$ rpki-client -vvf rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft File: QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft (raw, json) Hash identifier: yCQt0XvK7cFoHSn8pZGgRe3vQO32szCmI+gRcVKWyjg= Subject key identifier: 83:2E:32:12:77:25:F5:10:A7:C6:49:31:E9:30:EE:D8:FD:DE:27:9F Authority key identifier: 40:EB:C2:5A:08:BA:5E:75:41:CE:14:2D:2B:C2:8A:E4:F8:28:8A:4B Certificate issuer: /CN=A9165C64/serialNumber=40EBC25A08BA5E7541CE142D2BC28AE4F8288A4B Certificate serial: 0C99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft Manifest number: 0C8A Signing time: Tue 22 Jul 2025 18:27:15 +0000 Manifest this update: Tue 22 Jul 2025 18:27:15 +0000 Manifest next update: Tue 29 Jul 2025 18:27:15 +0000 Files and hashes: 1: QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl (hash: 6G/s7+zgV+tTFeJ1Vswv34HQhLyW5+bWBqo72E2jjd4=) 2: FD9E07EAAB1111EF89574855C4F9AE02.roa (hash: CJEgaP8KqXDJxOZP2RnxuUbrLWDCGR55rSwKPSomEHQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 18:27:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3225 (0xc99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165C64, serialNumber=40EBC25A08BA5E7541CE142D2BC28AE4F8288A4B Validity Not Before: Jul 22 18:27:15 2025 GMT Not After : Jul 29 18:27:15 2025 GMT Subject: CN=687fd803-d6fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:40:a6:43:f8:d2:99:e5:b0:37:d2:2a:f5:bd: ff:94:8a:20:eb:25:a0:31:55:c8:3b:d3:3b:a3:1c: e9:42:2d:a7:d7:88:f0:d8:58:72:5e:7c:51:36:bc: dd:dd:fc:dd:af:d5:44:d9:a9:50:2b:7a:6b:11:aa: d2:ce:63:25:31:1a:31:79:df:8a:55:47:1b:fc:ee: 1e:0d:fb:82:39:fc:f0:6b:2e:4f:fb:6e:63:79:a4: 5e:fc:73:bb:2e:61:29:77:3d:21:e7:ed:55:cf:2f: 56:6c:5f:e1:d9:d8:b2:63:5b:b2:75:5e:ab:07:13: 38:c0:65:9c:92:bf:71:45:ac:42:bc:bd:d5:22:9f: 19:c7:00:11:d3:74:7f:5a:01:98:e8:20:17:db:fc: 28:71:90:95:ef:e0:a9:e9:88:9a:cc:36:44:c0:d6: 47:5a:31:66:d9:7b:1a:90:13:56:16:d1:71:3f:cd: ce:34:a6:f3:b0:69:7a:89:ad:b3:bc:d6:6c:7a:50: 3a:e1:ce:62:3d:e6:11:4e:01:25:72:2f:87:6e:bb: f6:ca:75:73:2f:86:ac:f4:95:38:c6:77:a8:c2:be: c2:e2:f0:3d:80:62:09:37:a4:84:05:22:ab:ce:97: a0:e4:e5:4c:47:24:16:32:ec:26:e1:bc:82:e6:fe: 5f:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:2E:32:12:77:25:F5:10:A7:C6:49:31:E9:30:EE:D8:FD:DE:27:9F X509v3 Authority Key Identifier: keyid:40:EB:C2:5A:08:BA:5E:75:41:CE:14:2D:2B:C2:8A:E4:F8:28:8A:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:08:09:54:94:ac:0f:1a:88:09:cd:3e:7e:62:09:06:5c:3f: 1c:d3:c2:62:ca:ff:41:20:0d:b2:6a:23:25:5a:7b:0d:fa:4a: 8b:d9:0e:13:56:57:4a:0e:e2:b5:be:43:c4:47:52:77:19:1b: 6b:17:0c:6e:c9:9d:2c:68:80:76:7e:5f:20:60:57:aa:c6:0a: dc:66:66:dc:fb:b2:d3:fb:4f:f1:bf:10:dd:a6:c8:34:87:40: 78:18:ee:fa:f5:80:93:63:b3:b3:22:5a:21:e4:d8:1b:59:45: 69:18:86:0f:60:5c:eb:66:c6:df:39:27:2b:d8:d7:fb:6b:94: cd:64:38:3f:79:84:b2:15:2b:81:c5:cf:df:11:85:85:42:a8: 17:d6:d6:79:8e:65:cc:d4:e4:61:39:38:3f:e3:c2:30:e0:18: be:a4:24:7e:66:97:2e:27:09:3e:f9:e5:a9:25:6c:cc:94:2c: 78:e0:d9:7f:b5:80:0a:aa:8b:af:7d:d2:79:c5:c3:d6:97:d0: b3:38:41:a6:41:8e:64:6c:98:07:8e:a2:19:4e:00:46:80:d7: 2d:a6:e7:b3:ad:a2:f2:54:e5:bf:32:b8:30:a4:3b:db:21:70: 2c:d6:29:1f:56:38:12:01:fd:94:4a:9e:59:90:9d:89:64:00: 2f:9b:32:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVDNjQxMTAvBgNVBAUTKDQwRUJDMjVBMDhCQTVFNzU0MUNFMTQyRDJCQzI4QUU0 RjgyODhBNEIwHhcNMjUwNzIyMTgyNzE1WhcNMjUwNzI5MTgyNzE1WjAYMRYwFAYD VQQDEw02ODdmZDgwMy1kNmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2UCmQ/jSmeWwN9Iq9b3/lIog6yWgMVXIO9M7oxzpQi2n14jw2FhyXnxRNrzd 3fzdr9VE2alQK3prEarSzmMlMRoxed+KVUcb/O4eDfuCOfzway5P+25jeaRe/HO7 LmEpdz0h5+1Vzy9WbF/h2diyY1uydV6rBxM4wGWckr9xRaxCvL3VIp8ZxwAR03R/ WgGY6CAX2/wocZCV7+Cp6YiazDZEwNZHWjFm2XsakBNWFtFxP83ONKbzsGl6ia2z vNZselA64c5iPeYRTgElci+Hbrv2ynVzL4as9JU4xneowr7C4vA9gGIJN6SEBSKr zpeg5OVMRyQWMuwm4byC5v5fkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIMuMhJ3 JfUQp8ZJMekw7tj93iefMB8GA1UdIwQYMBaAFEDrwloIul51Qc4ULSvCiuT4KIpL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUM2NC80MjVCNDIzQ0ZG QTMxMUU5ODczNUE2ODVDNEY5QUUwMi9RT3ZDV2dpNlhuVkJ6aFF0SzhLSzVQZ29p a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FPdkNXZ2k2WG5WQnpoUXRLOEtLNVBnb2lrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUM2NC80MjVCNDIzQ0ZGQTMxMUU5ODczNUE2ODVDNEY5QUUwMi9RT3ZDV2dpNlhu VkJ6aFF0SzhLSzVQZ29pa3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtCAlUlKwPGogJzT5+YgkGXD8c08Jiyv9BIA2yaiMlWnsN+kqL2Q4T VldKDuK1vkPER1J3GRtrFwxuyZ0saIB2fl8gYFeqxgrcZmbc+7LT+0/xvxDdpsg0 h0B4GO769YCTY7OzIloh5NgbWUVpGIYPYFzrZsbfOScr2Nf7a5TNZDg/eYSyFSuB xc/fEYWFQqgX1tZ5jmXM1ORhOTg/48Iw4Bi+pCR+ZpcuJwk++eWpJWzMlCx44Nl/ tYAKqouvfdJ5xcPWl9CzOEGmQY5kbJgHjqIZTgBGgNctpuezraLyVOW/MrgwpDvb IXAs1ikfVjgSAf2USp5ZkJ2JZAAvmzKg -----END CERTIFICATE-----Generated at Wed Jul 23 02:23:38 2025 by rpki-client