$ rpki-client -vvf rpki.apnic.net/member_repository/A9168126/157F66EA800611ECB03A0E61C4F9AE02/1qn8yzagJxy8XxErtyBaV7n0hPc.mft File: 1qn8yzagJxy8XxErtyBaV7n0hPc.mft (raw, json) Hash identifier: uZorvyQEmViqk6e1MtCKr9afVIaULLceNb+gQX72ve0= Subject key identifier: E1:DE:11:D3:C6:30:ED:EA:C1:D5:21:C9:57:FB:22:29:D4:C7:B5:F0 Authority key identifier: D6:A9:FC:CB:36:A0:27:1C:BC:5F:11:2B:B7:20:5A:57:B9:F4:84:F7 Certificate issuer: /CN=A9168126/serialNumber=D6A9FCCB36A0271CBC5F112BB7205A57B9F484F7 Certificate serial: 0419 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1qn8yzagJxy8XxErtyBaV7n0hPc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168126/157F66EA800611ECB03A0E61C4F9AE02/1qn8yzagJxy8XxErtyBaV7n0hPc.mft Manifest number: 0409 Signing time: Mon 21 Jul 2025 00:42:30 +0000 Manifest this update: Mon 21 Jul 2025 00:42:30 +0000 Manifest next update: Mon 28 Jul 2025 00:42:30 +0000 Files and hashes: 1: 1qn8yzagJxy8XxErtyBaV7n0hPc.crl (hash: Qwb7dG0jSLXhs5M0e3fmNOYWcW5nJJ9M8WRCiwUpc2Q=) 2: A34E20703F3411EF9DF9274AC4F9AE02.roa (hash: mj7Quo5wKTbG3d5ij/IP0EyOkfhXPi1COcacV2q2awg=) 3: 819150603F3411EF85BAC749C4F9AE02.roa (hash: W4tDaOtoueXLJGV231Xq5px334ORbAFdGWpLgfvtl8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168126/157F66EA800611ECB03A0E61C4F9AE02/1qn8yzagJxy8XxErtyBaV7n0hPc.crl rsync://rpki.apnic.net/member_repository/A9168126/157F66EA800611ECB03A0E61C4F9AE02/1qn8yzagJxy8XxErtyBaV7n0hPc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1qn8yzagJxy8XxErtyBaV7n0hPc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 00:42:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1049 (0x419) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168126, serialNumber=D6A9FCCB36A0271CBC5F112BB7205A57B9F484F7 Validity Not Before: Jul 21 00:42:30 2025 GMT Not After : Jul 28 00:42:30 2025 GMT Subject: CN=687d8cf6-7d4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:14:5b:2d:f4:3e:ca:76:be:cc:69:df:ff:2a: fb:d8:3a:97:f8:07:ef:86:d5:22:26:14:70:93:d9: 84:d4:bb:62:0b:af:01:b7:2a:e5:cc:4d:24:62:6d: d7:73:29:19:60:f0:00:3b:28:50:95:bf:aa:d1:e5: 49:ca:d1:aa:98:04:bc:a8:c7:9d:7b:6e:95:14:01: 40:7f:57:ae:e8:a5:07:47:ef:e3:40:96:25:3e:ef: bf:40:f6:57:b4:90:bb:27:db:f2:98:63:0c:de:5f: 13:08:16:41:81:0f:ec:85:61:f4:e2:13:0c:0d:05: 1c:cc:b9:f3:19:4d:c7:44:4e:50:bd:c3:80:46:2d: bb:fe:fa:98:b6:46:12:da:b7:e4:ee:b4:51:69:80: 20:cb:94:99:f4:5a:8a:7a:a3:73:31:3e:2c:db:b0: 98:21:7c:2a:57:0d:cf:19:a9:87:6a:69:b6:31:e4: 05:e8:bb:28:85:27:d9:b2:76:77:78:06:fd:53:18: 39:be:39:45:a5:19:f2:74:d7:83:dc:d9:5b:a7:a8: 8d:3d:22:9c:58:eb:92:78:74:9d:1a:96:ef:ad:df: ca:7d:4f:08:e5:1c:db:e2:77:c4:fb:f5:8a:36:78: dd:65:34:00:5c:23:fc:64:3c:de:a7:92:36:64:33: 64:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:DE:11:D3:C6:30:ED:EA:C1:D5:21:C9:57:FB:22:29:D4:C7:B5:F0 X509v3 Authority Key Identifier: keyid:D6:A9:FC:CB:36:A0:27:1C:BC:5F:11:2B:B7:20:5A:57:B9:F4:84:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168126/157F66EA800611ECB03A0E61C4F9AE02/1qn8yzagJxy8XxErtyBaV7n0hPc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1qn8yzagJxy8XxErtyBaV7n0hPc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168126/157F66EA800611ECB03A0E61C4F9AE02/1qn8yzagJxy8XxErtyBaV7n0hPc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:1a:e9:25:02:ab:50:45:02:9d:4f:47:93:89:0f:83:ae:ac: 4a:ac:a0:fa:40:78:c9:23:4e:11:27:07:d4:04:a5:e6:7e:01: 76:4c:0f:ab:c1:cb:07:90:f5:5a:bd:63:6a:93:2f:c9:a6:48: 18:83:3f:1a:0a:e9:5b:54:40:2e:0d:41:49:51:ef:a0:6e:a5: 71:82:2f:fc:6c:77:ce:b3:d6:1c:04:ed:19:7d:99:f4:d5:e4: 2e:59:5a:1c:83:b4:1d:91:bd:51:5e:d8:da:b1:a1:21:24:47: 6b:0e:c6:98:d6:48:75:fb:b1:5f:b6:20:f1:52:50:6c:be:37: f7:f1:c5:f7:0b:6b:26:69:01:20:17:45:88:37:3a:33:f8:3a: e3:7e:79:67:36:4e:4c:ac:99:15:c2:6c:af:c8:a6:8d:60:7b: c1:4e:59:f7:7a:88:66:0b:12:c4:bc:ac:dc:06:8a:16:dc:f4: f3:20:9b:c4:16:82:cd:c9:3e:7b:13:32:0f:c8:68:bc:c6:91: a5:28:c6:8d:c3:ef:e3:e0:0f:c1:44:f4:30:86:10:1f:9e:a3: 26:04:29:66:a9:47:12:4a:b9:4b:bd:c3:b0:3b:78:70:1e:59: 71:4e:f0:9f:d1:fe:6f:cf:ee:12:37:04:13:0b:94:39:bb:be: f0:12:e1:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjgxMjYxMTAvBgNVBAUTKEQ2QTlGQ0NCMzZBMDI3MUNCQzVGMTEyQkI3MjA1QTU3 QjlGNDg0RjcwHhcNMjUwNzIxMDA0MjMwWhcNMjUwNzI4MDA0MjMwWjAYMRYwFAYD VQQDEw02ODdkOGNmNi03ZDRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBRbLfQ+yna+zGnf/yr72DqX+AfvhtUiJhRwk9mE1LtiC68BtyrlzE0kYm3X cykZYPAAOyhQlb+q0eVJytGqmAS8qMede26VFAFAf1eu6KUHR+/jQJYlPu+/QPZX tJC7J9vymGMM3l8TCBZBgQ/shWH04hMMDQUczLnzGU3HRE5QvcOARi27/vqYtkYS 2rfk7rRRaYAgy5SZ9FqKeqNzMT4s27CYIXwqVw3PGamHamm2MeQF6LsohSfZsnZ3 eAb9Uxg5vjlFpRnydNeD3Nlbp6iNPSKcWOuSeHSdGpbvrd/KfU8I5Rzb4nfE+/WK NnjdZTQAXCP8ZDzep5I2ZDNkWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOHeEdPG MO3qwdUhyVf7IinUx7XwMB8GA1UdIwQYMBaAFNap/Ms2oCccvF8RK7cgWle59IT3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODEyNi8xNTdGNjZFQTgw MDYxMUVDQjAzQTBFNjFDNEY5QUUwMi8xcW44eXphZ0p4eThYeEVydHlCYVY3bjBo UGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFxbjh5emFnSnh5OFh4RXJ0eUJhVjduMGhQYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODEyNi8xNTdGNjZFQTgwMDYxMUVDQjAzQTBFNjFDNEY5QUUwMi8xcW44eXphZ0p4 eThYeEVydHlCYVY3bjBoUGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZGuklAqtQRQKdT0eTiQ+DrqxKrKD6QHjJI04RJwfUBKXmfgF2TA+r wcsHkPVavWNqky/JpkgYgz8aCulbVEAuDUFJUe+gbqVxgi/8bHfOs9YcBO0ZfZn0 1eQuWVocg7Qdkb1RXtjasaEhJEdrDsaY1kh1+7FftiDxUlBsvjf38cX3C2smaQEg F0WINzoz+DrjfnlnNk5MrJkVwmyvyKaNYHvBTln3eohmCxLEvKzcBooW3PTzIJvE FoLNyT57EzIPyGi8xpGlKMaNw+/j4A/BRPQwhhAfnqMmBClmqUcSSrlLvcOwO3hw HllxTvCf0f5vz+4SNwQTC5Q5u77wEuEd -----END CERTIFICATE-----Generated at Tue Jul 22 05:14:22 2025 by rpki-client