$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft File: QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft (raw, json) Hash identifier: aSOVpeKUKFcP3eUnwwdNaZMuPEGhu+M2huATGu488j8= Subject key identifier: C3:9F:25:CD:EF:FE:C3:D4:2F:3B:F9:7D:88:4C:78:EE:EE:BD:9C:2A Authority key identifier: 41:6D:6C:D6:03:90:FB:7C:96:ED:79:D7:8C:E7:6F:54:AF:CF:44:58 Certificate issuer: /CN=A91E5D61/serialNumber=416D6CD60390FB7C96ED79D78CE76F54AFCF4458 Certificate serial: 12EE Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft Manifest number: 47EF Signing time: Tue 04 Nov 2025 14:21:13 +0000 Manifest this update: Tue 04 Nov 2025 14:21:13 +0000 Manifest next update: Tue 11 Nov 2025 14:21:13 +0000 Files and hashes: 1: QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl (hash: yAczsijtn7EeBmVRichZzw9zvjuXuCZolLSlRZdB69A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4846 (0x12ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D61, serialNumber=416D6CD60390FB7C96ED79D78CE76F54AFCF4458 Validity Not Before: Nov 4 14:21:13 2025 GMT Not After : Nov 11 14:21:13 2025 GMT Subject: CN=690a0bd9-352d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:85:c7:d1:c5:2e:51:81:99:38:9d:ad:4b:f5: 6d:15:4f:86:5d:93:bc:b8:48:51:f7:b6:fe:ea:91: d0:e8:f7:96:cd:b0:89:5c:0e:68:99:84:7c:7c:7d: 4b:21:dc:23:d1:15:28:64:af:ec:e7:02:b1:d6:f3: 71:6a:ef:2b:17:8c:50:f5:04:ae:48:33:22:b4:41: 02:7b:e8:80:c1:2a:dd:40:5f:ad:4c:fd:13:ff:4b: 10:e1:7f:e0:a6:23:79:b9:7a:40:2e:3e:45:4f:3a: a3:86:89:e0:96:56:06:3a:20:2a:7c:0a:49:13:ab: e2:f7:f0:03:8d:e7:db:39:c2:4c:05:ed:18:79:67: 6a:85:bf:53:6e:48:f4:67:56:78:69:e7:7b:6f:05: a1:f7:c3:b8:29:00:f0:ed:a8:48:78:bb:41:cf:39: b8:7e:e6:c9:a1:64:b6:85:e5:9e:36:5e:a6:35:c2: 4f:f8:39:39:0f:43:9c:87:1a:a8:15:e9:ff:1a:3a: 68:2a:40:4b:d4:58:f1:24:a0:3e:1b:5f:ff:c9:19: 5a:60:36:14:bb:f1:5b:04:a9:eb:99:89:39:da:9c: c4:e1:62:15:3b:53:36:a2:b6:3e:d2:09:a2:ae:d3: d4:7d:b6:3c:24:dc:57:a6:1f:56:98:a9:6c:42:ee: de:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:9F:25:CD:EF:FE:C3:D4:2F:3B:F9:7D:88:4C:78:EE:EE:BD:9C:2A X509v3 Authority Key Identifier: keyid:41:6D:6C:D6:03:90:FB:7C:96:ED:79:D7:8C:E7:6F:54:AF:CF:44:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5D61/2A7C7D981D7911E2879E38C508B02CD2/QW1s1gOQ-3yW7XnXjOdvVK_PRFg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:67:1e:f3:44:61:39:46:68:ea:d7:43:5a:5f:6c:1b:25:ae: ab:22:10:8d:62:62:41:f0:dd:13:0a:e2:cf:39:6f:d2:92:7b: 3a:72:45:5c:82:13:54:74:cc:b9:a2:7e:37:47:6f:3d:01:e8: 61:bc:0b:a5:d9:da:b0:3e:c7:3c:eb:a6:07:ed:89:21:31:f6: ed:24:5d:d0:7d:76:88:88:7c:6e:98:95:7d:db:5e:8d:78:2a: c8:e2:be:68:eb:9d:48:64:04:4c:db:d7:15:d1:f3:60:e6:64: e2:76:34:30:32:5f:9d:f9:0a:fa:e8:a2:ba:55:28:e2:d6:44: 9d:cf:20:a6:9c:0d:c1:b7:d2:fd:fb:94:23:68:5b:19:81:96: 4d:6b:89:60:4f:6d:99:9b:96:ac:2d:31:fb:a5:67:c9:60:32: 8b:89:63:0f:40:d2:23:d9:3d:b3:92:0b:c3:98:c6:17:34:5d: ae:ea:60:aa:b5:f6:fb:d0:9f:d4:85:63:95:09:9f:33:79:a8: 06:6b:df:2f:0c:9a:64:4b:f6:65:03:c3:85:1e:5e:2b:2f:d6: f0:a2:83:1d:24:03:b2:40:eb:be:d3:34:4d:ba:3a:1d:3d:13: 89:88:92:64:60:dd:ae:83:96:fc:2b:15:1d:87:81:fa:91:ce: 31:88:e7:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEu4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVENjExMTAvBgNVBAUTKDQxNkQ2Q0Q2MDM5MEZCN0M5NkVENzlENzhDRTc2RjU0 QUZDRjQ0NTgwHhcNMjUxMTA0MTQyMTEzWhcNMjUxMTExMTQyMTEzWjAYMRYwFAYD VQQDEw02OTBhMGJkOS0zNTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9oXH0cUuUYGZOJ2tS/VtFU+GXZO8uEhR97b+6pHQ6PeWzbCJXA5omYR8fH1L Idwj0RUoZK/s5wKx1vNxau8rF4xQ9QSuSDMitEECe+iAwSrdQF+tTP0T/0sQ4X/g piN5uXpALj5FTzqjhongllYGOiAqfApJE6vi9/ADjefbOcJMBe0YeWdqhb9Tbkj0 Z1Z4aed7bwWh98O4KQDw7ahIeLtBzzm4fubJoWS2heWeNl6mNcJP+Dk5D0Ochxqo Fen/GjpoKkBL1FjxJKA+G1//yRlaYDYUu/FbBKnrmYk52pzE4WIVO1M2orY+0gmi rtPUfbY8JNxXph9WmKlsQu7eIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMOfJc3v /sPULzv5fYhMeO7uvZwqMB8GA1UdIwQYMBaAFEFtbNYDkPt8lu1514znb1Svz0RY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUQ2MS8yQTdDN0Q5ODFE NzkxMUUyODc5RTM4QzUwOEIwMkNEMi9RVzFzMWdPUS0zeVc3WG5Yak9kdlZLX1BS RmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1FXMXMxZ09RLTN5VzdYblhqT2R2VktfUFJGZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUQ2MS8yQTdDN0Q5ODFENzkxMUUyODc5RTM4QzUwOEIwMkNEMi9RVzFzMWdPUS0z eVc3WG5Yak9kdlZLX1BSRmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5Zx7zRGE5Rmjq10NaX2wbJa6rIhCNYmJB8N0TCuLPOW/Skns6ckVc ghNUdMy5on43R289AehhvAul2dqwPsc866YH7YkhMfbtJF3QfXaIiHxumJV9216N eCrI4r5o651IZARM29cV0fNg5mTidjQwMl+d+Qr66KK6VSji1kSdzyCmnA3Bt9L9 +5QjaFsZgZZNa4lgT22Zm5asLTH7pWfJYDKLiWMPQNIj2T2zkgvDmMYXNF2u6mCq tfb70J/UhWOVCZ8zeagGa98vDJpkS/ZlA8OFHl4rL9bwooMdJAOyQOu+0zRNujod PROJiJJkYN2ug5b8KxUdh4H6kc4xiOcz -----END CERTIFICATE-----Generated at Wed Nov 5 19:21:32 2025 by rpki-client