$ rpki-client -vvf rpki.apnic.net/member_repository/A913089B/544C2050614611F0B4864E5AC4F9AE02/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.mft File: QD8ufk2rE8QZxoaQyUmVR_LFj8Q.mft (raw, json) Hash identifier: F9ogOcBRKX/naQGcIAXjI7FafKiCGCPXPJDVIxnADHA= Subject key identifier: 0B:B4:B4:A3:D3:CE:6D:11:A9:E4:F2:0F:66:F2:AB:4D:27:CE:6C:58 Authority key identifier: 40:3F:2E:7E:4D:AB:13:C4:19:C6:86:90:C9:49:95:47:F2:C5:8F:C4 Certificate issuer: /CN=A913089B/serialNumber=403F2E7E4DAB13C419C68690C9499547F2C58FC4 Certificate serial: 20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913089B/544C2050614611F0B4864E5AC4F9AE02/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.mft Manifest number: 1F Signing time: Tue 09 Sep 2025 08:01:48 +0000 Manifest this update: Tue 09 Sep 2025 08:01:47 +0000 Manifest next update: Tue 16 Sep 2025 08:01:47 +0000 Files and hashes: 1: QD8ufk2rE8QZxoaQyUmVR_LFj8Q.crl (hash: Tqmcilh0XMl9QSEst7OJiULGT4xQGVpClVCqLn2NRqk=) 2: AE811872614711F0B811645EC4F9AE02.roa (hash: n6Y55/ceR16qJJFVpXKIJxFXBfe/NuJGfnCy2fEW8mM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913089B/544C2050614611F0B4864E5AC4F9AE02/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.crl rsync://rpki.apnic.net/member_repository/A913089B/544C2050614611F0B4864E5AC4F9AE02/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 07:46:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913089B, serialNumber=403F2E7E4DAB13C419C68690C9499547F2C58FC4 Validity Not Before: Sep 9 08:01:47 2025 GMT Not After : Sep 16 08:01:47 2025 GMT Subject: CN=68bfdeec-3db2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:8f:3c:cc:5a:8b:d3:fd:10:c9:b5:ba:4e:91: 6a:fb:3d:f9:e7:6a:e2:ca:00:64:0a:6a:c6:9e:7b: fa:7e:f2:e6:4e:16:ae:1d:d7:72:70:95:19:ed:44: 6f:93:d5:46:58:69:62:b8:b9:31:3d:fe:03:f4:ee: 0a:f8:64:95:f2:db:69:fd:84:a0:1a:b9:cd:93:fa: 4d:4c:6d:dc:75:ff:f5:ee:2c:c2:f1:c8:98:2c:e2: 8f:5e:c2:f8:b2:cb:0e:ca:7c:56:fc:d2:b2:0b:33: 6f:60:a1:25:9b:d2:2f:b2:e7:b3:dd:df:04:d9:cb: 55:42:38:00:f2:52:49:ca:3f:c4:b8:f3:4f:e4:5b: 7e:d5:8a:6c:3d:7c:e8:0c:f2:bc:06:cc:c7:cf:8b: d7:a7:3d:37:b6:f7:6c:77:95:4e:60:9b:c7:aa:3a: a7:74:fa:84:e1:f6:12:be:76:4d:fa:6d:5a:b6:46: d2:11:5a:34:da:6a:87:ba:99:9b:43:ee:98:d5:74: 98:7b:33:41:92:b5:f8:3a:08:91:54:d2:75:d2:48: e2:a7:2e:e7:bc:9c:79:07:0d:84:a2:56:70:18:d4: 68:fa:cb:5a:52:15:95:b1:dd:dd:75:72:57:f0:e3: 67:aa:e6:cd:a2:1b:93:5f:57:55:73:e7:a0:b3:80: 34:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:B4:B4:A3:D3:CE:6D:11:A9:E4:F2:0F:66:F2:AB:4D:27:CE:6C:58 X509v3 Authority Key Identifier: keyid:40:3F:2E:7E:4D:AB:13:C4:19:C6:86:90:C9:49:95:47:F2:C5:8F:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913089B/544C2050614611F0B4864E5AC4F9AE02/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913089B/544C2050614611F0B4864E5AC4F9AE02/QD8ufk2rE8QZxoaQyUmVR_LFj8Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:38:bc:ab:e9:02:49:e7:18:29:1b:73:2d:c5:38:ae:bc:bc: 37:1c:e2:60:cb:e6:e8:aa:5d:6e:4b:19:30:a8:42:8b:e9:57: 28:50:9a:90:f6:60:d8:70:0b:c5:39:92:f9:28:4a:20:4a:28: 4b:7e:4d:46:01:5a:0d:07:3c:a3:a7:29:bf:53:34:29:b2:51: 81:2e:2c:6b:52:b8:86:67:6b:e0:a2:86:23:0a:e4:10:69:32: 60:5c:8d:45:54:20:8f:c5:b1:c2:b2:cb:7c:f1:4a:03:68:e7: c0:99:3b:ae:51:61:17:1a:8a:f1:de:bb:6a:8a:6a:ae:3d:64: 40:75:97:f4:f0:29:49:4c:27:f8:0d:d7:91:d0:44:0b:b9:10: 99:22:d8:61:fb:12:ea:49:6f:62:7d:4b:ba:96:69:70:2a:ff: f5:ea:c5:f4:c4:ee:ef:ae:a5:28:4c:ef:90:c8:ec:ad:24:3a: ce:38:ff:b9:2d:23:e7:90:39:0e:c9:3b:59:df:46:8e:5c:be: e1:8f:ff:db:cb:df:f0:1a:97:dc:c7:fe:1a:3a:55:b0:22:a8: dd:b6:52:48:83:0b:95:8f:98:bf:bc:0b:53:47:5f:f0:fa:84: 0c:b5:aa:ca:c2:67:4b:a7:92:89:ac:d0:d4:18:74:61:49:21: fa:6c:08:04 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MDg5QjExMC8GA1UEBRMoNDAzRjJFN0U0REFCMTNDNDE5QzY4NjkwQzk0OTk1NDdG MkM1OEZDNDAeFw0yNTA5MDkwODAxNDdaFw0yNTA5MTYwODAxNDdaMBgxFjAUBgNV BAMTDTY4YmZkZWVjLTNkYjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDsjzzMWovT/RDJtbpOkWr7PfnnauLKAGQKasaee/p+8uZOFq4d13JwlRntRG+T 1UZYaWK4uTE9/gP07gr4ZJXy22n9hKAauc2T+k1Mbdx1//XuLMLxyJgs4o9ewviy yw7KfFb80rILM29goSWb0i+y57Pd3wTZy1VCOADyUknKP8S480/kW37Vimw9fOgM 8rwGzMfPi9enPTe292x3lU5gm8eqOqd0+oTh9hK+dk36bVq2RtIRWjTaaoe6mZtD 7pjVdJh7M0GStfg6CJFU0nXSSOKnLue8nHkHDYSiVnAY1Gj6y1pSFZWx3d11clfw 42eq5s2iG5NfV1Vz56CzgDS5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUC7S0o9PO bRGp5PIPZvKrTSfObFgwHwYDVR0jBBgwFoAUQD8ufk2rE8QZxoaQyUmVR/LFj8Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMwODlCLzU0NEMyMDUwNjE0 NjExRjBCNDg2NEU1QUM0RjlBRTAyL1FEOHVmazJyRThRWnhvYVF5VW1WUl9MRmo4 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUUQ4dWZrMnJFOFFaeG9hUXlVbVZSX0xGajhRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMw ODlCLzU0NEMyMDUwNjE0NjExRjBCNDg2NEU1QUM0RjlBRTAyL1FEOHVmazJyRThR WnhvYVF5VW1WUl9MRmo4US5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACw4vKvpAknnGCkbcy3FOK68vDcc4mDL5uiqXW5LGTCoQovpVyhQmpD2 YNhwC8U5kvkoSiBKKEt+TUYBWg0HPKOnKb9TNCmyUYEuLGtSuIZna+CihiMK5BBp MmBcjUVUII/FscKyy3zxSgNo58CZO65RYRcaivHeu2qKaq49ZEB1l/TwKUlMJ/gN 15HQRAu5EJki2GH7EupJb2J9S7qWaXAq//XqxfTE7u+upShM75DI7K0kOs44/7kt I+eQOQ7JO1nfRo5cvuGP/9vL3/Aal9zH/ho6VbAiqN22UkiDC5WPmL+8C1NHX/D6 hAy1qsrCZ0unkoms0NQYdGFJIfpsCAQ= -----END CERTIFICATE-----Generated at Tue Sep 9 13:13:37 2025 by rpki-client