$ rpki-client -vvf rpki.apnic.net/member_repository/A91536E1/989F3A0A0EA611EBB2672786C4F9AE02/qWaisn_hSTe-NtJ9tfTXaICEfdc.mft File: qWaisn_hSTe-NtJ9tfTXaICEfdc.mft (raw, json) Hash identifier: 8AyzK2dytO4RgWwn4kPQAwaP5NGH2752kIKGSFWbAVg= Subject key identifier: 07:05:AC:C3:91:A3:3F:AE:8B:F7:C5:29:40:36:52:E2:0F:16:FC:4A Authority key identifier: A9:66:A2:B2:7F:E1:49:37:BE:36:D2:7D:B5:F4:D7:68:80:84:7D:D7 Certificate issuer: /CN=A91536E1/serialNumber=A966A2B27FE14937BE36D27DB5F4D76880847DD7 Certificate serial: 07DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qWaisn_hSTe-NtJ9tfTXaICEfdc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91536E1/989F3A0A0EA611EBB2672786C4F9AE02/qWaisn_hSTe-NtJ9tfTXaICEfdc.mft Manifest number: 07D5 Signing time: Sun 02 Nov 2025 21:10:05 +0000 Manifest this update: Sun 02 Nov 2025 21:10:04 +0000 Manifest next update: Sun 09 Nov 2025 21:10:04 +0000 Files and hashes: 1: qWaisn_hSTe-NtJ9tfTXaICEfdc.crl (hash: GTkICkQ6K6rkvdGPOELU8t0SJRxJJ3FkqLU6Y9aE4Ac=) 2: 41C97D600EA811EB8E9A770CC4F9AE02.roa (hash: o8ES5sVXjZZWJ8HjjyGv8mKYMdzoHknglpOG5+B569s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91536E1/989F3A0A0EA611EBB2672786C4F9AE02/qWaisn_hSTe-NtJ9tfTXaICEfdc.crl rsync://rpki.apnic.net/member_repository/A91536E1/989F3A0A0EA611EBB2672786C4F9AE02/qWaisn_hSTe-NtJ9tfTXaICEfdc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qWaisn_hSTe-NtJ9tfTXaICEfdc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:10:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2011 (0x7db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91536E1, serialNumber=A966A2B27FE14937BE36D27DB5F4D76880847DD7 Validity Not Before: Nov 2 21:10:04 2025 GMT Not After : Nov 9 21:10:04 2025 GMT Subject: CN=6907c8ad-7748 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:74:63:a4:56:50:59:ad:22:59:d5:ed:27:b4: be:3d:9a:47:66:6d:a9:0d:92:d7:dd:57:bb:6c:ce: bd:52:14:ad:2a:65:da:11:18:60:5e:bb:f2:41:25: ce:4d:3d:bc:b3:4d:8f:3e:17:c6:34:97:ca:2a:b0: 8e:bb:4c:d2:cd:04:3c:50:3b:e3:3a:f6:c0:37:5e: ed:c7:60:11:bf:01:d9:5e:c2:d7:99:49:09:33:3f: 52:75:34:d6:90:6f:89:54:49:6c:f1:0f:a8:7f:82: f8:5f:c0:48:ba:e6:38:2d:44:0a:d8:b3:47:d2:a9: ec:14:da:84:6b:58:bf:a2:20:9e:48:91:8f:9b:d7: 8b:3c:b0:6e:36:22:fa:ac:e6:e8:d8:08:c0:94:dc: 72:21:93:9a:7d:4b:32:c8:a9:c3:e2:67:6d:10:75: 41:ea:f4:38:bf:24:13:7e:b2:a7:f2:c3:90:4b:8f: 36:6b:6f:d3:62:ee:b3:b8:0e:ac:48:85:44:4c:80: ec:7e:78:7e:dd:b5:9a:04:f0:12:9a:e6:5e:de:8c: 2a:fe:f5:6a:0b:e0:03:ce:6b:27:9b:aa:d9:44:f4: 11:69:9d:b9:21:47:09:b6:2f:36:c0:32:80:f4:aa: fb:5f:94:2f:be:90:aa:78:e2:a6:68:ed:ee:fc:5c: 82:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:05:AC:C3:91:A3:3F:AE:8B:F7:C5:29:40:36:52:E2:0F:16:FC:4A X509v3 Authority Key Identifier: keyid:A9:66:A2:B2:7F:E1:49:37:BE:36:D2:7D:B5:F4:D7:68:80:84:7D:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91536E1/989F3A0A0EA611EBB2672786C4F9AE02/qWaisn_hSTe-NtJ9tfTXaICEfdc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qWaisn_hSTe-NtJ9tfTXaICEfdc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91536E1/989F3A0A0EA611EBB2672786C4F9AE02/qWaisn_hSTe-NtJ9tfTXaICEfdc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:4b:e6:7f:0b:53:b1:5e:e6:4c:d4:ca:be:a1:b7:a7:fd:e6: 4b:03:0a:65:a7:8f:9d:0b:13:da:c9:f0:82:d9:bf:5b:5e:cd: 76:0f:0e:4c:6f:8c:d2:df:3e:65:d6:e7:d1:9b:a2:44:1b:3e: 80:56:45:8c:93:ba:ca:c4:ed:24:b2:bb:06:ed:eb:33:5b:25: 19:b4:e2:be:21:58:83:85:7a:a5:7d:73:fa:cc:0c:ac:37:a2: 6b:ff:bb:4d:92:a5:7e:9f:fa:e3:5a:68:a1:af:df:ff:1d:49: 5c:cd:70:46:1a:1c:b4:ad:c6:d0:30:0f:eb:36:c7:cb:47:2c: 6f:2b:5b:b0:a4:0f:49:f8:97:ca:ac:7a:f6:29:ed:41:56:ce: a6:80:b4:49:1a:5b:15:ca:e1:2d:ab:97:9a:7e:ee:ab:24:73: 9c:a1:e9:3a:f7:ef:b0:c7:c5:39:00:04:6c:80:45:39:2e:89: de:13:14:6b:a2:48:e6:93:4d:bb:ff:ae:46:ba:5a:01:4e:82: 35:ab:08:84:d1:63:90:51:ef:f2:9a:e4:a1:8c:7f:1c:f2:fd: bf:7b:3e:f5:3f:37:94:c6:8b:cb:14:07:93:21:d9:05:72:37: dd:dc:66:c5:fc:67:e0:cf:4b:a9:4e:59:d2:bd:b0:73:e2:ec: b2:53:be:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM2RTExMTAvBgNVBAUTKEE5NjZBMkIyN0ZFMTQ5MzdCRTM2RDI3REI1RjRENzY4 ODA4NDdERDcwHhcNMjUxMTAyMjExMDA0WhcNMjUxMTA5MjExMDA0WjAYMRYwFAYD VQQDEw02OTA3YzhhZC03NzQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu3RjpFZQWa0iWdXtJ7S+PZpHZm2pDZLX3Ve7bM69UhStKmXaERhgXrvyQSXO TT28s02PPhfGNJfKKrCOu0zSzQQ8UDvjOvbAN17tx2ARvwHZXsLXmUkJMz9SdTTW kG+JVEls8Q+of4L4X8BIuuY4LUQK2LNH0qnsFNqEa1i/oiCeSJGPm9eLPLBuNiL6 rObo2AjAlNxyIZOafUsyyKnD4mdtEHVB6vQ4vyQTfrKn8sOQS482a2/TYu6zuA6s SIVETIDsfnh+3bWaBPASmuZe3owq/vVqC+ADzmsnm6rZRPQRaZ25IUcJti82wDKA 9Kr7X5QvvpCqeOKmaO3u/FyCAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAcFrMOR oz+ui/fFKUA2UuIPFvxKMB8GA1UdIwQYMBaAFKlmorJ/4Uk3vjbSfbX012iAhH3X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzZFMS85ODlGM0EwQTBF QTYxMUVCQjI2NzI3ODZDNEY5QUUwMi9xV2Fpc25faFNUZS1OdEo5dGZUWGFJQ0Vm ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FXYWlzbl9oU1RlLU50Sjl0ZlRYYUlDRWZkYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzZFMS85ODlGM0EwQTBFQTYxMUVCQjI2NzI3ODZDNEY5QUUwMi9xV2Fpc25faFNU ZS1OdEo5dGZUWGFJQ0VmZGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsS+Z/C1OxXuZM1Mq+oben/eZLAwplp4+dCxPayfCC2b9bXs12Dw5M b4zS3z5l1ufRm6JEGz6AVkWMk7rKxO0ksrsG7eszWyUZtOK+IViDhXqlfXP6zAys N6Jr/7tNkqV+n/rjWmihr9//HUlczXBGGhy0rcbQMA/rNsfLRyxvK1uwpA9J+JfK rHr2Ke1BVs6mgLRJGlsVyuEtq5eafu6rJHOcoek69++wx8U5AARsgEU5LoneExRr okjmk027/65GuloBToI1qwiE0WOQUe/ymuShjH8c8v2/ez71PzeUxovLFAeTIdkF cjfd3GbF/Gfgz0upTlnSvbBz4uyyU74R -----END CERTIFICATE-----Generated at Tue Nov 4 19:06:01 2025 by rpki-client