$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft File: -Q4hD858Z6Lysy3hTusFoEsNEOE.mft (raw, json) Hash identifier: uUa1h4uAEHWROsFewRJ8wQYYjHOnmGlzm5Dk44cf1Zg= Subject key identifier: F7:C7:F2:A0:EB:C1:D4:3F:AC:2E:57:6E:FE:97:8F:CA:98:3D:A4:52 Authority key identifier: F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 Certificate issuer: /CN=A91A7369/serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Certificate serial: 019D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft Manifest number: 0199 Signing time: Wed 05 Nov 2025 03:31:30 +0000 Manifest this update: Wed 05 Nov 2025 03:31:30 +0000 Manifest next update: Wed 12 Nov 2025 03:31:30 +0000 Files and hashes: 1: -Q4hD858Z6Lysy3hTusFoEsNEOE.crl (hash: kiu/rSFRqXh7O482iqkaz6MQvCxpA1wlqrtlj+Wd4GY=) 2: A99E5658488011EE8113A766C4F9AE02.roa (hash: NccKQh/awErD0XICha+c3zCJvrDGH6h5P5yVRARZDuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:31:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 413 (0x19d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7369, serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Validity Not Before: Nov 5 03:31:30 2025 GMT Not After : Nov 12 03:31:30 2025 GMT Subject: CN=690ac512-d7f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:9f:3c:b3:9f:a6:1c:c7:b3:b6:34:25:7b:58: a0:9d:c5:f4:ca:9e:2c:6f:b7:b7:04:43:b1:2d:53: c7:bc:25:c9:64:ef:78:9b:bb:d4:a7:a7:e2:ff:0f: 26:ae:b9:ab:ae:e7:24:ab:78:c0:cb:b0:c8:f8:72: 40:d3:b0:ae:29:02:70:7d:c5:f4:da:f1:4d:1b:3c: be:46:2e:9f:fc:9e:e7:07:5b:a0:15:79:b1:6e:e8: 49:91:28:ca:4e:54:8d:5a:40:21:39:21:64:05:82: b7:8f:4d:21:d0:58:1b:dc:88:ca:c6:c5:ad:9f:00: f6:6c:c8:d6:06:dc:64:28:54:86:56:33:86:5c:03: 81:83:b1:0f:69:50:ca:05:2f:27:32:ec:53:59:68: 3d:1d:f8:d4:11:96:72:5b:9b:0e:e0:40:34:45:dd: cd:ef:59:62:82:a1:00:d5:79:e7:d3:49:79:82:bf: 11:f6:54:aa:2e:49:cf:84:dd:04:b2:b5:48:38:08: 3d:23:cb:f6:e2:37:e9:d8:a9:8b:c9:3f:1f:eb:de: 1e:e1:de:90:a9:0a:40:e1:3a:4c:6b:b3:81:af:ff: b8:8a:19:51:44:3e:dc:82:42:eb:43:cb:a3:aa:ed: 99:ab:a0:2a:e0:c9:96:19:15:e5:d6:e6:5b:71:9a: 80:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:C7:F2:A0:EB:C1:D4:3F:AC:2E:57:6E:FE:97:8F:CA:98:3D:A4:52 X509v3 Authority Key Identifier: keyid:F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:31:b9:19:f8:7d:0b:fb:14:f1:fc:f4:53:a5:26:03:7d:d8: 0a:47:e2:c1:4c:04:39:ac:b7:c7:c6:52:ff:2d:91:ac:36:86: 78:67:f1:5e:33:47:29:2a:04:51:d1:0d:2b:04:41:c5:dd:95: 6a:18:c8:15:89:5d:08:ac:d1:b3:30:5d:76:bb:41:ad:b1:8d: 35:9f:cf:c8:fc:b2:99:59:d1:d1:14:7f:33:83:51:ad:da:19: 87:5a:a0:59:a3:2d:6a:e6:3a:69:5f:76:4a:26:e9:3c:07:77: cc:97:24:16:42:32:d2:7b:48:8a:da:5c:b8:d0:83:18:47:c1: 4e:ce:a9:88:3f:bd:e3:26:16:e2:32:e1:53:a3:a9:fe:39:c2: 63:7d:eb:d4:9d:53:3f:42:b9:4a:07:20:77:68:3f:c8:a1:03: c0:41:96:94:db:36:d7:77:08:5f:21:94:72:18:27:8f:7c:18: ed:71:76:f8:52:fb:26:75:c1:aa:90:87:dc:c1:0e:21:5f:73: a2:60:f1:bb:93:9c:93:4a:40:31:0a:44:99:3f:8e:fd:2a:48: b7:10:c6:9c:5c:6d:27:ba:fd:27:fe:ed:8e:09:62:8c:12:ca: 63:80:f3:ec:98:cf:12:e1:22:fc:df:80:3e:85:47:58:89:a7: 25:c4:d0:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTczNjkxMTAvBgNVBAUTKEY5MEUyMTBGQ0U3QzY3QTJGMkIzMkRFMTRFRUIwNUEw NEIwRDEwRTEwHhcNMjUxMTA1MDMzMTMwWhcNMjUxMTEyMDMzMTMwWjAYMRYwFAYD VQQDEw02OTBhYzUxMi1kN2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4J88s5+mHMeztjQle1igncX0yp4sb7e3BEOxLVPHvCXJZO94m7vUp6fi/w8m rrmrruckq3jAy7DI+HJA07CuKQJwfcX02vFNGzy+Ri6f/J7nB1ugFXmxbuhJkSjK TlSNWkAhOSFkBYK3j00h0Fgb3IjKxsWtnwD2bMjWBtxkKFSGVjOGXAOBg7EPaVDK BS8nMuxTWWg9HfjUEZZyW5sO4EA0Rd3N71ligqEA1Xnn00l5gr8R9lSqLknPhN0E srVIOAg9I8v24jfp2KmLyT8f694e4d6QqQpA4TpMa7OBr/+4ihlRRD7cgkLrQ8uj qu2Zq6Aq4MmWGRXl1uZbcZqAsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPfH8qDr wdQ/rC5Xbv6Xj8qYPaRSMB8GA1UdIwQYMBaAFPkOIQ/OfGei8rMt4U7rBaBLDRDh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzM2OS9CMUQ2MTk0MjQ4 N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2THlzeTNoVHVzRm9Fc05F T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1RNGhEODU4WjZMeXN5M2hUdXNGb0VzTkVPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzM2OS9CMUQ2MTk0MjQ4N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2 THlzeTNoVHVzRm9Fc05FT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyMbkZ+H0L+xTx/PRTpSYDfdgKR+LBTAQ5rLfHxlL/LZGsNoZ4Z/Fe M0cpKgRR0Q0rBEHF3ZVqGMgViV0IrNGzMF12u0GtsY01n8/I/LKZWdHRFH8zg1Gt 2hmHWqBZoy1q5jppX3ZKJuk8B3fMlyQWQjLSe0iK2ly40IMYR8FOzqmIP73jJhbi MuFTo6n+OcJjfevUnVM/QrlKByB3aD/IoQPAQZaU2zbXdwhfIZRyGCePfBjtcXb4 UvsmdcGqkIfcwQ4hX3OiYPG7k5yTSkAxCkSZP479Kki3EMacXG0nuv0n/u2OCWKM EspjgPPsmM8S4SL834A+hUdYiaclxNAN -----END CERTIFICATE-----Generated at Wed Nov 5 13:38:02 2025 by rpki-client