$ rpki-client -vvf rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft File: QVQG7YC02Sekeai6BCEWri0RoaY.mft (raw, json) Hash identifier: spifFP/arSk5ETwCL+HrVwtGTdlBER7I04c7SqOXS40= Subject key identifier: DF:80:12:5C:E0:DA:A5:6E:DE:56:83:57:76:B2:A5:01:DC:78:47:BC Authority key identifier: 41:54:06:ED:80:B4:D9:27:A4:79:A8:BA:04:21:16:AE:2D:11:A1:A6 Certificate issuer: /CN=A91EFBA1/serialNumber=415406ED80B4D927A479A8BA042116AE2D11A1A6 Certificate serial: 1937 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVQG7YC02Sekeai6BCEWri0RoaY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft Manifest number: 190D Signing time: Tue 04 Nov 2025 16:33:29 +0000 Manifest this update: Tue 04 Nov 2025 16:33:29 +0000 Manifest next update: Tue 11 Nov 2025 16:33:29 +0000 Files and hashes: 1: QVQG7YC02Sekeai6BCEWri0RoaY.crl (hash: GCSuWJSjBfn04AYJnoKAJo7Bp6F6tX1eNRZVnXui+iw=) 2: 62C9C1CEE03111EEBECE581EC4F9AE02.roa (hash: /HjqJb3HeVbYY01kD6wIaTbG/Ekr2hN/Y4VOZSnVUZ8=) 3: 43E9842C185A11EF9D0C4338C4F9AE02.roa (hash: irpR0h3jscaijLl59Cc3m/8UUXHvczEBFVSowrAT4Uk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.crl rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVQG7YC02Sekeai6BCEWri0RoaY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:33:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6455 (0x1937) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EFBA1, serialNumber=415406ED80B4D927A479A8BA042116AE2D11A1A6 Validity Not Before: Nov 4 16:33:29 2025 GMT Not After : Nov 11 16:33:29 2025 GMT Subject: CN=690a2ad9-92ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:8c:83:12:68:4a:84:01:03:40:7a:aa:59:2e: 8b:6c:2d:34:47:c1:85:dc:b2:4c:21:55:69:bd:7e: db:d0:ec:3e:d2:6d:17:e7:42:05:f6:b1:44:d7:18: ea:49:3b:d8:31:46:65:48:27:f3:fe:f4:7e:55:5f: cf:30:f8:ee:0c:63:d6:4a:02:7b:ec:cf:4f:81:36: 16:0a:df:42:ce:e7:b7:1f:1c:a7:8e:60:5c:a9:9e: 0d:48:e7:b4:71:94:8d:d1:47:24:98:49:35:7c:d6: 5d:52:4e:ac:1e:74:0d:29:28:dc:40:0c:47:89:88: 26:ed:5e:1e:34:79:67:4e:8e:a8:84:32:16:41:de: fd:93:d8:21:c9:08:ce:e3:90:c4:ab:9e:9a:be:38: b8:77:d8:62:d3:73:5f:02:d5:7b:b4:7b:03:3e:5c: 03:53:6e:bf:d9:e0:d2:96:b4:1c:46:6f:03:21:51: c1:f5:a8:27:fb:be:4c:43:87:2d:4b:65:05:04:0a: 7b:7f:b1:2f:02:ea:86:6f:0b:f2:7c:cb:43:63:1c: 44:5d:2f:cf:75:92:8c:4f:f6:c8:5b:db:cd:e3:b6: fc:a6:39:b6:69:0c:57:a0:02:03:0a:33:da:6b:d3: 70:0d:4a:ea:aa:6a:7b:4e:ba:ab:22:07:b4:e1:1f: ae:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:80:12:5C:E0:DA:A5:6E:DE:56:83:57:76:B2:A5:01:DC:78:47:BC X509v3 Authority Key Identifier: keyid:41:54:06:ED:80:B4:D9:27:A4:79:A8:BA:04:21:16:AE:2D:11:A1:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QVQG7YC02Sekeai6BCEWri0RoaY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EFBA1/2AD51F4C990311E7A5E95C6FC4F9AE02/QVQG7YC02Sekeai6BCEWri0RoaY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:45:f0:9e:1f:11:67:8f:43:c2:4a:9c:af:da:88:be:92:ad: ed:f5:99:ec:65:92:34:6e:08:be:c5:08:fc:85:91:62:e8:f8: 1e:1a:79:91:9f:ce:e9:e3:06:6a:b4:71:1e:bb:17:5a:74:8c: c7:e1:14:0d:e8:11:35:c3:1e:56:69:23:40:ed:31:3f:bb:65: f1:2f:b9:d4:cb:ef:57:c1:d1:48:8a:d5:ba:1f:84:45:2e:24: e8:c1:e0:eb:67:50:0d:bd:61:07:12:13:ba:0a:a1:f7:92:a5: 1e:ed:70:80:c5:48:4c:10:da:a0:28:bb:5c:1a:17:65:a5:8f: 20:0d:74:09:c6:f4:a0:66:f2:69:34:35:29:04:28:c2:df:69: 24:f6:8b:3a:bd:26:f8:4c:12:ae:f9:c5:2d:8e:db:ba:01:dd: ba:8f:ad:b4:1b:4d:f0:f7:c6:5a:62:f9:3f:b4:03:40:1c:3f: ff:ff:cf:18:bb:80:5d:60:cf:35:80:d2:ca:1b:a0:79:6a:17: 13:e9:25:0e:80:32:fe:43:92:75:1a:3e:74:65:fe:2d:a7:d4: d1:1b:43:68:ef:56:e3:a9:81:50:0c:b9:54:d2:24:53:32:50: 10:73:ea:0f:5b:b9:18:3c:56:7f:a2:d0:e0:c1:f9:a2:09:4f: f6:75:e0:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGTcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUZCQTExMTAvBgNVBAUTKDQxNTQwNkVEODBCNEQ5MjdBNDc5QThCQTA0MjExNkFF MkQxMUExQTYwHhcNMjUxMTA0MTYzMzI5WhcNMjUxMTExMTYzMzI5WjAYMRYwFAYD VQQDEw02OTBhMmFkOS05MmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtIyDEmhKhAEDQHqqWS6LbC00R8GF3LJMIVVpvX7b0Ow+0m0X50IF9rFE1xjq STvYMUZlSCfz/vR+VV/PMPjuDGPWSgJ77M9PgTYWCt9Czue3HxynjmBcqZ4NSOe0 cZSN0UckmEk1fNZdUk6sHnQNKSjcQAxHiYgm7V4eNHlnTo6ohDIWQd79k9ghyQjO 45DEq56avji4d9hi03NfAtV7tHsDPlwDU26/2eDSlrQcRm8DIVHB9agn+75MQ4ct S2UFBAp7f7EvAuqGbwvyfMtDYxxEXS/PdZKMT/bIW9vN47b8pjm2aQxXoAIDCjPa a9NwDUrqqmp7TrqrIge04R+uPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN+AElzg 2qVu3laDV3aypQHceEe8MB8GA1UdIwQYMBaAFEFUBu2AtNknpHmougQhFq4tEaGm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRkJBMS8yQUQ1MUY0Qzk5 MDMxMUU3QTVFOTVDNkZDNEY5QUUwMi9RVlFHN1lDMDJTZWtlYWk2QkNFV3JpMFJv YVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FWUUc3WUMwMlNla2VhaTZCQ0VXcmkwUm9hWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RkJBMS8yQUQ1MUY0Qzk5MDMxMUU3QTVFOTVDNkZDNEY5QUUwMi9RVlFHN1lDMDJT ZWtlYWk2QkNFV3JpMFJvYVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3RfCeHxFnj0PCSpyv2oi+kq3t9ZnsZZI0bgi+xQj8hZFi6PgeGnmR n87p4wZqtHEeuxdadIzH4RQN6BE1wx5WaSNA7TE/u2XxL7nUy+9XwdFIitW6H4RF LiToweDrZ1ANvWEHEhO6CqH3kqUe7XCAxUhMENqgKLtcGhdlpY8gDXQJxvSgZvJp NDUpBCjC32kk9os6vSb4TBKu+cUtjtu6Ad26j620G03w98ZaYvk/tANAHD///88Y u4BdYM81gNLKG6B5ahcT6SUOgDL+Q5J1Gj50Zf4tp9TRG0No71bjqYFQDLlU0iRT MlAQc+oPW7kYPFZ/otDgwfmiCU/2deBC -----END CERTIFICATE-----Generated at Wed Nov 5 16:41:25 2025 by rpki-client