$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/qZDaJc9OAbzrfsdcF4YPuUe-CSo.mft File: qZDaJc9OAbzrfsdcF4YPuUe-CSo.mft (raw, json) Hash identifier: iOyUBmKdcilpIEUsZtAI5BuemQrWcyF49Nz7td1iZsE= Subject key identifier: 07:D4:A9:62:BC:55:4A:19:A2:04:23:90:FE:C9:B0:F9:68:E8:5D:C7 Authority key identifier: A9:90:DA:25:CF:4E:01:BC:EB:7E:C7:5C:17:86:0F:B9:47:BE:09:2A Certificate issuer: /CN=A91A1C52/serialNumber=A990DA25CF4E01BCEB7EC75C17860FB947BE092A Certificate serial: 01F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZDaJc9OAbzrfsdcF4YPuUe-CSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/qZDaJc9OAbzrfsdcF4YPuUe-CSo.mft Manifest number: 01ED Signing time: Mon 03 Nov 2025 02:32:20 +0000 Manifest this update: Mon 03 Nov 2025 02:32:20 +0000 Manifest next update: Mon 10 Nov 2025 02:32:20 +0000 Files and hashes: 1: qZDaJc9OAbzrfsdcF4YPuUe-CSo.crl (hash: t1jgqPNC0gBPxwEjl4x+vB5b8jz+ZH65EMOZhpputSI=) 2: A40C03B0D3B511EDA2A9DD7BC4F9AE02.roa (hash: qTpurh8+bWpZzwTVZxTLGeJXujwiEOMw1H0kXdqpaC8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/qZDaJc9OAbzrfsdcF4YPuUe-CSo.crl rsync://rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/qZDaJc9OAbzrfsdcF4YPuUe-CSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZDaJc9OAbzrfsdcF4YPuUe-CSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:32:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 496 (0x1f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1C52, serialNumber=A990DA25CF4E01BCEB7EC75C17860FB947BE092A Validity Not Before: Nov 3 02:32:20 2025 GMT Not After : Nov 10 02:32:20 2025 GMT Subject: CN=69081434-2799 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:58:48:73:6c:3e:36:9a:20:26:8b:72:0b:f1: 7e:e9:5f:76:e6:73:9c:6e:cd:df:06:af:a6:11:28: f1:8c:88:dd:64:9e:ce:3f:ed:6c:8c:7f:fc:69:62: 8a:65:55:a2:97:a2:8c:54:25:7f:23:77:79:7c:1b: 23:e2:59:4a:cb:1b:ea:63:e1:52:54:3a:b7:c2:ea: 9d:2b:38:d1:1a:d7:34:21:00:ea:01:08:f7:0e:78: 24:a4:8a:68:02:11:62:8e:71:c5:7a:7d:a6:79:60: 77:44:30:c7:f7:d6:d1:b0:86:9f:a1:bd:da:18:0c: 3d:0a:72:3e:70:01:7e:dd:2b:01:ad:4d:38:f8:fd: 60:84:0c:7d:be:68:76:fa:28:b3:f7:90:01:22:88: a1:57:75:f9:d1:a7:e4:f7:ec:db:92:c8:b6:1f:32: 03:be:8b:0e:cd:59:9d:8b:17:a9:46:af:c1:70:1c: d9:8a:8e:4b:08:91:b6:e9:e6:17:be:41:d3:06:a8: 57:be:42:e2:2d:dc:d7:fc:ff:53:98:b6:be:6a:f7: 20:f0:48:0e:45:39:e8:18:31:1d:5d:b7:45:5c:76: a9:10:04:2c:4c:b7:ee:71:73:ce:e8:0f:f8:86:cf: 89:b2:d5:14:76:db:b7:7e:9b:86:5a:dc:4e:85:74: 2d:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:D4:A9:62:BC:55:4A:19:A2:04:23:90:FE:C9:B0:F9:68:E8:5D:C7 X509v3 Authority Key Identifier: keyid:A9:90:DA:25:CF:4E:01:BC:EB:7E:C7:5C:17:86:0F:B9:47:BE:09:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/qZDaJc9OAbzrfsdcF4YPuUe-CSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZDaJc9OAbzrfsdcF4YPuUe-CSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/qZDaJc9OAbzrfsdcF4YPuUe-CSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:90:ea:68:bf:39:bd:39:be:f1:77:54:0f:4a:4f:6d:31:e1: 86:fd:2a:74:50:fe:4c:86:72:b4:0c:29:70:0b:0a:26:b4:80: fd:88:f6:88:5f:25:2c:6f:6a:1b:b0:21:4a:34:c3:ca:62:79: f4:32:ba:a8:6e:d3:cf:09:98:9a:26:8f:cb:8f:70:6d:be:53: ce:d6:02:38:9d:0c:40:d4:75:b2:03:09:73:2b:67:c7:24:fa: f5:69:0a:a4:41:01:03:f2:23:b7:0e:9a:4b:aa:66:26:40:9a: 8b:d4:ef:61:ac:c6:53:75:b9:3f:8f:71:c9:53:78:10:4f:91: 45:ef:8e:59:dd:dc:4f:ec:c7:72:e0:23:af:c3:c8:a4:47:b3: 5a:bb:3f:9c:5a:26:61:4e:1f:fe:92:23:1d:2e:f3:b5:da:a4: 60:88:35:c0:14:44:0f:ee:32:31:20:28:f9:38:cd:b8:bf:8e: 52:fe:59:fb:72:53:a9:da:1e:af:b6:a1:28:75:a3:98:b0:6b: eb:1e:13:50:ed:f0:a3:67:fa:f0:33:9a:79:2a:7c:2a:57:31: 9b:67:50:85:41:5c:68:1a:ee:85:92:e5:1c:a9:64:d8:1a:d1: c0:f5:6e:86:68:e5:49:ca:b8:75:0f:10:09:de:b4:33:7f:52: 3c:f1:11:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFDNTIxMTAvBgNVBAUTKEE5OTBEQTI1Q0Y0RTAxQkNFQjdFQzc1QzE3ODYwRkI5 NDdCRTA5MkEwHhcNMjUxMTAzMDIzMjIwWhcNMjUxMTEwMDIzMjIwWjAYMRYwFAYD VQQDEw02OTA4MTQzNC0yNzk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwFhIc2w+NpogJotyC/F+6V925nOcbs3fBq+mESjxjIjdZJ7OP+1sjH/8aWKK ZVWil6KMVCV/I3d5fBsj4llKyxvqY+FSVDq3wuqdKzjRGtc0IQDqAQj3DngkpIpo AhFijnHFen2meWB3RDDH99bRsIafob3aGAw9CnI+cAF+3SsBrU04+P1ghAx9vmh2 +iiz95ABIoihV3X50afk9+zbksi2HzIDvosOzVmdixepRq/BcBzZio5LCJG26eYX vkHTBqhXvkLiLdzX/P9TmLa+avcg8EgORTnoGDEdXbdFXHapEAQsTLfucXPO6A/4 hs+JstUUdtu3fpuGWtxOhXQt3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAfUqWK8 VUoZogQjkP7JsPlo6F3HMB8GA1UdIwQYMBaAFKmQ2iXPTgG8637HXBeGD7lHvgkq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUM1Mi8wRTVEQkZCNEM0 QkMxMUVEODg0MDNBNDhDNEY5QUUwMi9xWkRhSmM5T0FienJmc2RjRjRZUHVVZS1D U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FaRGFKYzlPQWJ6cmZzZGNGNFlQdVVlLUNTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUM1Mi8wRTVEQkZCNEM0QkMxMUVEODg0MDNBNDhDNEY5QUUwMi9xWkRhSmM5T0Fi enJmc2RjRjRZUHVVZS1DU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzkOpovzm9Ob7xd1QPSk9tMeGG/Sp0UP5MhnK0DClwCwomtID9iPaI XyUsb2obsCFKNMPKYnn0MrqobtPPCZiaJo/Lj3BtvlPO1gI4nQxA1HWyAwlzK2fH JPr1aQqkQQED8iO3DppLqmYmQJqL1O9hrMZTdbk/j3HJU3gQT5FF745Z3dxP7Mdy 4COvw8ikR7Nauz+cWiZhTh/+kiMdLvO12qRgiDXAFEQP7jIxICj5OM24v45S/ln7 clOp2h6vtqEodaOYsGvrHhNQ7fCjZ/rwM5p5KnwqVzGbZ1CFQVxoGu6FkuUcqWTY GtHA9W6GaOVJyrh1DxAJ3rQzf1I88RHL -----END CERTIFICATE-----Generated at Tue Nov 4 08:19:22 2025 by rpki-client