$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft File: q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft (raw, json) Hash identifier: MDrVZ0jqMwfboGYC8vAAnKDZdoRprvhVvfl1uhjegR0= Subject key identifier: BA:4B:F1:2D:28:11:1E:93:46:46:7A:21:2E:51:F0:81:C3:2C:50:DD Authority key identifier: AB:53:D9:92:81:02:B9:19:DB:7C:54:65:C8:DD:5F:F2:66:74:43:B3 Certificate issuer: /CN=A91C7E5B/serialNumber=AB53D9928102B919DB7C5465C8DD5FF2667443B3 Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft Manifest number: 52 Signing time: Mon 03 Nov 2025 07:14:50 +0000 Manifest this update: Mon 03 Nov 2025 07:14:50 +0000 Manifest next update: Mon 10 Nov 2025 07:14:50 +0000 Files and hashes: 1: q1PZkoECuRnbfFRlyN1f8mZ0Q7M.crl (hash: DI+UG/bHDD6WA8TfdSWHYfdmficyGdHpfJ7ZilQGRs0=) 2: 765A9AEC3C6F11F0A83E954EC4F9AE02.roa (hash: 1LK4ltfDfUObnmcEpgqLd5X9zDYVgPh3Q6BVcaMlN3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.crl rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:14:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7E5B, serialNumber=AB53D9928102B919DB7C5465C8DD5FF2667443B3 Validity Not Before: Nov 3 07:14:50 2025 GMT Not After : Nov 10 07:14:50 2025 GMT Subject: CN=6908566a-3023 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:3f:db:16:70:18:f6:51:e8:3b:03:57:c5:ca: 5d:b8:f4:1e:7f:03:41:9b:e1:47:93:39:60:28:b3: af:1f:c1:f6:37:1c:f3:57:86:2d:37:36:21:c8:3a: 85:a3:d9:ea:f9:6f:a2:22:67:8b:44:2b:59:8e:8b: 91:e9:18:a0:fd:c7:9f:83:45:b6:18:2d:5a:ec:b3: 92:c4:95:d5:24:b7:38:f9:9d:73:fd:f5:df:d2:60: 0b:1a:4d:d2:60:c7:5b:7c:cc:7d:d7:79:ec:f1:25: 2b:36:12:ba:8c:9b:80:6e:59:d8:35:fe:13:99:5d: 86:c4:fe:a9:0a:9a:6f:17:c9:ce:d8:b6:69:8b:4b: 42:35:48:59:bc:43:4e:f3:c1:64:3f:e5:c3:cc:97: a4:e2:c3:6d:ac:8a:4b:e1:ba:bd:66:f9:04:46:ce: 5d:7a:39:87:9f:ca:87:cc:fa:0e:fd:92:c0:97:f0: 13:da:22:29:0c:29:02:9e:c5:5f:f1:55:b2:be:76: 3f:87:c7:1f:52:aa:fd:ef:56:b1:a8:18:6f:8f:3f: 4c:ef:67:77:c4:27:5f:c6:f4:71:5f:39:49:a2:11: e0:b4:60:a1:26:43:0e:36:23:dd:b2:e4:54:f1:16: b4:1a:09:05:41:82:5e:3f:e9:25:93:08:b4:ef:a4: 70:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:4B:F1:2D:28:11:1E:93:46:46:7A:21:2E:51:F0:81:C3:2C:50:DD X509v3 Authority Key Identifier: keyid:AB:53:D9:92:81:02:B9:19:DB:7C:54:65:C8:DD:5F:F2:66:74:43:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7E5B/D84E7BF23C6E11F09D76A24DC4F9AE02/q1PZkoECuRnbfFRlyN1f8mZ0Q7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption db:8d:db:c9:e0:7c:c2:d9:bb:a5:3c:24:cc:e4:85:9f:eb:b8: 6e:98:c4:42:fa:3c:d0:03:b4:97:fd:ed:48:d7:60:7e:20:4e: 2e:57:af:4d:b4:93:cb:52:1d:a1:1a:56:55:8a:77:09:0d:3a: da:66:56:27:c5:b0:d9:eb:a8:ed:e6:fc:08:76:9f:15:20:af: 79:39:de:0c:9c:52:ad:36:4b:bf:d1:a1:9b:be:04:6f:e7:be: 3e:99:5b:2a:60:f8:72:a8:e6:79:59:7d:b8:10:2c:1e:ce:ae: 6a:32:10:08:3d:5e:45:f7:5c:67:b9:88:96:4e:1b:c8:44:4d: 2d:2e:e8:0c:43:8a:0c:84:06:29:88:92:9b:86:c2:af:f8:ab: 6a:30:42:aa:1f:ed:89:0f:cc:7c:90:e1:e8:88:91:d5:8c:3b: 06:c4:34:36:3b:4f:53:59:70:12:2c:88:ff:6c:d5:94:4f:43: 9f:1f:5e:38:29:72:3b:f4:c0:fe:78:78:95:86:05:44:52:08: ba:41:ab:b6:7b:f4:e6:9c:24:85:6d:7e:04:6b:5a:f2:ef:50: 9c:2f:44:d0:7b:1e:c4:84:ec:7c:0a:02:02:c4:dd:f6:83:97: 11:09:57:f6:3a:1c:b7:48:4e:d6:55:1c:34:8c:bd:83:ad:4e: 62:44:c0:0a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD N0U1QjExMC8GA1UEBRMoQUI1M0Q5OTI4MTAyQjkxOURCN0M1NDY1QzhERDVGRjI2 Njc0NDNCMzAeFw0yNTExMDMwNzE0NTBaFw0yNTExMTAwNzE0NTBaMBgxFjAUBgNV BAMTDTY5MDg1NjZhLTMwMjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtP9sWcBj2Ueg7A1fFyl249B5/A0Gb4UeTOWAos68fwfY3HPNXhi03NiHIOoWj 2er5b6IiZ4tEK1mOi5HpGKD9x5+DRbYYLVrss5LEldUktzj5nXP99d/SYAsaTdJg x1t8zH3XeezxJSs2ErqMm4BuWdg1/hOZXYbE/qkKmm8Xyc7YtmmLS0I1SFm8Q07z wWQ/5cPMl6Tiw22sikvhur1m+QRGzl16OYefyofM+g79ksCX8BPaIikMKQKexV/x VbK+dj+Hxx9Sqv3vVrGoGG+PP0zvZ3fEJ1/G9HFfOUmiEeC0YKEmQw42I92y5FTx FrQaCQVBgl4/6SWTCLTvpHC/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUukvxLSgR HpNGRnohLlHwgcMsUN0wHwYDVR0jBBgwFoAUq1PZkoECuRnbfFRlyN1f8mZ0Q7Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3RTVCL0Q4NEU3QkYyM0M2 RTExRjA5RDc2QTI0REM0RjlBRTAyL3ExUFprb0VDdVJuYmZGUmx5TjFmOG1aMFE3 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcTFQWmtvRUN1Um5iZkZSbHlOMWY4bVowUTdNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM3 RTVCL0Q4NEU3QkYyM0M2RTExRjA5RDc2QTI0REM0RjlBRTAyL3ExUFprb0VDdVJu YmZGUmx5TjFmOG1aMFE3TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANuN28ngfMLZu6U8JMzkhZ/ruG6YxEL6PNADtJf97UjXYH4gTi5Xr020 k8tSHaEaVlWKdwkNOtpmVifFsNnrqO3m/Ah2nxUgr3k53gycUq02S7/RoZu+BG/n vj6ZWypg+HKo5nlZfbgQLB7OrmoyEAg9XkX3XGe5iJZOG8hETS0u6AxDigyEBimI kpuGwq/4q2owQqof7YkPzHyQ4eiIkdWMOwbENDY7T1NZcBIsiP9s1ZRPQ58fXjgp cjv0wP54eJWGBURSCLpBq7Z79OacJIVtfgRrWvLvUJwvRNB7HsSE7HwKAgLE3faD lxEJV/Y6HLdITtZVHDSMvYOtTmJEwAo= -----END CERTIFICATE-----Generated at Tue Nov 4 23:59:06 2025 by rpki-client