$ rpki-client -vvf rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft File: QIyZnDwewBZElFs0d6nyI061eRw.mft (raw, json) Hash identifier: J+uMgeSmvTkgD9Nae0BtIBq9FKZNLdTC3cn5QPKL0mU= Subject key identifier: 6B:D7:49:44:59:BD:19:E4:D7:EF:72:C5:FB:5A:F8:ED:AD:47:FF:5D Authority key identifier: 40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C Certificate issuer: /CN=A91650A5/serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Certificate serial: 24FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft Manifest number: 24D9 Signing time: Tue 04 Nov 2025 15:51:01 +0000 Manifest this update: Tue 04 Nov 2025 15:51:00 +0000 Manifest next update: Tue 11 Nov 2025 15:51:00 +0000 Files and hashes: 1: QIyZnDwewBZElFs0d6nyI061eRw.crl (hash: j3LG8p/kpcmQnJrZed//6LKcPc/ldHvlM2UWA/EPUu0=) 2: 50A2F64264BC11E8ACC7951EC4F9AE02.roa (hash: mzRK3TSpPRAdSBZvLPRDHoBd646mt2gZoJEdzJuirAk=) 3: 2486E806F0E311EAA1C58D62C4F9AE02.roa (hash: o9TQ5zjWOlGJay3aR5mHzl6v5wxGxk4ue+WpHK/fjik=) 4: ABA9F4B8AF8411EABF9F844DC4F9AE02.roa (hash: 0WRpreCZL7KBHEz4o02SUgtVLz3Ou83Qb1HlkXxl+V4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:51:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9468 (0x24fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91650A5, serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Validity Not Before: Nov 4 15:51:00 2025 GMT Not After : Nov 11 15:51:00 2025 GMT Subject: CN=690a20e4-0862 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2a:40:81:91:d5:c7:0c:f2:01:0e:3e:ec:02: 17:b2:89:f3:d3:eb:d5:65:30:4c:a6:8c:96:46:9d: 0f:44:34:ce:83:f9:fc:27:44:b1:fe:dd:f3:f2:90: 24:e3:ba:c7:a1:36:97:13:06:9d:5a:94:3d:ae:97: 2e:da:a3:c2:8e:2e:c9:fd:fe:ad:a4:37:23:0f:e2: 71:f8:69:b7:77:9f:81:e8:17:8c:de:6e:b3:e0:86: e3:de:76:f3:b2:b3:64:a9:a3:f4:4b:07:d6:10:75: f3:ce:66:f9:d8:0c:dd:7b:55:c4:b0:ae:0d:b1:b8: 30:d8:72:c1:7d:60:72:1a:60:74:13:e8:1c:34:e1: 79:8f:ba:ba:e7:72:6b:ee:32:eb:a5:82:6e:39:80: 5d:72:bf:ac:c8:56:d9:56:89:cc:0a:49:3f:75:5e: a8:f0:37:aa:5c:65:7c:db:72:e1:7c:20:57:ee:90: 96:a2:2c:11:58:95:12:d8:80:22:5b:de:ed:89:df: 7e:ce:e9:c4:bf:c5:94:cf:6a:73:59:a7:fb:b3:83: 4f:76:ac:9b:b0:71:36:66:3f:3d:53:fb:4a:26:3e: ab:1c:e8:40:cc:55:b9:a5:a4:09:6e:68:92:52:c3: 99:ca:a2:0b:78:8b:fb:10:aa:33:60:b5:df:ba:0d: 6f:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:D7:49:44:59:BD:19:E4:D7:EF:72:C5:FB:5A:F8:ED:AD:47:FF:5D X509v3 Authority Key Identifier: keyid:40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:cc:b5:65:c0:d3:2d:67:24:7e:48:11:5e:3f:b0:2a:d1:55: c9:e2:b7:96:c7:e7:75:8c:da:8e:87:a3:17:ed:e9:eb:38:93: a1:35:b2:aa:e9:bb:72:7b:69:a1:e7:da:c7:6e:b0:8c:de:e0: e7:0a:3d:9a:be:a2:1d:98:9c:01:7c:c3:4c:b1:fc:27:c4:1f: 80:0d:49:9c:7d:9e:0e:db:f8:63:4e:78:50:a0:b7:5a:d1:bb: 77:e8:17:a8:c3:31:24:87:d8:04:ca:0f:9d:ab:e7:6f:2f:c4: b5:ad:01:3a:22:18:1c:6c:2b:c8:a4:bc:18:cb:16:46:cb:49: b3:a0:12:79:79:63:81:be:89:86:a3:6d:46:18:84:a8:c7:df: e0:50:bb:bf:2f:79:bc:f0:e5:53:e9:58:6f:31:f8:f3:19:e6: 2f:82:83:11:e3:95:ea:82:36:69:4e:6e:7c:09:69:d6:9c:ec: f0:8d:e7:10:39:c0:ae:ac:64:40:c3:94:7a:f4:89:7c:40:d4: f8:8a:3c:e3:72:66:7d:86:35:44:ef:f2:c0:15:73:4b:e5:c5: ed:c5:1c:79:87:ff:76:bb:dd:d6:9f:1e:fe:3d:ee:b8:70:44: 4c:31:86:6e:54:37:1e:e3:35:22:a5:ef:fb:2a:93:f2:a8:da: 5e:ed:33:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUwQTUxMTAvBgNVBAUTKDQwOEM5OTlDM0MxRUMwMTY0NDk0NUIzNDc3QTlGMjIz NEVCNTc5MUMwHhcNMjUxMTA0MTU1MTAwWhcNMjUxMTExMTU1MTAwWjAYMRYwFAYD VQQDEw02OTBhMjBlNC0wODYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsipAgZHVxwzyAQ4+7AIXsonz0+vVZTBMpoyWRp0PRDTOg/n8J0Sx/t3z8pAk 47rHoTaXEwadWpQ9rpcu2qPCji7J/f6tpDcjD+Jx+Gm3d5+B6BeM3m6z4Ibj3nbz srNkqaP0SwfWEHXzzmb52Azde1XEsK4Nsbgw2HLBfWByGmB0E+gcNOF5j7q653Jr 7jLrpYJuOYBdcr+syFbZVonMCkk/dV6o8DeqXGV823LhfCBX7pCWoiwRWJUS2IAi W97tid9+zunEv8WUz2pzWaf7s4NPdqybsHE2Zj89U/tKJj6rHOhAzFW5paQJbmiS UsOZyqILeIv7EKozYLXfug1vHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGvXSURZ vRnk1+9yxfta+O2tR/9dMB8GA1UdIwQYMBaAFECMmZw8HsAWRJRbNHep8iNOtXkc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTBBNS8xN0RGQjM1QTQ2 RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdCWkVsRnMwZDZueUkwNjFl UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FJeVpuRHdld0JaRWxGczBkNm55STA2MWVSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTBBNS8xN0RGQjM1QTQ2RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdC WkVsRnMwZDZueUkwNjFlUncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCszLVlwNMtZyR+SBFeP7Aq0VXJ4reWx+d1jNqOh6MX7enrOJOhNbKq 6btye2mh59rHbrCM3uDnCj2avqIdmJwBfMNMsfwnxB+ADUmcfZ4O2/hjTnhQoLda 0bt36BeowzEkh9gEyg+dq+dvL8S1rQE6IhgcbCvIpLwYyxZGy0mzoBJ5eWOBvomG o21GGISox9/gULu/L3m88OVT6VhvMfjzGeYvgoMR45XqgjZpTm58CWnWnOzwjecQ OcCurGRAw5R69Il8QNT4ijzjcmZ9hjVE7/LAFXNL5cXtxRx5h/92u93Wnx7+Pe64 cERMMYZuVDce4zUipe/7KpPyqNpe7TPC -----END CERTIFICATE-----Generated at Tue Nov 4 20:21:42 2025 by rpki-client