$ rpki-client -vvf rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft File: Qyo25tVwCwvKzOD0FXauaxPK08A.mft (raw, json) Hash identifier: k9SVZNo3TprwjKdeYIBS+Av7VoSwome6Z13ifZBdqyY= Subject key identifier: 3F:F6:1C:6F:FA:19:0C:6A:76:97:80:B7:2A:0C:81:AE:B2:D2:CA:25 Authority key identifier: 43:2A:36:E6:D5:70:0B:0B:CA:CC:E0:F4:15:76:AE:6B:13:CA:D3:C0 Certificate issuer: /CN=A91627B1/serialNumber=432A36E6D5700B0BCACCE0F41576AE6B13CAD3C0 Certificate serial: 0172 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft Manifest number: 0170 Signing time: Wed 05 Nov 2025 03:57:47 +0000 Manifest this update: Wed 05 Nov 2025 03:57:46 +0000 Manifest next update: Wed 12 Nov 2025 03:57:46 +0000 Files and hashes: 1: Qyo25tVwCwvKzOD0FXauaxPK08A.crl (hash: TcqaZ+p3N0ZjG4g8rgbdLs7waVqCUv9vcbvU1OPFNvw=) 2: 3ED152FE82A411EE87690C58C4F9AE02.roa (hash: +vHH0mUjaHjNGLcgyypJ8y/RcZMmCEJZHVNAnsairms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.crl rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:57:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 370 (0x172) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91627B1, serialNumber=432A36E6D5700B0BCACCE0F41576AE6B13CAD3C0 Validity Not Before: Nov 5 03:57:46 2025 GMT Not After : Nov 12 03:57:46 2025 GMT Subject: CN=690acb3a-0546 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a3:a1:d1:c4:6d:b1:b4:cf:b4:4a:6e:40:e0: 4d:67:5e:96:2a:c4:92:1e:05:4c:f7:72:66:97:8a: 94:73:5c:03:9e:76:b1:89:d7:b1:be:63:d1:e6:3b: 35:c1:02:50:46:1b:91:57:91:2a:17:8e:51:5b:7f: 0b:92:05:6e:21:91:90:ca:bc:7c:e6:4c:14:68:d1: 24:41:d4:24:f6:f5:2d:0d:d5:4d:b0:39:6f:78:13: fe:3e:8e:99:c1:87:b0:a6:d0:6d:33:d3:d2:69:7f: 0f:3d:6b:e0:1f:c9:ae:81:3d:ba:b2:c3:fb:73:40: bf:7f:27:0e:65:e3:d2:9c:a3:e5:57:88:f1:e8:33: 6f:2a:cd:9b:97:2c:22:ef:cb:a6:9f:9f:81:50:cb: fa:ab:00:90:22:dd:e4:bb:3c:25:83:6d:cb:f0:a4: 29:ec:5d:d2:7c:3a:91:5c:00:39:33:2b:4d:23:6e: 97:5c:fe:ae:4f:b9:04:45:84:31:e2:fa:f9:8e:ac: 58:03:63:28:2c:8a:f0:30:29:6f:86:26:d5:c2:66: 6b:b8:58:db:6a:72:16:2d:ee:24:c9:8a:97:f2:c4: 0b:26:d1:ec:f5:39:57:39:47:68:b8:ac:96:06:f3: 26:a1:8e:59:c0:d2:b8:b3:54:c0:20:5e:13:b6:5e: e0:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:F6:1C:6F:FA:19:0C:6A:76:97:80:B7:2A:0C:81:AE:B2:D2:CA:25 X509v3 Authority Key Identifier: keyid:43:2A:36:E6:D5:70:0B:0B:CA:CC:E0:F4:15:76:AE:6B:13:CA:D3:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qyo25tVwCwvKzOD0FXauaxPK08A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91627B1/8FAF2BDE82A311EEAC69F456C4F9AE02/Qyo25tVwCwvKzOD0FXauaxPK08A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:cb:3b:c3:3d:51:0d:71:ca:da:d2:4a:6d:1c:3e:c2:ec:40: 86:62:21:01:2a:8c:ad:6e:ea:dd:9b:68:c9:95:e4:a4:4f:0d: 62:f5:ee:a7:29:34:63:94:60:6e:39:4c:1a:ea:88:a4:77:bb: ce:57:b9:3e:95:84:78:dd:e3:a9:92:cd:eb:21:fc:12:06:00: 6c:38:6a:c5:26:6f:d3:f4:33:28:f3:ba:e1:5b:b6:54:d0:fe: 98:28:3a:64:d3:a1:72:a7:bd:1c:e9:52:5a:19:72:fa:aa:0f: ed:89:5b:da:28:5a:29:fc:02:fb:04:35:86:ce:14:46:65:59: 9d:af:92:2c:4e:58:1e:ab:80:89:51:58:7c:54:6c:9c:7b:99: 4b:72:72:3d:04:7a:dd:3f:de:fa:9b:0a:04:64:80:ce:4c:39: 68:72:6d:f4:19:58:03:40:24:2c:84:05:59:a7:1f:2a:a9:b6: 5e:f2:4e:7d:81:e6:a4:7b:11:57:3b:3c:25:f8:83:1b:be:97: 63:6a:a0:86:96:d0:a3:9a:88:f9:89:60:0e:ae:95:c2:0c:1f: 36:ec:89:24:2a:57:4b:d3:7b:30:2f:d4:de:10:62:a8:53:24: 06:87:aa:21:5f:fe:03:01:60:59:0d:3f:51:67:ae:f9:3e:ca: 1f:b0:92:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI3QjExMTAvBgNVBAUTKDQzMkEzNkU2RDU3MDBCMEJDQUNDRTBGNDE1NzZBRTZC MTNDQUQzQzAwHhcNMjUxMTA1MDM1NzQ2WhcNMjUxMTEyMDM1NzQ2WjAYMRYwFAYD VQQDEw02OTBhY2IzYS0wNTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArqOh0cRtsbTPtEpuQOBNZ16WKsSSHgVM93Jml4qUc1wDnnaxidexvmPR5js1 wQJQRhuRV5EqF45RW38LkgVuIZGQyrx85kwUaNEkQdQk9vUtDdVNsDlveBP+Po6Z wYewptBtM9PSaX8PPWvgH8mugT26ssP7c0C/fycOZePSnKPlV4jx6DNvKs2blywi 78umn5+BUMv6qwCQIt3kuzwlg23L8KQp7F3SfDqRXAA5MytNI26XXP6uT7kERYQx 4vr5jqxYA2MoLIrwMClvhibVwmZruFjbanIWLe4kyYqX8sQLJtHs9TlXOUdouKyW BvMmoY5ZwNK4s1TAIF4Ttl7gJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD/2HG/6 GQxqdpeAtyoMga6y0solMB8GA1UdIwQYMBaAFEMqNubVcAsLyszg9BV2rmsTytPA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjdCMS84RkFGMkJERTgy QTMxMUVFQUM2OUY0NTZDNEY5QUUwMi9ReW8yNXRWd0N3dkt6T0QwRlhhdWF4UEsw OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F5bzI1dFZ3Q3d2S3pPRDBGWGF1YXhQSzA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjdCMS84RkFGMkJERTgyQTMxMUVFQUM2OUY0NTZDNEY5QUUwMi9ReW8yNXRWd0N3 dkt6T0QwRlhhdWF4UEswOEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeyzvDPVENccra0kptHD7C7ECGYiEBKoytburdm2jJleSkTw1i9e6n KTRjlGBuOUwa6oikd7vOV7k+lYR43eOpks3rIfwSBgBsOGrFJm/T9DMo87rhW7ZU 0P6YKDpk06Fyp70c6VJaGXL6qg/tiVvaKFop/AL7BDWGzhRGZVmdr5IsTlgeq4CJ UVh8VGyce5lLcnI9BHrdP976mwoEZIDOTDlocm30GVgDQCQshAVZpx8qqbZe8k59 geakexFXOzwl+IMbvpdjaqCGltCjmoj5iWAOrpXCDB827IkkKldL03swL9TeEGKo UyQGh6ohX/4DAWBZDT9RZ675PsofsJKX -----END CERTIFICATE-----Generated at Wed Nov 5 13:36:44 2025 by rpki-client