$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft File: 0qCHG82DdsEajwSaOYVa_NsYMGQ.mft (raw, json) Hash identifier: 8pKjiWcF3h9P/mMpGd/52nb6se4wnKE4mxifIzkdqDk= Subject key identifier: 88:3B:FB:95:CD:19:3E:16:C2:74:BB:95:32:C7:BC:8E:17:36:81:4A Authority key identifier: D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64 Certificate issuer: /CN=A911CA82/serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064 Certificate serial: 0657 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft Manifest number: 063E Signing time: Mon 08 Sep 2025 22:57:33 +0000 Manifest this update: Mon 08 Sep 2025 22:57:32 +0000 Manifest next update: Mon 15 Sep 2025 22:57:32 +0000 Files and hashes: 1: 0qCHG82DdsEajwSaOYVa_NsYMGQ.crl (hash: raymOMak+mt7HX1xBaQSVB0OqhCgodf5kOkJfkUucB8=) 2: CB304C36307111EDB0CBD946C4F9AE02.roa (hash: hq9Cmc+FMjaTTTyQea1uvJO7rYKBgVJ1Xbylz3DiiHI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 22:57:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1623 (0x657) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA82, serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064 Validity Not Before: Sep 8 22:57:32 2025 GMT Not After : Sep 15 22:57:32 2025 GMT Subject: CN=68bf5f5c-598e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7f:74:e4:25:2d:7a:93:2e:f9:14:1d:ce:84: a9:f0:d6:f0:3b:8c:ed:50:0d:74:93:db:8a:04:06: b9:7b:d7:82:5e:54:d3:23:00:76:c8:df:2d:b6:a1: 2f:ce:da:99:41:27:e9:61:05:25:a5:9a:57:3e:d2: 9c:90:09:49:ad:b3:70:b0:e1:42:10:d2:72:db:53: 96:21:f2:a4:a4:02:b4:2d:ee:ed:89:83:3c:f9:13: 40:c7:0c:de:ad:e4:8a:36:09:04:1f:6d:21:99:b4: c2:47:7f:f6:a0:78:49:c4:06:15:6d:00:79:bb:d3: 83:d7:06:5e:88:ae:c3:55:9b:9c:f4:6b:aa:a1:62: 06:18:14:e4:10:22:17:28:06:81:30:f1:1e:d0:ce: c6:da:ad:2a:9b:6c:82:65:c5:05:39:c4:2c:74:6b: 7d:ae:7e:3f:1f:59:75:e5:8b:62:ab:b2:72:07:6c: 64:71:74:7d:73:84:31:94:b5:8a:fc:ba:77:65:3f: 23:71:f3:c3:fc:3a:31:30:49:b8:1d:90:b9:1b:f6: 45:45:c6:2c:01:56:87:29:26:cf:6f:16:ea:eb:6d: d5:72:0e:38:8b:fc:bb:b6:fa:d0:58:4e:eb:10:cc: 07:16:cb:66:a6:e2:ef:9d:2a:1c:58:25:e5:6e:9b: 6b:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:3B:FB:95:CD:19:3E:16:C2:74:BB:95:32:C7:BC:8E:17:36:81:4A X509v3 Authority Key Identifier: keyid:D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:41:16:63:93:37:62:82:64:25:d4:dd:da:c3:7c:2f:16:6b: c3:85:7a:89:e0:48:d5:63:10:a6:9a:30:fd:89:e0:42:42:9c: ee:d7:d3:69:0f:b4:18:99:eb:e3:f5:94:57:4d:a1:78:9d:5b: cb:75:39:58:a2:af:b0:b3:84:6d:ad:af:5b:02:72:cd:32:04: 87:91:99:a4:1f:d5:33:c1:6a:f6:d9:a2:4e:49:b1:9e:c5:7b: a1:53:5e:8c:bf:df:e5:95:99:ab:b6:6c:72:f1:8c:2f:1d:fa: 35:1c:68:fc:2d:ff:c2:8a:17:9a:89:18:94:2a:07:d6:c5:ed: 04:8f:45:0f:cb:2f:82:70:4a:2c:4b:57:a2:fa:d8:03:64:bd: 73:a7:a7:61:b0:c0:58:11:b2:46:cf:36:7c:21:b8:0c:e4:6d: cb:a5:75:d0:74:2d:0c:6b:75:29:38:1f:fb:26:04:1f:41:00: 42:c0:1e:a6:66:6f:9e:bc:86:e6:34:5c:1a:68:0c:03:5c:06: f1:5b:83:bf:c6:78:31:65:fe:44:97:4c:32:29:97:a9:36:c0: 86:e6:49:d1:33:ae:5d:0f:d7:2c:24:ee:f4:de:2e:71:f1:cb: 33:51:d8:d6:6b:86:db:f2:f3:f6:39:2c:29:45:88:16:07:c3: 04:40:ef:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBODIxMTAvBgNVBAUTKEQyQTA4NzFCQ0Q4Mzc2QzExQThGMDQ5QTM5ODU1QUZD REIxODMwNjQwHhcNMjUwOTA4MjI1NzMyWhcNMjUwOTE1MjI1NzMyWjAYMRYwFAYD VQQDEw02OGJmNWY1Yy01OThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAun905CUtepMu+RQdzoSp8NbwO4ztUA10k9uKBAa5e9eCXlTTIwB2yN8ttqEv ztqZQSfpYQUlpZpXPtKckAlJrbNwsOFCENJy21OWIfKkpAK0Le7tiYM8+RNAxwze reSKNgkEH20hmbTCR3/2oHhJxAYVbQB5u9OD1wZeiK7DVZuc9GuqoWIGGBTkECIX KAaBMPEe0M7G2q0qm2yCZcUFOcQsdGt9rn4/H1l15Ytiq7JyB2xkcXR9c4QxlLWK /Lp3ZT8jcfPD/DoxMEm4HZC5G/ZFRcYsAVaHKSbPbxbq623Vcg44i/y7tvrQWE7r EMwHFstmpuLvnSocWCXlbptr8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIg7+5XN GT4WwnS7lTLHvI4XNoFKMB8GA1UdIwQYMBaAFNKghxvNg3bBGo8EmjmFWvzbGDBk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E4Mi8wQkVCMzc1QUJF NDQxMUVCQUUzRDQzNDhDNEY5QUUwMi8wcUNIRzgyRGRzRWFqd1NhT1lWYV9Oc1lN R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBxQ0hHODJEZHNFYWp3U2FPWVZhX05zWU1HUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E4Mi8wQkVCMzc1QUJFNDQxMUVCQUUzRDQzNDhDNEY5QUUwMi8wcUNIRzgyRGRz RWFqd1NhT1lWYV9Oc1lNR1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLQRZjkzdigmQl1N3aw3wvFmvDhXqJ4EjVYxCmmjD9ieBCQpzu19Np D7QYmevj9ZRXTaF4nVvLdTlYoq+ws4Rtra9bAnLNMgSHkZmkH9UzwWr22aJOSbGe xXuhU16Mv9/llZmrtmxy8YwvHfo1HGj8Lf/CiheaiRiUKgfWxe0Ej0UPyy+CcEos S1ei+tgDZL1zp6dhsMBYEbJGzzZ8IbgM5G3LpXXQdC0Ma3UpOB/7JgQfQQBCwB6m Zm+evIbmNFwaaAwDXAbxW4O/xngxZf5El0wyKZepNsCG5knRM65dD9csJO703i5x 8cszUdjWa4bb8vP2OSwpRYgWB8MEQO9d -----END CERTIFICATE-----Generated at Tue Sep 9 17:44:55 2025 by rpki-client