$ rpki-client -vvf rpki.apnic.net/member_repository/A914A553/95C8A3E457A311EAA935C083C4F9AE02/q0w-Na78VbW6NYykBu2WJqQiD9A.mft File: q0w-Na78VbW6NYykBu2WJqQiD9A.mft (raw, json) Hash identifier: y5N9wZ+q9bafAc2Xwm+dc8Pc/l0IGBd5oEOo28jw5Ds= Subject key identifier: FA:5C:88:C4:0B:A5:B1:39:07:D5:87:49:B7:FB:62:AD:9C:5A:29:6D Authority key identifier: AB:4C:3E:35:AE:FC:55:B5:BA:35:8C:A4:06:ED:96:26:A4:22:0F:D0 Certificate issuer: /CN=A914A553/serialNumber=AB4C3E35AEFC55B5BA358CA406ED9626A4220FD0 Certificate serial: 0B0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q0w-Na78VbW6NYykBu2WJqQiD9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A553/95C8A3E457A311EAA935C083C4F9AE02/q0w-Na78VbW6NYykBu2WJqQiD9A.mft Manifest number: 0AFB Signing time: Tue 04 Nov 2025 19:29:57 +0000 Manifest this update: Tue 04 Nov 2025 19:29:57 +0000 Manifest next update: Tue 11 Nov 2025 19:29:57 +0000 Files and hashes: 1: q0w-Na78VbW6NYykBu2WJqQiD9A.crl (hash: cNP3++3Xl293PAKXurcUK56a/EJENRR23ZUF+uH7Dew=) 2: 7E3B7BE6B1E911EC9A0D366FC4F9AE02.roa (hash: Q8JrUCR4e83/VWNJt2ZiQdVnlQqYm7C09//kOXveNys=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A553/95C8A3E457A311EAA935C083C4F9AE02/q0w-Na78VbW6NYykBu2WJqQiD9A.crl rsync://rpki.apnic.net/member_repository/A914A553/95C8A3E457A311EAA935C083C4F9AE02/q0w-Na78VbW6NYykBu2WJqQiD9A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q0w-Na78VbW6NYykBu2WJqQiD9A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:29:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2826 (0xb0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A553, serialNumber=AB4C3E35AEFC55B5BA358CA406ED9626A4220FD0 Validity Not Before: Nov 4 19:29:57 2025 GMT Not After : Nov 11 19:29:57 2025 GMT Subject: CN=690a5435-b63d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:34:23:74:a1:ae:5b:8b:76:37:58:31:fe:42: ed:99:fa:7d:0e:a8:f3:3c:17:23:81:a3:ce:8d:49: 87:d1:7e:c5:12:62:0f:06:48:27:68:9c:1f:b0:56: 49:db:ab:50:d7:bd:37:0e:a9:3b:d3:0c:e2:60:49: cc:19:ad:52:f7:2b:e2:5f:de:5a:a9:79:55:4a:dc: f5:ef:94:eb:8b:2c:ae:12:80:84:13:c8:ed:4f:a9: 07:53:f8:25:9b:88:1d:08:b3:a2:47:b4:ca:2f:db: dd:14:c6:69:12:f3:6a:2b:bf:b9:ef:25:d3:5a:61: 98:5a:de:9a:7d:35:ca:93:da:67:80:e5:7f:1b:4c: c7:de:56:9c:41:9a:6e:09:9f:a5:19:1b:cc:2e:50: f6:4e:c1:d6:bc:09:ed:72:6f:a0:12:6a:49:4d:43: 82:73:31:61:9b:f5:64:d0:3b:bd:fc:90:29:b5:c8: 14:f7:1a:41:da:a6:3f:25:4c:19:dc:f5:2f:55:3c: af:06:af:99:c4:4d:a5:4a:64:1f:52:7c:df:40:41: ec:80:f7:18:4c:70:34:b4:e8:fa:16:bb:92:9d:0f: 26:52:c9:31:9f:bf:74:74:09:97:73:aa:98:f5:25: d5:dc:11:87:b2:27:6b:9c:b2:16:c6:c1:1c:f3:bc: 78:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:5C:88:C4:0B:A5:B1:39:07:D5:87:49:B7:FB:62:AD:9C:5A:29:6D X509v3 Authority Key Identifier: keyid:AB:4C:3E:35:AE:FC:55:B5:BA:35:8C:A4:06:ED:96:26:A4:22:0F:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A553/95C8A3E457A311EAA935C083C4F9AE02/q0w-Na78VbW6NYykBu2WJqQiD9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q0w-Na78VbW6NYykBu2WJqQiD9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A553/95C8A3E457A311EAA935C083C4F9AE02/q0w-Na78VbW6NYykBu2WJqQiD9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:d5:10:4d:7c:57:c4:0d:2c:39:7b:96:66:ac:b1:3f:35:1e: e3:61:a5:7b:5e:51:37:95:d3:9d:90:31:b3:9b:19:10:39:70: 66:1a:e8:6a:1a:f9:39:53:c4:53:1c:a9:d8:7c:41:71:f1:85: c1:85:7e:2a:85:93:20:04:9b:da:78:26:34:72:88:65:f7:f5: 23:d1:d7:64:2d:4d:88:b7:75:9a:ad:58:2f:c7:31:39:f4:83: 39:e8:7a:cb:d1:5f:0b:73:e5:33:c5:d6:4d:19:bc:51:4e:0d: f1:7c:4e:f7:eb:30:16:d2:4a:d8:a1:c2:2d:b3:7e:a2:14:d8: 10:84:58:7f:0a:97:94:e4:cb:e3:ba:28:23:5f:a0:5d:8f:d1: 09:93:c2:ad:2c:04:76:1d:17:f4:a6:15:ea:b3:a2:5f:3e:60: 22:69:7a:ec:aa:65:4e:9e:c8:a9:2d:50:10:69:dd:85:ad:28: 33:46:bf:52:75:b1:2d:4a:cd:06:a5:48:5b:b6:8e:f9:c5:79: 64:7e:39:89:84:92:2b:bf:fb:d7:e2:57:19:f1:a0:02:21:4e: d4:a3:11:3b:37:4a:79:c0:3d:84:7a:ba:66:39:9a:78:fe:ce: 12:69:25:a7:19:91:3e:b2:c3:c5:91:bc:f0:d4:6c:22:d1:bc: cb:1e:e3:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE1NTMxMTAvBgNVBAUTKEFCNEMzRTM1QUVGQzU1QjVCQTM1OENBNDA2RUQ5NjI2 QTQyMjBGRDAwHhcNMjUxMTA0MTkyOTU3WhcNMjUxMTExMTkyOTU3WjAYMRYwFAYD VQQDEw02OTBhNTQzNS1iNjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2DQjdKGuW4t2N1gx/kLtmfp9DqjzPBcjgaPOjUmH0X7FEmIPBkgnaJwfsFZJ 26tQ1703Dqk70wziYEnMGa1S9yviX95aqXlVStz175TriyyuEoCEE8jtT6kHU/gl m4gdCLOiR7TKL9vdFMZpEvNqK7+57yXTWmGYWt6afTXKk9pngOV/G0zH3lacQZpu CZ+lGRvMLlD2TsHWvAntcm+gEmpJTUOCczFhm/Vk0Du9/JAptcgU9xpB2qY/JUwZ 3PUvVTyvBq+ZxE2lSmQfUnzfQEHsgPcYTHA0tOj6FruSnQ8mUskxn790dAmXc6qY 9SXV3BGHsidrnLIWxsEc87x4dQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPpciMQL pbE5B9WHSbf7Yq2cWiltMB8GA1UdIwQYMBaAFKtMPjWu/FW1ujWMpAbtliakIg/Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTU1My85NUM4QTNFNDU3 QTMxMUVBQTkzNUMwODNDNEY5QUUwMi9xMHctTmE3OFZiVzZOWXlrQnUyV0pxUWlE OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Ewdy1OYTc4VmJXNk5ZeWtCdTJXSnFRaUQ5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTU1My85NUM4QTNFNDU3QTMxMUVBQTkzNUMwODNDNEY5QUUwMi9xMHctTmE3OFZi VzZOWXlrQnUyV0pxUWlEOUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+1RBNfFfEDSw5e5ZmrLE/NR7jYaV7XlE3ldOdkDGzmxkQOXBmGuhq Gvk5U8RTHKnYfEFx8YXBhX4qhZMgBJvaeCY0cohl9/Uj0ddkLU2It3WarVgvxzE5 9IM56HrL0V8Lc+UzxdZNGbxRTg3xfE736zAW0krYocIts36iFNgQhFh/CpeU5Mvj uigjX6Bdj9EJk8KtLAR2HRf0phXqs6JfPmAiaXrsqmVOnsipLVAQad2FrSgzRr9S dbEtSs0GpUhbto75xXlkfjmJhJIrv/vX4lcZ8aACIU7UoxE7N0p5wD2EerpmOZp4 /s4SaSWnGZE+ssPFkbzw1Gwi0bzLHuNa -----END CERTIFICATE-----Generated at Wed Nov 5 16:41:34 2025 by rpki-client