$ rpki-client -vvf rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/QVO6SZpE5-wQQcYO9_NprGI1eqg.mft File: QVO6SZpE5-wQQcYO9_NprGI1eqg.mft (raw, json) Hash identifier: 5rl5+aHrHX3zvRK2+3SQndTQ/nCw1qZRF1bqQoh+ips= Subject key identifier: 37:B7:A9:EB:A2:18:25:58:F9:69:89:EF:22:4B:FD:3D:46:0E:05:B4 Authority key identifier: 41:53:BA:49:9A:44:E7:EC:10:41:C6:0E:F7:F3:69:AC:62:35:7A:A8 Certificate issuer: /CN=A91423C1/serialNumber=4153BA499A44E7EC1041C60EF7F369AC62357AA8 Certificate serial: 0188 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVO6SZpE5-wQQcYO9_NprGI1eqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/QVO6SZpE5-wQQcYO9_NprGI1eqg.mft Manifest number: 017D Signing time: Wed 05 Nov 2025 04:02:50 +0000 Manifest this update: Wed 05 Nov 2025 04:02:49 +0000 Manifest next update: Wed 12 Nov 2025 04:02:49 +0000 Files and hashes: 1: QVO6SZpE5-wQQcYO9_NprGI1eqg.crl (hash: Yk6A/QC2pWb6xnuFdqAKDYkjDBSN+UTPMR1y4q7w8Kc=) 2: 3B83B2F4E30611EFA4B67C52C4F9AE02.roa (hash: /7gtZFsLsyHJNir9Gd/XvdqnjJVrpsqBtRIA/+ab938=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/QVO6SZpE5-wQQcYO9_NprGI1eqg.crl rsync://rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/QVO6SZpE5-wQQcYO9_NprGI1eqg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVO6SZpE5-wQQcYO9_NprGI1eqg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:02:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 392 (0x188) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91423C1, serialNumber=4153BA499A44E7EC1041C60EF7F369AC62357AA8 Validity Not Before: Nov 5 04:02:49 2025 GMT Not After : Nov 12 04:02:49 2025 GMT Subject: CN=690acc69-bc47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:cf:e2:88:44:a3:61:d5:6d:8c:b4:03:35:34: 22:28:c1:bc:92:24:0d:85:3e:64:61:0a:f8:50:0f: f7:51:00:f0:9c:d8:59:d5:8f:f0:06:d2:c5:55:fb: 86:22:ff:38:4f:8c:55:6e:63:d7:d5:0b:a8:e3:26: 29:b1:a2:d7:91:a2:e9:94:5d:cf:4b:b4:23:27:88: d8:7f:82:fb:d0:4c:7c:9d:0e:de:ae:ad:0d:6d:e1: 07:71:b3:58:5a:99:fa:cc:8f:b0:a0:08:3e:06:43: 3e:e7:c0:f1:6d:b7:41:99:54:ea:51:91:41:43:e1: c9:4b:8c:29:78:67:0e:69:5d:fa:d2:cf:71:7a:13: f4:2a:93:1d:4a:d7:94:4e:04:58:a6:ea:44:f9:f8: a4:e8:46:59:6e:f8:20:d6:ce:e2:4e:dc:6b:f0:d9: bc:7e:ba:01:18:1f:e2:40:0e:83:55:1e:fb:20:80: f5:82:82:dd:cd:4e:2f:92:db:ad:8e:75:8f:4a:64: 8c:94:f2:21:62:84:84:52:b1:e8:26:0f:30:74:38: 1b:97:fa:23:1b:e5:ea:ce:63:1d:a6:ff:2b:b8:79: 4b:78:f0:28:50:23:1c:45:ab:55:d6:4d:e8:cf:46: 2a:2d:dd:36:51:57:a2:94:35:2e:99:60:bd:46:43: 46:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:B7:A9:EB:A2:18:25:58:F9:69:89:EF:22:4B:FD:3D:46:0E:05:B4 X509v3 Authority Key Identifier: keyid:41:53:BA:49:9A:44:E7:EC:10:41:C6:0E:F7:F3:69:AC:62:35:7A:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/QVO6SZpE5-wQQcYO9_NprGI1eqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVO6SZpE5-wQQcYO9_NprGI1eqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91423C1/0E0DFA988CCF11EE96F4E65AC4F9AE02/QVO6SZpE5-wQQcYO9_NprGI1eqg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:cd:87:dd:0e:ee:8c:fc:86:47:3f:37:d7:98:a1:36:05:5b: d1:f7:5f:a8:f3:a3:fa:46:ff:20:de:39:a9:6f:cb:c5:04:13: b7:d4:3e:2a:8f:34:d0:a5:46:f5:5c:6b:2d:22:52:88:16:7c: 09:23:0e:70:99:0c:e7:ec:2a:f5:ee:26:1b:60:ad:bc:ba:c5: 36:cc:47:12:fd:12:55:8f:62:84:23:a3:d9:d9:7b:26:af:8c: 4b:ea:72:9a:ca:65:da:67:05:1d:e5:bd:0f:6b:d9:70:ea:b1: 9c:d7:fd:df:fa:81:e7:11:a4:fc:17:c2:5a:bf:ea:99:b2:06: aa:75:67:16:d7:85:93:e5:e0:42:c0:47:cf:29:7a:69:01:4f: d2:b2:65:c2:0c:55:26:16:a7:5e:1f:a9:31:5f:5e:5d:50:10: 94:17:c9:e2:d5:1a:de:a4:07:60:42:fd:74:f7:94:30:24:17: 5a:1c:a7:f3:71:9f:b5:e8:d8:a1:65:5a:cd:01:5c:51:d9:a4: ad:4f:f5:cb:e9:59:10:e5:c8:05:08:ca:79:23:15:47:bb:17: 6e:d3:e4:a5:3e:ef:8d:99:98:74:08:b3:d8:2b:ad:03:be:47: f5:9b:81:06:38:07:64:74:00:13:68:72:b3:60:ed:fe:74:45: 84:42:36:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIzQzExMTAvBgNVBAUTKDQxNTNCQTQ5OUE0NEU3RUMxMDQxQzYwRUY3RjM2OUFD NjIzNTdBQTgwHhcNMjUxMTA1MDQwMjQ5WhcNMjUxMTEyMDQwMjQ5WjAYMRYwFAYD VQQDEw02OTBhY2M2OS1iYzQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2s/iiESjYdVtjLQDNTQiKMG8kiQNhT5kYQr4UA/3UQDwnNhZ1Y/wBtLFVfuG Iv84T4xVbmPX1Quo4yYpsaLXkaLplF3PS7QjJ4jYf4L70Ex8nQ7erq0NbeEHcbNY Wpn6zI+woAg+BkM+58DxbbdBmVTqUZFBQ+HJS4wpeGcOaV360s9xehP0KpMdSteU TgRYpupE+fik6EZZbvgg1s7iTtxr8Nm8froBGB/iQA6DVR77IID1goLdzU4vktut jnWPSmSMlPIhYoSEUrHoJg8wdDgbl/ojG+XqzmMdpv8ruHlLePAoUCMcRatV1k3o z0YqLd02UVeilDUumWC9RkNG2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDe3qeui GCVY+WmJ7yJL/T1GDgW0MB8GA1UdIwQYMBaAFEFTukmaROfsEEHGDvfzaaxiNXqo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjNDMS8wRTBERkE5ODhD Q0YxMUVFOTZGNEU2NUFDNEY5QUUwMi9RVk82U1pwRTUtd1FRY1lPOV9OcHJHSTFl cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FWTzZTWnBFNS13UVFjWU85X05wckdJMWVxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjNDMS8wRTBERkE5ODhDQ0YxMUVFOTZGNEU2NUFDNEY5QUUwMi9RVk82U1pwRTUt d1FRY1lPOV9OcHJHSTFlcWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfzYfdDu6M/IZHPzfXmKE2BVvR91+o86P6Rv8g3jmpb8vFBBO31D4q jzTQpUb1XGstIlKIFnwJIw5wmQzn7Cr17iYbYK28usU2zEcS/RJVj2KEI6PZ2Xsm r4xL6nKaymXaZwUd5b0Pa9lw6rGc1/3f+oHnEaT8F8Jav+qZsgaqdWcW14WT5eBC wEfPKXppAU/SsmXCDFUmFqdeH6kxX15dUBCUF8ni1RrepAdgQv1095QwJBdaHKfz cZ+16NihZVrNAVxR2aStT/XL6VkQ5cgFCMp5IxVHuxdu0+SlPu+NmZh0CLPYK60D vkf1m4EGOAdkdAATaHKzYO3+dEWEQjZ+ -----END CERTIFICATE-----Generated at Wed Nov 5 16:41:33 2025 by rpki-client