zaa0nf8VVy6QA9OrAhgEHmny2srfUjvXzzhXqJgGuCDbRml3ek gq9R3WOE7yiy+8NoUdE8dSRWDf0xSD8H -----END CERTIFICATE-----Generated at Tue Nov 4 19:11:24 2025 by rpki-client