$ rpki-client -vvf rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft File: QMW9PelSuS6VkhpP1t99sHtKKSE.mft (raw, json) Hash identifier: 8D4OjRwAKc16OHhOz2olTacXw6tR03L0sjst77Oynmk= Subject key identifier: 5C:3C:A7:6F:48:10:30:F7:94:10:E5:B8:09:56:77:D7:CE:24:2E:C9 Authority key identifier: 40:C5:BD:3D:E9:52:B9:2E:95:92:1A:4F:D6:DF:7D:B0:7B:4A:29:21 Certificate issuer: /CN=A915D963/serialNumber=40C5BD3DE952B92E95921A4FD6DF7DB07B4A2921 Certificate serial: 0673 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMW9PelSuS6VkhpP1t99sHtKKSE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft Manifest number: 07C4 Signing time: Thu 18 Sep 2025 22:50:43 +0000 Manifest this update: Thu 18 Sep 2025 22:50:42 +0000 Manifest next update: Thu 25 Sep 2025 22:50:42 +0000 Files and hashes: 1: QMW9PelSuS6VkhpP1t99sHtKKSE.crl (hash: Yu/0zVszi+7JAH42ZvQ1RMRC2uOdemxn24z0quCaVoE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.crl rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMW9PelSuS6VkhpP1t99sHtKKSE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 22:50:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1651 (0x673) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D963, serialNumber=40C5BD3DE952B92E95921A4FD6DF7DB07B4A2921 Validity Not Before: Sep 18 22:50:42 2025 GMT Not After : Sep 25 22:50:42 2025 GMT Subject: CN=68cc8cc3-e33c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:96:6f:c0:a8:d6:8d:35:4a:3c:e4:61:89:96: c3:78:ff:84:a1:4a:c4:ac:93:38:9d:23:98:7c:b8: 95:13:ba:b9:90:72:2e:cd:e4:00:04:69:e4:7e:f9: c4:77:db:17:60:12:34:6a:68:3c:0d:cb:6f:ed:9f: 7d:9b:6c:00:31:a9:87:5a:3c:c3:28:f4:c1:e7:1a: de:a9:92:d5:f3:75:46:c9:58:df:fc:8b:06:1c:61: f2:1c:72:da:13:52:04:fd:29:da:e0:37:14:84:3b: 7b:cf:cb:a5:6d:a2:51:3f:26:ad:9c:8f:26:b2:c5: ff:43:07:7d:e5:27:5d:ef:54:7d:b6:c4:b0:e9:56: f8:69:f2:ae:1c:86:f5:2e:d4:64:7a:3b:60:bb:f5: a5:4c:a2:c2:ad:d1:c1:83:e1:8d:bc:6c:85:52:58: 6a:ae:e2:9f:2e:13:ba:bc:76:ee:e1:d0:86:36:fb: e7:33:1d:42:67:bf:5d:32:67:1e:c4:8e:69:4f:25: f9:76:1f:52:5f:45:ba:55:04:40:aa:2f:29:9a:f9: b9:23:bc:26:6e:b9:21:04:1d:7d:b0:0f:3c:d6:87: 62:e0:c9:57:69:9f:ed:b6:1c:6b:1e:d6:ed:57:56: 13:ab:8f:10:00:9e:07:8f:20:44:e3:56:9c:44:78: 89:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:3C:A7:6F:48:10:30:F7:94:10:E5:B8:09:56:77:D7:CE:24:2E:C9 X509v3 Authority Key Identifier: keyid:40:C5:BD:3D:E9:52:B9:2E:95:92:1A:4F:D6:DF:7D:B0:7B:4A:29:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMW9PelSuS6VkhpP1t99sHtKKSE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:6d:67:fa:4a:e3:68:85:d3:8b:d8:ce:16:1a:d0:4a:18:43: fa:9e:41:4b:41:2d:aa:2f:75:38:25:10:f3:55:dd:3b:b2:40: 76:99:5f:4d:3f:b7:c7:c9:46:47:fb:85:05:83:94:4b:cc:34: 85:95:fa:cf:1e:7d:86:0b:fe:91:c9:76:b9:2c:1a:11:8d:64: 50:fe:0b:e7:94:3c:e9:18:78:d3:3a:6b:60:6a:31:b2:95:c8: b1:36:cb:13:09:3d:31:cf:b7:1d:eb:78:2e:a9:4e:38:ea:86: 65:c1:fa:cb:f0:51:ff:82:bb:74:f6:1d:1c:5b:ec:1b:d5:5f: 51:15:b5:89:19:f8:3c:74:be:01:52:9c:17:33:b3:76:2b:08: 53:cb:16:e1:36:2e:2b:53:6f:3b:8a:49:71:de:d1:60:72:a4: e8:a1:9e:a6:c6:94:a7:c7:71:09:f6:08:8d:82:0d:62:65:8b: 25:0a:eb:32:9d:0b:3d:52:64:95:45:f6:79:a8:8f:74:a6:c5: 1d:14:43:a2:af:c9:d4:7a:38:84:8b:1d:eb:f9:28:57:be:0d: f1:c9:d3:99:7f:5b:13:72:d0:95:06:14:ac:68:ac:90:59:ad: e2:eb:e1:ab:74:f9:01:50:5b:2b:bf:1b:bd:94:76:d3:c9:a4: 6e:dc:91:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ5NjMxMTAvBgNVBAUTKDQwQzVCRDNERTk1MkI5MkU5NTkyMUE0RkQ2REY3REIw N0I0QTI5MjEwHhcNMjUwOTE4MjI1MDQyWhcNMjUwOTI1MjI1MDQyWjAYMRYwFAYD VQQDEw02OGNjOGNjMy1lMzNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ZZvwKjWjTVKPORhiZbDeP+EoUrErJM4nSOYfLiVE7q5kHIuzeQABGnkfvnE d9sXYBI0amg8Dctv7Z99m2wAMamHWjzDKPTB5xreqZLV83VGyVjf/IsGHGHyHHLa E1IE/Sna4DcUhDt7z8ulbaJRPyatnI8mssX/Qwd95Sdd71R9tsSw6Vb4afKuHIb1 LtRkejtgu/WlTKLCrdHBg+GNvGyFUlhqruKfLhO6vHbu4dCGNvvnMx1CZ79dMmce xI5pTyX5dh9SX0W6VQRAqi8pmvm5I7wmbrkhBB19sA881odi4MlXaZ/tthxrHtbt V1YTq48QAJ4HjyBE41acRHiJDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFw8p29I EDD3lBDluAlWd9fOJC7JMB8GA1UdIwQYMBaAFEDFvT3pUrkulZIaT9bffbB7Sikh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDk2My85MEU4MEJDODk3 RTIxMUVCOUIzOUQ1MzFDNEY5QUUwMi9RTVc5UGVsU3VTNlZraHBQMXQ5OXNIdEtL U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FNVzlQZWxTdVM2VmtocFAxdDk5c0h0S0tTRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDk2My85MEU4MEJDODk3RTIxMUVCOUIzOUQ1MzFDNEY5QUUwMi9RTVc5UGVsU3VT NlZraHBQMXQ5OXNIdEtLU0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXbWf6SuNohdOL2M4WGtBKGEP6nkFLQS2qL3U4JRDzVd07skB2mV9N P7fHyUZH+4UFg5RLzDSFlfrPHn2GC/6RyXa5LBoRjWRQ/gvnlDzpGHjTOmtgajGy lcixNssTCT0xz7cd63guqU446oZlwfrL8FH/grt09h0cW+wb1V9RFbWJGfg8dL4B UpwXM7N2KwhTyxbhNi4rU287iklx3tFgcqTooZ6mxpSnx3EJ9giNgg1iZYslCusy nQs9UmSVRfZ5qI90psUdFEOir8nUejiEix3r+ShXvg3xydOZf1sTctCVBhSsaKyQ Wa3i6+GrdPkBUFsrvxu9lHbTyaRu3JEb -----END CERTIFICATE-----Generated at Fri Sep 19 02:49:01 2025 by rpki-client