$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/qVBr_Nym0SxcNyUDFHD30eBncFI.mft File: qVBr_Nym0SxcNyUDFHD30eBncFI.mft (raw, json) Hash identifier: 3v5l0cfTkHPWeLMVQVCaJcNcJwwPcx+Yz7d92wQvKfk= Subject key identifier: BD:F9:41:B8:0E:65:CE:9A:E5:65:B7:A4:0E:FC:77:88:FB:1F:CC:70 Authority key identifier: A9:50:6B:FC:DC:A6:D1:2C:5C:37:25:03:14:70:F7:D1:E0:67:70:52 Certificate issuer: /CN=A91C5ED0/serialNumber=A9506BFCDCA6D12C5C3725031470F7D1E0677052 Certificate serial: 13D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qVBr_Nym0SxcNyUDFHD30eBncFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/qVBr_Nym0SxcNyUDFHD30eBncFI.mft Manifest number: 2AA5 Signing time: Sun 02 Nov 2025 16:56:09 +0000 Manifest this update: Sun 02 Nov 2025 16:56:08 +0000 Manifest next update: Sun 09 Nov 2025 16:56:08 +0000 Files and hashes: 1: qVBr_Nym0SxcNyUDFHD30eBncFI.crl (hash: RKivOFJrMpsqibUSc/1DMD0rMZ2eizHo60LrH0t64z8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/qVBr_Nym0SxcNyUDFHD30eBncFI.crl rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/qVBr_Nym0SxcNyUDFHD30eBncFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qVBr_Nym0SxcNyUDFHD30eBncFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 16:56:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5072 (0x13d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5ED0, serialNumber=A9506BFCDCA6D12C5C3725031470F7D1E0677052 Validity Not Before: Nov 2 16:56:08 2025 GMT Not After : Nov 9 16:56:08 2025 GMT Subject: CN=69078d29-47e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:54:4a:e5:99:bf:1f:b7:c5:69:0a:3f:ed:d4: 0f:e4:e7:85:50:2f:42:41:65:8c:dc:b6:16:f1:40: ca:19:a5:46:5d:50:cf:a2:21:fc:e5:19:af:5b:12: 1f:4f:d6:b3:d6:cb:cb:bd:14:26:81:8f:40:9a:62: d2:06:29:29:4b:b5:d6:e6:4a:95:ea:85:ac:fe:33: ca:ad:9f:88:1f:b8:1c:ab:28:d1:70:92:72:ca:8c: 54:67:d8:f1:bd:4c:5b:30:04:f1:07:87:51:b2:a4: 69:fb:c7:9c:36:c3:73:2d:dc:6b:aa:e1:c2:8c:f9: 05:e9:fe:c7:ef:8a:c4:82:a5:e5:5d:2a:0b:8a:6e: 18:7b:15:9c:79:3c:f0:f6:51:5a:14:57:72:5c:00: 26:9d:9c:6e:0a:d9:50:2c:d5:4a:46:40:76:ce:e6: de:1f:02:95:d2:21:2c:75:fa:6e:5f:cb:04:7f:13: e9:8d:dc:5b:c8:20:b4:16:0b:ba:fe:4c:f8:cf:9e: 06:79:5c:ef:4a:f7:05:a6:8b:c7:76:11:30:34:f5: b7:80:ce:18:62:18:9d:f9:34:85:73:ee:c3:e7:7c: a1:34:69:64:35:fe:14:5d:20:4c:bc:1b:a2:3b:b7: 6a:53:a9:c7:31:33:a0:5a:65:88:46:5a:29:0e:64: 79:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:F9:41:B8:0E:65:CE:9A:E5:65:B7:A4:0E:FC:77:88:FB:1F:CC:70 X509v3 Authority Key Identifier: keyid:A9:50:6B:FC:DC:A6:D1:2C:5C:37:25:03:14:70:F7:D1:E0:67:70:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/qVBr_Nym0SxcNyUDFHD30eBncFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qVBr_Nym0SxcNyUDFHD30eBncFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5ED0/153A550A997311E8866F0060C4F9AE02/qVBr_Nym0SxcNyUDFHD30eBncFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:ab:61:21:e3:88:1e:88:66:f7:80:21:36:8f:54:ee:2f:19: 00:12:d7:ba:12:d5:f1:4f:bc:3c:94:53:1a:11:75:0c:56:05: 37:4b:2c:13:81:87:11:e6:a6:c3:01:5c:a5:f0:8b:01:46:f3: 4f:57:93:d3:3c:10:52:6e:d0:93:bd:eb:88:fd:b1:62:ed:04: 73:a0:25:8d:e4:9d:a9:c9:ec:61:4f:56:36:cd:15:22:71:5b: c4:ff:74:e9:7e:86:28:38:c6:7e:d7:2e:5a:82:ee:0c:92:4f: fb:ed:c5:31:87:38:9c:c2:f3:b2:97:76:ab:02:da:9c:50:04: bb:1c:b8:55:90:dc:d6:fa:be:5f:18:7e:b9:e7:24:7e:39:1e: c6:3e:f3:f7:8c:21:d0:da:94:78:cb:d6:dd:57:34:9b:6a:27: af:5b:d5:f8:e9:f9:95:a4:d2:15:77:0c:53:fb:67:4a:53:04: 65:8f:9c:0b:5f:c7:35:f7:94:41:cb:f1:bc:c8:a0:98:f1:94: e9:b8:9d:9d:fe:53:b0:33:0b:a6:ae:c6:14:f5:eb:87:b8:ff: 78:1a:25:71:1a:6b:da:02:5f:bc:d8:7c:37:91:23:c5:fb:d6: 21:78:ff:87:4f:63:d3:ad:4b:77:2b:e1:3c:1a:33:86:6b:33: 05:45:0b:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVFRDAxMTAvBgNVBAUTKEE5NTA2QkZDRENBNkQxMkM1QzM3MjUwMzE0NzBGN0Qx RTA2NzcwNTIwHhcNMjUxMTAyMTY1NjA4WhcNMjUxMTA5MTY1NjA4WjAYMRYwFAYD VQQDEw02OTA3OGQyOS00N2U3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyVRK5Zm/H7fFaQo/7dQP5OeFUC9CQWWM3LYW8UDKGaVGXVDPoiH85RmvWxIf T9az1svLvRQmgY9AmmLSBikpS7XW5kqV6oWs/jPKrZ+IH7gcqyjRcJJyyoxUZ9jx vUxbMATxB4dRsqRp+8ecNsNzLdxrquHCjPkF6f7H74rEgqXlXSoLim4YexWceTzw 9lFaFFdyXAAmnZxuCtlQLNVKRkB2zubeHwKV0iEsdfpuX8sEfxPpjdxbyCC0Fgu6 /kz4z54GeVzvSvcFpovHdhEwNPW3gM4YYhid+TSFc+7D53yhNGlkNf4UXSBMvBui O7dqU6nHMTOgWmWIRlopDmR5VwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL35QbgO Zc6a5WW3pA78d4j7H8xwMB8GA1UdIwQYMBaAFKlQa/zcptEsXDclAxRw99HgZ3BS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUVEMC8xNTNBNTUwQTk5 NzMxMUU4ODY2RjAwNjBDNEY5QUUwMi9xVkJyX055bTBTeGNOeVVERkhEMzBlQm5j RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FWQnJfTnltMFN4Y055VURGSEQzMGVCbmNGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NUVEMC8xNTNBNTUwQTk5NzMxMUU4ODY2RjAwNjBDNEY5QUUwMi9xVkJyX055bTBT eGNOeVVERkhEMzBlQm5jRkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUq2Eh44geiGb3gCE2j1TuLxkAEte6EtXxT7w8lFMaEXUMVgU3SywT gYcR5qbDAVyl8IsBRvNPV5PTPBBSbtCTveuI/bFi7QRzoCWN5J2pyexhT1Y2zRUi cVvE/3TpfoYoOMZ+1y5agu4Mkk/77cUxhzicwvOyl3arAtqcUAS7HLhVkNzW+r5f GH655yR+OR7GPvP3jCHQ2pR4y9bdVzSbaievW9X46fmVpNIVdwxT+2dKUwRlj5wL X8c195RBy/G8yKCY8ZTpuJ2d/lOwMwumrsYU9euHuP94GiVxGmvaAl+82Hw3kSPF +9YheP+HT2PTrUt3K+E8GjOGazMFRQuR -----END CERTIFICATE-----Generated at Tue Nov 4 08:20:07 2025 by rpki-client