$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.mft File: Qp7OGTjMiSSxEQllyc9PlkhgIBg.mft (raw, json) Hash identifier: MC7COgofpQU1MtXFcRn3Yd3sn6bpbJhHPXmV3yUWaIY= Subject key identifier: 2D:1F:1C:23:13:A1:19:D0:0B:21:19:93:3F:9A:9B:95:1F:33:42:F2 Authority key identifier: 42:9E:CE:19:38:CC:89:24:B1:11:09:65:C9:CF:4F:96:48:60:20:18 Certificate issuer: /CN=A914EAE4/serialNumber=429ECE1938CC8924B1110965C9CF4F9648602018 Certificate serial: 1B65 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qp7OGTjMiSSxEQllyc9PlkhgIBg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.mft Manifest number: 1B60 Signing time: Tue 04 Nov 2025 16:23:04 +0000 Manifest this update: Tue 04 Nov 2025 16:23:04 +0000 Manifest next update: Tue 11 Nov 2025 16:23:04 +0000 Files and hashes: 1: Qp7OGTjMiSSxEQllyc9PlkhgIBg.crl (hash: pa0wcJxBPAh4OdeblIZaWoSXrHaoS8wCMWtHhOKh5kU=) 2: 7E1ADD74E00E11EDA7E1B640C4F9AE02.roa (hash: f7v965g9bOSdEznd3YTHpzh8If/rvk4WHQj9sYnabU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.crl rsync://rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qp7OGTjMiSSxEQllyc9PlkhgIBg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:23:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7013 (0x1b65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4, serialNumber=429ECE1938CC8924B1110965C9CF4F9648602018 Validity Not Before: Nov 4 16:23:04 2025 GMT Not After : Nov 11 16:23:04 2025 GMT Subject: CN=690a2868-b98d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:57:7b:bc:68:ce:4b:1a:36:d9:5c:01:79:ba: fa:e4:3a:82:c4:39:ae:b7:ab:e9:63:35:34:e4:27: 58:8e:70:f7:6c:ca:43:b5:cd:48:13:23:3c:3c:4d: 4e:be:cf:9c:32:5d:f6:bf:fd:24:ce:be:c1:eb:0f: 70:d9:fa:6c:a3:7e:b2:af:a8:d7:a0:d7:79:1d:de: 01:43:a3:a0:5d:ec:65:a5:d6:db:62:3b:30:5c:d0: 58:a0:d2:91:dd:f6:0b:21:6f:e9:8e:df:e4:63:5f: 90:5c:66:ef:fb:fd:08:83:3b:0d:c1:bb:5f:1d:31: 1b:4e:1b:de:f5:91:fb:b3:03:78:14:b0:86:c7:14: 0e:29:a4:ed:05:fa:bd:1c:8f:c5:05:31:48:bd:b8: 42:72:df:c9:47:16:cb:8f:b0:6e:f9:52:a8:67:f3: 23:d5:2e:de:75:20:34:e0:0d:95:ca:47:bd:57:47: bc:fc:a6:68:06:c3:2a:a7:82:92:87:2c:31:68:77: 9f:48:e9:29:ba:cc:35:94:c1:e9:51:81:f9:6a:fe: e2:7a:50:6f:63:1b:bf:e5:f6:d3:c0:b5:97:c4:65: 33:cd:c5:e9:db:e8:4b:b4:3d:23:f8:3d:83:2b:52: 48:ac:5a:b2:61:42:52:e9:23:95:f3:25:eb:4b:67: d5:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:1F:1C:23:13:A1:19:D0:0B:21:19:93:3F:9A:9B:95:1F:33:42:F2 X509v3 Authority Key Identifier: keyid:42:9E:CE:19:38:CC:89:24:B1:11:09:65:C9:CF:4F:96:48:60:20:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qp7OGTjMiSSxEQllyc9PlkhgIBg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/5ECC15AA257511E7AC0D172AC4F9AE02/Qp7OGTjMiSSxEQllyc9PlkhgIBg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:e9:ed:33:be:48:63:23:a2:02:95:b4:64:15:68:4c:30:fc: 7e:62:51:bf:a2:5a:d9:c5:bf:f0:99:cd:52:a3:5f:20:70:ed: 9a:15:8a:5d:03:a2:d4:41:eb:de:2d:80:53:50:89:02:09:6e: 07:9e:6e:c6:06:bd:c1:e2:ad:eb:8c:f5:a3:04:1c:79:aa:f9: 12:2d:b5:dc:45:2c:2b:b6:cd:50:3d:de:1f:74:15:bc:e5:37: 9a:b7:35:9a:67:13:9c:02:b3:49:00:95:85:5f:63:72:e1:84: 40:ed:bd:e3:9e:69:fe:37:05:58:0d:65:84:cb:d7:b2:c7:97: 7d:83:53:52:e4:a8:67:67:52:f5:b5:e6:b1:8c:5c:dd:f2:41: 80:67:9b:03:76:14:51:db:e0:9e:99:06:f6:8a:0b:06:2d:ff: ab:2b:91:ff:cd:4f:18:7e:f7:98:e5:fd:67:14:5b:97:e7:a6: e7:23:7e:3c:7a:09:bd:54:da:99:e2:d5:20:a3:85:d1:29:21: 22:9a:42:3c:7d:cd:e0:5b:b1:81:4b:6a:51:3e:9e:3c:80:e4: c2:d9:0f:3b:85:86:07:44:38:83:a2:1a:2a:43:cd:a7:02:f2: 4b:64:e6:42:30:7f:40:19:db:8e:d3:42:27:5b:36:ec:3c:f4: a3:45:ea:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG2UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKDQyOUVDRTE5MzhDQzg5MjRCMTExMDk2NUM5Q0Y0Rjk2 NDg2MDIwMTgwHhcNMjUxMTA0MTYyMzA0WhcNMjUxMTExMTYyMzA0WjAYMRYwFAYD VQQDEw02OTBhMjg2OC1iOThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzFd7vGjOSxo22VwBebr65DqCxDmut6vpYzU05CdYjnD3bMpDtc1IEyM8PE1O vs+cMl32v/0kzr7B6w9w2fpso36yr6jXoNd5Hd4BQ6OgXexlpdbbYjswXNBYoNKR 3fYLIW/pjt/kY1+QXGbv+/0IgzsNwbtfHTEbThve9ZH7swN4FLCGxxQOKaTtBfq9 HI/FBTFIvbhCct/JRxbLj7Bu+VKoZ/Mj1S7edSA04A2Vyke9V0e8/KZoBsMqp4KS hywxaHefSOkpusw1lMHpUYH5av7ielBvYxu/5fbTwLWXxGUzzcXp2+hLtD0j+D2D K1JIrFqyYUJS6SOV8yXrS2fVGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC0fHCMT oRnQCyEZkz+am5UfM0LyMB8GA1UdIwQYMBaAFEKezhk4zIkksREJZcnPT5ZIYCAY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC81RUNDMTVBQTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9RcDdPR1RqTWlTU3hFUWxseWM5UGxraGdJ QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FwN09HVGpNaVNTeEVRbGx5YzlQbGtoZ0lCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUFFNC81RUNDMTVBQTI1NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9RcDdPR1RqTWlT U3hFUWxseWM5UGxraGdJQmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCt6e0zvkhjI6IClbRkFWhMMPx+YlG/olrZxb/wmc1So18gcO2aFYpd A6LUQeveLYBTUIkCCW4Hnm7GBr3B4q3rjPWjBBx5qvkSLbXcRSwrts1QPd4fdBW8 5TeatzWaZxOcArNJAJWFX2Ny4YRA7b3jnmn+NwVYDWWEy9eyx5d9g1NS5KhnZ1L1 teaxjFzd8kGAZ5sDdhRR2+CemQb2igsGLf+rK5H/zU8YfveY5f1nFFuX56bnI348 egm9VNqZ4tUgo4XRKSEimkI8fc3gW7GBS2pRPp48gOTC2Q87hYYHRDiDohoqQ82n AvJLZOZCMH9AGduO00InWzbsPPSjRepM -----END CERTIFICATE-----Generated at Wed Nov 5 02:17:14 2025 by rpki-client