$ rpki-client -vvf rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft File: qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft (raw, json) Hash identifier: z/QMUgqPZtCze2nH1vlM5Rilha4bkllI51NJhX8WntQ= Subject key identifier: 8A:31:34:F2:B7:BC:4F:98:3B:99:47:71:2B:E9:4A:C4:5A:EA:DD:6E Authority key identifier: A8:BF:54:F6:08:19:67:22:19:35:CB:17:CC:13:EB:FB:84:1A:60:C2 Certificate issuer: /CN=A914D6FC/serialNumber=A8BF54F6081967221935CB17CC13EBFB841A60C2 Certificate serial: 023D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qL9U9ggZZyIZNcsXzBPr-4QaYMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft Manifest number: 0233 Signing time: Wed 17 Sep 2025 02:24:24 +0000 Manifest this update: Wed 17 Sep 2025 02:24:24 +0000 Manifest next update: Wed 24 Sep 2025 02:24:24 +0000 Files and hashes: 1: qL9U9ggZZyIZNcsXzBPr-4QaYMI.crl (hash: Wz8S2kLNsQGUlsKBaHA0yVxb1XHbMWX+IkREZx9kSgI=) 2: 11EC50B48B8F11EF8DE96E60C4F9AE02.roa (hash: H0AJqEiGAywgjMNh/B1Rg0QqAknxodzCmkcexEm/7aU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.crl rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qL9U9ggZZyIZNcsXzBPr-4QaYMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 02:24:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 573 (0x23d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D6FC, serialNumber=A8BF54F6081967221935CB17CC13EBFB841A60C2 Validity Not Before: Sep 17 02:24:24 2025 GMT Not After : Sep 24 02:24:24 2025 GMT Subject: CN=68ca1bd8-43b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d0:59:5c:c6:10:5d:9e:3e:42:97:07:43:47: 1f:e6:61:86:67:b4:18:6e:5f:02:43:f6:ab:47:2b: 7e:07:3a:c6:74:45:db:91:98:14:24:a1:fd:2f:28: 66:33:e6:9c:5a:b5:5a:fe:55:f2:f5:6a:34:69:4e: 3b:9c:db:cd:5d:e3:c9:5c:67:99:f7:8c:29:10:76: 01:00:ad:55:09:53:4d:1e:b3:d1:c4:4d:be:1e:60: ef:aa:8e:7c:64:e8:fc:24:5f:f7:6d:ed:dd:44:92: ee:42:ff:2f:4a:b0:26:aa:8f:68:94:96:da:ed:4c: a5:a2:63:ad:1d:84:e6:c7:52:05:e0:93:ab:4c:36: 4e:b7:b7:da:4f:30:ff:0a:b2:65:ab:68:e4:66:14: 26:a8:91:b0:8e:33:5d:4d:83:8a:9a:83:a2:54:96: 2e:9a:2c:b4:d1:53:13:68:d2:25:76:30:9e:19:03: 58:bc:79:cf:98:c2:ce:a4:b6:87:ae:82:b9:94:84: 1a:34:dc:a1:ab:2e:a4:df:61:91:96:21:86:24:69: 7d:15:36:17:42:67:76:7e:27:f2:b1:46:e1:00:37: b9:70:f4:29:1c:2a:b4:8c:68:21:73:e9:f0:00:9b: 13:39:5e:0a:cb:7d:45:24:b7:3c:44:4c:c8:3a:39: fd:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:31:34:F2:B7:BC:4F:98:3B:99:47:71:2B:E9:4A:C4:5A:EA:DD:6E X509v3 Authority Key Identifier: keyid:A8:BF:54:F6:08:19:67:22:19:35:CB:17:CC:13:EB:FB:84:1A:60:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qL9U9ggZZyIZNcsXzBPr-4QaYMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:d3:c4:bd:7c:6e:f5:b7:12:57:06:e9:0e:57:58:f2:7b:e8: bb:a8:a1:02:ac:80:ac:18:a3:9d:52:51:49:ae:cb:7d:22:44: 7e:91:11:6e:f1:b3:86:5d:e6:61:68:66:e9:5e:51:49:d5:39: 85:1b:2c:9b:d3:53:66:48:af:0f:1e:82:d9:d9:ff:ab:96:c5: c3:47:d2:a8:57:53:79:6f:e9:2c:60:7e:dd:be:7b:ea:dd:f6: 8d:fd:17:e3:cc:13:40:bc:33:c5:93:9c:ae:4b:5c:29:98:bc: 06:c3:8e:c7:30:fc:65:f2:58:45:26:20:85:56:75:e7:77:72: c1:ba:9e:d7:26:c0:09:fb:10:c2:89:b7:2c:62:7f:8b:82:5c: 0b:c7:2c:fd:39:58:cc:63:c2:ae:30:3f:a9:db:4c:1c:1b:5f: d5:b9:d1:ef:14:79:49:9a:a7:e2:d9:fd:b9:86:ae:a7:e6:b1: 10:d0:c7:5d:a7:e0:b5:e5:4f:1e:e4:e2:45:03:8b:2e:d3:d5: ac:a7:37:03:6a:b8:ab:43:30:53:00:25:9a:77:92:91:7b:10: d2:32:d2:56:20:00:ce:25:c2:bd:31:5e:84:aa:bc:8c:22:05: 60:92:fd:91:f4:65:0f:8f:6b:20:5b:c1:90:a7:b5:c1:4b:a5: 42:fd:40:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQ2RkMxMTAvBgNVBAUTKEE4QkY1NEY2MDgxOTY3MjIxOTM1Q0IxN0NDMTNFQkZC ODQxQTYwQzIwHhcNMjUwOTE3MDIyNDI0WhcNMjUwOTI0MDIyNDI0WjAYMRYwFAYD VQQDEw02OGNhMWJkOC00M2I1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNBZXMYQXZ4+QpcHQ0cf5mGGZ7QYbl8CQ/arRyt+BzrGdEXbkZgUJKH9Lyhm M+acWrVa/lXy9Wo0aU47nNvNXePJXGeZ94wpEHYBAK1VCVNNHrPRxE2+HmDvqo58 ZOj8JF/3be3dRJLuQv8vSrAmqo9olJba7UylomOtHYTmx1IF4JOrTDZOt7faTzD/ CrJlq2jkZhQmqJGwjjNdTYOKmoOiVJYumiy00VMTaNIldjCeGQNYvHnPmMLOpLaH roK5lIQaNNyhqy6k32GRliGGJGl9FTYXQmd2fifysUbhADe5cPQpHCq0jGghc+nw AJsTOV4Ky31FJLc8REzIOjn9YwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIoxNPK3 vE+YO5lHcSvpSsRa6t1uMB8GA1UdIwQYMBaAFKi/VPYIGWciGTXLF8wT6/uEGmDC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDZGQy84ODc1OTE4MjQz MkYxMUVEQkJEOThGNUNDNEY5QUUwMi9xTDlVOWdnWlp5SVpOY3NYekJQci00UWFZ TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FMOVU5Z2daWnlJWk5jc1h6QlByLTRRYVlNSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDZGQy84ODc1OTE4MjQzMkYxMUVEQkJEOThGNUNDNEY5QUUwMi9xTDlVOWdnWlp5 SVpOY3NYekJQci00UWFZTUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCl08S9fG71txJXBukOV1jye+i7qKECrICsGKOdUlFJrst9IkR+kRFu 8bOGXeZhaGbpXlFJ1TmFGyyb01NmSK8PHoLZ2f+rlsXDR9KoV1N5b+ksYH7dvnvq 3faN/RfjzBNAvDPFk5yuS1wpmLwGw47HMPxl8lhFJiCFVnXnd3LBup7XJsAJ+xDC ibcsYn+LglwLxyz9OVjMY8KuMD+p20wcG1/VudHvFHlJmqfi2f25hq6n5rEQ0Mdd p+C15U8e5OJFA4su09WspzcDarirQzBTACWad5KRexDSMtJWIADOJcK9MV6EqryM IgVgkv2R9GUPj2sgW8GQp7XBS6VC/UCO -----END CERTIFICATE-----Generated at Fri Sep 19 00:39:31 2025 by rpki-client