$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.mft File: QcdXFCmaV43RkP0fcwlVsf2awfQ.mft (raw, json) Hash identifier: w4G6xPqDHHCScTsLqOOOWrAZZ+S5B/D7DE3evdjAmBM= Subject key identifier: 88:C0:B0:49:A2:1B:36:E0:FF:14:B8:4B:23:D4:8B:ED:C3:DA:C9:AC Authority key identifier: 41:C7:57:14:29:9A:57:8D:D1:90:FD:1F:73:09:55:B1:FD:9A:C1:F4 Certificate issuer: /CN=A91BEA8B/serialNumber=41C75714299A578DD190FD1F730955B1FD9AC1F4 Certificate serial: 5B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QcdXFCmaV43RkP0fcwlVsf2awfQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.mft Manifest number: 54 Signing time: Mon 03 Nov 2025 07:21:12 +0000 Manifest this update: Mon 03 Nov 2025 07:21:12 +0000 Manifest next update: Mon 10 Nov 2025 07:21:11 +0000 Files and hashes: 1: QcdXFCmaV43RkP0fcwlVsf2awfQ.crl (hash: 5TlwvPvJnxHccXGXOZgjGOHiOVcxOPFFN+OTWDgp0ds=) 2: D999F880AF4411F0A866CC48C4F9AE02.roa (hash: egGFXylp1SINEbzgRCNIJHPPft/NT6vkIWCWpdsdfdM=) 3: C425CEE64B8211F0A94CFD82C4F9AE02.roa (hash: fil/oQotRM+MIGw/cNqLrz8OgmoOYQq+ywbG5ZxtQK8=) 4: B8F6B5E6889D11F096782036C4F9AE02.roa (hash: /A/rBXc2op08yj3uZittOvl641NY0+V2n8zZ3/LDWUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.crl rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QcdXFCmaV43RkP0fcwlVsf2awfQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:21:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEA8B, serialNumber=41C75714299A578DD190FD1F730955B1FD9AC1F4 Validity Not Before: Nov 3 07:21:12 2025 GMT Not After : Nov 10 07:21:11 2025 GMT Subject: CN=690857e8-01c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:3b:a5:4a:15:a8:bb:b1:d5:69:80:f6:c3:dc: 91:fd:d6:f3:57:f4:ba:d2:f2:d4:52:ea:a4:88:68: c4:c0:d3:c3:f1:e2:7b:bc:5d:d5:f9:b4:11:34:e3: 35:b8:ce:03:29:14:ac:39:a6:58:f9:1b:af:2c:c0: cc:48:3a:68:90:e5:6e:b1:c2:cb:22:a5:a8:d3:38: 32:05:c4:04:35:aa:92:50:70:2c:b4:ff:29:77:d6: 1b:0b:10:8f:2e:82:d0:fc:55:5e:ed:69:33:c6:5d: e4:ab:b7:38:71:13:df:32:20:e5:42:2b:1e:43:b6: b5:36:36:99:4f:1d:11:3e:57:73:ec:08:8f:bd:2e: c3:d4:9e:f2:4c:9c:f2:1c:5a:08:9b:a5:2f:61:ff: 50:c2:58:ed:5e:23:33:32:1e:d7:d6:71:65:78:84: cb:b9:75:72:8d:13:f3:b8:eb:58:ad:1a:ae:8f:6f: 51:cc:91:e8:1c:db:e1:87:93:f6:bd:4f:c2:fb:d7: f2:98:84:6f:57:55:64:a8:7a:8a:75:20:3c:61:cf: 69:96:e6:f9:c8:fb:8b:3f:27:68:2d:cd:d8:0d:04: b5:7d:4f:48:2c:84:b2:af:41:9b:a2:7f:e6:50:10: f7:ff:78:00:ec:14:31:10:30:46:8f:d6:ab:40:73: 7d:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:C0:B0:49:A2:1B:36:E0:FF:14:B8:4B:23:D4:8B:ED:C3:DA:C9:AC X509v3 Authority Key Identifier: keyid:41:C7:57:14:29:9A:57:8D:D1:90:FD:1F:73:09:55:B1:FD:9A:C1:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QcdXFCmaV43RkP0fcwlVsf2awfQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEA8B/BA08AA424B8111F08F65507EC4F9AE02/QcdXFCmaV43RkP0fcwlVsf2awfQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:62:f5:ed:26:b5:41:a8:8e:d9:5e:43:89:a9:71:56:6c:fd: 45:28:5b:1d:f9:c0:48:31:76:fc:20:94:a7:27:c4:13:81:79: 08:07:71:d5:8b:20:35:fc:73:9a:09:d2:c4:3c:02:61:4b:5e: 8e:64:2a:8d:45:11:ae:00:35:b0:3a:87:02:64:cc:cb:8e:e3: 4d:40:cd:1c:3e:d1:4c:c5:41:ac:e4:71:4e:91:cb:12:94:28: c7:f5:c9:1a:df:4a:54:e1:cd:97:ca:36:df:12:79:5f:37:9b: 6d:20:ea:b8:2d:43:8c:ae:4d:d1:31:31:ee:bf:2d:88:8b:b8: 4e:a2:fc:ae:17:9a:85:af:0b:ba:e4:a6:e1:17:b9:28:ef:ab: 03:f7:02:12:5a:0e:65:19:da:7f:b3:ad:8c:85:94:4f:c2:b6: 23:ef:f6:e0:e5:e4:fe:f7:6b:f5:40:95:5a:bc:1b:bc:e3:0c: 04:a1:f1:eb:37:82:86:4f:e9:a3:8a:58:a1:f9:20:67:de:ab: a3:c9:14:e9:bd:28:ae:5c:b1:cc:9c:27:c5:51:1f:7f:69:7d: e3:d3:de:38:09:6f:36:7a:da:f9:2d:28:d7:c0:94:e8:77:a7: 1b:da:f3:34:b1:ba:84:26:fd:96:31:33:3b:ac:42:b0:20:f1: 30:2d:23:78 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RUE4QjExMC8GA1UEBRMoNDFDNzU3MTQyOTlBNTc4REQxOTBGRDFGNzMwOTU1QjFG RDlBQzFGNDAeFw0yNTExMDMwNzIxMTJaFw0yNTExMTAwNzIxMTFaMBgxFjAUBgNV BAMTDTY5MDg1N2U4LTAxYzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDO6VKFai7sdVpgPbD3JH91vNX9LrS8tRS6qSIaMTA08Px4nu8XdX5tBE04zW4 zgMpFKw5plj5G68swMxIOmiQ5W6xwssipajTODIFxAQ1qpJQcCy0/yl31hsLEI8u gtD8VV7taTPGXeSrtzhxE98yIOVCKx5DtrU2NplPHRE+V3PsCI+9LsPUnvJMnPIc WgibpS9h/1DCWO1eIzMyHtfWcWV4hMu5dXKNE/O461itGq6Pb1HMkegc2+GHk/a9 T8L71/KYhG9XVWSoeop1IDxhz2mW5vnI+4s/J2gtzdgNBLV9T0gshLKvQZuif+ZQ EPf/eADsFDEQMEaP1qtAc31BAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUiMCwSaIb NuD/FLhLI9SL7cPayawwHwYDVR0jBBgwFoAUQcdXFCmaV43RkP0fcwlVsf2awfQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJFQThCL0JBMDhBQTQyNEI4 MTExRjA4RjY1NTA3RUM0RjlBRTAyL1FjZFhGQ21hVjQzUmtQMGZjd2xWc2YyYXdm US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUWNkWEZDbWFWNDNSa1AwZmN3bFZzZjJhd2ZRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJF QThCL0JBMDhBQTQyNEI4MTExRjA4RjY1NTA3RUM0RjlBRTAyL1FjZFhGQ21hVjQz UmtQMGZjd2xWc2YyYXdmUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACdi9e0mtUGojtleQ4mpcVZs/UUoWx35wEgxdvwglKcnxBOBeQgHcdWL IDX8c5oJ0sQ8AmFLXo5kKo1FEa4ANbA6hwJkzMuO401AzRw+0UzFQazkcU6RyxKU KMf1yRrfSlThzZfKNt8SeV83m20g6rgtQ4yuTdExMe6/LYiLuE6i/K4XmoWvC7rk puEXuSjvqwP3AhJaDmUZ2n+zrYyFlE/CtiPv9uDl5P73a/VAlVq8G7zjDASh8es3 goZP6aOKWKH5IGfeq6PJFOm9KK5cscycJ8VRH39pfePT3jgJbzZ62vktKNfAlOh3 pxva8zSxuoQm/ZYxMzusQrAg8TAtI3g= -----END CERTIFICATE-----Generated at Tue Nov 4 21:06:34 2025 by rpki-client