$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft File: QidVkJNLMeOdgd28nAmFa39OWIQ.mft (raw, json) Hash identifier: rq40Cf2tYm01pYDJEZp4u+qzbAoEzpZw2w60pzfCGJs= Subject key identifier: 3B:6F:06:B2:89:33:42:39:0F:7D:EB:76:FD:31:3B:CB:34:08:B5:EE Authority key identifier: 42:27:55:90:93:4B:31:E3:9D:81:DD:BC:9C:09:85:6B:7F:4E:58:84 Certificate issuer: /CN=A91DC009/serialNumber=42275590934B31E39D81DDBC9C09856B7F4E5884 Certificate serial: 0242 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QidVkJNLMeOdgd28nAmFa39OWIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft Manifest number: 023E Signing time: Wed 05 Nov 2025 01:53:58 +0000 Manifest this update: Wed 05 Nov 2025 01:53:58 +0000 Manifest next update: Wed 12 Nov 2025 01:53:58 +0000 Files and hashes: 1: QidVkJNLMeOdgd28nAmFa39OWIQ.crl (hash: k0RnvKlIqgYR9yM6ex3c5vCFQu9N4Tano+BBQ3M/ki8=) 2: 754A1888490D11ED95C7C86EC4F9AE02.roa (hash: exhPVGNFaD/U/A5P2LJ5tbDt6DwCOgJTZLjueCqccok=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.crl rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QidVkJNLMeOdgd28nAmFa39OWIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:53:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 578 (0x242) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC009, serialNumber=42275590934B31E39D81DDBC9C09856B7F4E5884 Validity Not Before: Nov 5 01:53:58 2025 GMT Not After : Nov 12 01:53:58 2025 GMT Subject: CN=690aae36-ce79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:1e:d9:ee:8d:9c:42:d5:65:2c:18:e2:e5:44: 3d:ce:47:17:11:83:86:b6:70:3c:97:7e:57:1c:69: 4c:2b:90:f8:2e:0a:49:54:d9:0c:7b:c9:9e:4a:58: 46:04:de:cf:74:30:41:41:78:a6:e1:bb:a0:c9:ff: 42:39:98:0a:af:75:45:33:3a:9c:5b:21:60:91:cf: 3d:9f:75:60:59:00:72:88:4b:f1:c5:6c:48:31:09: d1:58:cc:58:22:51:6a:59:a8:47:64:93:f5:de:05: 95:47:13:99:08:ee:94:6f:cd:a6:80:63:4d:94:ff: 65:ec:1c:92:71:e2:14:86:e6:b3:5d:18:d1:10:c9: a8:59:a3:9d:02:8b:8b:36:95:9c:7f:7a:88:e8:9e: 8b:fb:50:06:0c:be:6e:50:31:bc:c3:4d:d4:6b:b5: b1:32:db:ec:2c:2c:19:28:cf:66:c6:1c:0f:ef:a2: 29:f6:0e:c6:46:a8:77:55:f5:f0:4a:ee:1a:b6:59: 97:86:ea:99:68:9a:0e:21:0c:d1:19:95:ff:f3:b8: c9:78:0b:63:45:e4:50:2d:c6:f6:f7:12:1a:1c:0a: 20:00:26:54:9a:5b:44:01:dd:aa:c4:60:22:51:0a: 3c:4d:95:3e:83:d5:a7:97:34:a7:d6:f1:55:fa:f2: 7b:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:6F:06:B2:89:33:42:39:0F:7D:EB:76:FD:31:3B:CB:34:08:B5:EE X509v3 Authority Key Identifier: keyid:42:27:55:90:93:4B:31:E3:9D:81:DD:BC:9C:09:85:6B:7F:4E:58:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QidVkJNLMeOdgd28nAmFa39OWIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:ef:e2:e9:e0:65:0b:b8:1b:d7:82:75:cb:60:a2:e7:2c:0f: c2:c5:05:49:b6:c5:49:b7:50:4d:8a:57:c9:1e:f3:74:e2:41: 57:b8:00:32:0e:46:48:de:a1:b3:6c:a0:c9:54:51:4d:4e:7d: 1b:cd:9f:4c:9c:42:69:d5:38:d0:44:92:f0:d1:24:d0:08:15: ac:29:e4:4e:0c:8c:65:be:7c:9d:87:0f:af:fc:43:ca:90:56: 07:a1:47:e1:7b:23:74:99:a6:64:91:2d:ef:27:71:e0:7c:d1: 2d:18:8c:e5:d4:45:db:f4:99:8e:51:28:d5:68:9a:5d:38:35: 07:f2:b8:52:d6:65:49:62:13:49:f3:7d:fd:e4:59:98:d7:cd: bf:95:0e:4e:35:ce:08:d3:c5:7a:6f:59:a9:6d:d1:a6:9c:55: e3:97:37:46:70:e4:9e:d3:90:fb:cc:8f:b7:df:77:72:cc:ca: 2c:18:a2:01:0d:3e:ea:ca:23:40:97:74:c4:8d:92:4b:81:b7: 51:9b:15:9a:ca:e6:23:95:01:43:e3:b1:8b:8d:bb:e1:3b:83: e7:20:96:d5:16:eb:ec:f0:d2:12:11:24:73:3b:31:02:91:33: 17:d4:6a:eb:ab:f5:57:bc:2b:4c:a7:ab:c4:dd:c9:62:a8:f1: dd:8d:91:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwMDkxMTAvBgNVBAUTKDQyMjc1NTkwOTM0QjMxRTM5RDgxRERCQzlDMDk4NTZC N0Y0RTU4ODQwHhcNMjUxMTA1MDE1MzU4WhcNMjUxMTEyMDE1MzU4WjAYMRYwFAYD VQQDEw02OTBhYWUzNi1jZTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnx7Z7o2cQtVlLBji5UQ9zkcXEYOGtnA8l35XHGlMK5D4LgpJVNkMe8meSlhG BN7PdDBBQXim4bugyf9COZgKr3VFMzqcWyFgkc89n3VgWQByiEvxxWxIMQnRWMxY IlFqWahHZJP13gWVRxOZCO6Ub82mgGNNlP9l7BySceIUhuazXRjREMmoWaOdAouL NpWcf3qI6J6L+1AGDL5uUDG8w03Ua7WxMtvsLCwZKM9mxhwP76Ip9g7GRqh3VfXw Su4atlmXhuqZaJoOIQzRGZX/87jJeAtjReRQLcb29xIaHAogACZUmltEAd2qxGAi UQo8TZU+g9WnlzSn1vFV+vJ7SwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDtvBrKJ M0I5D33rdv0xO8s0CLXuMB8GA1UdIwQYMBaAFEInVZCTSzHjnYHdvJwJhWt/TliE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzAwOS85NTlEQjg1RTQ5 MEExMUVEQkI3Njc4NDhDNEY5QUUwMi9RaWRWa0pOTE1lT2RnZDI4bkFtRmEzOU9X SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FpZFZrSk5MTWVPZGdkMjhuQW1GYTM5T1dJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzAwOS85NTlEQjg1RTQ5MEExMUVEQkI3Njc4NDhDNEY5QUUwMi9RaWRWa0pOTE1l T2RnZDI4bkFtRmEzOU9XSVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB07+Lp4GULuBvXgnXLYKLnLA/CxQVJtsVJt1BNilfJHvN04kFXuAAy DkZI3qGzbKDJVFFNTn0bzZ9MnEJp1TjQRJLw0STQCBWsKeRODIxlvnydhw+v/EPK kFYHoUfheyN0maZkkS3vJ3HgfNEtGIzl1EXb9JmOUSjVaJpdODUH8rhS1mVJYhNJ 83395FmY182/lQ5ONc4I08V6b1mpbdGmnFXjlzdGcOSe05D7zI+333dyzMosGKIB DT7qyiNAl3TEjZJLgbdRmxWayuYjlQFD47GLjbvhO4PnIJbVFuvs8NISESRzOzEC kTMX1Grrq/VXvCtMp6vE3cliqPHdjZGM -----END CERTIFICATE-----Generated at Wed Nov 5 11:55:38 2025 by rpki-client