$ rpki-client -vvf rpki.apnic.net/member_repository/A91814CB/ADEC543A1D7811EA8D301744C4F9AE02/mqU9J74bthSVPDedOeC7xfHBJKc.mft File: mqU9J74bthSVPDedOeC7xfHBJKc.mft (raw, json) Hash identifier: PFaFWGPWYdYt4mzTsddcpBXMKuh9oIbefgTn//BdySw= Subject key identifier: 4C:73:95:6C:B2:CF:FE:FF:E6:19:C2:4E:36:B5:A1:EB:37:E9:58:24 Authority key identifier: 9A:A5:3D:27:BE:1B:B6:14:95:3C:37:9D:39:E0:BB:C5:F1:C1:24:A7 Certificate issuer: /CN=A91814CB/serialNumber=9AA53D27BE1BB614953C379D39E0BBC5F1C124A7 Certificate serial: 0C2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mqU9J74bthSVPDedOeC7xfHBJKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91814CB/ADEC543A1D7811EA8D301744C4F9AE02/mqU9J74bthSVPDedOeC7xfHBJKc.mft Manifest number: 0C23 Signing time: Tue 04 Nov 2025 18:51:51 +0000 Manifest this update: Tue 04 Nov 2025 18:51:51 +0000 Manifest next update: Tue 11 Nov 2025 18:51:51 +0000 Files and hashes: 1: mqU9J74bthSVPDedOeC7xfHBJKc.crl (hash: tDzin2DA6VwRXqjC0cS5IQL3GIdh/MkJY0ZvpABxwrA=) 2: F4F827D6BB6C11EF80151572C4F9AE02.roa (hash: 25pluhiPmnAm9YwUWup9o5G24MQf1uEQRknQIFNX3KA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91814CB/ADEC543A1D7811EA8D301744C4F9AE02/mqU9J74bthSVPDedOeC7xfHBJKc.crl rsync://rpki.apnic.net/member_repository/A91814CB/ADEC543A1D7811EA8D301744C4F9AE02/mqU9J74bthSVPDedOeC7xfHBJKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mqU9J74bthSVPDedOeC7xfHBJKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:51:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3119 (0xc2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91814CB, serialNumber=9AA53D27BE1BB614953C379D39E0BBC5F1C124A7 Validity Not Before: Nov 4 18:51:51 2025 GMT Not After : Nov 11 18:51:51 2025 GMT Subject: CN=690a4b47-fbaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:54:b4:d7:9f:72:c6:0a:35:cb:43:f2:08:07: 47:21:9c:0c:dc:ae:0a:2d:e7:4b:dc:5d:88:4c:01: 32:59:a0:7f:62:23:ba:27:c9:96:e9:d8:54:5c:b8: cd:c3:ec:73:5e:be:21:c8:a5:cc:7a:2a:e2:2f:99: e5:94:b9:83:b5:6c:a4:ec:00:db:67:3a:84:85:17: b6:a3:d5:00:19:e8:fd:2c:29:4d:37:69:34:f4:e7: 10:d7:e0:50:0c:e4:30:2f:10:bb:92:93:2e:cb:7a: 3a:ea:26:74:2d:17:65:3c:a3:0e:17:00:d3:97:d8: ac:0d:c3:01:a5:8f:da:9c:c5:75:08:4f:29:63:05: f8:ab:16:94:16:f3:2c:6f:14:ef:2e:97:3a:3f:c2: a7:01:ec:cf:ed:95:c9:58:63:9c:b7:d0:19:d8:06: f8:3d:0f:83:e1:df:ad:b2:60:8e:8d:b3:94:7e:f6: 2f:d9:f2:51:1e:30:eb:c1:42:41:e8:4e:c0:04:2e: 74:21:b6:6a:a5:d1:92:31:fc:45:49:b4:06:f2:52: 0f:9d:2c:ad:17:84:69:b8:8c:db:3f:32:34:27:64: a9:36:95:d6:5d:b4:65:8e:12:6f:1e:11:7b:34:8e: ea:fa:b8:8d:7c:71:cc:90:28:b5:92:10:5a:f1:e1: b5:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:73:95:6C:B2:CF:FE:FF:E6:19:C2:4E:36:B5:A1:EB:37:E9:58:24 X509v3 Authority Key Identifier: keyid:9A:A5:3D:27:BE:1B:B6:14:95:3C:37:9D:39:E0:BB:C5:F1:C1:24:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91814CB/ADEC543A1D7811EA8D301744C4F9AE02/mqU9J74bthSVPDedOeC7xfHBJKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mqU9J74bthSVPDedOeC7xfHBJKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91814CB/ADEC543A1D7811EA8D301744C4F9AE02/mqU9J74bthSVPDedOeC7xfHBJKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:65:68:ab:03:45:49:3a:e9:bb:6e:ba:30:c6:e1:22:b8:c5: 65:06:33:70:ab:04:13:48:22:07:0f:6b:85:30:3e:78:37:28: 9a:d3:52:26:30:1a:66:be:4c:95:2a:e8:24:1e:68:d4:d5:4c: 02:31:09:9c:51:d4:3d:ed:1d:fc:da:5e:1a:53:16:25:d6:54: f8:c6:b0:69:b2:69:c1:ba:44:fe:da:d7:b2:79:9c:5c:c5:a2: 7f:3c:94:e6:fd:2e:4f:e1:dc:fe:05:a9:1a:75:06:71:7b:cf: 44:ce:f8:04:e4:0d:01:31:c4:6a:e2:19:35:92:0b:bf:e2:0f: 6c:62:f0:50:f9:43:3f:82:fa:7f:08:90:c5:97:7a:1e:9f:75: 4c:02:08:fe:e6:9f:23:57:02:94:da:90:ca:15:0d:95:8c:47: 00:93:22:61:f5:67:c3:88:fa:b9:2b:e5:a2:05:7b:f8:f6:f3: 17:7f:94:1c:58:0e:d0:96:e7:21:af:fb:e5:eb:35:93:67:61: ad:22:48:64:be:35:76:66:66:e1:dd:47:46:83:ee:70:ab:6a: 5c:3d:a2:95:95:82:7c:a9:64:cc:12:40:bd:31:24:41:86:04: 59:da:b2:c8:2a:b6:7e:ce:d6:2c:75:35:d2:35:c2:83:4a:97: a5:71:77:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE0Q0IxMTAvBgNVBAUTKDlBQTUzRDI3QkUxQkI2MTQ5NTNDMzc5RDM5RTBCQkM1 RjFDMTI0QTcwHhcNMjUxMTA0MTg1MTUxWhcNMjUxMTExMTg1MTUxWjAYMRYwFAYD VQQDEw02OTBhNGI0Ny1mYmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2VS0159yxgo1y0PyCAdHIZwM3K4KLedL3F2ITAEyWaB/YiO6J8mW6dhUXLjN w+xzXr4hyKXMeiriL5nllLmDtWyk7ADbZzqEhRe2o9UAGej9LClNN2k09OcQ1+BQ DOQwLxC7kpMuy3o66iZ0LRdlPKMOFwDTl9isDcMBpY/anMV1CE8pYwX4qxaUFvMs bxTvLpc6P8KnAezP7ZXJWGOct9AZ2Ab4PQ+D4d+tsmCOjbOUfvYv2fJRHjDrwUJB 6E7ABC50IbZqpdGSMfxFSbQG8lIPnSytF4RpuIzbPzI0J2SpNpXWXbRljhJvHhF7 NI7q+riNfHHMkCi1khBa8eG1BQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFExzlWyy z/7/5hnCTja1oes36VgkMB8GA1UdIwQYMBaAFJqlPSe+G7YUlTw3nTngu8XxwSSn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTRDQi9BREVDNTQzQTFE NzgxMUVBOEQzMDE3NDRDNEY5QUUwMi9tcVU5Sjc0YnRoU1ZQRGVkT2VDN3hmSEJK S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21xVTlKNzRidGhTVlBEZWRPZUM3eGZIQkpLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTRDQi9BREVDNTQzQTFENzgxMUVBOEQzMDE3NDRDNEY5QUUwMi9tcVU5Sjc0YnRo U1ZQRGVkT2VDN3hmSEJKS2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDFZWirA0VJOum7browxuEiuMVlBjNwqwQTSCIHD2uFMD54Nyia01Im MBpmvkyVKugkHmjU1UwCMQmcUdQ97R382l4aUxYl1lT4xrBpsmnBukT+2teyeZxc xaJ/PJTm/S5P4dz+BakadQZxe89EzvgE5A0BMcRq4hk1kgu/4g9sYvBQ+UM/gvp/ CJDFl3oen3VMAgj+5p8jVwKU2pDKFQ2VjEcAkyJh9WfDiPq5K+WiBXv49vMXf5Qc WA7Qluchr/vl6zWTZ2GtIkhkvjV2Zmbh3UdGg+5wq2pcPaKVlYJ8qWTMEkC9MSRB hgRZ2rLIKrZ+ztYsdTXSNcKDSpelcXei -----END CERTIFICATE-----Generated at Wed Nov 5 13:04:18 2025 by rpki-client