$ rpki-client -vvf rpki.apnic.net/member_repository/A91F367D/99DA7ABE039411EBB6648446C4F9AE02/q8dSj86PeUX0YPdSdIJB2tVnilo.mft File: q8dSj86PeUX0YPdSdIJB2tVnilo.mft (raw, json) Hash identifier: iDEGDTED8CRM/k8l9DJiRJORE+zeYXFs/qJYCAQU3Eo= Subject key identifier: FD:D9:3F:15:50:8F:11:00:09:99:EF:51:5A:F2:5C:EF:C0:2A:4E:41 Authority key identifier: AB:C7:52:8F:CE:8F:79:45:F4:60:F7:52:74:82:41:DA:D5:67:8A:5A Certificate issuer: /CN=A91F367D/serialNumber=ABC7528FCE8F7945F460F752748241DAD5678A5A Certificate serial: 07FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q8dSj86PeUX0YPdSdIJB2tVnilo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F367D/99DA7ABE039411EBB6648446C4F9AE02/q8dSj86PeUX0YPdSdIJB2tVnilo.mft Manifest number: 07F4 Signing time: Tue 04 Nov 2025 21:06:46 +0000 Manifest this update: Tue 04 Nov 2025 21:06:45 +0000 Manifest next update: Tue 11 Nov 2025 21:06:45 +0000 Files and hashes: 1: q8dSj86PeUX0YPdSdIJB2tVnilo.crl (hash: Xf6Uwl6d9M/YPN7jOVJYCJVWYbKfP/4XriqiR0Pciuo=) 2: AC1CD860039511EBBE8C7F47C4F9AE02.roa (hash: cujX/yOvlRxdf5P8eSmQLnHVmBWJtY4Bh7R/a7D9SZs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F367D/99DA7ABE039411EBB6648446C4F9AE02/q8dSj86PeUX0YPdSdIJB2tVnilo.crl rsync://rpki.apnic.net/member_repository/A91F367D/99DA7ABE039411EBB6648446C4F9AE02/q8dSj86PeUX0YPdSdIJB2tVnilo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q8dSj86PeUX0YPdSdIJB2tVnilo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:06:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2042 (0x7fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F367D, serialNumber=ABC7528FCE8F7945F460F752748241DAD5678A5A Validity Not Before: Nov 4 21:06:45 2025 GMT Not After : Nov 11 21:06:45 2025 GMT Subject: CN=690a6ae5-308a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:0e:67:35:4f:ce:3e:8a:c7:88:27:7a:e9:df: 4e:4f:b1:5d:79:75:13:70:7a:24:d3:e1:f5:5e:c2: 1d:15:28:ba:2a:af:ab:b1:2d:ff:08:e7:7f:32:94: 27:c6:b1:b2:bc:ab:c2:e4:61:c9:ea:06:e2:46:17: c2:31:ba:93:39:8c:7a:b3:8d:78:9e:a5:29:de:b0: 11:d6:a5:3e:52:66:c2:ee:e1:e0:ff:61:6b:82:5f: d0:95:50:7c:02:ea:35:8d:c1:a2:82:1e:d6:24:ae: 7c:35:cb:6f:2c:0f:c3:3c:b8:a5:1a:d3:0b:09:f4: 4d:82:ef:4e:a0:56:ba:2c:03:23:fd:fa:e0:c6:39: 5f:ef:27:c8:c5:5e:95:bf:15:67:3c:5b:59:3d:6f: 2b:24:9d:a3:ac:bb:95:70:30:6b:df:f4:91:78:c9: 09:81:77:99:d5:c7:3d:8f:1c:98:a5:c1:92:c5:5e: 4a:92:2f:e7:82:64:80:f4:0d:29:62:98:2f:3f:8d: ab:79:0a:50:f6:64:02:d3:9f:3c:43:41:00:22:7d: 1c:f5:23:8c:b6:c8:40:b3:58:83:bf:34:72:f7:d5: 24:b6:1b:b8:71:db:d9:34:4e:81:d7:90:15:51:2f: 6c:25:e3:62:1e:76:77:97:5d:2a:18:15:d2:26:26: e9:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:D9:3F:15:50:8F:11:00:09:99:EF:51:5A:F2:5C:EF:C0:2A:4E:41 X509v3 Authority Key Identifier: keyid:AB:C7:52:8F:CE:8F:79:45:F4:60:F7:52:74:82:41:DA:D5:67:8A:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F367D/99DA7ABE039411EBB6648446C4F9AE02/q8dSj86PeUX0YPdSdIJB2tVnilo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q8dSj86PeUX0YPdSdIJB2tVnilo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F367D/99DA7ABE039411EBB6648446C4F9AE02/q8dSj86PeUX0YPdSdIJB2tVnilo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:7d:6a:45:df:8a:a4:00:c1:8e:32:19:e2:7e:e9:aa:e6:ac: 8a:36:fd:43:46:e3:3a:75:5c:02:da:ee:43:45:a2:9c:c6:25: b4:c3:99:cd:63:74:4b:04:6b:62:1e:27:35:17:7e:6e:67:49: 7f:d0:74:03:20:99:b8:90:01:57:b9:24:88:08:96:89:7f:6d: 5a:b4:02:dd:a0:26:b9:77:b0:7c:3a:a2:eb:a7:59:ca:45:cb: 1d:4a:41:91:ac:86:44:6e:ed:c3:54:5f:bb:3c:b6:1e:8c:fb: 85:73:41:3e:c8:2a:31:17:df:28:34:d2:2a:ea:4c:32:87:cb: 2a:25:ba:b3:16:90:b5:a5:7a:06:c7:74:0b:31:4b:28:cc:31: 6f:50:51:eb:22:f8:ce:64:ce:8b:22:3e:09:dc:f2:38:fb:2e: 30:fa:c1:19:7e:3e:4f:0b:fa:6f:45:11:78:8e:10:62:76:d1: 2a:27:8a:83:fb:95:08:33:64:c5:4b:34:29:28:a7:68:e2:8d: f0:a5:b7:cd:f7:62:43:34:e1:84:4b:7c:47:d4:f7:1f:b0:75: c5:b9:92:9a:43:af:c9:78:c2:49:2e:8b:3a:20:80:50:f7:2a: 9f:95:7e:24:06:21:b4:0c:05:8a:2b:73:cf:09:13:77:c8:11: 1c:37:28:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM2N0QxMTAvBgNVBAUTKEFCQzc1MjhGQ0U4Rjc5NDVGNDYwRjc1Mjc0ODI0MURB RDU2NzhBNUEwHhcNMjUxMTA0MjEwNjQ1WhcNMjUxMTExMjEwNjQ1WjAYMRYwFAYD VQQDEw02OTBhNmFlNS0zMDhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyw5nNU/OPorHiCd66d9OT7FdeXUTcHok0+H1XsIdFSi6Kq+rsS3/COd/MpQn xrGyvKvC5GHJ6gbiRhfCMbqTOYx6s414nqUp3rAR1qU+UmbC7uHg/2Frgl/QlVB8 Auo1jcGigh7WJK58NctvLA/DPLilGtMLCfRNgu9OoFa6LAMj/frgxjlf7yfIxV6V vxVnPFtZPW8rJJ2jrLuVcDBr3/SReMkJgXeZ1cc9jxyYpcGSxV5Kki/ngmSA9A0p YpgvP42reQpQ9mQC0588Q0EAIn0c9SOMtshAs1iDvzRy99Ukthu4cdvZNE6B15AV US9sJeNiHnZ3l10qGBXSJibp+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP3ZPxVQ jxEACZnvUVryXO/AKk5BMB8GA1UdIwQYMBaAFKvHUo/Oj3lF9GD3UnSCQdrVZ4pa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzY3RC85OURBN0FCRTAz OTQxMUVCQjY2NDg0NDZDNEY5QUUwMi9xOGRTajg2UGVVWDBZUGRTZElKQjJ0Vm5p bG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3E4ZFNqODZQZVVYMFlQZFNkSUpCMnRWbmlsby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzY3RC85OURBN0FCRTAzOTQxMUVCQjY2NDg0NDZDNEY5QUUwMi9xOGRTajg2UGVV WDBZUGRTZElKQjJ0Vm5pbG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlfWpF34qkAMGOMhnifumq5qyKNv1DRuM6dVwC2u5DRaKcxiW0w5nN Y3RLBGtiHic1F35uZ0l/0HQDIJm4kAFXuSSICJaJf21atALdoCa5d7B8OqLrp1nK RcsdSkGRrIZEbu3DVF+7PLYejPuFc0E+yCoxF98oNNIq6kwyh8sqJbqzFpC1pXoG x3QLMUsozDFvUFHrIvjOZM6LIj4J3PI4+y4w+sEZfj5PC/pvRRF4jhBidtEqJ4qD +5UIM2TFSzQpKKdo4o3wpbfN92JDNOGES3xH1PcfsHXFuZKaQ6/JeMJJLos6IIBQ 9yqflX4kBiG0DAWKK3PPCRN3yBEcNygL -----END CERTIFICATE-----Generated at Wed Nov 5 12:05:35 2025 by rpki-client