$ rpki-client -vvf rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.mft File: qo4b42JCQNwzAgR_tBp9TkeAjvg.mft (raw, json) Hash identifier: c3/KoDF57MqdcliQdA+vq3cm6C3/WvqhIadn/RrjGiw= Subject key identifier: 0E:B0:AB:07:03:9D:13:56:8F:33:1D:A2:EB:1C:12:65:C1:1E:0D:52 Authority key identifier: AA:8E:1B:E3:62:42:40:DC:33:02:04:7F:B4:1A:7D:4E:47:80:8E:F8 Certificate issuer: /CN=A911E509/serialNumber=AA8E1BE3624240DC3302047FB41A7D4E47808EF8 Certificate serial: 09A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.mft Manifest number: 097A Signing time: Thu 18 Sep 2025 20:26:55 +0000 Manifest this update: Thu 18 Sep 2025 20:26:55 +0000 Manifest next update: Thu 25 Sep 2025 20:26:55 +0000 Files and hashes: 1: qo4b42JCQNwzAgR_tBp9TkeAjvg.crl (hash: vmbNlEWMuSBFGaVEEhvX1ror0TgOXNQfkDF+DAhjmo8=) 2: 2E18EB105D0C11EE873B1C2AC4F9AE02.roa (hash: y+1LcMZWVq0sxCzTaWENpdmxk9z32hroZYUL1UHWPKM=) 3: 31AFACDC349211F0BA15B357C4F9AE02.roa (hash: dUZcTKwnncnoH9FK9TMTgxya3Vm4pErO/3nzu6wv4fM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.crl rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 20:26:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2465 (0x9a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E509, serialNumber=AA8E1BE3624240DC3302047FB41A7D4E47808EF8 Validity Not Before: Sep 18 20:26:55 2025 GMT Not After : Sep 25 20:26:55 2025 GMT Subject: CN=68cc6b0f-c3ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:36:96:bc:a6:98:23:8c:1f:07:18:5e:01:85: 44:d0:21:53:27:e0:7d:88:8a:af:8d:98:5f:31:76: 22:7d:72:f1:ff:9e:04:ea:08:95:d1:44:e7:50:fb: bd:5b:a3:a1:54:3e:d2:1e:41:6f:2d:13:44:49:1d: fa:00:9c:46:8a:c2:89:0b:7c:28:74:81:34:07:7a: 4d:93:cd:d9:e5:dd:07:71:37:9c:fd:f1:05:18:d6: 39:ff:24:aa:a9:ab:01:f3:4b:da:da:8f:3a:7d:b2: e7:4d:db:b4:4f:ad:f9:a4:05:e4:65:b6:6d:1b:52: 4e:cc:ce:30:1b:9c:6e:a5:91:e6:f3:ce:e4:7b:ee: c7:e5:01:32:cb:5f:89:e5:b4:5f:c0:8d:95:cc:13: 36:90:a8:23:31:b3:82:cf:69:1b:b5:8d:3a:84:9a: bb:db:03:70:dd:b4:1e:dc:53:1e:11:20:15:70:42: 0a:86:53:be:28:f4:30:6b:cb:fe:d7:cc:f5:dc:da: 85:07:60:2e:b1:de:32:51:7c:d6:5b:b2:7d:23:39: 93:f5:40:68:fc:10:3f:80:9b:7a:df:76:ba:4e:31: 46:31:58:51:de:be:e6:91:c0:97:e7:af:64:80:1f: 42:7f:fb:3e:c7:6a:95:e3:78:a5:3f:7d:a7:6d:4b: 4f:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:B0:AB:07:03:9D:13:56:8F:33:1D:A2:EB:1C:12:65:C1:1E:0D:52 X509v3 Authority Key Identifier: keyid:AA:8E:1B:E3:62:42:40:DC:33:02:04:7F:B4:1A:7D:4E:47:80:8E:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:0b:92:63:78:e7:85:f9:56:14:77:a6:17:26:13:b3:44:e4: f1:9a:89:11:14:09:d0:e5:96:5e:71:29:12:27:7b:b0:0a:8b: df:aa:3b:4c:2f:de:6a:57:f2:d9:c5:b7:e2:6c:3a:6f:37:f0: 99:6f:04:de:3e:90:bb:26:b6:67:bb:b0:bd:4f:f4:61:e6:aa: fd:04:4e:90:cd:c4:7a:d0:17:43:a4:5c:d9:30:b9:6b:c5:ce: 98:2f:59:01:a7:5f:9a:41:48:c8:1a:e9:81:5d:04:d9:f4:79: 0a:cf:33:7c:0a:f7:fd:73:f7:e4:b0:f9:0d:1b:2e:f5:ac:d9: b5:c9:05:49:82:8d:b0:8d:bd:be:c3:e8:85:35:21:ef:dc:8f: e0:1d:09:a3:cd:2b:ea:03:68:8c:3d:ab:58:e7:04:3b:18:4b: 78:4e:4f:c8:fb:2e:68:42:36:2e:fd:c2:a2:cc:dc:ad:5c:6a: f4:6b:88:ff:90:ff:14:5a:6d:9f:fa:de:5a:54:3a:a6:82:12: 85:d9:4f:43:9f:be:a5:3b:95:d1:d6:35:d1:f4:e0:af:f1:ae: 1d:bb:bb:76:1a:1b:54:17:51:67:e9:1e:cf:fb:32:4f:45:3b: e6:6d:a0:98:93:e4:6c:5d:c2:cb:f0:ab:cc:2e:7d:f1:01:91: ca:43:30:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU1MDkxMTAvBgNVBAUTKEFBOEUxQkUzNjI0MjQwREMzMzAyMDQ3RkI0MUE3RDRF NDc4MDhFRjgwHhcNMjUwOTE4MjAyNjU1WhcNMjUwOTI1MjAyNjU1WjAYMRYwFAYD VQQDEw02OGNjNmIwZi1jM2FiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmDaWvKaYI4wfBxheAYVE0CFTJ+B9iIqvjZhfMXYifXLx/54E6giV0UTnUPu9 W6OhVD7SHkFvLRNESR36AJxGisKJC3wodIE0B3pNk83Z5d0HcTec/fEFGNY5/ySq qasB80va2o86fbLnTdu0T635pAXkZbZtG1JOzM4wG5xupZHm887ke+7H5QEyy1+J 5bRfwI2VzBM2kKgjMbOCz2kbtY06hJq72wNw3bQe3FMeESAVcEIKhlO+KPQwa8v+ 18z13NqFB2Ausd4yUXzWW7J9IzmT9UBo/BA/gJt633a6TjFGMVhR3r7mkcCX569k gB9Cf/s+x2qV43ilP32nbUtP6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA6wqwcD nRNWjzMdouscEmXBHg1SMB8GA1UdIwQYMBaAFKqOG+NiQkDcMwIEf7QafU5HgI74 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTUwOS83OUVBNTkxRUE3 QkQxMUVBQUFBNjI5NDhDNEY5QUUwMi9xbzRiNDJKQ1FOd3pBZ1JfdEJwOVRrZUFq dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FvNGI0MkpDUU53ekFnUl90QnA5VGtlQWp2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTUwOS83OUVBNTkxRUE3QkQxMUVBQUFBNjI5NDhDNEY5QUUwMi9xbzRiNDJKQ1FO d3pBZ1JfdEJwOVRrZUFqdmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOC5JjeOeF+VYUd6YXJhOzROTxmokRFAnQ5ZZecSkSJ3uwCovfqjtM L95qV/LZxbfibDpvN/CZbwTePpC7JrZnu7C9T/Rh5qr9BE6QzcR60BdDpFzZMLlr xc6YL1kBp1+aQUjIGumBXQTZ9HkKzzN8Cvf9c/fksPkNGy71rNm1yQVJgo2wjb2+ w+iFNSHv3I/gHQmjzSvqA2iMPatY5wQ7GEt4Tk/I+y5oQjYu/cKizNytXGr0a4j/ kP8UWm2f+t5aVDqmghKF2U9Dn76lO5XR1jXR9OCv8a4du7t2GhtUF1Fn6R7P+zJP RTvmbaCYk+RsXcLL8KvMLn3xAZHKQzAq -----END CERTIFICATE-----Generated at Thu Sep 18 23:27:38 2025 by rpki-client