$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft File: cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft (raw, json) Hash identifier: VzWmfjCdcjASZZlAFR1nSj6M6yl9YpFxe/a/JU+rW5s= Subject key identifier: FB:6B:33:56:7B:6C:25:B9:7D:BA:5E:FD:27:0A:A7:CB:5F:70:CA:70 Authority key identifier: 71:05:37:24:46:A2:06:45:46:D9:62:9F:42:1C:37:6F:DC:EF:21:D6 Certificate issuer: /CN=A9125C31/serialNumber=7105372446A2064546D9629F421C376FDCEF21D6 Certificate serial: 0C2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft Manifest number: 0C26 Signing time: Thu 18 Sep 2025 18:52:51 +0000 Manifest this update: Thu 18 Sep 2025 18:52:50 +0000 Manifest next update: Thu 25 Sep 2025 18:52:50 +0000 Files and hashes: 1: cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl (hash: 8rHcFHaFe3a44KKI86Tc3GlA5Ds6+fifTOJTygbmJas=) 2: 4697751815B111EA8277BA34C4F9AE02.roa (hash: dxDp9E0tHPQ++XAIde+nxMm3Ga/WWcWY96m0Hl+beDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 18:52:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3117 (0xc2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C31, serialNumber=7105372446A2064546D9629F421C376FDCEF21D6 Validity Not Before: Sep 18 18:52:50 2025 GMT Not After : Sep 25 18:52:50 2025 GMT Subject: CN=68cc5503-97ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:7a:b4:50:29:09:d0:de:58:bd:d0:b6:f5:ce: c0:9e:40:76:46:c9:6d:23:a9:2c:b3:d9:66:76:e8: a1:07:52:7d:18:96:dc:2d:a1:2c:35:a5:62:16:39: 35:a2:fb:f4:82:a2:f3:45:27:59:50:c5:bb:62:c6: 9c:83:85:72:b3:c6:89:8c:50:29:6d:5b:e4:08:f1: 3f:80:4d:c8:76:47:ea:8b:33:10:27:1a:d1:ff:cb: 25:76:ae:00:79:3a:9c:52:c4:ea:8b:9c:32:c2:eb: be:2e:3c:e7:c6:a2:d5:d2:60:de:60:dc:8d:01:8d: 53:ae:0e:da:31:17:48:d2:32:a7:57:64:31:9f:54: 23:33:d0:12:39:07:8e:43:03:8b:72:c2:93:9f:3f: aa:75:58:0a:c8:00:3e:b8:8b:e5:c8:48:40:09:66: 63:57:bd:8c:90:73:c1:ee:8e:66:53:7c:45:b6:e0: bc:77:1a:9c:ee:31:92:79:b4:67:c8:75:71:1a:47: cc:65:ef:06:22:ee:15:c6:1d:6b:8b:8d:26:ca:65: 47:c3:7c:67:09:c9:db:08:7a:4e:10:ff:93:07:14: 3f:a7:b5:53:af:df:c2:14:86:e7:e2:76:fd:94:c5: 13:16:45:61:41:5c:6f:fe:31:94:13:1d:ec:19:a8: 49:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:6B:33:56:7B:6C:25:B9:7D:BA:5E:FD:27:0A:A7:CB:5F:70:CA:70 X509v3 Authority Key Identifier: keyid:71:05:37:24:46:A2:06:45:46:D9:62:9F:42:1C:37:6F:DC:EF:21:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:e1:7b:64:60:62:40:28:50:69:d0:58:cc:d1:10:88:9f:37: cd:50:f1:25:af:6e:dc:1e:1f:45:50:ea:93:da:34:8b:7d:ba: 62:2d:5c:14:ad:c3:66:0d:e1:b4:cb:93:4d:f5:c9:69:b9:20: cb:4a:5b:0a:55:2b:77:ba:0f:73:6c:af:1a:f9:a4:3d:34:da: 36:4b:08:6f:39:29:4a:5d:dc:69:f0:ee:99:eb:7c:0c:90:3e: ac:db:26:8e:0e:f4:67:71:71:cc:8e:f0:3f:81:1d:97:75:74: 8c:5c:12:33:06:79:42:cc:6d:c8:6c:1b:08:30:de:b4:7b:4d: 88:5d:60:0a:33:d9:04:01:17:9b:4c:af:b6:05:75:e1:be:22: 06:37:09:41:6f:3e:15:5e:9a:82:b9:59:c9:e7:62:b4:5f:56: 7d:2a:13:05:6d:63:81:ff:85:7b:41:32:6f:78:e8:82:f3:4e: 7e:f6:0c:fe:77:b0:f3:b8:e7:00:ee:d1:3e:bb:93:20:49:d3: a0:0e:8b:2a:65:90:3b:c5:8c:e7:0b:05:d2:a8:0b:86:a1:58: 5e:ee:d3:7a:c4:13:20:b9:86:0a:d0:c0:92:b1:41:11:25:63: d5:b8:ec:58:95:7b:60:4c:19:d7:6a:4a:ef:d1:02:3e:39:ab: ed:d1:97:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDC0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMzExMTAvBgNVBAUTKDcxMDUzNzI0NDZBMjA2NDU0NkQ5NjI5RjQyMUMzNzZG RENFRjIxRDYwHhcNMjUwOTE4MTg1MjUwWhcNMjUwOTI1MTg1MjUwWjAYMRYwFAYD VQQDEw02OGNjNTUwMy05N2VhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzHq0UCkJ0N5YvdC29c7AnkB2RsltI6kss9lmduihB1J9GJbcLaEsNaViFjk1 ovv0gqLzRSdZUMW7Ysacg4Vys8aJjFApbVvkCPE/gE3IdkfqizMQJxrR/8sldq4A eTqcUsTqi5wywuu+LjznxqLV0mDeYNyNAY1Trg7aMRdI0jKnV2Qxn1QjM9ASOQeO QwOLcsKTnz+qdVgKyAA+uIvlyEhACWZjV72MkHPB7o5mU3xFtuC8dxqc7jGSebRn yHVxGkfMZe8GIu4Vxh1ri40mymVHw3xnCcnbCHpOEP+TBxQ/p7VTr9/CFIbn4nb9 lMUTFkVhQVxv/jGUEx3sGahJKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPtrM1Z7 bCW5fbpe/ScKp8tfcMpwMB8GA1UdIwQYMBaAFHEFNyRGogZFRtlin0IcN2/c7yHW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMzMS8zOEJGNDA5QTE1 OTAxMUVBOUM0MTM2NTJDNEY5QUUwMi9jUVUzSkVhaUJrVkcyV0tmUWh3M2I5enZJ ZFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NRVTNKRWFpQmtWRzJXS2ZRaHczYjl6dklkWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMzMS8zOEJGNDA5QTE1OTAxMUVBOUM0MTM2NTJDNEY5QUUwMi9jUVUzSkVhaUJr VkcyV0tmUWh3M2I5enZJZFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBa4XtkYGJAKFBp0FjM0RCInzfNUPElr27cHh9FUOqT2jSLfbpiLVwU rcNmDeG0y5NN9clpuSDLSlsKVSt3ug9zbK8a+aQ9NNo2SwhvOSlKXdxp8O6Z63wM kD6s2yaODvRncXHMjvA/gR2XdXSMXBIzBnlCzG3IbBsIMN60e02IXWAKM9kEAReb TK+2BXXhviIGNwlBbz4VXpqCuVnJ52K0X1Z9KhMFbWOB/4V7QTJveOiC805+9gz+ d7DzuOcA7tE+u5MgSdOgDosqZZA7xYznCwXSqAuGoVhe7tN6xBMguYYK0MCSsUER JWPVuOxYlXtgTBnXakrv0QI+Oavt0ZdR -----END CERTIFICATE-----Generated at Fri Sep 19 05:31:27 2025 by rpki-client