$ rpki-client -vvf rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft File: QrsPPBhH5li75BQYSUzonOjjRIg.mft (raw, json) Hash identifier: buvVrKmewpWA4Dcfn1RlT4jnOkaOG/dZ5yoqjxqdA9o= Subject key identifier: 5A:A0:89:A9:94:3E:6D:8A:9A:3B:60:74:97:7C:D8:4D:39:F9:B6:57 Authority key identifier: 42:BB:0F:3C:18:47:E6:58:BB:E4:14:18:49:4C:E8:9C:E8:E3:44:88 Certificate issuer: /CN=A9172506/serialNumber=42BB0F3C1847E658BBE41418494CE89CE8E34488 Certificate serial: DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft Manifest number: DA Signing time: Wed 05 Nov 2025 05:45:56 +0000 Manifest this update: Wed 05 Nov 2025 05:45:56 +0000 Manifest next update: Wed 12 Nov 2025 05:45:56 +0000 Files and hashes: 1: QrsPPBhH5li75BQYSUzonOjjRIg.crl (hash: Qz4RbWpw8CB1GsW9wip2sy6ohWEfl5/dA64+CLUnhGU=) 2: DD75C9BC6EDF11EF90C49A5FC4F9AE02.roa (hash: ribPo1yuX+hIqHtl1PCEzGGO/yQznd+mDINBcQhxFF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.crl rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:45:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172506, serialNumber=42BB0F3C1847E658BBE41418494CE89CE8E34488 Validity Not Before: Nov 5 05:45:56 2025 GMT Not After : Nov 12 05:45:56 2025 GMT Subject: CN=690ae494-04f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:9b:56:49:53:9e:cc:e1:19:ac:3a:e9:df:ca: 11:dd:0f:7a:2c:9a:1e:24:a8:67:04:2e:de:00:21: 13:82:c7:f3:b6:bb:b8:8b:d6:b9:4a:a6:13:8a:a8: da:57:83:f9:11:e5:13:46:50:38:30:07:10:91:6d: 98:04:ed:c2:21:08:59:93:ac:7a:84:ee:43:1c:cd: 1b:7f:12:48:9b:7b:77:a0:cf:fd:89:c9:11:36:4e: df:a7:ad:aa:fe:24:1f:c2:52:ef:72:5e:63:00:63: 75:c0:c4:29:00:7f:3f:d8:a1:65:9f:da:db:dc:5f: 7b:47:3c:e4:90:5b:fd:6d:47:fd:5b:e1:e0:94:2e: 97:b8:c5:58:3f:15:de:bc:1b:c7:42:6c:14:3b:05: 7c:94:41:d6:36:f4:83:b5:c4:56:a2:e9:01:27:72: 72:e3:74:40:e5:5e:ee:71:db:40:a9:1f:d8:6c:8e: 24:84:6f:2d:9d:7a:66:55:7b:51:8a:22:09:ff:d6: 45:95:df:20:2b:d8:b5:08:6d:6e:90:7f:be:9f:02: 3a:5a:41:17:0b:15:fc:57:54:ec:cc:37:2a:2c:98: 14:fb:89:dd:f4:06:10:2b:4a:f4:9f:75:ba:a3:e8: 85:39:09:79:b6:0e:0a:73:55:80:d6:47:29:67:74: a3:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:A0:89:A9:94:3E:6D:8A:9A:3B:60:74:97:7C:D8:4D:39:F9:B6:57 X509v3 Authority Key Identifier: keyid:42:BB:0F:3C:18:47:E6:58:BB:E4:14:18:49:4C:E8:9C:E8:E3:44:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QrsPPBhH5li75BQYSUzonOjjRIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172506/B04908CE6EDE11EFAAC2CB5DC4F9AE02/QrsPPBhH5li75BQYSUzonOjjRIg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:88:7d:f7:3d:b9:99:46:41:31:c3:60:17:f0:4b:6a:93:4e: c1:5b:d3:c8:e1:e8:e8:86:dc:65:5e:16:ce:c8:f6:c0:fa:d5: 12:9c:4e:c0:6c:55:c2:8c:ec:47:27:f4:35:c4:ee:cb:1d:68: 0b:ee:01:5c:7a:b6:60:44:0b:4d:81:79:85:25:fc:ba:7e:61: 1e:79:87:f1:d6:9b:83:70:ea:1a:65:c7:b1:7e:f9:c9:0c:eb: 30:18:da:19:58:e0:76:5b:0e:11:95:85:c3:e6:8a:53:12:27: 52:61:b4:dd:f7:62:9c:ff:24:dc:fc:bb:25:77:a2:25:4d:1c: 5c:e8:3d:e0:6a:9f:32:30:41:a5:a3:bc:c8:8a:be:0f:e7:ce: f5:01:44:21:0d:64:bd:e1:28:23:80:c8:74:13:6b:b7:56:b4: 4e:ce:cc:85:41:2c:8b:b4:f2:dd:f6:96:28:6a:47:1a:d9:b9: 56:c3:ce:c9:cb:58:23:4b:cf:02:1c:e9:56:e3:cf:8e:13:69: 06:fe:f8:2a:8f:a4:48:d1:3d:45:13:eb:7e:09:04:5b:ec:3d: 48:1f:39:bf:e4:b1:c1:a8:d2:60:65:63:1b:8d:83:61:32:5c: 7e:41:28:aa:37:3f:bd:b0:7d:8f:e6:7d:43:14:6d:17:ff:6c: 99:9c:d3:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI1MDYxMTAvBgNVBAUTKDQyQkIwRjNDMTg0N0U2NThCQkU0MTQxODQ5NENFODlD RThFMzQ0ODgwHhcNMjUxMTA1MDU0NTU2WhcNMjUxMTEyMDU0NTU2WjAYMRYwFAYD VQQDEw02OTBhZTQ5NC0wNGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9JtWSVOezOEZrDrp38oR3Q96LJoeJKhnBC7eACETgsfztru4i9a5SqYTiqja V4P5EeUTRlA4MAcQkW2YBO3CIQhZk6x6hO5DHM0bfxJIm3t3oM/9ickRNk7fp62q /iQfwlLvcl5jAGN1wMQpAH8/2KFln9rb3F97RzzkkFv9bUf9W+HglC6XuMVYPxXe vBvHQmwUOwV8lEHWNvSDtcRWoukBJ3Jy43RA5V7ucdtAqR/YbI4khG8tnXpmVXtR iiIJ/9ZFld8gK9i1CG1ukH++nwI6WkEXCxX8V1TszDcqLJgU+4nd9AYQK0r0n3W6 o+iFOQl5tg4Kc1WA1kcpZ3SjgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFqgiamU Pm2KmjtgdJd82E05+bZXMB8GA1UdIwQYMBaAFEK7DzwYR+ZYu+QUGElM6Jzo40SI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjUwNi9CMDQ5MDhDRTZF REUxMUVGQUFDMkNCNURDNEY5QUUwMi9RcnNQUEJoSDVsaTc1QlFZU1V6b25PampS SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Fyc1BQQmhINWxpNzVCUVlTVXpvbk9qalJJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjUwNi9CMDQ5MDhDRTZFREUxMUVGQUFDMkNCNURDNEY5QUUwMi9RcnNQUEJoSDVs aTc1QlFZU1V6b25PampSSWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoiH33PbmZRkExw2AX8Etqk07BW9PI4ejohtxlXhbOyPbA+tUSnE7A bFXCjOxHJ/Q1xO7LHWgL7gFcerZgRAtNgXmFJfy6fmEeeYfx1puDcOoaZcexfvnJ DOswGNoZWOB2Ww4RlYXD5opTEidSYbTd92Kc/yTc/Lsld6IlTRxc6D3gap8yMEGl o7zIir4P5871AUQhDWS94SgjgMh0E2u3VrROzsyFQSyLtPLd9pYoakca2blWw87J y1gjS88CHOlW48+OE2kG/vgqj6RI0T1FE+t+CQRb7D1IHzm/5LHBqNJgZWMbjYNh Mlx+QSiqNz+9sH2P5n1DFG0X/2yZnNNK -----END CERTIFICATE-----Generated at Wed Nov 5 12:21:31 2025 by rpki-client