$ rpki-client -vvf rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.mft File: qXEsy37uAkrriHZ7di4Qk7FA_24.mft (raw, json) Hash identifier: /PxcM043bDgLWokj+F69Yj/IS7w+8cdF5BnUV1z5mmE= Subject key identifier: 17:E0:DC:8D:26:19:E8:DF:07:97:F0:97:0E:20:2A:7F:6B:6B:6A:C8 Authority key identifier: A9:71:2C:CB:7E:EE:02:4A:EB:88:76:7B:76:2E:10:93:B1:40:FF:6E Certificate issuer: /CN=A9148B6A/serialNumber=A9712CCB7EEE024AEB88767B762E1093B140FF6E Certificate serial: 105D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qXEsy37uAkrriHZ7di4Qk7FA_24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.mft Manifest number: 1049 Signing time: Tue 04 Nov 2025 17:29:46 +0000 Manifest this update: Tue 04 Nov 2025 17:29:45 +0000 Manifest next update: Tue 11 Nov 2025 17:29:45 +0000 Files and hashes: 1: qXEsy37uAkrriHZ7di4Qk7FA_24.crl (hash: fiwg/Awmvo4FgU/Jxr4M/UqJ6w57x4ZAb2mTa2EgbLo=) 2: 07FF4ABC5A1011EAA8B1B456C4F9AE02.roa (hash: IUlp+gDqr57RNOajUBGFHWRBVgY+RKfJ4rWS/pMC4Tc=) 3: 1BCA5982656311ECA4E81323C4F9AE02.roa (hash: sZSppAngvswKy+MC+ed/ihAoI4UmVi4rfOBl63CnJSc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.crl rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qXEsy37uAkrriHZ7di4Qk7FA_24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:29:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4189 (0x105d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148B6A, serialNumber=A9712CCB7EEE024AEB88767B762E1093B140FF6E Validity Not Before: Nov 4 17:29:45 2025 GMT Not After : Nov 11 17:29:45 2025 GMT Subject: CN=690a380a-fed0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:eb:be:a9:f9:46:67:95:98:c6:53:f7:27:b8: b1:9d:25:dc:d3:ee:4d:c6:a3:5d:c6:cf:d1:f9:b1: 86:3a:b8:91:c0:cc:ba:bf:6c:8a:f8:21:8f:99:e3: 98:da:4f:ca:33:f7:53:70:b3:55:8f:9b:c2:15:d6: 4d:bb:fc:25:06:be:cf:f0:a4:e8:6d:e1:b2:37:74: 67:22:18:0a:cb:a8:06:f8:9a:f1:f1:ae:2e:2b:7f: fd:6c:74:f8:32:55:49:54:4b:ec:a5:02:7b:96:6c: 00:d1:63:2f:01:c9:d1:39:3d:1a:d7:9a:23:bd:70: 80:78:16:7f:52:4c:c5:40:87:0e:a0:72:d6:bb:89: fa:54:d4:f5:9e:2c:df:cf:f6:e3:ef:ad:f5:bd:2e: e6:fd:2a:63:42:aa:b0:84:1e:80:f1:65:c5:12:e5: 1c:08:88:71:0b:e4:68:d6:28:da:ec:cd:c3:ce:4c: 17:89:92:88:ae:35:44:00:9f:71:16:66:0e:f1:12: 8b:25:9a:ab:5b:7e:57:79:7a:f4:26:7f:a9:44:24: cc:81:90:43:c0:e6:36:df:0c:ae:76:e3:3f:1f:97: 2e:ad:d5:cf:82:7d:45:8b:b4:e8:46:51:42:0e:df: 63:93:fa:84:be:82:2e:97:9b:17:5d:1a:07:7d:b8: c2:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:E0:DC:8D:26:19:E8:DF:07:97:F0:97:0E:20:2A:7F:6B:6B:6A:C8 X509v3 Authority Key Identifier: keyid:A9:71:2C:CB:7E:EE:02:4A:EB:88:76:7B:76:2E:10:93:B1:40:FF:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qXEsy37uAkrriHZ7di4Qk7FA_24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148B6A/0875F4964C7411E997900F55C4F9AE02/qXEsy37uAkrriHZ7di4Qk7FA_24.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:c2:a8:a1:e2:e5:cb:b5:4b:50:98:09:60:d2:b5:8a:ae:e3: 29:f7:a9:cd:6a:da:25:a2:69:7e:68:ed:a6:c1:bd:60:5a:29: 26:d7:fc:6f:74:6a:67:93:4d:24:53:75:6d:1f:0f:13:e2:29: fa:b6:b3:cd:74:bf:2c:9d:5b:04:c8:e0:9b:a7:7a:64:30:8e: a8:0a:aa:9d:be:fc:4a:1e:27:7c:ca:46:4d:cc:8a:04:23:7d: 45:c4:d5:d9:44:51:a1:8d:d7:61:80:08:68:91:1e:c4:22:63: b2:69:e9:83:09:88:56:d6:5b:5d:c5:2c:6e:85:0d:58:9c:40: 8f:0a:1f:32:60:cf:1e:a9:d3:18:3f:78:e2:f5:f0:ba:74:5b: 4d:08:c1:e5:a2:79:9c:48:66:28:15:87:8e:ac:46:89:25:59: 8d:e2:90:7f:22:40:0a:27:2d:76:69:07:e3:43:af:d5:22:94: bd:43:08:95:8b:78:f1:85:50:b7:af:9c:69:c5:10:49:eb:c0: d3:6d:80:25:ed:df:db:5b:8f:a1:6e:5e:8b:a8:d0:87:67:0c: 01:3e:5c:0f:6e:56:c4:75:06:97:ce:f8:ac:b7:92:81:61:c0: 09:e3:85:73:6b:4e:de:4e:12:8a:e5:c8:1f:29:63:04:a1:5a: 5e:ed:7f:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEF0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhCNkExMTAvBgNVBAUTKEE5NzEyQ0NCN0VFRTAyNEFFQjg4NzY3Qjc2MkUxMDkz QjE0MEZGNkUwHhcNMjUxMTA0MTcyOTQ1WhcNMjUxMTExMTcyOTQ1WjAYMRYwFAYD VQQDEw02OTBhMzgwYS1mZWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Ou+qflGZ5WYxlP3J7ixnSXc0+5NxqNdxs/R+bGGOriRwMy6v2yK+CGPmeOY 2k/KM/dTcLNVj5vCFdZNu/wlBr7P8KTobeGyN3RnIhgKy6gG+Jrx8a4uK3/9bHT4 MlVJVEvspQJ7lmwA0WMvAcnROT0a15ojvXCAeBZ/UkzFQIcOoHLWu4n6VNT1nizf z/bj7631vS7m/SpjQqqwhB6A8WXFEuUcCIhxC+Ro1ija7M3DzkwXiZKIrjVEAJ9x FmYO8RKLJZqrW35XeXr0Jn+pRCTMgZBDwOY23wyuduM/H5curdXPgn1Fi7ToRlFC Dt9jk/qEvoIul5sXXRoHfbjC7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBfg3I0m GejfB5fwlw4gKn9ra2rIMB8GA1UdIwQYMBaAFKlxLMt+7gJK64h2e3YuEJOxQP9u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEI2QS8wODc1RjQ5NjRD NzQxMUU5OTc5MDBGNTVDNEY5QUUwMi9xWEVzeTM3dUFrcnJpSFo3ZGk0UWs3RkFf MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FYRXN5Mzd1QWtycmlIWjdkaTRRazdGQV8yNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEI2QS8wODc1RjQ5NjRDNzQxMUU5OTc5MDBGNTVDNEY5QUUwMi9xWEVzeTM3dUFr cnJpSFo3ZGk0UWs3RkFfMjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQwqih4uXLtUtQmAlg0rWKruMp96nNatoloml+aO2mwb1gWikm1/xv dGpnk00kU3VtHw8T4in6trPNdL8snVsEyOCbp3pkMI6oCqqdvvxKHid8ykZNzIoE I31FxNXZRFGhjddhgAhokR7EImOyaemDCYhW1ltdxSxuhQ1YnECPCh8yYM8eqdMY P3ji9fC6dFtNCMHlonmcSGYoFYeOrEaJJVmN4pB/IkAKJy12aQfjQ6/VIpS9QwiV i3jxhVC3r5xpxRBJ68DTbYAl7d/bW4+hbl6LqNCHZwwBPlwPblbEdQaXzvist5KB YcAJ44Vza07eThKK5cgfKWMEoVpe7X/J -----END CERTIFICATE-----Generated at Tue Nov 4 20:23:40 2025 by rpki-client