$ rpki-client -vvf rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft File: QELW5jee2AQkizYN7Zhe9_VlIBE.mft (raw, json) Hash identifier: W7vpFLGYXyl2Mn/Xr8BxzL5HCl2P4ZizCaI/h9dgGcs= Subject key identifier: 9E:37:0D:F6:18:E9:C6:5A:A4:95:2B:C7:F7:A9:D0:5D:1D:6E:77:82 Authority key identifier: 40:42:D6:E6:37:9E:D8:04:24:8B:36:0D:ED:98:5E:F7:F5:65:20:11 Certificate issuer: /CN=A9148465/serialNumber=4042D6E6379ED804248B360DED985EF7F5652011 Certificate serial: 0288 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft Manifest number: 0284 Signing time: Wed 05 Nov 2025 01:43:29 +0000 Manifest this update: Wed 05 Nov 2025 01:43:28 +0000 Manifest next update: Wed 12 Nov 2025 01:43:28 +0000 Files and hashes: 1: QELW5jee2AQkizYN7Zhe9_VlIBE.crl (hash: 1KMVzJOAVqeVAmWIGsRchsjS7KE0vER0hPK+AfhcEE0=) 2: 7777513828C011EDBEC6D287C4F9AE02.roa (hash: KysVMiyZcH0HX0OV6c/BvTG9IGFmIflJ1zJN81z9Xf0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.crl rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:43:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 648 (0x288) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148465, serialNumber=4042D6E6379ED804248B360DED985EF7F5652011 Validity Not Before: Nov 5 01:43:28 2025 GMT Not After : Nov 12 01:43:28 2025 GMT Subject: CN=690aabc0-549e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:46:59:f6:ae:89:ca:93:be:69:7b:b6:9f:a0: 99:87:5b:91:90:dc:1a:fd:22:46:79:b7:34:df:49: 77:29:e2:14:00:8a:a7:b4:70:21:6e:b2:e9:85:97: 8b:b9:7f:04:8b:db:ec:2b:2e:76:11:97:e6:ca:d4: 6c:bb:9a:c7:56:bc:7c:f2:84:c6:f2:f6:e7:6b:93: ad:ee:49:d0:69:ae:68:72:6f:92:a1:0e:95:52:82: 41:5a:be:cd:40:ee:7f:83:90:38:74:7a:d5:99:f1: e3:d9:c4:d0:42:0c:4b:50:30:5c:d9:b6:f2:25:52: 65:7b:1b:f0:89:c7:59:ab:d2:1c:e1:8d:16:ca:3d: 83:e4:61:ea:56:ba:3b:3a:51:1b:1c:81:38:9e:e4: e4:79:e0:10:f3:d0:65:98:81:db:d8:f2:ba:18:40: a2:d5:47:6e:4b:a1:4d:af:cb:72:ac:9b:50:06:3e: 2a:31:6d:99:ab:ff:60:d1:7d:56:6c:ba:a3:5c:09: 49:73:58:7c:ce:c2:9c:91:9a:ac:07:b9:4b:fd:0e: 94:03:2a:ab:62:e0:ae:9e:a6:6f:63:47:c0:9c:ba: 3c:7e:b5:39:47:53:a4:af:02:b5:87:7e:07:f0:5d: 58:12:3b:94:0b:26:a7:68:b2:3d:a1:f4:de:98:33: 05:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:37:0D:F6:18:E9:C6:5A:A4:95:2B:C7:F7:A9:D0:5D:1D:6E:77:82 X509v3 Authority Key Identifier: keyid:40:42:D6:E6:37:9E:D8:04:24:8B:36:0D:ED:98:5E:F7:F5:65:20:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e0:89:57:6d:16:14:93:59:af:44:94:94:cc:4b:de:45:61:16: 03:5d:ff:c6:89:a4:92:d8:2b:74:14:5f:fe:29:77:fe:4e:c9: 34:9f:89:54:b4:bb:2e:49:75:03:3c:9f:b8:8b:e2:cd:7e:e3: 22:83:aa:36:e5:c7:2c:5a:76:17:fc:5e:9a:b4:c4:44:5a:07: ce:88:f2:c3:80:58:0c:9e:ee:97:eb:47:4e:37:4a:9b:07:12: f5:3d:58:6c:64:64:29:25:c0:b0:84:19:e9:f9:5b:45:85:55: 59:de:aa:c8:a9:cb:2e:a4:c8:34:06:fc:ee:60:4f:c0:2b:0d: 53:ab:36:90:82:23:89:27:cb:7c:7c:e9:89:43:11:d3:bb:90: a5:5c:b6:5a:54:6b:2c:40:f7:92:8f:20:db:86:46:e1:c7:34: 48:82:c4:10:95:a8:a8:37:95:ab:4b:80:87:ac:db:bd:2d:21: e2:99:07:70:d5:fc:46:0a:b3:a1:82:c2:85:87:38:7f:78:bc: 86:26:ff:b5:21:b5:e2:75:24:35:b2:8b:17:73:4b:e9:0b:6b: 36:bf:3c:90:75:71:9f:d2:3a:2f:37:8a:39:31:fc:69:a4:43: a4:4e:e5:9c:14:ad:d5:59:4d:67:d9:ed:d5:41:13:f2:5f:13: e5:4b:01:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAogwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg0NjUxMTAvBgNVBAUTKDQwNDJENkU2Mzc5RUQ4MDQyNDhCMzYwREVEOTg1RUY3 RjU2NTIwMTEwHhcNMjUxMTA1MDE0MzI4WhcNMjUxMTEyMDE0MzI4WjAYMRYwFAYD VQQDEw02OTBhYWJjMC01NDllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwUZZ9q6JypO+aXu2n6CZh1uRkNwa/SJGebc030l3KeIUAIqntHAhbrLphZeL uX8Ei9vsKy52EZfmytRsu5rHVrx88oTG8vbna5Ot7knQaa5ocm+SoQ6VUoJBWr7N QO5/g5A4dHrVmfHj2cTQQgxLUDBc2bbyJVJlexvwicdZq9Ic4Y0Wyj2D5GHqVro7 OlEbHIE4nuTkeeAQ89BlmIHb2PK6GECi1UduS6FNr8tyrJtQBj4qMW2Zq/9g0X1W bLqjXAlJc1h8zsKckZqsB7lL/Q6UAyqrYuCunqZvY0fAnLo8frU5R1OkrwK1h34H 8F1YEjuUCyanaLI9ofTemDMF2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ43DfYY 6cZapJUrx/ep0F0dbneCMB8GA1UdIwQYMBaAFEBC1uY3ntgEJIs2De2YXvf1ZSAR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODQ2NS9ENjBGMDI3MjI4 QkIxMUVEQTU5QzMwODFDNEY5QUUwMi9RRUxXNWplZTJBUWtpellON1poZTlfVmxJ QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FFTFc1amVlMkFRa2l6WU43WmhlOV9WbElCRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 ODQ2NS9ENjBGMDI3MjI4QkIxMUVEQTU5QzMwODFDNEY5QUUwMi9RRUxXNWplZTJB UWtpellON1poZTlfVmxJQkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDgiVdtFhSTWa9ElJTMS95FYRYDXf/GiaSS2Ct0FF/+KXf+Tsk0n4lU tLsuSXUDPJ+4i+LNfuMig6o25ccsWnYX/F6atMREWgfOiPLDgFgMnu6X60dON0qb BxL1PVhsZGQpJcCwhBnp+VtFhVVZ3qrIqcsupMg0BvzuYE/AKw1TqzaQgiOJJ8t8 fOmJQxHTu5ClXLZaVGssQPeSjyDbhkbhxzRIgsQQlaioN5WrS4CHrNu9LSHimQdw 1fxGCrOhgsKFhzh/eLyGJv+1IbXidSQ1sosXc0vpC2s2vzyQdXGf0jovN4o5Mfxp pEOkTuWcFK3VWU1n2e3VQRPyXxPlSwHR -----END CERTIFICATE-----Generated at Wed Nov 5 13:34:13 2025 by rpki-client