$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft File: QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft (raw, json) Hash identifier: y4ilH1CE0KoHIZsyC0ZcAGwa/nndwO0DBFZdpqaFWHw= Subject key identifier: B3:37:CE:79:D0:40:D2:B4:3E:E6:06:AB:82:B0:F3:DD:88:16:A5:4B Authority key identifier: 40:B5:5C:1A:C7:40:4C:C0:5F:17:76:3A:99:BB:B2:38:9B:D2:EA:BE Certificate issuer: /CN=A91ADD64/serialNumber=40B55C1AC7404CC05F17763A99BBB2389BD2EABE Certificate serial: 0135 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLVcGsdATMBfF3Y6mbuyOJvS6r4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft Manifest number: 0125 Signing time: Mon 03 Nov 2025 04:51:46 +0000 Manifest this update: Mon 03 Nov 2025 04:51:45 +0000 Manifest next update: Mon 10 Nov 2025 04:51:45 +0000 Files and hashes: 1: QLVcGsdATMBfF3Y6mbuyOJvS6r4.crl (hash: GSiNmnZ2Gck4FlzZJlsxCz6iJ9ZLTcN4Mdl5NObcHpc=) 2: 8B0E94087E7711F0825F7E6BC4F9AE02.roa (hash: VGNr+wy397+x+eo2u5nezP4JupOw3/BZyZCNhIT48y4=) 3: 47E37F2AAB1A11F096B0EC5FC4F9AE02.roa (hash: f31wkh4SmRezq8K+eaS7YGeeme+WhDVB3FqGjZlLVDI=) 4: B1F23610923B11F084052A57C4F9AE02.roa (hash: 6wBIunqzVP5IVwrNYuKOIIoGdjbUyMvHMZGflDhF2Wc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.crl rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLVcGsdATMBfF3Y6mbuyOJvS6r4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:51:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 309 (0x135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADD64, serialNumber=40B55C1AC7404CC05F17763A99BBB2389BD2EABE Validity Not Before: Nov 3 04:51:45 2025 GMT Not After : Nov 10 04:51:45 2025 GMT Subject: CN=690834e2-f07d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f8:51:c2:d4:bb:3c:98:3b:2a:02:3e:8c:ae: 1b:d8:88:7a:8d:9c:98:aa:b1:05:ff:97:ad:9a:70: e0:7a:dd:51:bc:79:4d:e3:36:1e:86:0b:d7:88:2b: 53:11:1d:00:cf:77:9a:00:10:95:38:ec:6c:a9:31: 0a:c4:c3:3b:c5:fe:79:0c:3b:0f:31:30:a3:e1:66: 82:ac:65:63:fc:3e:d8:e9:c1:7c:fb:80:d8:24:a6: 3b:78:a6:42:fb:04:71:d1:44:e0:1e:37:53:51:1e: fc:b0:63:e4:76:48:26:ef:2b:ab:8f:97:3b:95:58: 1e:5f:f0:eb:22:9a:6b:92:82:88:9b:80:ff:f6:5c: 75:22:52:47:23:27:46:29:20:fc:00:b8:1f:8d:cf: 12:d2:b8:d1:01:d9:59:b9:58:0c:2b:61:6f:e2:94: d2:02:8d:d4:40:bc:80:8c:30:e4:80:82:bb:f4:fd: 7e:c8:0f:51:3d:11:50:33:4f:c3:7a:1e:94:d6:57: c3:c5:f9:fd:9e:b2:c9:57:ab:3b:23:29:5b:5b:88: e5:7a:10:0c:30:37:1b:a4:a3:61:4e:1c:4d:ea:83: 25:7f:00:b7:fe:ad:72:9e:81:98:bb:9f:fb:a8:51: 61:cb:8c:6e:26:41:b7:44:97:57:21:90:3b:7d:77: 10:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:37:CE:79:D0:40:D2:B4:3E:E6:06:AB:82:B0:F3:DD:88:16:A5:4B X509v3 Authority Key Identifier: keyid:40:B5:5C:1A:C7:40:4C:C0:5F:17:76:3A:99:BB:B2:38:9B:D2:EA:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLVcGsdATMBfF3Y6mbuyOJvS6r4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADD64/5840A07C134B11EF94424D3DC4F9AE02/QLVcGsdATMBfF3Y6mbuyOJvS6r4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:ae:c5:1b:a9:64:4f:03:2d:9c:1c:1c:ca:b6:8b:b3:3a:2f: 45:d0:ec:d1:7d:ad:a4:c1:2a:5e:d6:b0:9a:4f:83:cc:09:76: 8b:d3:39:ac:3c:01:45:93:01:93:db:e0:39:f5:fc:fa:d8:ba: d6:5d:52:2c:f4:ca:e7:30:e0:b5:4a:88:35:30:86:31:59:f1: 7f:e1:3e:df:98:cb:93:30:d5:23:d7:f2:49:4e:f1:3e:35:94: eb:5e:d3:f2:01:53:c3:e4:fa:97:4f:22:d6:12:c4:8d:44:ba: 6b:90:e2:77:3c:5c:36:66:c7:34:70:8e:ea:a5:a0:24:24:13: cc:72:61:3e:fc:7b:a9:63:bb:e0:01:89:e5:6b:6d:be:eb:fe: 75:ab:70:03:fb:6d:31:58:e5:45:e0:f9:75:66:49:16:9e:07: 97:82:71:e7:79:79:96:65:df:2d:45:11:fc:0a:44:0a:ad:ed: 81:08:34:e5:29:63:71:0b:01:cd:dd:42:1b:d2:ab:5b:65:f8: e7:85:be:73:ee:fc:49:8c:b9:cb:c4:96:d2:80:59:fc:b7:1c: 80:7c:b4:ba:18:1c:01:33:43:fd:71:c9:21:46:4e:fa:e3:09: 8b:e6:2a:26:3b:29:32:d6:ec:73:37:eb:25:0b:2e:25:7b:19: aa:6a:47:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURENjQxMTAvBgNVBAUTKDQwQjU1QzFBQzc0MDRDQzA1RjE3NzYzQTk5QkJCMjM4 OUJEMkVBQkUwHhcNMjUxMTAzMDQ1MTQ1WhcNMjUxMTEwMDQ1MTQ1WjAYMRYwFAYD VQQDEw02OTA4MzRlMi1mMDdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwPhRwtS7PJg7KgI+jK4b2Ih6jZyYqrEF/5etmnDget1RvHlN4zYehgvXiCtT ER0Az3eaABCVOOxsqTEKxMM7xf55DDsPMTCj4WaCrGVj/D7Y6cF8+4DYJKY7eKZC +wRx0UTgHjdTUR78sGPkdkgm7yurj5c7lVgeX/DrIpprkoKIm4D/9lx1IlJHIydG KSD8ALgfjc8S0rjRAdlZuVgMK2Fv4pTSAo3UQLyAjDDkgIK79P1+yA9RPRFQM0/D eh6U1lfDxfn9nrLJV6s7IylbW4jlehAMMDcbpKNhThxN6oMlfwC3/q1ynoGYu5/7 qFFhy4xuJkG3RJdXIZA7fXcQfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLM3znnQ QNK0PuYGq4Kw892IFqVLMB8GA1UdIwQYMBaAFEC1XBrHQEzAXxd2Opm7sjib0uq+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREQ2NC81ODQwQTA3QzEz NEIxMUVGOTQ0MjREM0RDNEY5QUUwMi9RTFZjR3NkQVRNQmZGM1k2bWJ1eU9KdlM2 cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FMVmNHc2RBVE1CZkYzWTZtYnV5T0p2UzZyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB REQ2NC81ODQwQTA3QzEzNEIxMUVGOTQ0MjREM0RDNEY5QUUwMi9RTFZjR3NkQVRN QmZGM1k2bWJ1eU9KdlM2cjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsrsUbqWRPAy2cHBzKtouzOi9F0OzRfa2kwSpe1rCaT4PMCXaL0zms PAFFkwGT2+A59fz62LrWXVIs9MrnMOC1Sog1MIYxWfF/4T7fmMuTMNUj1/JJTvE+ NZTrXtPyAVPD5PqXTyLWEsSNRLprkOJ3PFw2Zsc0cI7qpaAkJBPMcmE+/HupY7vg AYnla22+6/51q3AD+20xWOVF4Pl1ZkkWngeXgnHneXmWZd8tRRH8CkQKre2BCDTl KWNxCwHN3UIb0qtbZfjnhb5z7vxJjLnLxJbSgFn8txyAfLS6GBwBM0P9cckhRk76 4wmL5iomOyky1uxzN+slCy4lexmqakcQ -----END CERTIFICATE-----Generated at Tue Nov 4 21:32:28 2025 by rpki-client