$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/rQWVkiI-gWrFPEM7llhG950wUjQ.mft File: rQWVkiI-gWrFPEM7llhG950wUjQ.mft (raw, json) Hash identifier: o6XoJnBMqi6pLIvuM5bIrsCAcfgC6xbr1L07kLxM1og= Subject key identifier: 85:DD:D9:1A:C2:13:31:A8:AD:64:DC:56:22:A7:D1:17:0D:75:28:8C Authority key identifier: AD:05:95:92:22:3E:81:6A:C5:3C:43:3B:96:58:46:F7:9D:30:52:34 Certificate issuer: /CN=A91BAEDC/serialNumber=AD059592223E816AC53C433B965846F79D305234 Certificate serial: 1BE6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQWVkiI-gWrFPEM7llhG950wUjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/rQWVkiI-gWrFPEM7llhG950wUjQ.mft Manifest number: 1BCF Signing time: Tue 04 Nov 2025 16:20:34 +0000 Manifest this update: Tue 04 Nov 2025 16:20:34 +0000 Manifest next update: Tue 11 Nov 2025 16:20:34 +0000 Files and hashes: 1: rQWVkiI-gWrFPEM7llhG950wUjQ.crl (hash: BJicUIMed/Ctt50FGGmcaSbSFgata03G2nVnqsw9PTQ=) 2: C85D0F7E477711EBB4044E31C4F9AE02.roa (hash: d9C+rmMNQQZELmuy5aIPVlKeATtzTC5JJ8WoYiMXlHI=) 3: C98708BE477711EBB4044E31C4F9AE02.roa (hash: V0J+K3DJnN+osBZ9dwTDUPh/HvfjgBzZSWLUoCMaCuE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/rQWVkiI-gWrFPEM7llhG950wUjQ.crl rsync://rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/rQWVkiI-gWrFPEM7llhG950wUjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQWVkiI-gWrFPEM7llhG950wUjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7142 (0x1be6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAEDC, serialNumber=AD059592223E816AC53C433B965846F79D305234 Validity Not Before: Nov 4 16:20:34 2025 GMT Not After : Nov 11 16:20:34 2025 GMT Subject: CN=690a27d2-8db0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a5:72:a7:42:ea:c5:d1:ca:b3:f2:c9:99:c0: dc:35:ba:d3:40:f3:58:64:4e:17:58:e8:15:bf:b1: 88:1a:b4:d3:0a:8b:a0:1b:aa:c3:c0:8b:d4:e7:70: a5:99:fc:74:d8:58:ce:11:ed:7f:8c:be:3f:de:c4: 76:e2:70:a5:17:02:fa:69:41:ea:5e:02:35:6c:de: 0f:e7:e9:ee:e3:04:18:08:9d:87:f5:ac:37:62:75: c7:4f:97:69:c3:74:9d:71:38:e4:cc:fd:99:2e:b9: d6:11:ad:59:e1:75:fb:a1:a0:b7:ba:dc:a2:8f:6d: ec:f5:fb:9d:9e:16:2f:8c:47:8f:c8:be:7e:27:3e: 58:4a:82:f0:6e:45:a8:30:8f:34:4c:2e:5a:c6:56: 60:8c:aa:8a:a5:c7:da:40:42:ed:48:18:0d:17:4b: e9:61:d1:a3:eb:6b:e1:d4:eb:0c:18:2f:b0:96:bb: cd:57:47:8f:59:01:05:11:c4:21:75:9c:09:ea:f0: 38:02:95:a6:a3:79:d4:4f:4b:c3:69:86:64:aa:03: 2f:d3:1b:25:b9:dc:2f:ab:bf:e2:b3:70:a3:32:0f: 93:d5:47:80:cd:36:d9:cb:37:43:de:8e:b8:6b:38: 07:f9:7c:4f:f9:02:38:df:5e:87:e7:2a:fa:aa:fd: 42:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:DD:D9:1A:C2:13:31:A8:AD:64:DC:56:22:A7:D1:17:0D:75:28:8C X509v3 Authority Key Identifier: keyid:AD:05:95:92:22:3E:81:6A:C5:3C:43:3B:96:58:46:F7:9D:30:52:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/rQWVkiI-gWrFPEM7llhG950wUjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQWVkiI-gWrFPEM7llhG950wUjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAEDC/2DC1BAF2098511E7B1FFC23FC4F9AE02/rQWVkiI-gWrFPEM7llhG950wUjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:e9:7a:99:5c:0c:ac:52:37:bc:32:50:84:94:ed:d4:f0:d1: e8:67:e1:5c:ac:27:31:b7:80:a2:f5:29:a7:44:57:cd:f5:e3: 54:5b:29:6a:75:0f:42:dc:37:e4:40:3b:21:a3:56:9a:bc:74: e3:7a:90:0d:57:c2:14:70:d2:82:ee:fc:c7:e9:50:23:32:8d: 17:47:53:f5:89:ea:39:52:b2:05:9b:5b:5a:25:42:da:f2:d1: a2:03:56:63:94:5f:e3:e9:f5:a3:15:2f:ea:51:8c:c8:44:fd: 96:40:00:17:ed:d4:bb:bb:4d:99:1f:43:0a:6a:cc:ce:06:df: c9:55:c6:64:b2:5a:6a:68:7a:6d:52:a0:d9:3d:00:dd:1c:b8: f4:41:4e:c5:d2:9e:65:6b:c7:20:92:7f:78:d2:c9:0d:97:bf: b1:8e:15:5d:bb:5d:0d:7e:82:37:8f:a2:7f:35:57:b3:18:49: 7a:3b:6f:86:59:7f:37:59:21:f4:b4:0d:15:0c:b5:54:46:28: 2b:da:d6:72:61:f2:6c:6c:67:b7:dd:f5:df:7f:88:22:bf:2b: 9f:b1:2a:24:56:92:f6:18:2f:9d:4f:be:c9:4f:ad:c1:d7:59: 9e:06:65:47:ec:77:87:e0:2a:4b:5a:7b:a0:50:f5:1a:f2:db: 23:4c:8e:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFFREMxMTAvBgNVBAUTKEFEMDU5NTkyMjIzRTgxNkFDNTNDNDMzQjk2NTg0NkY3 OUQzMDUyMzQwHhcNMjUxMTA0MTYyMDM0WhcNMjUxMTExMTYyMDM0WjAYMRYwFAYD VQQDEw02OTBhMjdkMi04ZGIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq6Vyp0LqxdHKs/LJmcDcNbrTQPNYZE4XWOgVv7GIGrTTCougG6rDwIvU53Cl mfx02FjOEe1/jL4/3sR24nClFwL6aUHqXgI1bN4P5+nu4wQYCJ2H9aw3YnXHT5dp w3SdcTjkzP2ZLrnWEa1Z4XX7oaC3utyij23s9fudnhYvjEePyL5+Jz5YSoLwbkWo MI80TC5axlZgjKqKpcfaQELtSBgNF0vpYdGj62vh1OsMGC+wlrvNV0ePWQEFEcQh dZwJ6vA4ApWmo3nUT0vDaYZkqgMv0xsludwvq7/is3CjMg+T1UeAzTbZyzdD3o64 azgH+XxP+QI4316H5yr6qv1CdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIXd2RrC EzGorWTcViKn0RcNdSiMMB8GA1UdIwQYMBaAFK0FlZIiPoFqxTxDO5ZYRvedMFI0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUVEQy8yREMxQkFGMjA5 ODUxMUU3QjFGRkMyM0ZDNEY5QUUwMi9yUVdWa2lJLWdXckZQRU03bGxoRzk1MHdV alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JRV1ZraUktZ1dyRlBFTTdsbGhHOTUwd1VqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QUVEQy8yREMxQkFGMjA5ODUxMUU3QjFGRkMyM0ZDNEY5QUUwMi9yUVdWa2lJLWdX ckZQRU03bGxoRzk1MHdValEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBz6XqZXAysUje8MlCElO3U8NHoZ+FcrCcxt4Ci9SmnRFfN9eNUWylq dQ9C3DfkQDsho1aavHTjepANV8IUcNKC7vzH6VAjMo0XR1P1ieo5UrIFm1taJULa 8tGiA1ZjlF/j6fWjFS/qUYzIRP2WQAAX7dS7u02ZH0MKaszOBt/JVcZkslpqaHpt UqDZPQDdHLj0QU7F0p5la8cgkn940skNl7+xjhVdu10NfoI3j6J/NVezGEl6O2+G WX83WSH0tA0VDLVURigr2tZyYfJsbGe33fXff4givyufsSokVpL2GC+dT77JT63B 11meBmVH7HeH4CpLWnugUPUa8tsjTI6s -----END CERTIFICATE-----Generated at Wed Nov 5 16:10:34 2025 by rpki-client