$ rpki-client -vvf rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.mft File: qHNyAfpMZPoAVkAi2wb2Dn7izQ0.mft (raw, json) Hash identifier: IvMDYr7SD2AOlzBCdAPziYnP6oH57ISo6/+XOi7kO5s= Subject key identifier: 67:42:C4:71:08:57:9E:68:90:64:BF:8C:CD:67:85:75:A0:EA:15:B0 Authority key identifier: A8:73:72:01:FA:4C:64:FA:00:56:40:22:DB:06:F6:0E:7E:E2:CD:0D Certificate issuer: /CN=A9164164/serialNumber=A8737201FA4C64FA00564022DB06F60E7EE2CD0D Certificate serial: B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.mft Manifest number: B5 Signing time: Mon 03 Nov 2025 06:00:32 +0000 Manifest this update: Mon 03 Nov 2025 06:00:32 +0000 Manifest next update: Mon 10 Nov 2025 06:00:32 +0000 Files and hashes: 1: qHNyAfpMZPoAVkAi2wb2Dn7izQ0.crl (hash: ONmJ86JI/i1vR8Yai8iyM04UshGsx5ZAzkAr9vXtjCo=) 2: F1487C2AA18211EFA2B7E923C4F9AE02.roa (hash: ow0JlSSKtHwrzhAKotnC4Hb7SPL+BmK/kbudjjYhQGA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.crl rsync://rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 182 (0xb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164164, serialNumber=A8737201FA4C64FA00564022DB06F60E7EE2CD0D Validity Not Before: Nov 3 06:00:32 2025 GMT Not After : Nov 10 06:00:32 2025 GMT Subject: CN=69084500-c45f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:6a:31:2d:cb:a9:47:78:af:27:e0:56:25:82: e9:02:4b:3c:5b:6e:dd:6d:42:34:95:34:1d:c5:2f: d0:a5:6e:f5:f0:50:6b:79:0f:c7:61:34:88:e3:bd: cf:98:fa:5b:50:14:c5:b4:b7:34:31:68:f8:96:9b: 94:a3:a5:c0:44:47:cb:9e:64:51:36:cb:f3:e3:30: 05:c3:dd:d1:3f:90:68:98:c1:79:40:47:87:08:4a: 52:d4:26:ad:34:1c:aa:c0:51:4c:14:f7:67:49:ea: bc:0f:62:41:85:9d:da:6e:0f:91:43:52:d4:0e:b7: 3a:20:dc:18:9f:74:8b:19:9e:61:72:7d:4d:48:3c: f7:53:32:0c:47:66:9d:39:a7:ab:96:67:2a:21:2c: 0b:29:d8:06:93:37:19:e1:92:35:3b:58:02:23:d9: f5:94:be:77:97:66:b4:4f:be:7e:19:09:46:da:ac: 4d:c0:66:c8:a2:d6:53:d1:18:f4:01:36:7d:2f:43: 07:10:47:fa:fe:c2:91:dc:d7:b9:2f:4a:9f:58:a2: f1:0c:4a:45:d4:f8:7f:e8:81:8f:86:24:ef:16:80: 90:7e:36:77:44:44:76:60:37:c0:d6:1b:47:e3:5c: ef:54:b9:66:da:17:1e:87:e6:03:3c:93:db:43:40: 57:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:42:C4:71:08:57:9E:68:90:64:BF:8C:CD:67:85:75:A0:EA:15:B0 X509v3 Authority Key Identifier: keyid:A8:73:72:01:FA:4C:64:FA:00:56:40:22:DB:06:F6:0E:7E:E2:CD:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:f5:79:88:77:0a:b4:74:c3:9c:f4:83:34:dc:34:40:81:c8: 7f:26:cf:9d:ab:2d:c7:e7:1a:46:a0:17:f3:25:5b:f1:b2:5a: 4b:25:86:8d:5f:cc:51:5a:ed:86:85:26:66:ba:2b:fc:38:09: f6:f4:f9:d4:dc:0f:b3:4e:d4:af:6f:af:90:9a:83:fc:6b:e3: 80:f2:89:d0:ca:8a:44:17:0c:17:7b:fc:d7:b9:c0:09:95:01: 9a:99:ed:19:9e:cc:06:b7:4a:fc:f6:1b:a8:d9:fe:0c:9b:5e: e3:26:c8:6f:e5:7e:d6:e0:35:89:33:fd:6b:a6:e7:cf:c4:16: ec:e5:33:e3:19:16:14:37:c1:bb:a2:c4:50:59:6e:01:d8:c7: 12:92:66:97:a4:4b:f4:c5:a9:db:af:03:ba:e6:41:c8:52:ac: a4:95:00:97:5d:14:77:c7:17:b6:3d:9c:e1:1f:90:f7:a0:08: d7:2c:a5:b1:30:0f:d5:b1:90:64:72:88:c6:53:dc:a8:90:d3: 01:f1:22:12:ee:71:9a:c3:26:1d:6c:3a:6a:15:ff:7f:91:f7: 1c:2a:6a:06:21:df:1e:d2:53:b2:80:fe:62:4a:25:47:e2:46: 17:0d:ee:cc:e7:0f:a3:87:d3:f0:15:a9:aa:b8:ae:09:80:58: d0:39:50:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQxNjQxMTAvBgNVBAUTKEE4NzM3MjAxRkE0QzY0RkEwMDU2NDAyMkRCMDZGNjBF N0VFMkNEMEQwHhcNMjUxMTAzMDYwMDMyWhcNMjUxMTEwMDYwMDMyWjAYMRYwFAYD VQQDEw02OTA4NDUwMC1jNDVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuGoxLcupR3ivJ+BWJYLpAks8W27dbUI0lTQdxS/QpW718FBreQ/HYTSI473P mPpbUBTFtLc0MWj4lpuUo6XAREfLnmRRNsvz4zAFw93RP5BomMF5QEeHCEpS1Cat NByqwFFMFPdnSeq8D2JBhZ3abg+RQ1LUDrc6INwYn3SLGZ5hcn1NSDz3UzIMR2ad OaerlmcqISwLKdgGkzcZ4ZI1O1gCI9n1lL53l2a0T75+GQlG2qxNwGbIotZT0Rj0 ATZ9L0MHEEf6/sKR3Ne5L0qfWKLxDEpF1Ph/6IGPhiTvFoCQfjZ3RER2YDfA1htH 41zvVLlm2hceh+YDPJPbQ0BXYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGdCxHEI V55okGS/jM1nhXWg6hWwMB8GA1UdIwQYMBaAFKhzcgH6TGT6AFZAItsG9g5+4s0N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDE2NC9BNjhFMjY0RUEx ODIxMUVGOEY0RTE2MjNDNEY5QUUwMi9xSE55QWZwTVpQb0FWa0FpMndiMkRuN2l6 UTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3FITnlBZnBNWlBvQVZrQWkyd2IyRG43aXpRMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDE2NC9BNjhFMjY0RUExODIxMUVGOEY0RTE2MjNDNEY5QUUwMi9xSE55QWZwTVpQ b0FWa0FpMndiMkRuN2l6UTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCw9XmIdwq0dMOc9IM03DRAgch/Js+dqy3H5xpGoBfzJVvxslpLJYaN X8xRWu2GhSZmuiv8OAn29PnU3A+zTtSvb6+QmoP8a+OA8onQyopEFwwXe/zXucAJ lQGame0ZnswGt0r89huo2f4Mm17jJshv5X7W4DWJM/1rpufPxBbs5TPjGRYUN8G7 osRQWW4B2McSkmaXpEv0xanbrwO65kHIUqyklQCXXRR3xxe2PZzhH5D3oAjXLKWx MA/VsZBkcojGU9yokNMB8SIS7nGawyYdbDpqFf9/kfccKmoGId8e0lOygP5iSiVH 4kYXDe7M5w+jh9PwFamquK4JgFjQOVCV -----END CERTIFICATE-----Generated at Tue Nov 4 19:05:12 2025 by rpki-client