$ rpki-client -vvf rpki.apnic.net/member_repository/A9164860/6BEAE0887B3911EE9E91845FC4F9AE02/QP0nMwGov44nCXYsZPSuom0q4LQ.mft File: QP0nMwGov44nCXYsZPSuom0q4LQ.mft (raw, json) Hash identifier: fo7Skyq52bIBepNIQlconzvEpD4KERrkVfBJ+8SGeyI= Subject key identifier: FB:A8:67:0A:7A:CB:D1:FD:0A:1E:71:59:65:CB:C3:2D:45:8E:FD:09 Authority key identifier: 40:FD:27:33:01:A8:BF:8E:27:09:76:2C:64:F4:AE:A2:6D:2A:E0:B4 Certificate issuer: /CN=A9164860/serialNumber=40FD273301A8BF8E2709762C64F4AEA26D2AE0B4 Certificate serial: 0162 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QP0nMwGov44nCXYsZPSuom0q4LQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164860/6BEAE0887B3911EE9E91845FC4F9AE02/QP0nMwGov44nCXYsZPSuom0q4LQ.mft Manifest number: 015F Signing time: Sat 06 Sep 2025 17:15:01 +0000 Manifest this update: Sat 06 Sep 2025 17:15:00 +0000 Manifest next update: Sat 13 Sep 2025 17:15:00 +0000 Files and hashes: 1: QP0nMwGov44nCXYsZPSuom0q4LQ.crl (hash: +t6KD9Qsw8tygaAPWbombCqqKOyei/a4fLpAEQXzGew=) 2: 26BFE5FE841611EEB980955AC4F9AE02.roa (hash: mR7p6xLL+eywaq3IEYtE5q1FtrVRKFEpVD4lZkW4skg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164860/6BEAE0887B3911EE9E91845FC4F9AE02/QP0nMwGov44nCXYsZPSuom0q4LQ.crl rsync://rpki.apnic.net/member_repository/A9164860/6BEAE0887B3911EE9E91845FC4F9AE02/QP0nMwGov44nCXYsZPSuom0q4LQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QP0nMwGov44nCXYsZPSuom0q4LQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 17:15:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 354 (0x162) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164860, serialNumber=40FD273301A8BF8E2709762C64F4AEA26D2AE0B4 Validity Not Before: Sep 6 17:15:00 2025 GMT Not After : Sep 13 17:15:00 2025 GMT Subject: CN=68bc6c15-d6b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:fc:21:ab:20:a6:ee:42:79:cb:24:02:bb:25: 3a:93:8b:3f:06:69:cc:8a:53:04:ae:c1:bc:7f:3e: d3:a5:d9:fc:6c:61:a5:11:f8:28:f9:cf:41:ed:bd: 0e:c7:a7:1d:bc:8e:1f:c5:bc:29:0b:50:e4:75:e4: 2f:da:30:2a:49:dd:8f:53:6b:09:b5:85:98:af:b9: 47:8e:ad:04:66:f5:25:9e:7c:c6:73:da:08:9f:e3: e4:aa:7e:95:66:e8:b1:bb:7e:a4:5f:55:cf:be:ae: 5f:ce:d6:dc:d5:cd:19:93:1d:eb:f3:6f:48:05:d9: ce:08:15:0f:1f:f9:db:36:25:2a:b8:4b:6d:ad:55: 1a:1a:9a:d1:0f:cb:35:b1:fc:fd:6d:c8:c2:f0:c7: cc:a1:5c:ef:9a:44:d0:c7:c2:da:4c:32:5c:59:98: b1:28:f7:31:66:66:c9:bb:0b:2e:a0:a4:52:c9:e3: 81:89:b6:70:6a:32:f4:e8:57:46:5f:cb:e2:1a:b4: af:b2:a0:fd:5b:92:ce:e6:21:d9:da:b6:b5:1a:db: 98:5c:6d:8c:54:2e:c2:3b:12:ee:b2:98:34:40:83: 8d:8e:1c:e2:b4:a5:9a:a6:0a:26:80:44:60:77:bf: be:78:8a:6d:da:bf:98:bd:24:62:70:5c:62:86:ec: 89:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:A8:67:0A:7A:CB:D1:FD:0A:1E:71:59:65:CB:C3:2D:45:8E:FD:09 X509v3 Authority Key Identifier: keyid:40:FD:27:33:01:A8:BF:8E:27:09:76:2C:64:F4:AE:A2:6D:2A:E0:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164860/6BEAE0887B3911EE9E91845FC4F9AE02/QP0nMwGov44nCXYsZPSuom0q4LQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QP0nMwGov44nCXYsZPSuom0q4LQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164860/6BEAE0887B3911EE9E91845FC4F9AE02/QP0nMwGov44nCXYsZPSuom0q4LQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:1c:79:2d:42:4d:ff:63:27:96:d0:07:ff:71:fc:d6:ba:fa: 6b:32:2e:71:0a:72:fd:17:df:4e:3a:37:14:af:bb:a2:dc:90: 60:df:79:e3:7e:db:1a:ca:3f:59:28:02:75:88:e0:4a:04:36: fe:95:40:3f:ce:35:f6:29:5e:30:e6:3d:2c:5f:ef:8d:4c:55: fb:ba:5f:98:9e:07:19:c4:28:3a:9d:9f:b9:77:8c:ec:6d:a7: 0d:86:14:d1:01:4f:f5:5a:4c:88:82:8b:bf:48:51:43:3c:2d: c7:77:35:ee:58:c2:3a:5a:3a:62:91:2a:1c:eb:d8:df:61:24: d4:c0:32:56:30:71:c7:66:1e:f8:f5:05:1a:27:03:e0:90:0d: de:6d:af:ac:b8:39:40:37:17:b7:62:c9:8d:94:de:6e:c8:d9: ff:70:c2:b7:8b:dc:7d:67:98:77:c5:3a:ff:b5:68:84:e0:57: be:56:4a:80:5b:3d:4b:06:8a:ba:ec:64:3a:8b:ce:09:e0:b6: 66:0a:90:d7:51:df:b7:2a:97:51:13:07:69:99:59:4b:8a:25: 4f:02:14:4c:64:6c:c4:e1:e2:c1:9f:01:8b:b6:2b:bc:3a:85: e8:37:2c:78:a5:f2:40:ca:4d:77:9a:a1:65:54:4c:a1:ca:51: 1e:d7:fd:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQ4NjAxMTAvBgNVBAUTKDQwRkQyNzMzMDFBOEJGOEUyNzA5NzYyQzY0RjRBRUEy NkQyQUUwQjQwHhcNMjUwOTA2MTcxNTAwWhcNMjUwOTEzMTcxNTAwWjAYMRYwFAYD VQQDEw02OGJjNmMxNS1kNmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5vwhqyCm7kJ5yyQCuyU6k4s/BmnMilMErsG8fz7Tpdn8bGGlEfgo+c9B7b0O x6cdvI4fxbwpC1DkdeQv2jAqSd2PU2sJtYWYr7lHjq0EZvUlnnzGc9oIn+Pkqn6V Zuixu36kX1XPvq5fztbc1c0Zkx3r829IBdnOCBUPH/nbNiUquEttrVUaGprRD8s1 sfz9bcjC8MfMoVzvmkTQx8LaTDJcWZixKPcxZmbJuwsuoKRSyeOBibZwajL06FdG X8viGrSvsqD9W5LO5iHZ2ra1GtuYXG2MVC7COxLuspg0QIONjhzitKWapgomgERg d7++eIpt2r+YvSRicFxihuyJ+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPuoZwp6 y9H9Ch5xWWXLwy1Fjv0JMB8GA1UdIwQYMBaAFED9JzMBqL+OJwl2LGT0rqJtKuC0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDg2MC82QkVBRTA4ODdC MzkxMUVFOUU5MTg0NUZDNEY5QUUwMi9RUDBuTXdHb3Y0NG5DWFlzWlBTdW9tMHE0 TFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FQMG5Nd0dvdjQ0bkNYWXNaUFN1b20wcTRMUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDg2MC82QkVBRTA4ODdCMzkxMUVFOUU5MTg0NUZDNEY5QUUwMi9RUDBuTXdHb3Y0 NG5DWFlzWlBTdW9tMHE0TFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQHHktQk3/YyeW0Af/cfzWuvprMi5xCnL9F99OOjcUr7ui3JBg33nj ftsayj9ZKAJ1iOBKBDb+lUA/zjX2KV4w5j0sX++NTFX7ul+YngcZxCg6nZ+5d4zs bacNhhTRAU/1WkyIgou/SFFDPC3HdzXuWMI6WjpikSoc69jfYSTUwDJWMHHHZh74 9QUaJwPgkA3eba+suDlANxe3YsmNlN5uyNn/cMK3i9x9Z5h3xTr/tWiE4Fe+VkqA Wz1LBoq67GQ6i84J4LZmCpDXUd+3KpdREwdpmVlLiiVPAhRMZGzE4eLBnwGLtiu8 OoXoNyx4pfJAyk13mqFlVEyhylEe1/3d -----END CERTIFICATE-----Generated at Sat Sep 6 21:39:41 2025 by rpki-client