$ rpki-client -vvf rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft File: QG4t-6oOoAfdxmmT8sezCNoKGlc.mft (raw, json) Hash identifier: NGYgQJ70ZQEvxv939Y524hR8fPjJOCDumkLCg8Z4TWM= Subject key identifier: C7:0A:69:C3:F2:09:C2:30:41:E2:3A:87:9B:26:78:64:A1:73:D7:6A Authority key identifier: 40:6E:2D:FB:AA:0E:A0:07:DD:C6:69:93:F2:C7:B3:08:DA:0A:1A:57 Certificate issuer: /CN=A91315C1/serialNumber=406E2DFBAA0EA007DDC66993F2C7B308DA0A1A57 Certificate serial: 0C0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft Manifest number: 0C03 Signing time: Thu 18 Sep 2025 18:58:00 +0000 Manifest this update: Thu 18 Sep 2025 18:58:00 +0000 Manifest next update: Thu 25 Sep 2025 18:58:00 +0000 Files and hashes: 1: QG4t-6oOoAfdxmmT8sezCNoKGlc.crl (hash: IICau6ynLjJjWZl5cDTw72qt72JRDyFx1ZZm8he/fHI=) 2: 9D6DB59E1C5211EA8C6AAE37C4F9AE02.roa (hash: fjLr8uQxYz0b2IkiqsLdHlpaSbA1UhMnKJdo096hNVQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.crl rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 18:57:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3083 (0xc0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91315C1, serialNumber=406E2DFBAA0EA007DDC66993F2C7B308DA0A1A57 Validity Not Before: Sep 18 18:58:00 2025 GMT Not After : Sep 25 18:58:00 2025 GMT Subject: CN=68cc5638-ecdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:af:5a:3c:b2:87:fc:b9:91:2e:22:6d:39:67: 9d:cd:6d:02:f7:26:1f:af:a7:c4:99:71:27:5b:8e: d5:6a:f8:bd:29:e0:53:fc:52:ed:81:10:bb:0f:0a: e9:30:29:65:af:f3:7d:91:21:ff:9a:5d:2a:51:75: 11:e1:15:b9:77:ca:56:36:81:6e:29:3c:aa:f1:0d: e9:d9:a2:7c:a8:7d:93:13:e1:40:02:f9:ea:4e:bd: e1:f9:f6:8d:19:11:87:59:a0:84:6a:1f:c1:41:45: d5:cf:1b:f0:ba:ee:71:4f:88:48:a5:b0:13:b8:f6: d0:42:75:41:f5:2c:31:f4:75:6c:17:8a:ff:18:fe: e3:b6:5b:c9:22:5a:9c:8d:c1:6b:fb:a1:d0:05:70: 4a:8c:c8:a1:b7:6b:65:84:b1:09:d2:6a:f5:19:4b: 39:8e:ea:4a:df:74:20:71:cc:b3:7b:35:c6:64:fd: f5:df:fc:83:17:ea:31:60:ea:8b:24:d1:28:f5:d3: 80:6c:79:70:cf:1c:c6:56:ea:c3:93:36:93:3a:5a: 95:09:e9:c7:c1:1b:82:27:a0:14:38:3e:b5:93:12: d4:ea:be:53:96:25:b2:19:88:e8:c0:52:56:34:96: dc:70:5f:d3:46:71:3c:89:85:d1:28:6b:e3:a1:cd: 5f:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:0A:69:C3:F2:09:C2:30:41:E2:3A:87:9B:26:78:64:A1:73:D7:6A X509v3 Authority Key Identifier: keyid:40:6E:2D:FB:AA:0E:A0:07:DD:C6:69:93:F2:C7:B3:08:DA:0A:1A:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:16:fe:c8:c1:06:8f:56:9b:15:65:9b:ab:c8:c7:cb:7d:12: dd:03:e8:e4:8d:f6:3a:3e:5c:85:4b:a7:b9:d6:62:44:c2:7f: 9c:b0:73:e8:c5:12:14:f9:1d:65:ab:74:3b:fb:f9:a5:27:98: 4d:7c:a5:28:d0:e8:3a:8f:91:d4:ca:fe:6c:90:77:0d:01:6f: 45:09:8b:e2:e7:7f:b2:07:9a:69:ba:32:be:d5:9b:ff:4f:b5: e3:5d:75:99:2e:c5:37:09:f7:52:5a:04:aa:08:37:5a:37:e0: 0b:8a:ed:d0:c1:6f:dc:89:01:c0:79:85:2f:68:7e:3d:ca:73: 29:c5:bb:45:8d:20:51:b3:75:3c:c0:e1:e0:38:f1:60:b3:84: 8f:9e:24:85:e8:84:06:bb:8b:eb:19:15:97:3d:69:60:50:da: bb:67:f6:ee:63:5a:8a:8a:55:1d:76:d3:1e:5c:47:d8:a0:7a: d8:e2:d8:a4:bb:6c:62:9b:ad:5c:84:66:0d:89:42:0e:ca:7d: 7b:69:02:20:b3:f2:c3:c4:eb:6d:65:90:41:e5:25:99:1a:0a: 1f:d6:f7:e4:48:93:c3:7b:7e:d4:06:43:4c:5f:b1:a1:7b:11: 0a:98:b3:24:d8:00:c9:cf:1e:42:51:76:14:0f:a5:d2:3c:62: 0f:ec:75:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE1QzExMTAvBgNVBAUTKDQwNkUyREZCQUEwRUEwMDdEREM2Njk5M0YyQzdCMzA4 REEwQTFBNTcwHhcNMjUwOTE4MTg1ODAwWhcNMjUwOTI1MTg1ODAwWjAYMRYwFAYD VQQDEw02OGNjNTYzOC1lY2RkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxa9aPLKH/LmRLiJtOWedzW0C9yYfr6fEmXEnW47Vavi9KeBT/FLtgRC7Dwrp MCllr/N9kSH/ml0qUXUR4RW5d8pWNoFuKTyq8Q3p2aJ8qH2TE+FAAvnqTr3h+faN GRGHWaCEah/BQUXVzxvwuu5xT4hIpbATuPbQQnVB9Swx9HVsF4r/GP7jtlvJIlqc jcFr+6HQBXBKjMiht2tlhLEJ0mr1GUs5jupK33QgccyzezXGZP313/yDF+oxYOqL JNEo9dOAbHlwzxzGVurDkzaTOlqVCenHwRuCJ6AUOD61kxLU6r5TliWyGYjowFJW NJbccF/TRnE8iYXRKGvjoc1fCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMcKacPy CcIwQeI6h5smeGShc9dqMB8GA1UdIwQYMBaAFEBuLfuqDqAH3cZpk/LHswjaChpX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTVDMS8zMDA5QThBQTFD NTIxMUVBODREMTk5MzdDNEY5QUUwMi9RRzR0LTZvT29BZmR4bW1UOHNlekNOb0tH bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FHNHQtNm9Pb0FmZHhtbVQ4c2V6Q05vS0dsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTVDMS8zMDA5QThBQTFDNTIxMUVBODREMTk5MzdDNEY5QUUwMi9RRzR0LTZvT29B ZmR4bW1UOHNlekNOb0tHbGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArFv7IwQaPVpsVZZuryMfLfRLdA+jkjfY6PlyFS6e51mJEwn+csHPo xRIU+R1lq3Q7+/mlJ5hNfKUo0Og6j5HUyv5skHcNAW9FCYvi53+yB5ppujK+1Zv/ T7XjXXWZLsU3CfdSWgSqCDdaN+ALiu3QwW/ciQHAeYUvaH49ynMpxbtFjSBRs3U8 wOHgOPFgs4SPniSF6IQGu4vrGRWXPWlgUNq7Z/buY1qKilUddtMeXEfYoHrY4tik u2xim61chGYNiUIOyn17aQIgs/LDxOttZZBB5SWZGgof1vfkSJPDe37UBkNMX7Gh exEKmLMk2ADJzx5CUXYUD6XSPGIP7HUQ -----END CERTIFICATE-----Generated at Fri Sep 19 08:51:52 2025 by rpki-client