$ rpki-client -vvf rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.mft File: QtPsuchXCrCQ62Ae2zN5wNPYptA.mft (raw, json) Hash identifier: BdSS/WYOeRiDlPFCCZnfIuwDkFW7enpg9ACWnuNfFS8= Subject key identifier: AA:4B:F5:EB:0C:95:15:FF:F9:3F:B7:FB:08:54:1B:73:BB:00:09:1A Authority key identifier: 42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0 Certificate issuer: /CN=A913B805/serialNumber=42D3ECB9C8570AB090EB601EDB3379C0D3D8A6D0 Certificate serial: 266E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.mft Manifest number: 1A8D Signing time: Tue 04 Nov 2025 17:40:29 +0000 Manifest this update: Tue 04 Nov 2025 17:40:29 +0000 Manifest next update: Tue 11 Nov 2025 17:40:29 +0000 Files and hashes: 1: QtPsuchXCrCQ62Ae2zN5wNPYptA.crl (hash: csgPDJs5pg8sZuJQxeinHx3Wo8DRwvMtpZFe3e0xFyY=) 2: C8D6C4CAD1EF11EAA9944238C4F9AE02.roa (hash: jROfgwuidzLC7AWCncg9tK5p5d6kMRx0vRFp0MoP+qM=) 3: 0578A814931111EDB92FFC5FC4F9AE02.roa (hash: SicvG0o1j0juozOpQdU8S9XPJYPD28r6BEH0ZZTMtCk=) 4: 670793E8F0EC11EFB7FBC612C4F9AE02.roa (hash: t77TBLDyfQlYv1eUozdedtWkdGosmio8lx2OnfPqKn8=) 5: 8EF0A700973911EDB1E3C460C4F9AE02.roa (hash: sU4VNKoTZRC7rOgdrdAJ5l9zMf5qWmX/UOum5j9Op04=) 6: D42E171A97E011ED9EFB180DC4F9AE02.roa (hash: kOwwKmaSB/pWq+rkgCsR0x3XY0Ne0hYk+1IKNpUUA88=) 7: B53FD334575411ECAA094876C4F9AE02.roa (hash: OatUXNH0fiEtO2+f1JbCOSZAp/tTotYDXstcjWZ2J2s=) 8: FB3F8334973B11ED935E7109C4F9AE02.roa (hash: XPXw9+MhOn0NRVGrugIJU94WGGzOQijXcxAqrFhTo84=) 9: 0722D856931111EDB92FFC5FC4F9AE02.roa (hash: QPwmUi6Jbr6XpgG54LpHBRL5GHoE85qF3kMh45EU4DQ=) 10: D08850D2B71411ED98AFCC20C4F9AE02.roa (hash: yAxgtWHScyaAo/qxWzcthUIvpu0Cn87KgHaSUfVCrIw=) 11: 968DFDCE973311EDBFD0B43CC4F9AE02.roa (hash: G2D8FdL9HWaJ530qHLe4NXg0uwb3o4sRDKVT7tvGUhw=) 12: D4B094F697E011ED9EFB180DC4F9AE02.roa (hash: 5SjvOm2kSOv31BBmDpmyPr0NIqcd7j1K10ShJA+7SSg=) 13: 4C4AC452D67911ECBFC6CB7BC4F9AE02.roa (hash: MSzaop+NtM6eR5vhQ8IzHf7QK9SqJHOEvf0dM16xPxo=) 14: 6B4669CE7B7D11E99F99E776C4F9AE02.roa (hash: 74IUgWh0EIbll6zM2oD6KnRo4IUzeZO6atmhM6ptuY8=) 15: 907B9184973911EDB1E3C460C4F9AE02.roa (hash: NeAes0ETd9mQEhgNnwzsPARoogq3sg8oM9diG1oYLcg=) 16: 06535DB891E011EFAE09CC5BC4F9AE02.roa (hash: +jREgbuLYhz8eMMx2O9Ksp1ti5wG9/pudLfwvmM6Cnk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:40:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9838 (0x266e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B805, serialNumber=42D3ECB9C8570AB090EB601EDB3379C0D3D8A6D0 Validity Not Before: Nov 4 17:40:29 2025 GMT Not After : Nov 11 17:40:29 2025 GMT Subject: CN=690a3a8d-7036 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:7e:30:71:f8:d8:2e:cf:15:d4:0b:0f:ec:e9: 83:3d:b3:9d:ec:23:87:97:13:01:53:19:53:90:26: b4:56:9a:a3:9f:79:bd:ff:8b:ad:93:0a:78:7c:14: 08:1a:15:d2:bb:72:74:7e:8b:7d:5e:30:f5:c5:d1: c7:ac:fa:00:05:59:56:f3:fe:20:e1:17:9b:74:5c: 38:fd:69:c4:0a:d2:1e:cc:01:10:96:52:83:22:a8: 28:bb:92:6f:26:de:95:1f:26:7b:6d:ac:a9:9b:1f: fd:92:9d:4a:70:96:7e:15:ba:c9:90:b2:69:8f:21: cc:8e:73:ce:97:24:74:06:e0:7d:94:80:9e:cc:c4: 42:36:57:7a:0e:8d:51:73:58:e0:90:5c:8b:09:4c: 63:08:32:6e:79:ac:ea:63:ca:eb:4b:de:6c:29:e8: 21:00:74:92:d3:52:b7:c0:59:66:2f:43:99:e1:40: ab:6b:f0:c7:51:8b:49:79:80:b3:df:a4:91:0a:44: 86:17:a8:06:bd:3e:3f:da:af:d1:8a:63:e0:ca:f1: 1f:d0:1a:ad:33:0e:4b:7d:e2:29:35:b9:eb:38:ec: 70:ef:77:e0:74:1b:fc:42:ec:d7:1a:9d:27:f1:92: 9c:6d:c5:1d:8a:ea:81:6f:ea:f1:09:8e:e6:e5:0d: 4f:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:4B:F5:EB:0C:95:15:FF:F9:3F:B7:FB:08:54:1B:73:BB:00:09:1A X509v3 Authority Key Identifier: keyid:42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:37:34:26:71:54:c2:f8:10:14:d6:21:aa:24:74:85:5b:c7: 75:d9:0c:fa:7a:ec:45:7e:ba:b7:41:2d:c4:ef:35:d5:96:15: 34:02:15:22:73:8b:45:29:22:bd:45:a8:98:c2:42:4a:d9:44: c6:09:b9:e6:bf:c7:32:8d:a6:59:65:48:80:7d:03:40:33:ad: 4f:ff:79:fe:54:1f:c0:56:8d:fb:fb:24:9d:47:2a:7b:89:00: 1f:32:0a:e5:3f:6e:4d:a0:c6:e8:7f:3c:11:3e:2b:82:c7:4a: ec:20:e6:d7:88:59:ec:63:fc:5e:a8:cf:ee:b0:a8:f4:66:cb: c9:7f:5f:f3:87:d1:d3:63:9d:66:d3:27:29:f3:0b:66:7b:f0: cb:9f:9b:78:39:5b:dc:b2:d4:07:24:8c:12:87:04:e6:f3:f4: c1:26:89:f7:42:32:f3:52:2a:2a:1d:f1:31:aa:b4:e4:39:50: 11:72:2f:af:8e:69:d4:66:96:18:23:3e:26:33:cc:2f:cd:74: 5d:5a:52:ea:ef:05:b3:d3:c7:9c:8d:0d:91:f9:5f:4c:c2:c6: b6:56:3f:1b:2d:82:6e:a1:67:74:04:51:4f:71:0f:dd:41:d8: 20:52:94:ae:c0:58:5e:88:09:2c:a3:00:ff:35:6b:fe:e7:6b: 21:a0:c6:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJm4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I4MDUxMTAvBgNVBAUTKDQyRDNFQ0I5Qzg1NzBBQjA5MEVCNjAxRURCMzM3OUMw RDNEOEE2RDAwHhcNMjUxMTA0MTc0MDI5WhcNMjUxMTExMTc0MDI5WjAYMRYwFAYD VQQDEw02OTBhM2E4ZC03MDM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu34wcfjYLs8V1AsP7OmDPbOd7COHlxMBUxlTkCa0Vpqjn3m9/4utkwp4fBQI GhXSu3J0fot9XjD1xdHHrPoABVlW8/4g4RebdFw4/WnECtIezAEQllKDIqgou5Jv Jt6VHyZ7baypmx/9kp1KcJZ+FbrJkLJpjyHMjnPOlyR0BuB9lICezMRCNld6Do1R c1jgkFyLCUxjCDJueazqY8rrS95sKeghAHSS01K3wFlmL0OZ4UCra/DHUYtJeYCz 36SRCkSGF6gGvT4/2q/RimPgyvEf0BqtMw5LfeIpNbnrOOxw73fgdBv8QuzXGp0n 8ZKcbcUdiuqBb+rxCY7m5Q1P5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKpL9esM lRX/+T+3+whUG3O7AAkaMB8GA1UdIwQYMBaAFELT7LnIVwqwkOtgHtszecDT2KbQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjgwNS9GODA3NkI4QTdC N0IxMUU5OEI2RUMwNzRDNEY5QUUwMi9RdFBzdWNoWENyQ1E2MkFlMnpONXdOUFlw dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F0UHN1Y2hYQ3JDUTYyQWUyek41d05QWXB0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjgwNS9GODA3NkI4QTdCN0IxMUU5OEI2RUMwNzRDNEY5QUUwMi9RdFBzdWNoWENy Q1E2MkFlMnpONXdOUFlwdEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoNzQmcVTC+BAU1iGqJHSFW8d12Qz6euxFfrq3QS3E7zXVlhU0AhUi c4tFKSK9RaiYwkJK2UTGCbnmv8cyjaZZZUiAfQNAM61P/3n+VB/AVo37+ySdRyp7 iQAfMgrlP25NoMbofzwRPiuCx0rsIObXiFnsY/xeqM/usKj0ZsvJf1/zh9HTY51m 0ycp8wtme/DLn5t4OVvcstQHJIwShwTm8/TBJon3QjLzUioqHfExqrTkOVARci+v jmnUZpYYIz4mM8wvzXRdWlLq7wWz08ecjQ2R+V9Mwsa2Vj8bLYJuoWd0BFFPcQ/d QdggUpSuwFheiAksowD/NWv+52shoMaP -----END CERTIFICATE-----Generated at Tue Nov 4 20:21:46 2025 by rpki-client