$ rpki-client -vvf rpki.apnic.net/member_repository/A9166279/4181C4CE58CD11F0AD100877C4F9AE02/qHs26y4WaoD40fwBFc6ZGwoBh50.mft File: qHs26y4WaoD40fwBFc6ZGwoBh50.mft (raw, json) Hash identifier: ON7EiJ0/cvTMZQEjeDJZX2pcV4wETaz2NfIIE0eBVbw= Subject key identifier: 0C:CD:96:6B:EA:99:B8:A9:AC:45:3C:5D:64:32:80:0F:7A:9D:C5:AE Authority key identifier: A8:7B:36:EB:2E:16:6A:80:F8:D1:FC:01:15:CE:99:1B:0A:01:87:9D Certificate issuer: /CN=A9166279/serialNumber=A87B36EB2E166A80F8D1FC0115CE991B0A01879D Certificate serial: 1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHs26y4WaoD40fwBFc6ZGwoBh50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166279/4181C4CE58CD11F0AD100877C4F9AE02/qHs26y4WaoD40fwBFc6ZGwoBh50.mft Manifest number: 1B Signing time: Thu 21 Aug 2025 08:08:31 +0000 Manifest this update: Thu 21 Aug 2025 08:08:31 +0000 Manifest next update: Thu 28 Aug 2025 08:08:30 +0000 Files and hashes: 1: qHs26y4WaoD40fwBFc6ZGwoBh50.crl (hash: jUuKR9vR0xNUdwU/vxVFYKkS/+O6ohd2BlRGCg0C7ak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166279/4181C4CE58CD11F0AD100877C4F9AE02/qHs26y4WaoD40fwBFc6ZGwoBh50.crl rsync://rpki.apnic.net/member_repository/A9166279/4181C4CE58CD11F0AD100877C4F9AE02/qHs26y4WaoD40fwBFc6ZGwoBh50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHs26y4WaoD40fwBFc6ZGwoBh50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 08:08:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166279, serialNumber=A87B36EB2E166A80F8D1FC0115CE991B0A01879D Validity Not Before: Aug 21 08:08:31 2025 GMT Not After : Aug 28 08:08:30 2025 GMT Subject: CN=68a6d3ff-aad4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:41:1d:57:6a:6c:b4:b8:02:b8:46:76:7a:de: 39:c4:3f:32:13:87:41:b8:6d:ad:87:9f:b6:e6:2f: 7a:7e:82:c9:bc:39:ee:1c:93:fb:d3:ee:63:6f:e6: 0e:7b:ca:ae:ae:53:06:5b:7c:0f:d1:a1:09:dd:21: 91:5b:f4:8c:69:f0:b3:3d:81:7c:1e:35:2a:60:8c: 45:23:0f:f7:ed:eb:6e:2e:be:f7:6c:e5:ac:b6:c6: c6:68:e2:de:72:df:38:f7:ce:87:c0:fb:4e:94:d8: f9:ff:87:52:6f:30:13:f2:09:c5:cc:68:eb:a6:92: d0:4e:25:ca:08:a9:58:4d:f9:69:bf:1a:1a:14:c1: cc:13:68:30:2d:0a:5a:f0:16:f5:1d:d1:18:a8:85: 52:f5:25:84:4d:44:98:66:41:93:f3:3e:2d:49:a0: 39:5f:79:f7:3c:78:b9:3e:37:35:81:91:c9:40:3b: 36:40:39:df:3f:91:3e:ac:d6:c3:f7:43:c1:69:69: a5:a7:aa:34:66:33:0f:42:1b:26:4c:4d:3b:61:eb: fb:18:1c:cc:fc:51:cf:b7:5c:c4:90:91:06:22:eb: f6:92:cb:b7:4b:97:1d:ed:23:9b:ff:35:ff:80:33: 20:72:c0:af:20:ff:7f:f1:48:30:99:c7:84:ef:c8: fa:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:CD:96:6B:EA:99:B8:A9:AC:45:3C:5D:64:32:80:0F:7A:9D:C5:AE X509v3 Authority Key Identifier: keyid:A8:7B:36:EB:2E:16:6A:80:F8:D1:FC:01:15:CE:99:1B:0A:01:87:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166279/4181C4CE58CD11F0AD100877C4F9AE02/qHs26y4WaoD40fwBFc6ZGwoBh50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHs26y4WaoD40fwBFc6ZGwoBh50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166279/4181C4CE58CD11F0AD100877C4F9AE02/qHs26y4WaoD40fwBFc6ZGwoBh50.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:ee:c7:c3:98:eb:9c:d7:42:28:d0:4f:87:8f:6c:95:aa:ae: c6:95:55:7b:65:e2:8d:b0:80:1e:ec:a3:75:29:fa:17:9c:f0: 03:83:21:da:e9:0d:af:ea:e2:e2:9b:48:cc:dc:8e:a9:18:51: a6:d4:25:9b:6c:5b:88:08:af:27:44:0e:46:76:45:1e:77:fe: 47:25:8d:3c:34:b5:7a:8b:d8:5c:32:d7:5f:0e:fa:c9:d3:45: eb:49:78:4c:b6:f5:11:52:20:4e:74:b9:ab:a7:3a:f3:60:a6: 3a:01:91:97:07:22:90:33:50:b9:8e:b5:51:2c:a8:fb:99:a8: 7e:3c:86:d5:3a:66:43:da:85:7b:1d:a2:62:fe:88:0b:09:87: b7:36:f2:8a:d8:e4:d8:12:6f:37:06:d8:95:ad:7b:55:6a:a8: 94:81:c6:67:d4:e9:a0:03:73:2a:b3:79:30:c3:c5:0e:a1:d8: 94:76:39:3c:36:ad:a8:fc:73:89:8a:3a:ce:cd:c4:1f:f8:82: 63:e7:85:ad:5f:78:0e:16:01:b6:f8:6d:7f:75:f0:4a:d2:b2: 51:23:3d:0c:02:04:c4:aa:12:0f:57:6a:2e:83:a9:78:ea:6b: 68:87:bf:c3:16:76:b6:3b:5a:e8:e0:7f:76:5b:82:cf:19:04: d4:c6:e3:29 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NjI3OTExMC8GA1UEBRMoQTg3QjM2RUIyRTE2NkE4MEY4RDFGQzAxMTVDRTk5MUIw QTAxODc5RDAeFw0yNTA4MjEwODA4MzFaFw0yNTA4MjgwODA4MzBaMBgxFjAUBgNV BAMTDTY4YTZkM2ZmLWFhZDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOQR1Xamy0uAK4RnZ63jnEPzITh0G4ba2Hn7bmL3p+gsm8Oe4ck/vT7mNv5g57 yq6uUwZbfA/RoQndIZFb9Ixp8LM9gXweNSpgjEUjD/ft624uvvds5ay2xsZo4t5y 3zj3zofA+06U2Pn/h1JvMBPyCcXMaOumktBOJcoIqVhN+Wm/GhoUwcwTaDAtClrw FvUd0RiohVL1JYRNRJhmQZPzPi1JoDlfefc8eLk+NzWBkclAOzZAOd8/kT6s1sP3 Q8FpaaWnqjRmMw9CGyZMTTth6/sYHMz8Uc+3XMSQkQYi6/aSy7dLlx3tI5v/Nf+A MyBywK8g/3/xSDCZx4TvyPoDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDM2Wa+qZ uKmsRTxdZDKAD3qdxa4wHwYDVR0jBBgwFoAUqHs26y4WaoD40fwBFc6ZGwoBh50w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY2Mjc5LzQxODFDNENFNThD RDExRjBBRDEwMDg3N0M0RjlBRTAyL3FIczI2eTRXYW9ENDBmd0JGYzZaR3dvQmg1 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcUhzMjZ5NFdhb0Q0MGZ3QkZjNlpHd29CaDUwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY2 Mjc5LzQxODFDNENFNThDRDExRjBBRDEwMDg3N0M0RjlBRTAyL3FIczI2eTRXYW9E NDBmd0JGYzZaR3dvQmg1MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAInux8OY65zXQijQT4ePbJWqrsaVVXtl4o2wgB7so3Up+hec8AODIdrp Da/q4uKbSMzcjqkYUabUJZtsW4gIrydEDkZ2RR53/kcljTw0tXqL2Fwy118O+snT RetJeEy29RFSIE50uaunOvNgpjoBkZcHIpAzULmOtVEsqPuZqH48htU6ZkPahXsd omL+iAsJh7c28orY5NgSbzcG2JWte1VqqJSBxmfU6aADcyqzeTDDxQ6h2JR2OTw2 raj8c4mKOs7NxB/4gmPnha1feA4WAbb4bX918ErSslEjPQwCBMSqEg9Xai6DqXjq a2iHv8MWdrY7Wujgf3Zbgs8ZBNTG4yk= -----END CERTIFICATE-----Generated at Fri Aug 22 16:38:27 2025 by rpki-client