$ rpki-client -vvf rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.mft File: qafXPj7Y1cRm3LxsIJzUNTzemM8.mft (raw, json) Hash identifier: 4JOphhl1Z4IsX2rJIQDVEPASmZhTyA2ZyrQW7FqeJvI= Subject key identifier: CD:06:AE:27:C0:08:F5:96:EC:A4:B5:7D:A9:2E:EB:D2:D1:AD:94:DC Authority key identifier: A9:A7:D7:3E:3E:D8:D5:C4:66:DC:BC:6C:20:9C:D4:35:3C:DE:98:CF Certificate issuer: /CN=A9143FC4/serialNumber=A9A7D73E3ED8D5C466DCBC6C209CD4353CDE98CF Certificate serial: 3483 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qafXPj7Y1cRm3LxsIJzUNTzemM8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.mft Manifest number: 3481 Signing time: Thu 18 Sep 2025 15:23:29 +0000 Manifest this update: Thu 18 Sep 2025 15:23:29 +0000 Manifest next update: Thu 25 Sep 2025 15:23:29 +0000 Files and hashes: 1: qafXPj7Y1cRm3LxsIJzUNTzemM8.crl (hash: xIuioEOIgseBecaM7/rT2wriv4hu9061QWAzSZg0L1U=) 2: FE96F04256EE11F09D243832C4F9AE02.roa (hash: i7V57Dro1PeoCEaseJh0ivldyfQ81BauNS5GWJcFu1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.crl rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qafXPj7Y1cRm3LxsIJzUNTzemM8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 15:23:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13443 (0x3483) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143FC4, serialNumber=A9A7D73E3ED8D5C466DCBC6C209CD4353CDE98CF Validity Not Before: Sep 18 15:23:29 2025 GMT Not After : Sep 25 15:23:29 2025 GMT Subject: CN=68cc23f1-3277 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:84:74:59:5d:88:87:25:95:30:fb:ea:f7:6c: 5f:bd:b0:8f:7d:de:7d:e9:64:25:93:4c:d5:1d:73: 9f:07:f7:a5:0a:85:8a:27:a5:df:ed:2c:8e:1f:4a: 5a:f1:87:76:fe:c1:16:af:39:86:0a:8f:0c:04:06: dd:c1:b5:f7:49:af:ff:a2:56:1e:64:cd:4e:88:6a: 23:84:de:e5:2a:c2:a6:12:a7:ab:ca:c8:be:42:c2: 58:53:ac:3f:e6:ee:52:06:d5:f2:2e:cf:42:fc:8b: 50:b4:27:00:e3:a6:af:85:f6:e4:d5:3b:a0:3c:0e: 9b:21:74:38:8c:20:dc:84:39:8c:84:23:56:6d:0f: e3:56:dd:8d:ca:05:76:6a:38:54:4d:14:83:7f:6c: 31:57:55:dc:c6:0d:d6:3d:df:a2:f3:06:7a:0d:52: 9a:40:dc:d8:8f:67:d3:3e:38:60:53:23:ea:5e:16: f6:58:04:62:64:67:95:fe:fa:1e:9a:3a:3b:34:62: 73:d1:f1:51:13:0d:43:eb:32:5a:30:49:6f:db:c4: 4f:d4:9d:f6:d0:09:70:52:eb:a1:42:97:84:db:a3: 18:7c:46:3d:82:40:39:22:d5:95:b3:7b:3c:8e:48: dd:92:74:aa:ae:d0:f3:d8:a2:2c:06:82:23:e8:65: 7c:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:06:AE:27:C0:08:F5:96:EC:A4:B5:7D:A9:2E:EB:D2:D1:AD:94:DC X509v3 Authority Key Identifier: keyid:A9:A7:D7:3E:3E:D8:D5:C4:66:DC:BC:6C:20:9C:D4:35:3C:DE:98:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qafXPj7Y1cRm3LxsIJzUNTzemM8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:68:ad:b7:dc:53:7b:35:97:35:d9:f0:55:12:82:bc:f4:b8: c2:96:c4:a6:02:db:a9:0d:c8:d9:81:08:9d:3e:2f:e9:f4:48: 81:4a:be:6e:d7:de:1f:2c:ae:4b:b5:9a:e5:4e:5f:1c:b7:b6: 09:c7:95:ed:ec:1d:f4:38:77:93:34:ca:91:4a:f8:13:dd:ed: 82:7d:37:fb:4f:60:7b:08:64:2c:96:1c:47:40:07:5d:45:8f: c7:bc:b5:85:16:cd:f0:95:23:39:76:36:03:dd:bf:d5:fa:2b: bf:6e:82:db:67:a1:04:ad:af:f8:46:42:42:5a:b3:bd:db:98: a2:f2:f9:70:54:94:db:e2:90:05:83:47:a7:7c:58:bd:f0:79: 4e:f9:56:0d:ff:e4:f5:88:49:78:66:a0:26:57:93:fa:6d:d0: 4c:2c:c0:3e:3c:ce:37:93:52:ab:06:57:84:0d:94:5b:17:0e: db:bd:39:69:b9:57:69:19:95:95:1c:61:b7:67:60:27:fe:3c: 4e:fd:5f:02:0c:b2:48:54:55:2d:41:36:97:47:53:5d:f8:e7: e6:9c:e8:36:02:76:53:c5:2c:eb:1a:93:08:57:ec:c7:93:62: 23:50:d9:d4:05:08:8c:c5:ec:eb:92:f0:63:c5:9e:cb:81:d0: c4:b6:6f:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNGQzQxMTAvBgNVBAUTKEE5QTdENzNFM0VEOEQ1QzQ2NkRDQkM2QzIwOUNENDM1 M0NERTk4Q0YwHhcNMjUwOTE4MTUyMzI5WhcNMjUwOTI1MTUyMzI5WjAYMRYwFAYD VQQDEw02OGNjMjNmMS0zMjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA54R0WV2IhyWVMPvq92xfvbCPfd596WQlk0zVHXOfB/elCoWKJ6Xf7SyOH0pa 8Yd2/sEWrzmGCo8MBAbdwbX3Sa//olYeZM1OiGojhN7lKsKmEqerysi+QsJYU6w/ 5u5SBtXyLs9C/ItQtCcA46avhfbk1TugPA6bIXQ4jCDchDmMhCNWbQ/jVt2NygV2 ajhUTRSDf2wxV1Xcxg3WPd+i8wZ6DVKaQNzYj2fTPjhgUyPqXhb2WARiZGeV/voe mjo7NGJz0fFREw1D6zJaMElv28RP1J320AlwUuuhQpeE26MYfEY9gkA5ItWVs3s8 jkjdknSqrtDz2KIsBoIj6GV8JwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM0GrifA CPWW7KS1faku69LRrZTcMB8GA1UdIwQYMBaAFKmn1z4+2NXEZty8bCCc1DU83pjP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0ZDNC9CMTY1QTNBODI5 NTgxMUUyQjM4RDU4RkIwOEIwMkNEMi9xYWZYUGo3WTFjUm0zTHhzSUp6VU5UemVt TTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FhZlhQajdZMWNSbTNMeHNJSnpVTlR6ZW1NOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0ZDNC9CMTY1QTNBODI5NTgxMUUyQjM4RDU4RkIwOEIwMkNEMi9xYWZYUGo3WTFj Um0zTHhzSUp6VU5UemVtTTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWaK233FN7NZc12fBVEoK89LjClsSmAtupDcjZgQidPi/p9EiBSr5u 194fLK5LtZrlTl8ct7YJx5Xt7B30OHeTNMqRSvgT3e2CfTf7T2B7CGQslhxHQAdd RY/HvLWFFs3wlSM5djYD3b/V+iu/boLbZ6EEra/4RkJCWrO925ii8vlwVJTb4pAF g0enfFi98HlO+VYN/+T1iEl4ZqAmV5P6bdBMLMA+PM43k1KrBleEDZRbFw7bvTlp uVdpGZWVHGG3Z2An/jxO/V8CDLJIVFUtQTaXR1Nd+OfmnOg2AnZTxSzrGpMIV+zH k2IjUNnUBQiMxezrkvBjxZ7LgdDEtm9v -----END CERTIFICATE-----Generated at Sat Sep 20 02:52:55 2025 by rpki-client