$ rpki-client -vvf rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.mft File: sQtPQ0P6rissTT3WYGS-km7HTJ8.mft (raw, json) Hash identifier: nqEuuMX2WxRNZstEiqWNl2aXMetuqUD/IDJnQq68qfc= Subject key identifier: 04:36:FE:6A:B8:0A:47:E9:59:75:74:72:21:71:6A:E6:9B:98:A0:CA Authority key identifier: B1:0B:4F:43:43:FA:AE:2B:2C:4D:3D:D6:60:64:BE:92:6E:C7:4C:9F Certificate issuer: /CN=A915CE2F/serialNumber=B10B4F4343FAAE2B2C4D3DD66064BE926EC74C9F Certificate serial: 0212 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sQtPQ0P6rissTT3WYGS-km7HTJ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.mft Manifest number: 020E Signing time: Wed 17 Sep 2025 02:44:00 +0000 Manifest this update: Wed 17 Sep 2025 02:43:59 +0000 Manifest next update: Wed 24 Sep 2025 02:43:59 +0000 Files and hashes: 1: sQtPQ0P6rissTT3WYGS-km7HTJ8.crl (hash: 6MGoZb2yoYjmm2Y+zQvW4p5xxrHF+axO38ZiUk9m2t8=) 2: 670087C4EEF011ED9C693D31C4F9AE02.roa (hash: aXVsQ3eTDOFY8R9G8hcsnCxP/cyR26ThIRn0dDawEqA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.crl rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sQtPQ0P6rissTT3WYGS-km7HTJ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 02:43:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 530 (0x212) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915CE2F, serialNumber=B10B4F4343FAAE2B2C4D3DD66064BE926EC74C9F Validity Not Before: Sep 17 02:43:59 2025 GMT Not After : Sep 24 02:43:59 2025 GMT Subject: CN=68ca206f-f559 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:8e:e6:c8:bc:a1:79:95:bf:44:f3:e4:f2:f1: d2:48:34:f0:0e:26:02:0b:63:1f:a0:69:6f:6d:cc: 53:5f:4b:1c:3b:ea:a4:e1:f8:01:85:a9:3e:e8:aa: 31:68:d6:a4:32:0a:30:b5:ba:24:21:48:13:43:ad: a8:64:8c:d2:72:f4:d8:b3:06:63:fc:14:ed:92:c5: c9:22:f3:e8:26:7a:09:1f:6c:58:83:6f:06:62:25: 1e:9a:b4:bd:c5:5f:80:8a:8f:3a:d9:bf:ea:dd:94: e5:bf:5b:92:7e:ca:b1:fb:b3:44:19:45:f1:5d:e9: a5:cf:5d:7f:e1:00:84:b6:f9:2b:93:fb:3d:c7:41: 64:3a:d7:a7:d1:c0:0f:af:d5:d3:26:fe:01:06:00: 34:19:c7:c2:6c:21:e2:53:95:c8:23:f4:47:a4:b9: 7a:28:1d:87:86:53:25:2d:eb:49:1c:f8:3c:2a:ca: 49:a0:21:ac:09:92:ff:e1:d4:6f:9c:a5:9e:a1:5e: 01:1c:e5:14:e0:9b:b1:c7:9d:47:a5:b5:2f:c7:1d: 61:03:34:bf:d3:f0:05:1a:cd:31:ac:d0:cb:7a:f1: 45:05:a4:36:00:36:0a:33:45:66:c3:f1:45:be:a9: e8:5a:07:03:44:91:8f:56:be:8c:36:f0:4d:b5:66: 4f:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:36:FE:6A:B8:0A:47:E9:59:75:74:72:21:71:6A:E6:9B:98:A0:CA X509v3 Authority Key Identifier: keyid:B1:0B:4F:43:43:FA:AE:2B:2C:4D:3D:D6:60:64:BE:92:6E:C7:4C:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sQtPQ0P6rissTT3WYGS-km7HTJ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CE2F/0BDEA52870E311EDB577043FC4F9AE02/sQtPQ0P6rissTT3WYGS-km7HTJ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:4c:50:92:ae:ec:44:a5:6c:52:8d:02:98:e1:48:ba:32:c0: 5a:fc:c4:5b:db:44:42:c9:a5:7b:f7:83:32:13:17:04:f4:bd: 37:f1:12:ab:bb:be:77:0c:8a:79:e4:20:a1:98:f5:f5:14:36: 50:41:5f:1a:8e:f6:81:70:40:87:08:74:25:56:d2:93:8b:6b: 32:d0:34:b7:f0:e2:70:7d:07:45:4a:49:c1:06:a4:ce:d9:72: d7:76:2a:00:76:80:7c:19:08:b3:30:ee:da:19:8b:4f:3e:44: 91:56:6e:b0:ba:c2:c8:b7:84:23:9e:ac:a6:bb:66:a2:f6:61: 92:ae:f0:d5:78:e1:f7:fe:ee:d8:68:49:d0:98:7d:a4:87:5c: bf:44:0d:50:66:ce:a8:9e:b6:eb:8e:09:58:ab:93:17:c6:e1: 4c:a7:42:c0:9a:ce:3d:d5:b9:8e:0a:e5:a9:f5:de:d0:2b:d1: ba:1f:2a:55:db:b9:84:e4:8b:4c:e6:ae:84:d3:97:2d:db:b6: b4:a2:ff:a6:01:4c:f4:1c:0f:d0:04:2e:f7:85:f0:d3:f1:0e: 79:b5:d0:42:2e:82:5d:a7:73:07:16:81:60:79:dd:c6:6f:50: 7d:0f:15:10:52:8a:ba:ec:e7:26:43:a0:c8:dc:84:d3:59:29: 54:83:f1:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUNFMkYxMTAvBgNVBAUTKEIxMEI0RjQzNDNGQUFFMkIyQzREM0RENjYwNjRCRTky NkVDNzRDOUYwHhcNMjUwOTE3MDI0MzU5WhcNMjUwOTI0MDI0MzU5WjAYMRYwFAYD VQQDEw02OGNhMjA2Zi1mNTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuY7myLyheZW/RPPk8vHSSDTwDiYCC2MfoGlvbcxTX0scO+qk4fgBhak+6Kox aNakMgowtbokIUgTQ62oZIzScvTYswZj/BTtksXJIvPoJnoJH2xYg28GYiUemrS9 xV+Aio862b/q3ZTlv1uSfsqx+7NEGUXxXemlz11/4QCEtvkrk/s9x0FkOten0cAP r9XTJv4BBgA0GcfCbCHiU5XII/RHpLl6KB2HhlMlLetJHPg8KspJoCGsCZL/4dRv nKWeoV4BHOUU4Juxx51HpbUvxx1hAzS/0/AFGs0xrNDLevFFBaQ2ADYKM0Vmw/FF vqnoWgcDRJGPVr6MNvBNtWZP2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAQ2/mq4 CkfpWXV0ciFxauabmKDKMB8GA1UdIwQYMBaAFLELT0ND+q4rLE091mBkvpJux0yf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Q0UyRi8wQkRFQTUyODcw RTMxMUVEQjU3NzA0M0ZDNEY5QUUwMi9zUXRQUTBQNnJpc3NUVDNXWUdTLWttN0hU SjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NRdFBRMFA2cmlzc1RUM1dZR1Mta203SFRKOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Q0UyRi8wQkRFQTUyODcwRTMxMUVEQjU3NzA0M0ZDNEY5QUUwMi9zUXRQUTBQNnJp c3NUVDNXWUdTLWttN0hUSjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNTFCSruxEpWxSjQKY4Ui6MsBa/MRb20RCyaV794MyExcE9L038RKr u753DIp55CChmPX1FDZQQV8ajvaBcECHCHQlVtKTi2sy0DS38OJwfQdFSknBBqTO 2XLXdioAdoB8GQizMO7aGYtPPkSRVm6wusLIt4Qjnqymu2ai9mGSrvDVeOH3/u7Y aEnQmH2kh1y/RA1QZs6onrbrjglYq5MXxuFMp0LAms491bmOCuWp9d7QK9G6HypV 27mE5ItM5q6E05ct27a0ov+mAUz0HA/QBC73hfDT8Q55tdBCLoJdp3MHFoFged3G b1B9DxUQUoq67OcmQ6DI3ITTWSlUg/ET -----END CERTIFICATE-----Generated at Thu Sep 18 23:50:07 2025 by rpki-client