$ rpki-client -vvf rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/QNg3fKpabquREz6WLv9-IbURPbk.mft File: QNg3fKpabquREz6WLv9-IbURPbk.mft (raw, json) Hash identifier: sw26TM0fZUNAQpg2xqFx2FUuNN1BcxZv2fXOoR8sTQo= Subject key identifier: 12:17:5F:83:9F:F3:28:A7:E1:16:0E:8C:54:73:C9:74:1D:1C:DD:36 Authority key identifier: 40:D8:37:7C:AA:5A:6E:AB:91:13:3E:96:2E:FF:7E:21:B5:11:3D:B9 Certificate issuer: /CN=A9145D4C/serialNumber=40D8377CAA5A6EAB91133E962EFF7E21B5113DB9 Certificate serial: 027D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNg3fKpabquREz6WLv9-IbURPbk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/QNg3fKpabquREz6WLv9-IbURPbk.mft Manifest number: 0274 Signing time: Mon 03 Nov 2025 01:37:04 +0000 Manifest this update: Mon 03 Nov 2025 01:37:03 +0000 Manifest next update: Mon 10 Nov 2025 01:37:03 +0000 Files and hashes: 1: QNg3fKpabquREz6WLv9-IbURPbk.crl (hash: iIVEDK64ejGdjhNgmGboiZkZEPJLQ5Os9XzkRcrxc38=) 2: 5E24BEAADA7C11ED8156D867C4F9AE02.roa (hash: gYrGpBtOa5YIIgPcE2GiFbVbv7Rp37pYIDK6OFW+qv0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/QNg3fKpabquREz6WLv9-IbURPbk.crl rsync://rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/QNg3fKpabquREz6WLv9-IbURPbk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNg3fKpabquREz6WLv9-IbURPbk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:37:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 637 (0x27d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145D4C, serialNumber=40D8377CAA5A6EAB91133E962EFF7E21B5113DB9 Validity Not Before: Nov 3 01:37:03 2025 GMT Not After : Nov 10 01:37:03 2025 GMT Subject: CN=69080740-c692 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:41:d0:54:76:00:d7:96:aa:5c:a3:d1:3b:80: 58:79:77:f5:11:7d:21:18:58:07:50:19:9a:55:32: 56:1b:61:5a:cf:b6:9f:57:16:fb:b0:0d:ca:6f:c3: 66:a1:87:38:4f:2d:eb:7f:28:05:0d:ef:24:cf:ff: 55:17:67:2a:92:b1:49:76:87:96:b7:42:e3:fe:8c: 53:a5:9f:cf:7f:c9:03:d3:78:4f:db:d6:2e:61:c7: 9f:18:cc:68:e3:b7:89:38:e7:40:b0:3d:fe:96:17: 12:d3:c8:63:6f:0d:43:a3:89:6f:ad:06:ca:b1:33: 6e:7c:b9:33:24:33:8a:7d:af:19:ad:36:6c:e9:55: 9c:03:52:fe:24:ee:8b:4d:a4:42:6b:ad:22:3a:df: d6:9d:bd:de:10:4c:d2:5c:e6:dc:70:16:5a:ca:c6: 6d:ca:b5:ef:ca:cd:72:28:c8:cb:07:46:d8:dc:d2: 2b:d9:2c:7e:ac:14:6f:a8:c9:cb:e8:56:77:2a:13: cc:b0:78:30:b6:da:f7:67:96:56:ae:16:6a:14:8d: 21:68:ad:9f:2e:98:72:84:4a:e9:2f:0a:3f:c4:d7: de:47:97:4a:7d:68:93:7f:f5:79:ea:2e:eb:e2:7b: 5d:e9:2e:ce:39:e3:97:84:02:bf:57:e3:ea:6f:eb: d2:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:17:5F:83:9F:F3:28:A7:E1:16:0E:8C:54:73:C9:74:1D:1C:DD:36 X509v3 Authority Key Identifier: keyid:40:D8:37:7C:AA:5A:6E:AB:91:13:3E:96:2E:FF:7E:21:B5:11:3D:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/QNg3fKpabquREz6WLv9-IbURPbk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNg3fKpabquREz6WLv9-IbURPbk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/QNg3fKpabquREz6WLv9-IbURPbk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:65:9b:d6:16:c0:32:d8:3e:d2:78:5f:74:be:cc:61:b9:f1: c4:dd:f9:2a:cc:bf:b6:be:ca:3a:98:d3:e6:7a:a0:11:04:b8: 65:1c:f0:2a:85:88:89:93:70:65:bd:fb:0a:57:8d:72:cf:db: e0:7b:20:4f:c1:68:46:d6:93:55:af:73:f4:92:9d:65:82:f8: 47:6d:bb:c7:c1:15:57:b8:6b:35:19:36:7c:45:cd:ad:3f:17: 02:86:74:9c:db:bb:c8:0c:e6:b1:d4:b1:15:ca:54:52:20:7d: 3e:a1:c7:a1:32:05:fb:33:52:17:af:d2:cf:ef:ce:a0:e3:b2: 64:26:04:52:c2:71:97:f3:9f:0e:06:b9:bf:93:9c:f2:24:4d: 49:85:05:18:e8:6c:28:1a:00:dd:58:77:08:04:3e:42:d1:c3: d1:a9:e9:14:98:9e:d4:a1:e7:e9:20:e8:62:9f:1a:e9:c5:2e: 01:d8:db:36:d4:25:14:2d:87:2e:ca:ec:35:21:09:f4:a2:3a: 54:cf:67:7a:e5:72:da:af:67:2b:d7:41:1e:c9:7f:d2:a3:ce: 42:cd:94:bf:13:a6:9b:70:39:2d:4c:10:f7:f9:57:03:21:09: e2:aa:f4:90:fa:c3:7e:0e:3b:28:62:06:53:f2:e5:87:c2:29: 23:a4:2d:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAn0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVENEMxMTAvBgNVBAUTKDQwRDgzNzdDQUE1QTZFQUI5MTEzM0U5NjJFRkY3RTIx QjUxMTNEQjkwHhcNMjUxMTAzMDEzNzAzWhcNMjUxMTEwMDEzNzAzWjAYMRYwFAYD VQQDEw02OTA4MDc0MC1jNjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt0HQVHYA15aqXKPRO4BYeXf1EX0hGFgHUBmaVTJWG2Faz7afVxb7sA3Kb8Nm oYc4Ty3rfygFDe8kz/9VF2cqkrFJdoeWt0Lj/oxTpZ/Pf8kD03hP29YuYcefGMxo 47eJOOdAsD3+lhcS08hjbw1Do4lvrQbKsTNufLkzJDOKfa8ZrTZs6VWcA1L+JO6L TaRCa60iOt/Wnb3eEEzSXObccBZaysZtyrXvys1yKMjLB0bY3NIr2Sx+rBRvqMnL 6FZ3KhPMsHgwttr3Z5ZWrhZqFI0haK2fLphyhErpLwo/xNfeR5dKfWiTf/V56i7r 4ntd6S7OOeOXhAK/V+Pqb+vSuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBIXX4Of 8yin4RYOjFRzyXQdHN02MB8GA1UdIwQYMBaAFEDYN3yqWm6rkRM+li7/fiG1ET25 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUQ0Qy9GNDIyRkQxMjMy NTgxMUVEQkQxNkQ2MjRDNEY5QUUwMi9RTmczZktwYWJxdVJFejZXTHY5LUliVVJQ YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOZzNmS3BhYnF1UkV6NldMdjktSWJVUlBiay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUQ0Qy9GNDIyRkQxMjMyNTgxMUVEQkQxNkQ2MjRDNEY5QUUwMi9RTmczZktwYWJx dVJFejZXTHY5LUliVVJQYmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPZZvWFsAy2D7SeF90vsxhufHE3fkqzL+2vso6mNPmeqARBLhlHPAq hYiJk3BlvfsKV41yz9vgeyBPwWhG1pNVr3P0kp1lgvhHbbvHwRVXuGs1GTZ8Rc2t PxcChnSc27vIDOax1LEVylRSIH0+ocehMgX7M1IXr9LP786g47JkJgRSwnGX858O Brm/k5zyJE1JhQUY6GwoGgDdWHcIBD5C0cPRqekUmJ7UoefpIOhinxrpxS4B2Ns2 1CUULYcuyuw1IQn0ojpUz2d65XLar2cr10EeyX/So85CzZS/E6abcDktTBD3+VcD IQniqvSQ+sN+DjsoYgZT8uWHwikjpC0U -----END CERTIFICATE-----Generated at Tue Nov 4 19:05:02 2025 by rpki-client