$ rpki-client -vvf rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft File: qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft (raw, json) Hash identifier: /fnBVxlkprKXJWLa0IUtCPNfHmFYitTAAboXp4PJ5io= Subject key identifier: AC:BF:44:4E:94:82:07:F0:F1:B7:7C:2A:38:8A:42:3F:DF:2E:0A:1D Authority key identifier: AA:43:6A:AF:C6:88:04:5B:F5:14:88:61:54:6F:A3:FD:CA:98:40:8E Certificate issuer: /CN=A917E4BA/serialNumber=AA436AAFC688045BF5148861546FA3FDCA98408E Certificate serial: 0B23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft Manifest number: 0B15 Signing time: Sun 02 Nov 2025 19:19:31 +0000 Manifest this update: Sun 02 Nov 2025 19:19:30 +0000 Manifest next update: Sun 09 Nov 2025 19:19:30 +0000 Files and hashes: 1: qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl (hash: GfLISBNhHCLjcylgVG/Cr92/cYhpAuqhifJlZ5TK6Ro=) 2: 2512D04C22BE11EC9240097DC4F9AE02.roa (hash: En9dIPtNAsqzocSYMmtm97H1ooZs8MGknLuErJdgZyg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:19:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2851 (0xb23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E4BA, serialNumber=AA436AAFC688045BF5148861546FA3FDCA98408E Validity Not Before: Nov 2 19:19:30 2025 GMT Not After : Nov 9 19:19:30 2025 GMT Subject: CN=6907aec2-30a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:1a:6e:bf:dd:a5:0c:8e:a4:e8:5b:92:f9:53: 55:b9:9a:e6:49:19:27:6a:07:5f:88:4d:ba:88:8a: 0f:f9:f3:55:9a:f7:c4:55:3c:83:47:9a:e7:eb:b1: c3:7d:03:41:40:3d:c5:07:a1:cf:21:9f:46:15:b8: ea:6d:36:7f:26:db:19:b9:4e:67:60:a7:5c:d1:47: 95:3f:29:ec:3e:8f:17:fd:db:e0:4f:61:da:aa:57: 68:38:d8:b2:70:4e:d7:5a:40:59:10:0c:19:62:d5: 56:db:37:9b:14:a8:42:b7:35:4c:10:ec:c1:bd:b4: de:00:cd:46:60:34:3f:1b:18:f8:83:55:69:82:72: 88:21:d5:21:f3:4c:e0:72:db:d6:19:70:76:9a:e5: 86:13:cc:5c:b3:48:ff:55:52:0a:d9:ab:23:88:15: 90:6c:ae:14:63:39:9a:30:69:46:33:0a:a3:0c:8d: 72:cc:59:f3:4a:31:aa:32:ce:cf:64:ea:86:c9:b3: c5:a0:3e:b4:26:36:71:5a:cb:2f:df:76:e0:54:65: c2:18:39:1e:83:8f:cc:55:be:64:f0:bf:e9:4d:50: b2:19:8d:00:b1:4c:27:9d:8d:f5:1e:4f:dc:cf:6b: b9:87:30:f6:b0:1f:d2:a0:3f:99:f1:fa:69:82:4e: fe:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:BF:44:4E:94:82:07:F0:F1:B7:7C:2A:38:8A:42:3F:DF:2E:0A:1D X509v3 Authority Key Identifier: keyid:AA:43:6A:AF:C6:88:04:5B:F5:14:88:61:54:6F:A3:FD:CA:98:40:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:f0:dc:99:27:bd:8d:f9:48:d9:58:a5:f7:df:01:2f:a2:86: 0a:dc:05:ad:fc:b0:2d:24:b4:1b:30:11:e2:cc:98:f2:0c:d0: fb:44:be:f8:97:89:f1:3e:30:29:5b:75:15:58:53:f8:ba:e5: 66:53:1b:e2:74:59:22:b5:cc:0e:38:bd:c3:e3:3b:1a:f3:18: db:e2:79:63:c0:1d:d0:75:67:34:52:0c:ec:47:70:96:3a:d6: 6e:12:07:5d:d9:c0:96:94:b4:3a:40:3e:be:08:a6:cb:40:d4: 43:87:5f:69:87:8c:11:03:1d:29:64:5b:c3:5f:40:d8:d8:1e: 9a:18:18:5f:7c:c7:ae:70:0e:20:32:f8:11:f6:7b:e7:d8:07: 2b:10:99:b8:4d:35:c9:2e:2a:c6:ec:65:05:b6:55:ab:ea:78: 13:17:3c:ec:e6:26:4d:31:1b:ce:c0:04:60:f8:a0:6d:3f:98: 17:14:ae:3a:8d:34:61:37:85:83:7c:f1:7b:01:e2:f8:14:26: 68:58:94:b5:3b:33:51:5a:f1:67:6b:23:fc:1a:27:e2:d9:1a: 4a:a3:62:84:a3:1d:f4:ed:d9:5b:90:99:0b:e3:40:ba:57:1a: 4b:3f:de:e4:82:78:83:fb:09:c8:e5:2f:f3:4c:0b:f6:5f:a0: 55:90:62:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0QkExMTAvBgNVBAUTKEFBNDM2QUFGQzY4ODA0NUJGNTE0ODg2MTU0NkZBM0ZE Q0E5ODQwOEUwHhcNMjUxMTAyMTkxOTMwWhcNMjUxMTA5MTkxOTMwWjAYMRYwFAYD VQQDEw02OTA3YWVjMi0zMGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxpuv92lDI6k6FuS+VNVuZrmSRknagdfiE26iIoP+fNVmvfEVTyDR5rn67HD fQNBQD3FB6HPIZ9GFbjqbTZ/JtsZuU5nYKdc0UeVPynsPo8X/dvgT2HaqldoONiy cE7XWkBZEAwZYtVW2zebFKhCtzVMEOzBvbTeAM1GYDQ/Gxj4g1VpgnKIIdUh80zg ctvWGXB2muWGE8xcs0j/VVIK2asjiBWQbK4UYzmaMGlGMwqjDI1yzFnzSjGqMs7P ZOqGybPFoD60JjZxWssv33bgVGXCGDkeg4/MVb5k8L/pTVCyGY0AsUwnnY31Hk/c z2u5hzD2sB/SoD+Z8fppgk7+5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKy/RE6U ggfw8bd8KjiKQj/fLgodMB8GA1UdIwQYMBaAFKpDaq/GiARb9RSIYVRvo/3KmECO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTRCQS9EMDZCRjMyODUy REMxMUVBODI2MDFCMEZDNEY5QUUwMi9xa05xcjhhSUJGdjFGSWhoVkctal9jcVlR STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FrTnFyOGFJQkZ2MUZJaGhWRy1qX2NxWVFJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTRCQS9EMDZCRjMyODUyREMxMUVBODI2MDFCMEZDNEY5QUUwMi9xa05xcjhhSUJG djFGSWhoVkctal9jcVlRSTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAM8NyZJ72N+UjZWKX33wEvooYK3AWt/LAtJLQbMBHizJjyDND7RL74 l4nxPjApW3UVWFP4uuVmUxvidFkitcwOOL3D4zsa8xjb4nljwB3QdWc0UgzsR3CW OtZuEgdd2cCWlLQ6QD6+CKbLQNRDh19ph4wRAx0pZFvDX0DY2B6aGBhffMeucA4g MvgR9nvn2AcrEJm4TTXJLirG7GUFtlWr6ngTFzzs5iZNMRvOwARg+KBtP5gXFK46 jTRhN4WDfPF7AeL4FCZoWJS1OzNRWvFnayP8Gifi2RpKo2KEox307dlbkJkL40C6 VxpLP97kgniD+wnI5S/zTAv2X6BVkGKU -----END CERTIFICATE-----Generated at Tue Nov 4 19:05:53 2025 by rpki-client