$ rpki-client -vvf rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft File: KQX7MhK9YWRvt69jPqGiV7w6Pew.mft (raw, json) Hash identifier: /h2eOX+TsqHaHDGy3Q1GHzykcLs5Cnjw1iJtX1l/fiU= Subject key identifier: 4A:31:31:31:16:F7:5E:DF:02:52:9A:53:1A:5B:67:C4:CD:5D:F9:3A Authority key identifier: 29:05:FB:32:12:BD:61:64:6F:B7:AF:63:3E:A1:A2:57:BC:3A:3D:EC Certificate issuer: /CN=A9156971/serialNumber=2905FB3212BD61646FB7AF633EA1A257BC3A3DEC Certificate serial: 34CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft Manifest number: 34C4 Signing time: Thu 18 Sep 2025 14:46:40 +0000 Manifest this update: Thu 18 Sep 2025 14:46:39 +0000 Manifest next update: Thu 25 Sep 2025 14:46:39 +0000 Files and hashes: 1: KQX7MhK9YWRvt69jPqGiV7w6Pew.crl (hash: p9c0RGlhVww2iS6UxU/ZjC5YJ5l6uCj+RTjydeVyqkw=) 2: 4AF78A4AFEC611EF86B4765BC4F9AE02.roa (hash: 4eibZFZxCBojQ0XF3++/6D4cGjzEkC+cfaewXmXRSYk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.crl rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 14:46:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13514 (0x34ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156971, serialNumber=2905FB3212BD61646FB7AF633EA1A257BC3A3DEC Validity Not Before: Sep 18 14:46:39 2025 GMT Not After : Sep 25 14:46:39 2025 GMT Subject: CN=68cc1b4f-c73f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:26:6c:18:72:fd:ac:3c:f2:e8:e1:b1:bd:4b: 3e:d9:a9:36:cb:a3:1f:a6:a9:ed:55:ea:8a:46:6e: 1a:40:5d:2d:a5:9e:25:3b:07:ba:53:93:72:dd:2e: 90:73:9e:9f:d9:99:e4:5d:88:3f:a5:75:e8:29:39: 3e:0c:ee:db:f9:a0:06:73:81:9c:41:97:37:25:b0: ec:b4:91:81:a2:f4:ba:8f:11:15:c4:38:fd:4a:00: 52:ab:bf:70:ee:03:d9:fd:9d:37:90:37:e4:c9:db: 82:56:ea:9b:f7:3d:64:d9:64:f2:ce:d8:14:86:f7: e5:bd:59:b9:71:22:8b:1c:94:e9:9d:43:e2:81:b3: 0e:f4:1a:04:9d:2a:6d:f4:f4:55:77:21:b7:f0:cf: f1:83:32:b2:b8:4a:eb:d1:6f:68:c5:4a:35:15:9d: 73:8d:a1:a4:c0:35:0a:95:bf:26:6b:21:e7:93:d8: 73:81:88:27:c8:56:b4:0c:67:8b:3b:bc:f6:20:5a: a9:9e:f6:29:ac:79:b2:4b:e3:a9:48:4f:c0:6e:af: 62:82:e9:1d:b8:16:e3:d3:fd:73:45:9c:c1:28:67: 50:4d:f0:d4:1b:d2:b5:bf:69:5a:95:ad:36:ad:6a: ad:a7:e9:eb:66:6b:90:4d:f7:1d:c8:eb:df:ae:22: db:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:31:31:31:16:F7:5E:DF:02:52:9A:53:1A:5B:67:C4:CD:5D:F9:3A X509v3 Authority Key Identifier: keyid:29:05:FB:32:12:BD:61:64:6F:B7:AF:63:3E:A1:A2:57:BC:3A:3D:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:10:db:de:a0:9e:e7:3f:4a:14:94:51:9e:f8:2d:ea:97:a5: 13:69:ec:55:e2:c2:95:2f:cd:44:05:e6:83:66:f4:21:bb:64: 3e:c7:6d:bf:dd:10:08:ee:a1:55:f8:08:a4:6d:c3:86:91:0d: 83:61:a5:7d:e0:d2:0e:b9:e6:e0:52:14:79:1e:9a:9b:af:3c: ec:3e:a4:42:d8:1b:c2:8c:08:6e:81:32:85:a6:d8:2e:12:e0: 8b:c9:92:d3:75:54:9c:46:58:22:db:6c:ef:6a:11:b9:6a:c8: 7f:cf:e9:33:97:81:22:30:5c:b3:c0:40:30:03:1b:a4:24:5a: ba:1d:be:e2:67:fc:71:49:59:f3:f5:3c:bc:d4:3c:03:83:e8: 1c:dc:7d:14:f1:24:18:7a:3b:fe:6d:e5:46:a5:d1:c3:83:13: 2f:ad:d2:31:91:e1:39:76:3a:24:20:4c:f8:e4:b6:dc:ed:a3: 60:83:87:13:53:bb:87:3b:d9:65:d4:49:93:bf:41:4b:2c:47: f1:86:82:54:3c:e2:4d:87:4f:35:0c:20:c2:65:01:36:27:a3: f5:f1:6c:c1:ea:2d:93:91:6c:cb:12:58:e3:08:83:b2:97:2c: 4b:e1:ef:5d:bb:cd:d4:2a:ef:df:3e:57:ec:ea:3e:59:02:b0: e9:83:8b:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY5NzExMTAvBgNVBAUTKDI5MDVGQjMyMTJCRDYxNjQ2RkI3QUY2MzNFQTFBMjU3 QkMzQTNERUMwHhcNMjUwOTE4MTQ0NjM5WhcNMjUwOTI1MTQ0NjM5WjAYMRYwFAYD VQQDEw02OGNjMWI0Zi1jNzNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuSZsGHL9rDzy6OGxvUs+2ak2y6MfpqntVeqKRm4aQF0tpZ4lOwe6U5Ny3S6Q c56f2ZnkXYg/pXXoKTk+DO7b+aAGc4GcQZc3JbDstJGBovS6jxEVxDj9SgBSq79w 7gPZ/Z03kDfkyduCVuqb9z1k2WTyztgUhvflvVm5cSKLHJTpnUPigbMO9BoEnSpt 9PRVdyG38M/xgzKyuErr0W9oxUo1FZ1zjaGkwDUKlb8mayHnk9hzgYgnyFa0DGeL O7z2IFqpnvYprHmyS+OpSE/Abq9igukduBbj0/1zRZzBKGdQTfDUG9K1v2lala02 rWqtp+nrZmuQTfcdyOvfriLbiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEoxMTEW 917fAlKaUxpbZ8TNXfk6MB8GA1UdIwQYMBaAFCkF+zISvWFkb7evYz6hole8Oj3s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Njk3MS80OEMyMjE4NjFE OTIxMUUyQURCMzBCRjUwOEIwMkNEMi9LUVg3TWhLOVlXUnZ0NjlqUHFHaVY3dzZQ ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tRWDdNaEs5WVdSdnQ2OWpQcUdpVjd3NlBldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Njk3MS80OEMyMjE4NjFEOTIxMUUyQURCMzBCRjUwOEIwMkNEMi9LUVg3TWhLOVlX UnZ0NjlqUHFHaVY3dzZQZXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFENveoJ7nP0oUlFGe+C3ql6UTaexV4sKVL81EBeaDZvQhu2Q+x22/ 3RAI7qFV+AikbcOGkQ2DYaV94NIOuebgUhR5HpqbrzzsPqRC2BvCjAhugTKFptgu EuCLyZLTdVScRlgi22zvahG5ash/z+kzl4EiMFyzwEAwAxukJFq6Hb7iZ/xxSVnz 9Ty81DwDg+gc3H0U8SQYejv+beVGpdHDgxMvrdIxkeE5djokIEz45Lbc7aNgg4cT U7uHO9ll1EmTv0FLLEfxhoJUPOJNh081DCDCZQE2J6P18WzB6i2TkWzLEljjCIOy lyxL4e9du83UKu/fPlfs6j5ZArDpg4uK -----END CERTIFICATE-----Generated at Fri Sep 19 00:46:55 2025 by rpki-client