$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft File: q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft (raw, json) Hash identifier: GI3wt1XwD/3cmHahjRUVsPr00L/esvf2iIPFPWiO+xQ= Subject key identifier: F5:70:87:44:40:D8:A1:64:4C:B4:EA:0D:69:B0:28:32:51:C9:70:00 Authority key identifier: AB:67:E8:2F:C8:6A:AC:A8:2A:CF:F8:DC:36:45:CD:71:61:01:3F:76 Certificate issuer: /CN=A91D1E4C/serialNumber=AB67E82FC86AACA82ACFF8DC3645CD7161013F76 Certificate serial: 034C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2foL8hqrKgqz_jcNkXNcWEBP3Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft Manifest number: 0B9D Signing time: Tue 04 Nov 2025 20:42:40 +0000 Manifest this update: Tue 04 Nov 2025 20:42:40 +0000 Manifest next update: Tue 11 Nov 2025 20:42:40 +0000 Files and hashes: 1: q2foL8hqrKgqz_jcNkXNcWEBP3Y.crl (hash: m3I2CFPOtLIAmKab7vHGyXylIBW86JY8qRgapnO5L6k=) 2: 2AD1C746940111F0B07D7068C4F9AE02.roa (hash: UEvIJGCtIPViKlp9oF2IdyQbfjX5CIRMn68xHUdCFM0=) 3: 3DD8C628940111F09204AF71C4F9AE02.roa (hash: IIG8gh+kO7sLLkwwytxU4QMUTZ/JBKDzSudE/wC+tc8=) 4: FC358296CFA011EDA4AC5B18C4F9AE02.roa (hash: leiC+N+7T7KBF8xTueIqh0RjFttyTRTBR+jUcxpvEWs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.crl rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2foL8hqrKgqz_jcNkXNcWEBP3Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:42:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 844 (0x34c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1E4C, serialNumber=AB67E82FC86AACA82ACFF8DC3645CD7161013F76 Validity Not Before: Nov 4 20:42:40 2025 GMT Not After : Nov 11 20:42:40 2025 GMT Subject: CN=690a6540-1c57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:1f:c8:70:1e:8c:8d:d9:dc:a4:cf:ed:93:bf: ef:5f:ba:93:07:89:12:76:22:d9:51:f2:6e:1b:92: ea:65:04:29:f3:27:80:c6:8e:2c:90:0b:fd:e6:1a: 37:db:b5:e6:7a:79:b8:5f:6b:b2:c1:60:bf:38:31: f7:56:83:7c:fc:50:fa:68:8d:d8:90:b4:6d:81:ce: 7c:38:ca:9e:5b:52:48:52:84:8c:8e:a9:50:48:83: df:4c:94:b2:28:d6:aa:dc:d4:c6:78:c5:dd:59:44: 6c:d0:bc:c6:dc:89:7d:4b:4c:a6:2e:d3:0b:44:5c: a5:b3:7c:a9:3e:5a:9c:bd:28:f7:34:07:09:44:16: 90:ed:58:54:c4:2d:93:47:4c:55:67:d5:c1:56:60: d9:4a:d7:5a:32:56:94:c1:97:9e:bd:ca:dc:a4:cd: b1:fa:ea:d4:46:0b:92:a4:c8:ec:bc:81:ae:ae:46: 9b:f2:78:39:c5:d3:cd:33:1d:44:be:af:27:14:70: 07:82:c6:40:17:67:76:f6:81:f6:ca:2f:09:6a:40: 02:e1:79:b0:a1:be:bc:51:00:ac:e3:e0:e6:0f:d6: 9d:47:a2:d1:20:c3:78:29:5a:56:a5:6a:1e:ac:fc: dc:a9:df:e3:5a:f8:4e:5c:79:86:89:96:9c:61:27: 11:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:70:87:44:40:D8:A1:64:4C:B4:EA:0D:69:B0:28:32:51:C9:70:00 X509v3 Authority Key Identifier: keyid:AB:67:E8:2F:C8:6A:AC:A8:2A:CF:F8:DC:36:45:CD:71:61:01:3F:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2foL8hqrKgqz_jcNkXNcWEBP3Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:8d:71:fd:99:d8:0a:43:3c:38:cb:e6:8f:6c:77:fb:22:a7: 10:5d:a7:9e:4c:36:69:ec:14:08:90:9e:64:6b:97:40:1d:ea: 51:f3:aa:e4:54:80:86:0f:bd:d2:91:c7:42:72:c4:74:9d:14: 09:db:45:eb:c1:63:88:41:96:ad:1d:2d:c3:15:5d:fe:5d:4e: 7c:5d:82:17:c1:6d:67:cd:65:bd:85:24:a2:2f:ef:ac:e4:60: 98:0a:ce:52:1a:b6:c4:66:82:a1:d1:8f:b5:55:96:f7:a0:26: 0b:59:9d:36:d1:c5:56:10:f2:a1:e6:a6:4c:f0:a1:4a:15:a8: f9:f3:d1:71:13:d6:27:af:25:a3:ff:07:55:87:07:62:18:2d: d3:2b:66:de:07:3d:99:80:21:e4:01:05:5e:12:07:9f:8d:d5: e1:96:38:f1:21:ba:4a:11:a5:1c:f5:1c:f9:62:a7:16:fa:e1: 47:1b:ce:0a:dc:dc:91:d4:22:93:66:30:12:96:96:9a:b9:58: 55:d6:47:0f:e3:36:3c:87:25:24:e9:84:79:26:59:ae:72:05: e3:13:a2:b2:99:76:c0:1d:ed:0c:9c:1d:d5:67:75:0d:37:59: 2a:ce:18:9d:bf:4b:c9:f1:6d:e9:cf:74:79:a9:a3:5c:a3:ac: 63:86:28:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFFNEMxMTAvBgNVBAUTKEFCNjdFODJGQzg2QUFDQTgyQUNGRjhEQzM2NDVDRDcx NjEwMTNGNzYwHhcNMjUxMTA0MjA0MjQwWhcNMjUxMTExMjA0MjQwWjAYMRYwFAYD VQQDEw02OTBhNjU0MC0xYzU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7h/IcB6MjdncpM/tk7/vX7qTB4kSdiLZUfJuG5LqZQQp8yeAxo4skAv95ho3 27Xmenm4X2uywWC/ODH3VoN8/FD6aI3YkLRtgc58OMqeW1JIUoSMjqlQSIPfTJSy KNaq3NTGeMXdWURs0LzG3Il9S0ymLtMLRFyls3ypPlqcvSj3NAcJRBaQ7VhUxC2T R0xVZ9XBVmDZStdaMlaUwZeevcrcpM2x+urURguSpMjsvIGurkab8ng5xdPNMx1E vq8nFHAHgsZAF2d29oH2yi8JakAC4Xmwob68UQCs4+DmD9adR6LRIMN4KVpWpWoe rPzcqd/jWvhOXHmGiZacYScR7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPVwh0RA 2KFkTLTqDWmwKDJRyXAAMB8GA1UdIwQYMBaAFKtn6C/IaqyoKs/43DZFzXFhAT92 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUU0Qy83REFEQTU2Q0Q5 NEQxMUVBQTYwNEFDNTNDNEY5QUUwMi9xMmZvTDhocXJLZ3F6X2pjTmtYTmNXRUJQ M1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EyZm9MOGhxcktncXpfamNOa1hOY1dFQlAzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUU0Qy83REFEQTU2Q0Q5NEQxMUVBQTYwNEFDNTNDNEY5QUUwMi9xMmZvTDhocXJL Z3F6X2pjTmtYTmNXRUJQM1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmjXH9mdgKQzw4y+aPbHf7IqcQXaeeTDZp7BQIkJ5ka5dAHepR86rk VICGD73SkcdCcsR0nRQJ20XrwWOIQZatHS3DFV3+XU58XYIXwW1nzWW9hSSiL++s 5GCYCs5SGrbEZoKh0Y+1VZb3oCYLWZ020cVWEPKh5qZM8KFKFaj589FxE9YnryWj /wdVhwdiGC3TK2beBz2ZgCHkAQVeEgefjdXhljjxIbpKEaUc9Rz5YqcW+uFHG84K 3NyR1CKTZjASlpaauVhV1kcP4zY8hyUk6YR5JlmucgXjE6KymXbAHe0MnB3VZ3UN N1kqzhidv0vJ8W3pz3R5qaNco6xjhihp -----END CERTIFICATE-----Generated at Wed Nov 5 00:04:34 2025 by rpki-client