$ rpki-client -vvf rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft File: QZ8npM_s9GHbgvb5BnZPttZfI88.mft (raw, json) Hash identifier: 8A1Z8Q6Kscy/OLu46J6Cpe+sD+pYqjUyeCwNNu9Kyf4= Subject key identifier: CA:F4:74:42:E4:61:92:92:A3:69:43:2D:A9:3D:73:F4:02:5B:56:7B Authority key identifier: 41:9F:27:A4:CF:EC:F4:61:DB:82:F6:F9:06:76:4F:B6:D6:5F:23:CF Certificate issuer: /CN=A9140BED/serialNumber=419F27A4CFECF461DB82F6F906764FB6D65F23CF Certificate serial: 0116 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft Manifest number: 0110 Signing time: Mon 03 Nov 2025 04:57:15 +0000 Manifest this update: Mon 03 Nov 2025 04:57:14 +0000 Manifest next update: Mon 10 Nov 2025 04:57:14 +0000 Files and hashes: 1: QZ8npM_s9GHbgvb5BnZPttZfI88.crl (hash: xDQRgvjqSvWpEUGs6hzUHVNUz21KX7nc7e80We4LpuU=) 2: ED7C0BCC287211EFA1483A2FC4F9AE02.roa (hash: SNdFFgbNj8G/zNTVCnmByHJjfzC5p20PH2d/HShK4p8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.crl rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:57:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 278 (0x116) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140BED, serialNumber=419F27A4CFECF461DB82F6F906764FB6D65F23CF Validity Not Before: Nov 3 04:57:14 2025 GMT Not After : Nov 10 04:57:14 2025 GMT Subject: CN=6908362a-d5b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f7:bc:38:76:a0:ad:71:13:ec:c4:1b:55:45: 3a:fa:a6:7e:de:b8:b1:c0:04:d0:34:9a:e0:93:5e: 51:dc:8f:8d:d2:fb:d2:1b:79:a3:18:23:a2:27:d2: a0:2a:a1:ff:de:a3:94:11:5a:06:7b:a4:74:85:b3: 8e:89:e6:fd:53:02:4c:bb:0b:8d:6d:74:fe:8a:e5: 83:63:54:99:9d:4a:1d:6b:2a:aa:22:d8:c1:9e:47: 65:81:d9:c3:68:9c:f8:56:a4:3e:63:e2:76:a4:2d: 26:19:0a:34:92:22:d8:43:ef:84:70:22:c7:8f:4f: d7:d5:d6:9e:4a:f6:bf:b5:c4:de:d9:95:f0:79:bf: 63:d2:9d:67:56:ab:64:4f:23:7c:b8:c4:87:b3:f2: 6d:2d:1f:d2:1d:1d:f1:a9:8b:77:b4:c2:a5:5c:42: 14:8a:5d:f8:02:2a:a3:04:98:42:74:41:0c:74:7b: 91:e3:6f:95:f2:c7:76:a1:30:95:b5:af:ae:85:96: 50:e8:37:d4:f7:7d:79:86:f0:55:4e:46:12:9e:b5: ef:01:48:9a:8e:e7:62:c1:fc:7e:c4:2a:5e:7c:84: bd:3e:2d:9c:24:bb:81:c7:de:82:ac:25:a1:92:01: 3a:66:1a:46:88:53:10:95:22:c7:cc:b0:03:02:15: f6:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:F4:74:42:E4:61:92:92:A3:69:43:2D:A9:3D:73:F4:02:5B:56:7B X509v3 Authority Key Identifier: keyid:41:9F:27:A4:CF:EC:F4:61:DB:82:F6:F9:06:76:4F:B6:D6:5F:23:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:15:91:be:03:15:88:27:34:57:6e:4a:d1:f8:6b:bd:79:d2: 00:b1:d9:7e:08:b8:03:41:44:1b:1e:8e:13:b5:d4:85:eb:b2: 3d:d3:27:fc:ee:5d:39:76:fb:cb:0f:38:5f:31:0b:a9:59:6d: 1a:90:92:02:3e:ee:82:ed:f0:e7:0a:ce:30:e8:62:a3:f4:c9: 0d:00:1f:7f:97:59:92:6f:98:e7:d5:e1:42:e3:7f:13:3d:b8: e9:79:94:79:04:4d:6f:18:e5:0b:ca:a9:c0:c4:f2:22:71:d9: 63:7a:02:94:ff:0d:01:58:b8:e0:93:33:8d:19:06:4b:ca:0d: 0f:cf:e3:e2:e4:41:ff:ca:b5:a7:e0:dd:a8:70:2e:2d:71:7e: 0f:b7:02:21:0a:c1:78:5b:f4:39:e2:01:18:42:ff:db:de:7a: dc:36:60:58:50:58:3b:6d:20:5a:85:60:b9:3f:99:61:24:2e: ab:44:70:98:f0:26:74:20:9e:db:bf:64:12:fe:d5:51:82:cb: 96:a3:78:f9:e3:58:8b:55:39:79:e8:07:40:30:c6:97:fa:31: b4:22:86:ff:dd:6d:90:41:9d:21:bc:46:b1:79:a5:7d:ec:3c: 2e:62:52:bf:08:df:3c:a7:a6:4b:c0:7a:78:54:f9:b0:cf:31: 5a:f4:e9:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBCRUQxMTAvBgNVBAUTKDQxOUYyN0E0Q0ZFQ0Y0NjFEQjgyRjZGOTA2NzY0RkI2 RDY1RjIzQ0YwHhcNMjUxMTAzMDQ1NzE0WhcNMjUxMTEwMDQ1NzE0WjAYMRYwFAYD VQQDEw02OTA4MzYyYS1kNWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuve8OHagrXET7MQbVUU6+qZ+3rixwATQNJrgk15R3I+N0vvSG3mjGCOiJ9Kg KqH/3qOUEVoGe6R0hbOOieb9UwJMuwuNbXT+iuWDY1SZnUodayqqItjBnkdlgdnD aJz4VqQ+Y+J2pC0mGQo0kiLYQ++EcCLHj0/X1daeSva/tcTe2ZXweb9j0p1nVqtk TyN8uMSHs/JtLR/SHR3xqYt3tMKlXEIUil34AiqjBJhCdEEMdHuR42+V8sd2oTCV ta+uhZZQ6DfU9315hvBVTkYSnrXvAUiajudiwfx+xCpefIS9Pi2cJLuBx96CrCWh kgE6ZhpGiFMQlSLHzLADAhX2JwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMr0dELk YZKSo2lDLak9c/QCW1Z7MB8GA1UdIwQYMBaAFEGfJ6TP7PRh24L2+QZ2T7bWXyPP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEJFRC8wOEUwRTA2NjFG MzgxMUVGQjA1OUI2NjVDNEY5QUUwMi9RWjhucE1fczlHSGJndmI1Qm5aUHR0WmZJ ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FaOG5wTV9zOUdIYmd2YjVCblpQdHRaZkk4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEJFRC8wOEUwRTA2NjFGMzgxMUVGQjA1OUI2NjVDNEY5QUUwMi9RWjhucE1fczlH SGJndmI1Qm5aUHR0WmZJODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUFZG+AxWIJzRXbkrR+Gu9edIAsdl+CLgDQUQbHo4TtdSF67I90yf8 7l05dvvLDzhfMQupWW0akJICPu6C7fDnCs4w6GKj9MkNAB9/l1mSb5jn1eFC438T PbjpeZR5BE1vGOULyqnAxPIicdljegKU/w0BWLjgkzONGQZLyg0Pz+Pi5EH/yrWn 4N2ocC4tcX4PtwIhCsF4W/Q54gEYQv/b3nrcNmBYUFg7bSBahWC5P5lhJC6rRHCY 8CZ0IJ7bv2QS/tVRgsuWo3j541iLVTl56AdAMMaX+jG0Iob/3W2QQZ0hvEaxeaV9 7DwuYlK/CN88p6ZLwHp4VPmwzzFa9Onc -----END CERTIFICATE-----Generated at Tue Nov 4 12:36:43 2025 by rpki-client