$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft File: qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft (raw, json) Hash identifier: 6T5ew+spHV5Bcoc6HqFXTN/vIeqk3Y/opmDNSnHu7uE= Subject key identifier: 84:74:2B:B5:DB:C8:67:5C:A5:E6:8D:98:AE:B3:A7:9D:3C:EE:9A:54 Authority key identifier: AA:21:B6:90:C1:D6:3C:BF:44:1A:A3:BD:11:7E:D8:B7:86:88:22:29 Certificate issuer: /CN=A91C0BE1/serialNumber=AA21B690C1D63CBF441AA3BD117ED8B786882229 Certificate serial: 0647 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft Manifest number: 0642 Signing time: Tue 04 Nov 2025 22:46:03 +0000 Manifest this update: Tue 04 Nov 2025 22:46:02 +0000 Manifest next update: Tue 11 Nov 2025 22:46:02 +0000 Files and hashes: 1: qiG2kMHWPL9EGqO9EX7Yt4aIIik.crl (hash: 1EUSAb2c0L80gCII8VNw+XihjaM1t+nKLcSufxCnfIQ=) 2: 0C3EAFF6F84111EC926CBF53C4F9AE02.roa (hash: QP4syOi96y5XvL9Sdw2J+adgOyFXDCa3foh8bqHg19c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.crl rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:46:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1607 (0x647) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0BE1, serialNumber=AA21B690C1D63CBF441AA3BD117ED8B786882229 Validity Not Before: Nov 4 22:46:02 2025 GMT Not After : Nov 11 22:46:02 2025 GMT Subject: CN=690a822b-67f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:72:91:2f:2e:5f:d3:de:c2:5c:20:b5:ae:68: 70:4b:5a:c8:56:a1:12:d0:fb:25:4d:d7:13:07:4c: f2:fb:f3:e3:ec:ae:56:62:13:09:18:6e:09:b5:09: 9c:2b:94:72:46:f4:5d:a3:92:c7:e8:95:74:78:96: 61:20:f5:de:66:52:c2:ed:c0:26:cd:4f:3c:80:8f: e0:30:c9:40:b1:4c:8d:42:08:74:ba:1e:f8:b3:7e: 64:ed:a6:25:32:6e:98:c5:ac:53:8d:ae:00:b2:de: 56:5c:2e:4f:99:97:75:af:d8:34:21:89:0c:80:c6: e3:81:3e:fb:5f:07:ed:73:18:10:a4:07:6f:1a:97: 91:c0:b6:6a:d5:4f:7f:fd:8a:21:0b:66:23:d1:8f: af:a3:49:e0:e4:71:9d:a5:24:9e:df:1e:15:e6:dc: c2:15:d3:37:ad:5e:d0:91:bd:fc:b8:4e:e3:dc:60: 19:69:4f:0e:87:08:d3:65:91:fa:91:cf:3b:04:39: 5f:8e:f5:5a:d1:3e:cc:f9:84:d6:a5:6d:ba:97:3c: 0b:c4:ee:97:03:b7:bc:fe:cf:63:0f:90:21:bc:9f: 22:4b:e8:59:b4:c5:80:8f:e5:9f:b1:ce:fe:a9:83: b8:60:f4:70:64:00:b8:db:8b:7a:92:c1:2b:34:ba: 36:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:74:2B:B5:DB:C8:67:5C:A5:E6:8D:98:AE:B3:A7:9D:3C:EE:9A:54 X509v3 Authority Key Identifier: keyid:AA:21:B6:90:C1:D6:3C:BF:44:1A:A3:BD:11:7E:D8:B7:86:88:22:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qiG2kMHWPL9EGqO9EX7Yt4aIIik.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0BE1/E46FF490AE2B11EB95627F82C4F9AE02/qiG2kMHWPL9EGqO9EX7Yt4aIIik.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:49:76:c9:aa:20:40:fd:84:7c:55:b7:2f:2d:1b:31:82:dd: ff:03:49:2c:b4:1a:82:db:b4:96:c4:9c:b8:d5:50:ba:7e:82: d4:9b:4e:aa:8c:7b:27:b8:a6:81:b9:ce:3f:e4:92:57:6d:15: 07:3a:cf:ec:6e:94:4b:56:cb:3c:38:1c:bd:cf:7c:f3:b1:8b: bf:4d:f7:0a:12:8c:a5:ff:60:c9:d4:96:81:04:7e:88:8a:7c: 1b:cf:e3:14:a1:c3:b1:f7:5c:11:71:7b:df:f8:bf:b2:5f:33: de:ee:2a:27:b4:32:19:a7:2d:48:e5:7f:8c:f6:a8:63:1a:e6: 42:18:5a:90:3b:29:70:ed:39:92:e3:94:19:b7:2a:86:d2:c3: b1:aa:63:a5:ca:7e:9e:5c:0d:85:25:0e:4a:2c:70:88:1c:1e: 5a:c3:bb:e5:7d:e3:10:b4:f8:47:41:fe:67:03:aa:30:9c:ee: 56:88:b2:47:ff:b9:1b:4a:b6:bf:53:36:88:6d:ac:e0:91:45: ac:e7:b3:cb:99:d5:22:51:32:d6:95:b2:6b:b6:1f:75:c1:cd: 54:93:69:7c:b5:20:ba:17:61:4c:4f:c2:04:f1:60:61:99:d6: 6e:d2:8e:6f:ce:82:d1:32:9b:6a:c5:68:25:d1:05:ba:12:72: e3:58:7e:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBkcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBCRTExMTAvBgNVBAUTKEFBMjFCNjkwQzFENjNDQkY0NDFBQTNCRDExN0VEOEI3 ODY4ODIyMjkwHhcNMjUxMTA0MjI0NjAyWhcNMjUxMTExMjI0NjAyWjAYMRYwFAYD VQQDEw02OTBhODIyYi02N2Y4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5HKRLy5f097CXCC1rmhwS1rIVqES0PslTdcTB0zy+/Pj7K5WYhMJGG4JtQmc K5RyRvRdo5LH6JV0eJZhIPXeZlLC7cAmzU88gI/gMMlAsUyNQgh0uh74s35k7aYl Mm6YxaxTja4Ast5WXC5PmZd1r9g0IYkMgMbjgT77XwftcxgQpAdvGpeRwLZq1U9/ /YohC2Yj0Y+vo0ng5HGdpSSe3x4V5tzCFdM3rV7Qkb38uE7j3GAZaU8OhwjTZZH6 kc87BDlfjvVa0T7M+YTWpW26lzwLxO6XA7e8/s9jD5AhvJ8iS+hZtMWAj+Wfsc7+ qYO4YPRwZAC424t6ksErNLo2qwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIR0K7Xb yGdcpeaNmK6zp5087ppUMB8GA1UdIwQYMBaAFKohtpDB1jy/RBqjvRF+2LeGiCIp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEJFMS9FNDZGRjQ5MEFF MkIxMUVCOTU2MjdGODJDNEY5QUUwMi9xaUcya01IV1BMOUVHcU85RVg3WXQ0YUlJ aWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FpRzJrTUhXUEw5RUdxTzlFWDdZdDRhSUlpay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEJFMS9FNDZGRjQ5MEFFMkIxMUVCOTU2MjdGODJDNEY5QUUwMi9xaUcya01IV1BM OUVHcU85RVg3WXQ0YUlJaWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsSXbJqiBA/YR8VbcvLRsxgt3/A0kstBqC27SWxJy41VC6foLUm06q jHsnuKaBuc4/5JJXbRUHOs/sbpRLVss8OBy9z3zzsYu/TfcKEoyl/2DJ1JaBBH6I inwbz+MUocOx91wRcXvf+L+yXzPe7iontDIZpy1I5X+M9qhjGuZCGFqQOylw7TmS 45QZtyqG0sOxqmOlyn6eXA2FJQ5KLHCIHB5aw7vlfeMQtPhHQf5nA6ownO5WiLJH /7kbSra/UzaIbazgkUWs57PLmdUiUTLWlbJrth91wc1Uk2l8tSC6F2FMT8IE8WBh mdZu0o5vzoLRMptqxWgl0QW6EnLjWH6H -----END CERTIFICATE-----Generated at Wed Nov 5 02:05:51 2025 by rpki-client