$ rpki-client -vvf rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft File: Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft (raw, json) Hash identifier: UFdyni7Gm66E6a0HOCLcC+UhC89FA9L4J1mXLlEWk/c= Subject key identifier: 29:D0:FB:A5:B3:B5:9A:3D:1B:C2:19:4C:07:E1:B2:FF:C8:3F:FF:21 Authority key identifier: 43:8D:82:3E:C3:34:4B:4B:F1:C9:9E:11:DE:0F:56:F8:42:EF:D9:8E Certificate issuer: /CN=A9199885/serialNumber=438D823EC3344B4BF1C99E11DE0F56F842EFD98E Certificate serial: 2107 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft Manifest number: 55CA Signing time: Sun 02 Nov 2025 14:53:50 +0000 Manifest this update: Sun 02 Nov 2025 14:53:50 +0000 Manifest next update: Sun 09 Nov 2025 14:53:50 +0000 Files and hashes: 1: Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.crl (hash: OA3XkASIxUdhCFfTwTDGxSH4c/KnXpdkIQhOKVBVrT0=) 2: 01804686B48E11EF81F55F3CC4F9AE02.roa (hash: DZexhviKSVjUz0wtVaAtdHsphj1mTjOP+0tLYZS1w4g=) 3: 0211478AB48E11EF81F55F3CC4F9AE02.roa (hash: wW6HtygaJuqa+MnCVL4XlwdsV1VvmruGQrlj4oWNX84=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.crl rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 14:53:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8455 (0x2107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199885, serialNumber=438D823EC3344B4BF1C99E11DE0F56F842EFD98E Validity Not Before: Nov 2 14:53:50 2025 GMT Not After : Nov 9 14:53:50 2025 GMT Subject: CN=6907707e-719c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:d1:0c:a1:eb:a5:24:83:29:77:26:86:ef:50: 39:ac:d6:03:7d:7c:7a:bd:a0:8a:7d:a1:4b:1c:2b: a1:f5:cf:04:a1:7f:4e:0c:7d:e5:df:69:dd:2f:7e: c6:84:02:28:07:30:de:2e:42:40:b2:c8:ce:a9:8e: 07:a3:c9:04:6f:64:3c:04:9a:86:02:e3:9b:a7:ec: 4d:e8:0e:cc:17:4c:af:92:2f:10:63:cf:b5:b7:07: 42:23:db:f9:43:af:f7:8a:f1:6d:a9:3f:62:5d:98: 40:23:f1:48:25:0b:84:76:61:e5:2b:e7:26:00:40: 10:94:39:05:6b:0b:af:c0:ec:5e:d9:c2:de:c9:aa: a3:70:da:65:c6:91:be:a1:f7:8c:37:47:d7:d2:76: 0b:f8:17:a4:c2:d0:5a:86:ae:9d:ac:da:77:14:70: 11:88:93:dd:cf:18:2c:4b:32:af:bb:89:92:b0:9e: 58:18:02:48:72:b4:77:a2:8a:2b:51:63:02:ec:3a: 91:89:c9:a7:83:d2:1e:2f:54:f0:e8:1d:57:44:9a: 5d:a5:bb:87:fb:3f:e9:f0:b3:22:e5:5f:46:37:6e: da:09:eb:97:6d:f1:00:75:ca:88:ff:04:d5:11:a9: 21:04:5e:d0:2e:1b:10:67:06:32:28:12:a2:f8:21: 36:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:D0:FB:A5:B3:B5:9A:3D:1B:C2:19:4C:07:E1:B2:FF:C8:3F:FF:21 X509v3 Authority Key Identifier: keyid:43:8D:82:3E:C3:34:4B:4B:F1:C9:9E:11:DE:0F:56:F8:42:EF:D9:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199885/D050685A1D9811E2AE6B1F8308B02CD2/Q42CPsM0S0vxyZ4R3g9W-ELv2Y4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:fa:d7:bd:7b:f4:f0:79:9a:ef:bf:55:f5:bd:49:0c:d9:f0: e3:48:8a:fd:2b:59:db:5f:28:b2:19:f9:6f:77:60:48:80:0c: fd:53:78:b8:c6:0a:16:a8:56:e2:0d:35:f3:5d:36:4d:65:8e: da:2c:a6:31:3b:42:b2:66:65:0b:d6:25:47:eb:03:9e:6c:4c: 8a:15:6c:89:3f:54:3e:22:32:c7:85:b0:0e:00:78:1f:22:c1: 4e:9e:90:60:17:2c:66:aa:a2:fb:fa:18:3c:82:f7:17:d8:94: 7b:d2:d2:9a:2a:74:1c:62:37:cb:11:67:35:3b:8a:c4:99:76: 44:49:c0:2f:05:c0:fb:ef:bc:ff:47:44:da:aa:13:5f:bd:32: 55:67:10:cf:84:1f:e5:28:cd:fd:ac:a1:2c:00:5c:76:14:40: ee:cf:fc:a2:09:24:46:5d:50:bb:ea:11:b3:2a:48:4d:43:ae: 03:3a:bc:20:da:90:7c:5b:7a:21:e9:d8:2c:04:85:95:97:d1: 75:6b:2c:b8:5a:13:c3:64:df:56:7f:49:26:c8:4d:06:a2:d6: c1:83:2d:04:72:9b:f3:c3:55:d8:72:53:32:06:35:33:8c:c5: 2f:19:ed:22:9b:ff:96:34:f7:0f:eb:18:95:68:ea:a8:81:ed: 89:e9:7b:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4ODUxMTAvBgNVBAUTKDQzOEQ4MjNFQzMzNDRCNEJGMUM5OUUxMURFMEY1NkY4 NDJFRkQ5OEUwHhcNMjUxMTAyMTQ1MzUwWhcNMjUxMTA5MTQ1MzUwWjAYMRYwFAYD VQQDEw02OTA3NzA3ZS03MTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3dEMoeulJIMpdyaG71A5rNYDfXx6vaCKfaFLHCuh9c8EoX9ODH3l32ndL37G hAIoBzDeLkJAssjOqY4Ho8kEb2Q8BJqGAuObp+xN6A7MF0yvki8QY8+1twdCI9v5 Q6/3ivFtqT9iXZhAI/FIJQuEdmHlK+cmAEAQlDkFawuvwOxe2cLeyaqjcNplxpG+ ofeMN0fX0nYL+BekwtBahq6drNp3FHARiJPdzxgsSzKvu4mSsJ5YGAJIcrR3ooor UWMC7DqRicmng9IeL1Tw6B1XRJpdpbuH+z/p8LMi5V9GN27aCeuXbfEAdcqI/wTV EakhBF7QLhsQZwYyKBKi+CE2+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCnQ+6Wz tZo9G8IZTAfhsv/IP/8hMB8GA1UdIwQYMBaAFEONgj7DNEtL8cmeEd4PVvhC79mO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTg4NS9EMDUwNjg1QTFE OTgxMUUyQUU2QjFGODMwOEIwMkNEMi9RNDJDUHNNMFMwdnh5WjRSM2c5Vy1FTHYy WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E0MkNQc00wUzB2eHlaNFIzZzlXLUVMdjJZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTg4NS9EMDUwNjg1QTFEOTgxMUUyQUU2QjFGODMwOEIwMkNEMi9RNDJDUHNNMFMw dnh5WjRSM2c5Vy1FTHYyWTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCR+te9e/TweZrvv1X1vUkM2fDjSIr9K1nbXyiyGflvd2BIgAz9U3i4 xgoWqFbiDTXzXTZNZY7aLKYxO0KyZmUL1iVH6wOebEyKFWyJP1Q+IjLHhbAOAHgf IsFOnpBgFyxmqqL7+hg8gvcX2JR70tKaKnQcYjfLEWc1O4rEmXZEScAvBcD777z/ R0TaqhNfvTJVZxDPhB/lKM39rKEsAFx2FEDuz/yiCSRGXVC76hGzKkhNQ64DOrwg 2pB8W3oh6dgsBIWVl9F1ayy4WhPDZN9Wf0kmyE0GotbBgy0Ecpvzw1XYclMyBjUz jMUvGe0im/+WNPcP6xiVaOqoge2J6Xsp -----END CERTIFICATE-----Generated at Tue Nov 4 02:15:01 2025 by rpki-client