$ rpki-client -vvf rpki.apnic.net/member_repository/A91275A6/CA86944A9C5D11ED97B3F548C4F9AE02/WQ-jxnAA6WmFeR5jVa0fba1cGHY.mft File: WQ-jxnAA6WmFeR5jVa0fba1cGHY.mft (raw, json) Hash identifier: sXPXTMkOhi+SWvDuvBTNlKUb3pqXbROAGTwLVPfX8b0= Subject key identifier: 62:AA:FE:BA:67:F3:BD:E2:26:73:13:BE:21:E8:93:86:06:3C:F6:2E Authority key identifier: 59:0F:A3:C6:70:00:E9:69:85:79:1E:63:55:AD:1F:6D:AD:5C:18:76 Certificate issuer: /CN=A91275A6/serialNumber=590FA3C67000E96985791E6355AD1F6DAD5C1876 Certificate serial: 01F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WQ-jxnAA6WmFeR5jVa0fba1cGHY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91275A6/CA86944A9C5D11ED97B3F548C4F9AE02/WQ-jxnAA6WmFeR5jVa0fba1cGHY.mft Manifest number: 01F1 Signing time: Wed 17 Sep 2025 03:01:39 +0000 Manifest this update: Wed 17 Sep 2025 03:01:38 +0000 Manifest next update: Wed 24 Sep 2025 03:01:38 +0000 Files and hashes: 1: WQ-jxnAA6WmFeR5jVa0fba1cGHY.crl (hash: BSQc6M3GcMkqju0AOQVmVA283ImQ8tsy1SvVNOx+18M=) 2: 8FA08DC29C8511EDB3506E5AC4F9AE02.roa (hash: Op5FiTtFCqiSuAmQrIrvzBwaHPhkdRDyeJuZKNddGfc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91275A6/CA86944A9C5D11ED97B3F548C4F9AE02/WQ-jxnAA6WmFeR5jVa0fba1cGHY.crl rsync://rpki.apnic.net/member_repository/A91275A6/CA86944A9C5D11ED97B3F548C4F9AE02/WQ-jxnAA6WmFeR5jVa0fba1cGHY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WQ-jxnAA6WmFeR5jVa0fba1cGHY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 03:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 500 (0x1f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91275A6, serialNumber=590FA3C67000E96985791E6355AD1F6DAD5C1876 Validity Not Before: Sep 17 03:01:38 2025 GMT Not After : Sep 24 03:01:38 2025 GMT Subject: CN=68ca2492-4b16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:2e:8b:49:10:b8:dc:67:a3:a3:3a:dc:6c:2e: 66:bd:00:08:97:5e:1d:3a:5a:3f:a8:40:83:19:db: e8:fc:e7:9a:c1:e3:5d:8f:32:be:56:5f:91:d4:95: 42:67:aa:e0:52:5e:fe:c5:b6:4a:fe:59:ef:f0:53: 2e:81:49:1b:58:81:bb:eb:54:f9:1c:d8:ad:ce:7a: cf:9b:65:45:63:56:23:66:74:85:95:b2:95:e9:ca: a0:6b:4f:73:30:f7:97:bd:c1:14:19:5a:ca:a5:5a: 25:b4:2a:09:2b:6a:43:ff:b9:d2:64:ac:ab:ec:98: 7f:54:ac:3d:2f:06:75:02:99:ba:24:68:c0:5e:cd: 3c:06:22:a1:a1:e9:22:ee:e7:a2:9c:61:b6:90:74: ff:0f:01:7e:14:3f:14:25:32:74:18:29:8d:ed:e8: c2:c0:30:0d:58:92:7c:a1:3a:18:9e:e9:02:3b:d8: 79:13:d5:38:5e:e8:4d:c0:4b:66:67:c3:7d:23:12: ed:b6:aa:66:a3:0f:8e:f5:e2:ba:90:55:13:10:c1: f5:2a:64:62:8f:6b:ec:13:f3:c1:be:25:cd:c3:e1: d4:75:27:db:68:8d:a1:6b:ae:de:30:27:9e:09:33: 1e:b4:7e:7f:ac:37:b8:b2:30:ce:ba:bb:a0:e5:4f: 70:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:AA:FE:BA:67:F3:BD:E2:26:73:13:BE:21:E8:93:86:06:3C:F6:2E X509v3 Authority Key Identifier: keyid:59:0F:A3:C6:70:00:E9:69:85:79:1E:63:55:AD:1F:6D:AD:5C:18:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91275A6/CA86944A9C5D11ED97B3F548C4F9AE02/WQ-jxnAA6WmFeR5jVa0fba1cGHY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WQ-jxnAA6WmFeR5jVa0fba1cGHY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91275A6/CA86944A9C5D11ED97B3F548C4F9AE02/WQ-jxnAA6WmFeR5jVa0fba1cGHY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:12:4b:50:c9:82:5a:25:0f:be:cb:4b:27:18:02:ac:05:25: 57:26:b3:7b:94:8b:65:78:96:d5:44:fd:55:3c:7b:ae:4d:8e: 19:5a:e7:71:fc:48:5e:73:c5:65:bb:a5:0d:20:a9:69:58:88: 51:f2:97:33:fb:75:ff:79:f0:f0:e9:7c:12:f9:7e:6e:26:5b: 51:a9:d3:68:0c:54:0c:b9:9c:50:2b:77:df:08:51:d0:5c:a2: a9:c3:09:d6:e2:2d:39:94:86:1c:e7:7e:de:1e:36:e4:6c:ad: 70:6f:e8:f7:0f:cc:13:0e:eb:05:39:75:2b:6c:a7:72:d4:d4: a1:5f:6d:76:a2:be:a0:f2:93:b9:a0:58:c4:e1:f3:53:3e:00: 10:f1:8f:20:2f:c6:85:a4:12:f5:9b:04:28:c9:40:4b:3b:4b: 87:45:ba:eb:d4:3e:5f:7b:27:ad:0b:76:d4:26:45:74:95:f8: 42:00:66:46:c6:db:76:50:70:67:16:04:14:be:9d:d7:f7:de: f2:a4:bb:f3:6d:cf:96:ae:a2:ef:59:f1:e9:9d:d8:08:5f:69: c0:72:5c:ca:54:20:60:7f:cb:53:9f:98:38:43:b2:e9:b4:82: 89:9d:d6:fe:cd:ad:c4:2e:c1:b7:2a:4f:18:ec:94:9c:11:4a: 49:2f:e6:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1QTYxMTAvBgNVBAUTKDU5MEZBM0M2NzAwMEU5Njk4NTc5MUU2MzU1QUQxRjZE QUQ1QzE4NzYwHhcNMjUwOTE3MDMwMTM4WhcNMjUwOTI0MDMwMTM4WjAYMRYwFAYD VQQDEw02OGNhMjQ5Mi00YjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwC6LSRC43GejozrcbC5mvQAIl14dOlo/qECDGdvo/OeaweNdjzK+Vl+R1JVC Z6rgUl7+xbZK/lnv8FMugUkbWIG761T5HNitznrPm2VFY1YjZnSFlbKV6cqga09z MPeXvcEUGVrKpVoltCoJK2pD/7nSZKyr7Jh/VKw9LwZ1Apm6JGjAXs08BiKhoeki 7ueinGG2kHT/DwF+FD8UJTJ0GCmN7ejCwDANWJJ8oToYnukCO9h5E9U4XuhNwEtm Z8N9IxLttqpmow+O9eK6kFUTEMH1KmRij2vsE/PBviXNw+HUdSfbaI2ha67eMCee CTMetH5/rDe4sjDOurug5U9wrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGKq/rpn 873iJnMTviHok4YGPPYuMB8GA1UdIwQYMBaAFFkPo8ZwAOlphXkeY1WtH22tXBh2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzVBNi9DQTg2OTQ0QTlD NUQxMUVEOTdCM0Y1NDhDNEY5QUUwMi9XUS1qeG5BQTZXbUZlUjVqVmEwZmJhMWNH SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dRLWp4bkFBNldtRmVSNWpWYTBmYmExY0dIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzVBNi9DQTg2OTQ0QTlDNUQxMUVEOTdCM0Y1NDhDNEY5QUUwMi9XUS1qeG5BQTZX bUZlUjVqVmEwZmJhMWNHSFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASEktQyYJaJQ++y0snGAKsBSVXJrN7lItleJbVRP1VPHuuTY4ZWudx /Ehec8Vlu6UNIKlpWIhR8pcz+3X/efDw6XwS+X5uJltRqdNoDFQMuZxQK3ffCFHQ XKKpwwnW4i05lIYc537eHjbkbK1wb+j3D8wTDusFOXUrbKdy1NShX212or6g8pO5 oFjE4fNTPgAQ8Y8gL8aFpBL1mwQoyUBLO0uHRbrr1D5feyetC3bUJkV0lfhCAGZG xtt2UHBnFgQUvp3X997ypLvzbc+WrqLvWfHpndgIX2nAclzKVCBgf8tTn5g4Q7Lp tIKJndb+za3ELsG3Kk8Y7JScEUpJL+aA -----END CERTIFICATE-----Generated at Fri Sep 19 00:39:27 2025 by rpki-client