$ rpki-client -vvf rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft File: QhgvX3GliYTOiFmuYKTKynP-g2E.mft (raw, json) Hash identifier: VabqW6d/K0jXb9dyuCOBU3NgxRymPvq14JBWRfUGPAc= Subject key identifier: 8F:17:0B:B6:6C:D6:21:B4:68:9A:F5:D1:9B:EA:57:12:9B:FF:EB:87 Authority key identifier: 42:18:2F:5F:71:A5:89:84:CE:88:59:AE:60:A4:CA:CA:73:FE:83:61 Certificate issuer: /CN=A916EF5E/serialNumber=42182F5F71A58984CE8859AE60A4CACA73FE8361 Certificate serial: 101F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QhgvX3GliYTOiFmuYKTKynP-g2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft Manifest number: 268C Signing time: Tue 04 Nov 2025 16:46:48 +0000 Manifest this update: Tue 04 Nov 2025 16:46:47 +0000 Manifest next update: Tue 11 Nov 2025 16:46:47 +0000 Files and hashes: 1: QhgvX3GliYTOiFmuYKTKynP-g2E.crl (hash: Jk+925VsDFmB7KSn+bhya8j7k7DafYyBs+DkfsZ6sYI=) 2: 258F8662BBDF11ED8CE89144C4F9AE02.roa (hash: cm97buUsPGrXaIzeG0itGzcsin7x1kihAtonowRM0BA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.crl rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QhgvX3GliYTOiFmuYKTKynP-g2E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:46:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4127 (0x101f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EF5E, serialNumber=42182F5F71A58984CE8859AE60A4CACA73FE8361 Validity Not Before: Nov 4 16:46:47 2025 GMT Not After : Nov 11 16:46:47 2025 GMT Subject: CN=690a2df7-a691 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:88:64:4a:6d:0d:09:2e:ce:94:c7:3e:dc:61: 0d:d1:40:dd:40:f3:aa:07:d2:82:49:9f:68:cb:75: 97:58:af:65:ae:7e:1c:96:25:b8:06:c2:69:06:67: 3b:1c:86:a6:d0:32:cf:54:37:f7:56:eb:79:dd:94: 77:59:c5:9a:64:e5:ee:58:ae:16:4b:2d:a7:87:ae: 68:c9:52:ae:5c:c1:02:ba:e7:e2:e6:9b:08:7d:bf: f9:4f:f9:9c:97:06:31:6d:9f:e2:09:36:44:f0:cb: c4:a7:3b:65:a7:47:da:60:0f:c3:d4:78:86:f7:8a: 9e:c2:95:77:9d:8a:50:a3:2a:da:97:18:8d:3c:99: 8d:46:a3:09:a8:af:6e:0a:87:ec:15:aa:ec:6a:49: 5f:a9:03:0d:10:6f:00:3d:03:68:cf:05:be:d5:8c: d8:03:cf:4a:a5:f0:a3:60:a3:1a:07:d7:d1:f2:e1: e2:d6:7d:24:69:9e:1c:23:74:b9:3c:af:c6:cf:4c: a1:6c:10:a9:ef:ef:06:38:ce:e7:e3:ce:e8:2c:30: e1:cc:2c:3a:32:dc:bf:0f:04:73:12:ca:17:9b:4c: 57:3f:d8:9b:3d:ff:66:4e:d1:d1:3a:4a:65:c1:90: 6d:bd:61:76:52:9c:ce:c8:9a:6f:5b:1a:96:c2:43: c2:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:17:0B:B6:6C:D6:21:B4:68:9A:F5:D1:9B:EA:57:12:9B:FF:EB:87 X509v3 Authority Key Identifier: keyid:42:18:2F:5F:71:A5:89:84:CE:88:59:AE:60:A4:CA:CA:73:FE:83:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QhgvX3GliYTOiFmuYKTKynP-g2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:cc:f4:17:80:77:01:99:c9:4d:20:2b:a6:d0:65:76:0b:23: 80:7d:5b:08:9f:c4:b4:da:44:eb:ec:17:ce:e1:36:82:bc:ca: 1c:a6:c2:aa:30:bd:67:a7:8b:ff:4f:58:21:25:3b:c9:e3:43: 16:8c:a0:a0:4f:74:c2:a3:8a:8e:64:38:0a:42:a1:48:b5:dd: 21:39:d3:7b:7d:04:27:9f:5c:d5:26:3e:d3:88:50:a9:ec:4a: 1f:73:34:a3:1c:ac:fa:a6:8d:d6:07:b9:6f:63:f5:5f:f2:04: 5c:67:6b:05:c2:ab:ba:a6:27:6b:16:b0:dd:39:0e:cb:4e:c9: 1e:6b:2a:ea:9c:6b:b6:63:17:29:9c:aa:a0:fa:b0:ad:30:cc: 12:8d:f4:3b:a3:27:13:44:30:34:c1:06:ce:12:ce:69:a7:3b: ef:1c:9f:55:85:07:dc:f6:a2:d2:e5:a7:59:5d:3b:53:8c:4d: 41:a5:78:48:35:9b:67:3b:ae:1a:5c:c5:11:98:78:4d:72:92: 89:ae:2e:f4:0c:d2:3a:fa:50:0d:e2:02:18:ff:8d:dd:25:be: 05:8e:31:c9:02:05:3d:ef:76:61:d1:eb:e5:d9:05:22:9f:0d: 4f:df:8a:65:a3:be:a7:c4:a7:2f:76:84:48:7f:e3:40:93:ea: 7b:02:8c:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVGNUUxMTAvBgNVBAUTKDQyMTgyRjVGNzFBNTg5ODRDRTg4NTlBRTYwQTRDQUNB NzNGRTgzNjEwHhcNMjUxMTA0MTY0NjQ3WhcNMjUxMTExMTY0NjQ3WjAYMRYwFAYD VQQDEw02OTBhMmRmNy1hNjkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0YhkSm0NCS7OlMc+3GEN0UDdQPOqB9KCSZ9oy3WXWK9lrn4cliW4BsJpBmc7 HIam0DLPVDf3Vut53ZR3WcWaZOXuWK4WSy2nh65oyVKuXMECuufi5psIfb/5T/mc lwYxbZ/iCTZE8MvEpztlp0faYA/D1HiG94qewpV3nYpQoyralxiNPJmNRqMJqK9u CofsFarsaklfqQMNEG8APQNozwW+1YzYA89KpfCjYKMaB9fR8uHi1n0kaZ4cI3S5 PK/Gz0yhbBCp7+8GOM7n487oLDDhzCw6Mty/DwRzEsoXm0xXP9ibPf9mTtHROkpl wZBtvWF2UpzOyJpvWxqWwkPCIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI8XC7Zs 1iG0aJr10ZvqVxKb/+uHMB8GA1UdIwQYMBaAFEIYL19xpYmEzohZrmCkyspz/oNh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUY1RS9GMzhEQ0Y4QTEw NkIxMUU4QjhDQTAyMEJDNEY5QUUwMi9RaGd2WDNHbGlZVE9pRm11WUtUS3luUC1n MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FoZ3ZYM0dsaVlUT2lGbXVZS1RLeW5QLWcyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RUY1RS9GMzhEQ0Y4QTEwNkIxMUU4QjhDQTAyMEJDNEY5QUUwMi9RaGd2WDNHbGlZ VE9pRm11WUtUS3luUC1nMkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEzPQXgHcBmclNICum0GV2CyOAfVsIn8S02kTr7BfO4TaCvMocpsKq ML1np4v/T1ghJTvJ40MWjKCgT3TCo4qOZDgKQqFItd0hOdN7fQQnn1zVJj7TiFCp 7EofczSjHKz6po3WB7lvY/Vf8gRcZ2sFwqu6pidrFrDdOQ7LTskeayrqnGu2Yxcp nKqg+rCtMMwSjfQ7oycTRDA0wQbOEs5ppzvvHJ9VhQfc9qLS5adZXTtTjE1BpXhI NZtnO64aXMURmHhNcpKJri70DNI6+lAN4gIY/43dJb4FjjHJAgU973Zh0evl2QUi nw1P34plo76nxKcvdoRIf+NAk+p7Aowh -----END CERTIFICATE-----Generated at Wed Nov 5 10:08:09 2025 by rpki-client