$ rpki-client -vvf rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft File: QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft (raw, json) Hash identifier: UbLTVul+I8gXzWhKCVzC8S3FWsg3lUTzOV1ZUZfq+N8= Subject key identifier: 73:CC:55:BA:57:02:85:10:ED:1D:E9:8B:20:64:5E:68:D6:F7:FF:C9 Authority key identifier: 40:DD:EE:F0:18:EA:DC:DE:4D:1B:F7:8D:15:48:51:F8:D8:BC:26:A5 Certificate issuer: /CN=A911CB05/serialNumber=40DDEEF018EADCDE4D1BF78D154851F8D8BC26A5 Certificate serial: A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft Manifest number: A8 Signing time: Fri 05 Sep 2025 06:36:09 +0000 Manifest this update: Fri 05 Sep 2025 06:36:09 +0000 Manifest next update: Fri 12 Sep 2025 06:36:09 +0000 Files and hashes: 1: QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.crl (hash: 4Ea79HmAVSe6B/kqjSs6ylg4qc9LJIJJr1hFuaKp/2o=) 2: E692CC2A8A9B11EFBC56AA85C4F9AE02.roa (hash: eCOiciHVF02QIJ92sCGpWxzFiJ0IghOmtXmYmm4vkYY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.crl rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:36:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 169 (0xa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CB05, serialNumber=40DDEEF018EADCDE4D1BF78D154851F8D8BC26A5 Validity Not Before: Sep 5 06:36:09 2025 GMT Not After : Sep 12 06:36:09 2025 GMT Subject: CN=68ba84d9-08b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:4f:44:9d:78:f0:51:55:2d:83:5e:42:d1:d1: e6:11:6b:04:c5:f7:d3:c0:f5:ee:8a:70:16:a4:fe: 40:29:42:7a:7c:f5:ed:bb:cb:95:e5:a1:05:d6:d6: ae:d1:23:cd:fc:5c:15:50:a8:6c:d3:d6:74:27:2a: 27:61:49:28:69:e4:c3:82:3f:73:29:bc:fe:ba:f1: 57:1b:12:cf:82:b1:27:5f:85:b7:77:e2:59:ad:36: 66:54:4e:c3:93:42:58:c9:46:30:3f:39:94:b1:89: 87:2c:5c:f7:3d:42:4a:3f:f9:6e:ab:c4:c8:02:4e: 25:03:92:79:0b:ef:f0:52:9d:fa:be:a5:bf:f5:43: f4:aa:99:90:20:a9:e5:2e:3c:49:bd:a2:27:8f:2f: 6f:4e:5e:5a:35:e0:3e:bc:fb:47:fe:c1:e2:33:e0: c4:15:bb:2b:c7:1a:11:af:11:a7:46:c2:ed:6d:b6: a8:89:e2:31:4c:31:a5:e7:aa:e6:05:4d:1b:6d:ea: dd:e1:a3:f0:5c:4b:7a:98:d0:76:19:43:d9:ee:77: d4:27:40:1e:f4:6d:2a:e6:2d:d2:8f:65:ec:25:fb: 84:08:b0:05:4b:b9:3c:fd:ae:29:72:1b:5a:87:cd: f9:1a:a0:7e:68:d3:4d:56:e3:47:43:2f:6e:b9:4e: 39:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:CC:55:BA:57:02:85:10:ED:1D:E9:8B:20:64:5E:68:D6:F7:FF:C9 X509v3 Authority Key Identifier: keyid:40:DD:EE:F0:18:EA:DC:DE:4D:1B:F7:8D:15:48:51:F8:D8:BC:26:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:98:d2:99:41:4a:40:96:4f:68:02:89:ef:13:db:ff:e4:1d: cf:db:8f:95:df:4e:61:69:ab:0a:c5:a2:1d:12:78:f8:02:b2: 06:ff:2a:8d:71:f0:00:11:03:73:99:4d:d9:88:a0:82:ea:00: 03:e2:44:c9:62:f8:26:78:fb:88:6a:03:88:01:1d:a3:32:a4: dd:a7:97:0e:bd:1c:e0:61:83:b0:5e:ce:f7:7d:a7:1e:42:89: 37:91:2a:e6:ef:49:04:62:b2:56:9e:27:59:ee:8f:42:c1:3b: 92:24:64:bf:df:7d:40:cf:86:80:3b:8b:cf:1e:a8:14:3f:89: 67:68:c5:b0:f0:37:19:50:d6:90:f7:58:73:49:ef:a8:c8:c9: 76:a5:1b:53:ae:d2:4f:54:60:15:da:9c:94:b7:d1:7c:8b:31: 33:8e:98:b1:fd:1b:85:22:da:a5:ab:41:a8:4c:f2:e4:a4:22: 08:75:8c:e5:84:65:fa:e0:13:d0:ad:d0:f1:08:08:1e:04:07: 96:13:61:a3:38:64:70:c7:f9:24:7f:bb:05:9e:f3:03:8f:ba: db:66:b3:ae:82:37:44:0d:5b:52:da:45:9d:1c:8e:9a:f1:fe: 2a:04:96:9d:0f:65:1e:45:89:45:6d:24:09:49:9c:3e:dd:6b: 64:42:4a:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNCMDUxMTAvBgNVBAUTKDQwRERFRUYwMThFQURDREU0RDFCRjc4RDE1NDg1MUY4 RDhCQzI2QTUwHhcNMjUwOTA1MDYzNjA5WhcNMjUwOTEyMDYzNjA5WjAYMRYwFAYD VQQDEw02OGJhODRkOS0wOGIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwk9EnXjwUVUtg15C0dHmEWsExffTwPXuinAWpP5AKUJ6fPXtu8uV5aEF1tau 0SPN/FwVUKhs09Z0JyonYUkoaeTDgj9zKbz+uvFXGxLPgrEnX4W3d+JZrTZmVE7D k0JYyUYwPzmUsYmHLFz3PUJKP/luq8TIAk4lA5J5C+/wUp36vqW/9UP0qpmQIKnl LjxJvaInjy9vTl5aNeA+vPtH/sHiM+DEFbsrxxoRrxGnRsLtbbaoieIxTDGl56rm BU0bberd4aPwXEt6mNB2GUPZ7nfUJ0Ae9G0q5i3Sj2XsJfuECLAFS7k8/a4pchta h835GqB+aNNNVuNHQy9uuU45kwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHPMVbpX AoUQ7R3piyBkXmjW9//JMB8GA1UdIwQYMBaAFEDd7vAY6tzeTRv3jRVIUfjYvCal MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0IwNS9GMEI2NkNGODhB OUExMUVGQjhBQTU2NDhDNEY5QUUwMi9RTjN1OEJqcTNONU5HX2VORlVoUi1OaThK cVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FOM3U4QmpxM041TkdfZU5GVWhSLU5pOEpxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0IwNS9GMEI2NkNGODhBOUExMUVGQjhBQTU2NDhDNEY5QUUwMi9RTjN1OEJqcTNO NU5HX2VORlVoUi1OaThKcVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqmNKZQUpAlk9oAonvE9v/5B3P24+V305haasKxaIdEnj4ArIG/yqN cfAAEQNzmU3ZiKCC6gAD4kTJYvgmePuIagOIAR2jMqTdp5cOvRzgYYOwXs73face Qok3kSrm70kEYrJWnidZ7o9CwTuSJGS/331Az4aAO4vPHqgUP4lnaMWw8DcZUNaQ 91hzSe+oyMl2pRtTrtJPVGAV2pyUt9F8izEzjpix/RuFItqlq0GoTPLkpCIIdYzl hGX64BPQrdDxCAgeBAeWE2GjOGRwx/kkf7sFnvMDj7rbZrOugjdEDVtS2kWdHI6a 8f4qBJadD2UeRYlFbSQJSZw+3WtkQkqE -----END CERTIFICATE-----Generated at Sat Sep 6 21:07:30 2025 by rpki-client