$ rpki-client -vvf rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft File: QELW5jee2AQkizYN7Zhe9_VlIBE.mft (raw, json) Hash identifier: l0v9ZGpE79Sy3tW41uFdPDewGTsMditwyyIRJSJBevs= Subject key identifier: DB:B5:EA:42:6F:6F:D6:EF:09:40:14:51:32:93:BE:9C:B3:D4:4C:06 Authority key identifier: 40:42:D6:E6:37:9E:D8:04:24:8B:36:0D:ED:98:5E:F7:F5:65:20:11 Certificate issuer: /CN=A9148465/serialNumber=4042D6E6379ED804248B360DED985EF7F5652011 Certificate serial: 0270 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft Manifest number: 026C Signing time: Wed 17 Sep 2025 02:14:58 +0000 Manifest this update: Wed 17 Sep 2025 02:14:58 +0000 Manifest next update: Wed 24 Sep 2025 02:14:58 +0000 Files and hashes: 1: QELW5jee2AQkizYN7Zhe9_VlIBE.crl (hash: RNPFK6GFM+231rNtwkMgb5dSGD3iGkCB0zaMJqW/iT0=) 2: 7777513828C011EDBEC6D287C4F9AE02.roa (hash: KysVMiyZcH0HX0OV6c/BvTG9IGFmIflJ1zJN81z9Xf0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.crl rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 02:14:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 624 (0x270) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148465, serialNumber=4042D6E6379ED804248B360DED985EF7F5652011 Validity Not Before: Sep 17 02:14:58 2025 GMT Not After : Sep 24 02:14:58 2025 GMT Subject: CN=68ca19a2-8a1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:28:50:f5:22:e2:f6:b5:ac:0d:5e:8b:3f:80: 24:db:51:90:46:13:ce:f9:f9:34:8b:63:4a:23:63: 2d:c4:a5:fd:6c:38:81:74:5d:f4:d6:8e:d6:03:2a: e4:45:8b:5b:19:86:66:8a:21:f9:b2:bd:53:bb:e1: 0d:03:76:ba:2b:92:e4:d4:bd:8a:06:66:8f:50:76: f1:bb:5a:43:16:1a:d3:56:a2:33:ad:88:10:e7:84: 4d:46:e6:be:6a:72:0b:82:b6:e8:a9:df:f7:5f:af: 51:9b:e9:58:b9:31:9b:d1:37:52:cd:34:6d:52:a1: dd:18:05:1f:06:45:7b:78:14:2b:8b:89:16:47:7b: 8e:0b:07:81:9a:22:25:bc:29:9e:59:f4:0a:f1:db: 54:11:a7:e4:59:34:65:77:d7:92:66:a0:b5:a8:37: 7d:e1:c4:86:00:54:a5:63:f0:86:a6:fb:90:79:e4: 60:0b:03:b0:15:35:fb:c2:f3:69:72:40:ca:24:52: 2b:45:05:29:a0:00:6f:7b:ef:43:0c:ee:aa:30:69: c5:fb:08:20:43:82:2a:e4:de:bf:9d:02:49:b9:ec: 6b:91:d3:5e:8e:05:78:fa:d2:a4:99:0f:47:88:85: bb:2e:69:c9:74:c1:6b:4f:43:26:18:7c:b0:8d:40: 17:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:B5:EA:42:6F:6F:D6:EF:09:40:14:51:32:93:BE:9C:B3:D4:4C:06 X509v3 Authority Key Identifier: keyid:40:42:D6:E6:37:9E:D8:04:24:8B:36:0D:ED:98:5E:F7:F5:65:20:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QELW5jee2AQkizYN7Zhe9_VlIBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148465/D60F027228BB11EDA59C3081C4F9AE02/QELW5jee2AQkizYN7Zhe9_VlIBE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:6c:dd:2d:c0:3e:0c:e3:48:49:80:8c:aa:d8:17:6a:6a:a1: d6:20:2a:4b:f4:1a:36:32:a6:f5:47:2a:6c:3b:0c:25:7d:fe: 55:66:5c:0a:e4:5d:5f:ac:ad:06:f6:d9:ba:26:aa:3b:7e:e5: 5e:55:a9:be:4e:50:d4:65:0b:1b:89:94:51:d9:14:2e:bc:a0: 5b:0e:db:25:b7:76:d5:7b:83:91:ee:0d:df:bb:9b:d5:70:b8: f4:fb:6a:c5:49:87:ea:4c:fa:48:1d:8f:c0:bb:95:9a:ee:8f: d6:87:15:38:1b:bf:09:f7:0d:51:9c:62:eb:1a:99:03:e1:be: d6:4e:fd:fe:c0:2a:52:52:26:ed:73:a5:f4:66:2c:5a:89:61: 33:0a:a4:a9:60:c9:47:88:6b:10:a0:39:60:37:10:4a:2e:1d: f2:ea:0e:6a:90:34:70:7d:d3:9a:2c:33:34:fe:81:dd:d2:ba: cd:e3:e4:f3:d9:c6:49:6f:64:e1:60:1f:ce:06:8c:57:c1:33: 7b:e1:5d:12:4f:fe:f6:ed:28:6a:f1:f0:6c:34:dd:c6:b4:bf: 5c:29:f7:33:91:4f:bd:f6:74:12:43:64:e6:07:ab:91:4b:07: 23:68:3f:21:ee:3f:64:08:5c:11:f7:34:7a:84:6b:72:8f:8a: ff:b4:b5:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg0NjUxMTAvBgNVBAUTKDQwNDJENkU2Mzc5RUQ4MDQyNDhCMzYwREVEOTg1RUY3 RjU2NTIwMTEwHhcNMjUwOTE3MDIxNDU4WhcNMjUwOTI0MDIxNDU4WjAYMRYwFAYD VQQDEw02OGNhMTlhMi04YTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyyhQ9SLi9rWsDV6LP4Ak21GQRhPO+fk0i2NKI2MtxKX9bDiBdF301o7WAyrk RYtbGYZmiiH5sr1Tu+ENA3a6K5Lk1L2KBmaPUHbxu1pDFhrTVqIzrYgQ54RNRua+ anILgrboqd/3X69Rm+lYuTGb0TdSzTRtUqHdGAUfBkV7eBQri4kWR3uOCweBmiIl vCmeWfQK8dtUEafkWTRld9eSZqC1qDd94cSGAFSlY/CGpvuQeeRgCwOwFTX7wvNp ckDKJFIrRQUpoABve+9DDO6qMGnF+wggQ4Iq5N6/nQJJuexrkdNejgV4+tKkmQ9H iIW7LmnJdMFrT0MmGHywjUAXOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNu16kJv b9bvCUAUUTKTvpyz1EwGMB8GA1UdIwQYMBaAFEBC1uY3ntgEJIs2De2YXvf1ZSAR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODQ2NS9ENjBGMDI3MjI4 QkIxMUVEQTU5QzMwODFDNEY5QUUwMi9RRUxXNWplZTJBUWtpellON1poZTlfVmxJ QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FFTFc1amVlMkFRa2l6WU43WmhlOV9WbElCRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 ODQ2NS9ENjBGMDI3MjI4QkIxMUVEQTU5QzMwODFDNEY5QUUwMi9RRUxXNWplZTJB UWtpellON1poZTlfVmxJQkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbbN0twD4M40hJgIyq2BdqaqHWICpL9Bo2Mqb1RypsOwwlff5VZlwK 5F1frK0G9tm6Jqo7fuVeVam+TlDUZQsbiZRR2RQuvKBbDtslt3bVe4OR7g3fu5vV cLj0+2rFSYfqTPpIHY/Au5Wa7o/WhxU4G78J9w1RnGLrGpkD4b7WTv3+wCpSUibt c6X0ZixaiWEzCqSpYMlHiGsQoDlgNxBKLh3y6g5qkDRwfdOaLDM0/oHd0rrN4+Tz 2cZJb2ThYB/OBoxXwTN74V0ST/727Shq8fBsNN3GtL9cKfczkU+99nQSQ2TmB6uR SwcjaD8h7j9kCFwR9zR6hGtyj4r/tLUq -----END CERTIFICATE-----Generated at Thu Sep 18 20:52:01 2025 by rpki-client