$ rpki-client -vvf rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/qI7iP_jXCCjO28cB54yAdH_8Eco.mft File: qI7iP_jXCCjO28cB54yAdH_8Eco.mft (raw, json) Hash identifier: 1VltFLa8dIxaXLPRbN/BWu4+VGJycPbcgS2AclquUqE= Subject key identifier: C7:43:AA:0F:70:0D:9C:D4:EF:22:77:AC:D9:7A:51:48:8E:C5:3E:34 Authority key identifier: A8:8E:E2:3F:F8:D7:08:28:CE:DB:C7:01:E7:8C:80:74:7F:FC:11:CA Certificate issuer: /CN=A9188A46/serialNumber=A88EE23FF8D70828CEDBC701E78C80747FFC11CA Certificate serial: 98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qI7iP_jXCCjO28cB54yAdH_8Eco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/qI7iP_jXCCjO28cB54yAdH_8Eco.mft Manifest number: 94 Signing time: Wed 05 Nov 2025 06:41:46 +0000 Manifest this update: Wed 05 Nov 2025 06:41:45 +0000 Manifest next update: Wed 12 Nov 2025 06:41:45 +0000 Files and hashes: 1: qI7iP_jXCCjO28cB54yAdH_8Eco.crl (hash: 9kEs/F+WAHyGgeB4dpmRtGurBAwk9SqPDDzJQXRPh5k=) 2: 31F9C990668B11F0B10A9677C4F9AE02.roa (hash: K71+YfyZb/sq1ejJDvO1hCnjvjzaiRU1ev/4lLqwtW0=) 3: 1BE631B0668C11F092BB0479C4F9AE02.roa (hash: 889zGZBsMfgV1bTIc5AsOgt3rk6bmVAUBCLPcamrp9o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/qI7iP_jXCCjO28cB54yAdH_8Eco.crl rsync://rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/qI7iP_jXCCjO28cB54yAdH_8Eco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qI7iP_jXCCjO28cB54yAdH_8Eco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:41:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 152 (0x98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188A46, serialNumber=A88EE23FF8D70828CEDBC701E78C80747FFC11CA Validity Not Before: Nov 5 06:41:45 2025 GMT Not After : Nov 12 06:41:45 2025 GMT Subject: CN=690af1aa-f38b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:39:cf:27:a2:c7:b3:d2:6a:fa:a9:3a:f0:6a: 0e:0f:70:a9:45:fd:c7:02:83:40:ec:71:9b:c9:f2: 1b:29:bb:05:7b:c5:76:23:9e:02:d9:b3:ac:6a:77: 29:25:38:86:0c:6f:79:62:25:0a:ee:48:eb:1e:48: b3:46:3b:bd:3d:cf:4a:cc:12:ae:bf:f8:22:00:98: 40:13:c8:d3:e3:53:6c:d7:ed:75:02:0d:a6:c4:c6: 73:d4:1f:58:79:2b:97:78:1c:e0:39:bf:80:25:d4: 86:83:3d:b6:8a:82:3e:5b:33:53:09:f5:97:7a:9c: aa:58:06:57:21:01:95:1e:a4:5b:1e:6e:f9:76:26: df:37:20:56:1c:2b:31:f6:bb:ed:e9:62:e5:1a:2b: ea:3d:dd:40:80:d8:eb:3b:83:4a:e2:bf:ae:ea:9c: c6:de:de:97:09:ba:ce:a1:d2:16:92:aa:00:3f:ee: 3b:ff:c6:2f:28:11:27:22:1c:2b:d4:09:fb:2e:eb: 73:35:14:a8:de:c8:c8:2a:c1:ae:01:13:ea:7c:9d: 06:1f:a6:30:6b:96:30:d1:c6:34:36:e6:c8:75:9e: c5:e5:af:b9:80:2b:51:d6:7a:63:36:f8:7b:7c:64: 0d:56:c4:80:96:61:c1:ee:df:f3:c3:01:18:cc:2e: 34:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:43:AA:0F:70:0D:9C:D4:EF:22:77:AC:D9:7A:51:48:8E:C5:3E:34 X509v3 Authority Key Identifier: keyid:A8:8E:E2:3F:F8:D7:08:28:CE:DB:C7:01:E7:8C:80:74:7F:FC:11:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/qI7iP_jXCCjO28cB54yAdH_8Eco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qI7iP_jXCCjO28cB54yAdH_8Eco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188A46/D64E5A7EDC8411EFB908503BC4F9AE02/qI7iP_jXCCjO28cB54yAdH_8Eco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:bc:30:eb:c3:4b:17:1a:5f:f2:28:d5:b1:c6:56:19:89:b1: b0:f4:8f:74:01:15:63:15:4e:0b:7d:d9:24:5c:81:a4:b2:cd: 15:52:25:6e:e3:aa:53:c3:1b:eb:a2:58:11:1e:71:67:87:11: de:a4:a6:45:8f:ca:e1:bb:71:7e:dc:f7:8b:97:fe:04:5c:76: c4:29:a1:e2:a9:55:6e:41:db:8e:81:ed:89:cb:3a:88:62:6f: 5b:7f:fc:07:14:93:7a:2b:47:e3:65:2d:80:73:2f:98:94:24: 23:b7:72:f6:7b:2c:b9:97:8b:10:6f:63:18:a2:af:a6:3d:fc: f3:c4:c6:5e:df:19:47:14:53:ce:83:bc:16:56:13:0f:ae:e2: d8:57:63:89:9b:49:de:ce:92:93:e5:30:fb:7c:d6:8d:80:d9: 05:41:0b:c0:d1:97:63:9c:8f:78:e8:f0:d8:87:ae:ec:fb:57: 9e:5c:dd:41:64:d7:f4:0f:88:da:b5:4b:aa:bf:60:36:4c:7f: 81:31:bd:72:34:e1:7d:cd:0b:ee:fe:11:06:6d:d6:25:3b:d4: fd:b2:d8:53:fa:43:4c:67:ed:77:d4:34:4e:62:5e:87:25:79: 42:cc:ff:bc:d5:4a:68:e5:75:1a:5d:7e:4e:ee:17:55:83:01: 7b:c2:67:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODhBNDYxMTAvBgNVBAUTKEE4OEVFMjNGRjhENzA4MjhDRURCQzcwMUU3OEM4MDc0 N0ZGQzExQ0EwHhcNMjUxMTA1MDY0MTQ1WhcNMjUxMTEyMDY0MTQ1WjAYMRYwFAYD VQQDEw02OTBhZjFhYS1mMzhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1jnPJ6LHs9Jq+qk68GoOD3CpRf3HAoNA7HGbyfIbKbsFe8V2I54C2bOsancp JTiGDG95YiUK7kjrHkizRju9Pc9KzBKuv/giAJhAE8jT41Ns1+11Ag2mxMZz1B9Y eSuXeBzgOb+AJdSGgz22ioI+WzNTCfWXepyqWAZXIQGVHqRbHm75dibfNyBWHCsx 9rvt6WLlGivqPd1AgNjrO4NK4r+u6pzG3t6XCbrOodIWkqoAP+47/8YvKBEnIhwr 1An7LutzNRSo3sjIKsGuARPqfJ0GH6Ywa5Yw0cY0NubIdZ7F5a+5gCtR1npjNvh7 fGQNVsSAlmHB7t/zwwEYzC40VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMdDqg9w DZzU7yJ3rNl6UUiOxT40MB8GA1UdIwQYMBaAFKiO4j/41wgoztvHAeeMgHR//BHK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OEE0Ni9ENjRFNUE3RURD ODQxMUVGQjkwODUwM0JDNEY5QUUwMi9xSTdpUF9qWENDak8yOGNCNTR5QWRIXzhF Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FJN2lQX2pYQ0NqTzI4Y0I1NHlBZEhfOEVjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OEE0Ni9ENjRFNUE3RURDODQxMUVGQjkwODUwM0JDNEY5QUUwMi9xSTdpUF9qWEND ak8yOGNCNTR5QWRIXzhFY28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBvDDrw0sXGl/yKNWxxlYZibGw9I90ARVjFU4LfdkkXIGkss0VUiVu 46pTwxvrolgRHnFnhxHepKZFj8rhu3F+3PeLl/4EXHbEKaHiqVVuQduOge2JyzqI Ym9bf/wHFJN6K0fjZS2Acy+YlCQjt3L2eyy5l4sQb2MYoq+mPfzzxMZe3xlHFFPO g7wWVhMPruLYV2OJm0nezpKT5TD7fNaNgNkFQQvA0ZdjnI946PDYh67s+1eeXN1B ZNf0D4jatUuqv2A2TH+BMb1yNOF9zQvu/hEGbdYlO9T9sthT+kNMZ+131DROYl6H JXlCzP+81Upo5XUaXX5O7hdVgwF7wmd/ -----END CERTIFICATE-----Generated at Wed Nov 5 10:07:50 2025 by rpki-client