$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft File: QNueLLrezam5cjUQIVB63NGlYn8.mft (raw, json) Hash identifier: /oaPDBTg7QVagdV3nCcnn9nB0x75jPxymylJERUtK7U= Subject key identifier: 92:22:AF:C0:59:EC:50:3E:3E:B5:02:D5:66:EB:4B:7F:07:1C:6E:66 Authority key identifier: 40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F Certificate issuer: /CN=A91C8B4F/serialNumber=40DB9E2CBADECDA9B972351021507ADCD1A5627F Certificate serial: 0478 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft Manifest number: 046F Signing time: Wed 05 Nov 2025 00:14:49 +0000 Manifest this update: Wed 05 Nov 2025 00:14:48 +0000 Manifest next update: Wed 12 Nov 2025 00:14:48 +0000 Files and hashes: 1: QNueLLrezam5cjUQIVB63NGlYn8.crl (hash: VPAoJXU/3NGLGXmy+sOlPLDFRssBqjBZQIxyDGLIobs=) 2: 18E79956BAA811ECB07DA44BC4F9AE02.roa (hash: 5latq2+YRolk+7/RCZ77DIkjarUkzR1toXI6OoV7ng8=) 3: 43540B7A0EE311EF9E24862BC4F9AE02.roa (hash: 06e2Kd9kP50w5XlMiJZ3tSgrZONMMPBPJ5HjMD4Ujzw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:14:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1144 (0x478) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8B4F, serialNumber=40DB9E2CBADECDA9B972351021507ADCD1A5627F Validity Not Before: Nov 5 00:14:48 2025 GMT Not After : Nov 12 00:14:48 2025 GMT Subject: CN=690a96f9-a775 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:64:4f:0d:3f:44:b1:49:cc:32:90:2a:01:71: dd:ba:1b:d1:87:7d:d6:cd:aa:1f:14:a4:b4:26:8b: 5a:b6:4d:05:c3:04:db:19:69:bd:41:55:4d:3d:27: 5b:0e:47:78:a9:b0:c4:10:e9:62:ae:9f:8a:be:d8: c8:34:36:3f:ca:85:7e:e3:fd:b9:37:e2:d8:ea:af: 4a:31:a9:4c:a6:e4:47:dc:48:4d:fd:1d:e0:c0:54: 40:a7:2c:8c:7d:74:f5:2e:b3:bd:b2:fa:b8:3a:bd: 30:35:ff:b1:90:56:d0:ac:29:87:9f:9e:88:37:ce: 40:f7:9b:ac:96:f4:4c:ac:bc:d8:84:2e:49:fb:28: 4b:8e:b0:7c:e2:b4:47:e7:4b:f8:3a:3b:f5:5e:e8: 6e:4d:36:45:9a:0f:42:8e:9f:bd:bd:62:8f:d6:91: ae:e2:db:e5:18:31:ba:94:30:57:69:7b:87:29:b1: d0:7e:8a:26:a0:7b:18:f1:7f:c9:ff:a5:3c:ab:36: 2f:9d:44:76:53:aa:cc:5e:c2:61:2b:05:2d:7e:b5: fe:3e:7e:90:cc:81:af:55:80:59:37:19:0e:03:39: 69:e1:6a:e9:b3:80:d4:34:d5:d6:eb:e5:5e:93:87: d0:07:41:4a:7d:35:a5:51:d6:de:d5:6c:9f:47:4b: 0d:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:22:AF:C0:59:EC:50:3E:3E:B5:02:D5:66:EB:4B:7F:07:1C:6E:66 X509v3 Authority Key Identifier: keyid:40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:ec:61:18:81:a1:16:95:20:7f:33:36:df:a0:41:e5:66:7b: ea:40:12:08:e5:f3:6e:b8:0f:c5:c9:5a:a5:cc:f8:0e:56:85: f0:26:3e:39:02:7c:21:82:36:56:d3:a3:dc:59:5d:78:ec:0f: 64:27:89:1c:84:ea:4d:28:dd:ed:02:8c:94:fa:f7:f6:26:32: 5c:b4:ca:65:a2:9d:44:7e:a1:72:69:06:63:eb:c9:70:26:e4: e7:57:91:eb:20:7f:95:62:1b:2b:a1:fd:29:e1:97:34:91:2d: 64:92:1a:be:6f:62:d0:c7:3a:39:d7:c4:15:80:86:da:84:78: 92:da:23:1a:b1:f2:96:95:96:b2:db:4e:77:8b:59:a3:d2:48: 82:14:5a:05:48:ff:be:ce:35:04:07:8f:46:47:7f:4c:c2:8a: 6d:09:59:2e:77:68:36:bf:33:77:07:75:55:fa:10:0e:ee:63: bd:9f:fc:e5:f7:f2:74:34:6f:1d:21:cf:09:85:3f:b5:c8:8f: 9f:9f:30:a7:7d:b2:20:71:c9:24:a8:db:95:f7:90:b9:f6:ed: 0a:3f:1b:dc:18:87:41:57:7e:5b:d8:32:45:70:28:81:1c:4e: 5f:e9:49:d7:7f:29:77:dc:bf:ea:3b:b1:71:95:71:7b:e8:08: a0:41:71:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhCNEYxMTAvBgNVBAUTKDQwREI5RTJDQkFERUNEQTlCOTcyMzUxMDIxNTA3QURD RDFBNTYyN0YwHhcNMjUxMTA1MDAxNDQ4WhcNMjUxMTEyMDAxNDQ4WjAYMRYwFAYD VQQDEw02OTBhOTZmOS1hNzc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA52RPDT9EsUnMMpAqAXHduhvRh33WzaofFKS0Jotatk0FwwTbGWm9QVVNPSdb Dkd4qbDEEOlirp+KvtjINDY/yoV+4/25N+LY6q9KMalMpuRH3EhN/R3gwFRApyyM fXT1LrO9svq4Or0wNf+xkFbQrCmHn56IN85A95uslvRMrLzYhC5J+yhLjrB84rRH 50v4Ojv1XuhuTTZFmg9Cjp+9vWKP1pGu4tvlGDG6lDBXaXuHKbHQfoomoHsY8X/J /6U8qzYvnUR2U6rMXsJhKwUtfrX+Pn6QzIGvVYBZNxkOAzlp4Wrps4DUNNXW6+Ve k4fQB0FKfTWlUdbe1WyfR0sNIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJIir8BZ 7FA+PrUC1WbrS38HHG5mMB8GA1UdIwQYMBaAFEDbniy63s2puXI1ECFQetzRpWJ/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEI0Ri9ERDczMjY0ODY4 QkMxMUVDODc4MDc5NDhDNEY5QUUwMi9RTnVlTExyZXphbTVjalVRSVZCNjNOR2xZ bjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOdWVMTHJlemFtNWNqVVFJVkI2M05HbFluOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEI0Ri9ERDczMjY0ODY4QkMxMUVDODc4MDc5NDhDNEY5QUUwMi9RTnVlTExyZXph bTVjalVRSVZCNjNOR2xZbjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA07GEYgaEWlSB/MzbfoEHlZnvqQBII5fNuuA/FyVqlzPgOVoXwJj45 AnwhgjZW06PcWV147A9kJ4kchOpNKN3tAoyU+vf2JjJctMplop1EfqFyaQZj68lw JuTnV5HrIH+VYhsrof0p4Zc0kS1kkhq+b2LQxzo518QVgIbahHiS2iMasfKWlZay 2053i1mj0kiCFFoFSP++zjUEB49GR39MwoptCVkud2g2vzN3B3VV+hAO7mO9n/zl 9/J0NG8dIc8JhT+1yI+fnzCnfbIgcckkqNuV95C59u0KPxvcGIdBV35b2DJFcCiB HE5f6UnXfyl33L/qO7FxlXF76AigQXF8 -----END CERTIFICATE-----Generated at Wed Nov 5 13:32:14 2025 by rpki-client