$ rpki-client -vvf rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft File: QhgvX3GliYTOiFmuYKTKynP-g2E.mft (raw, json) Hash identifier: 3fPk+Z7oiglH8YPEVy7rUCFDTJKtTzOM2+CjnZNxHM4= Subject key identifier: 9D:D1:30:BB:0C:64:C5:79:96:37:C7:0E:3E:6F:BC:40:21:20:1B:65 Authority key identifier: 42:18:2F:5F:71:A5:89:84:CE:88:59:AE:60:A4:CA:CA:73:FE:83:61 Certificate issuer: /CN=A916EF5E/serialNumber=42182F5F71A58984CE8859AE60A4CACA73FE8361 Certificate serial: 1004 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QhgvX3GliYTOiFmuYKTKynP-g2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft Manifest number: 2659 Signing time: Thu 18 Sep 2025 16:49:26 +0000 Manifest this update: Thu 18 Sep 2025 16:49:25 +0000 Manifest next update: Thu 25 Sep 2025 16:49:25 +0000 Files and hashes: 1: QhgvX3GliYTOiFmuYKTKynP-g2E.crl (hash: yfLwaaAOqMDJymNXkzwJnN4Gq1/tadt21vKjTl3xJaM=) 2: 258F8662BBDF11ED8CE89144C4F9AE02.roa (hash: gR4VIke3wzcLlwcHX1MfRQDB5DCCZYAeVJopuxrfT0I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.crl rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QhgvX3GliYTOiFmuYKTKynP-g2E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 16:49:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4100 (0x1004) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EF5E, serialNumber=42182F5F71A58984CE8859AE60A4CACA73FE8361 Validity Not Before: Sep 18 16:49:25 2025 GMT Not After : Sep 25 16:49:25 2025 GMT Subject: CN=68cc3815-7b5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:ea:ec:43:7b:c8:ee:e6:4c:2a:f6:13:56:d6: 0b:b2:4d:e4:44:4e:28:9e:0e:2e:c9:1f:73:c4:a9: 7d:ff:c5:d1:15:29:eb:52:c7:b7:53:dc:cc:5d:06: 86:be:44:e9:8e:50:da:83:fc:87:d0:f1:48:a4:ef: 1a:ec:8e:3e:59:ed:4d:5e:c5:db:56:fe:d8:45:cc: dd:0e:fd:c8:6f:8a:c7:61:a1:55:5e:bc:7f:f1:27: f2:ad:ae:d4:b5:40:0d:e5:4f:73:fa:44:27:8b:b2: 9b:ff:f3:2e:7e:53:9b:75:f9:fe:6c:5f:0a:2c:53: ca:c6:7b:56:85:0e:b0:f5:b9:fd:4b:03:d5:03:f7: 78:0f:8c:d2:f7:ed:80:db:cb:55:c0:7c:fc:7a:25: 97:b1:0d:20:c9:d2:fc:5f:40:4d:6d:89:46:c1:2b: 27:2d:a6:c8:c4:64:47:68:31:a3:e7:d1:65:66:f4: ae:ed:74:d9:d9:14:d1:65:dc:30:b1:47:c9:47:c7: 53:eb:30:22:75:29:24:20:e3:3d:ee:6c:7d:63:25: 3d:75:97:07:6c:90:46:29:78:d6:a5:db:bc:4e:74: d7:ae:91:37:5c:9a:10:ae:09:b7:41:c0:cc:33:01: 4a:48:5c:34:00:e6:54:5f:78:5b:fa:66:b7:f6:55: 34:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:D1:30:BB:0C:64:C5:79:96:37:C7:0E:3E:6F:BC:40:21:20:1B:65 X509v3 Authority Key Identifier: keyid:42:18:2F:5F:71:A5:89:84:CE:88:59:AE:60:A4:CA:CA:73:FE:83:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QhgvX3GliYTOiFmuYKTKynP-g2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EF5E/F38DCF8A106B11E8B8CA020BC4F9AE02/QhgvX3GliYTOiFmuYKTKynP-g2E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:4f:27:a4:1e:01:25:8f:38:62:b6:40:09:e6:0f:a4:f2:d5: 26:77:22:3b:6a:fe:51:7d:da:99:f8:7c:11:60:9c:ac:c1:42: 0e:58:83:a9:34:53:7b:3d:ae:4c:9b:0d:a2:79:53:c3:f1:a2: 3d:b3:69:83:45:d7:22:b2:f2:58:b1:c4:c9:fe:28:69:eb:2d: fc:df:81:b1:c9:5c:e6:d2:41:6f:30:c1:90:a5:d4:52:dc:47: 29:af:be:10:f9:37:e2:45:79:ab:f8:d0:54:c6:87:0c:74:8c: cb:b1:ed:53:5a:74:e4:c8:74:02:00:e8:c1:a8:99:21:be:6c: 34:70:79:41:59:06:95:14:ca:ef:97:07:9e:e2:cc:d6:77:56: 40:a0:c1:74:61:49:cc:18:6d:67:88:a1:c3:9d:18:b6:d2:67: d8:b4:d4:8a:40:a9:f6:a9:31:3d:4e:cf:e4:d5:d5:c5:80:66: 28:64:40:3b:21:00:83:b7:82:24:0c:18:80:7b:ad:aa:b3:1c: fa:f8:08:7e:85:aa:c7:25:f5:5c:f4:2e:aa:f2:e2:45:85:b5: ac:29:50:1a:8e:5f:05:88:56:b8:c2:b9:b1:d6:46:d9:5f:c2: 25:c8:3e:b8:88:b3:3f:ae:a2:55:1f:58:bc:25:91:8e:ca:72: ed:01:5d:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEAQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVGNUUxMTAvBgNVBAUTKDQyMTgyRjVGNzFBNTg5ODRDRTg4NTlBRTYwQTRDQUNB NzNGRTgzNjEwHhcNMjUwOTE4MTY0OTI1WhcNMjUwOTI1MTY0OTI1WjAYMRYwFAYD VQQDEw02OGNjMzgxNS03YjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6ursQ3vI7uZMKvYTVtYLsk3kRE4ong4uyR9zxKl9/8XRFSnrUse3U9zMXQaG vkTpjlDag/yH0PFIpO8a7I4+We1NXsXbVv7YRczdDv3Ib4rHYaFVXrx/8Sfyra7U tUAN5U9z+kQni7Kb//MuflObdfn+bF8KLFPKxntWhQ6w9bn9SwPVA/d4D4zS9+2A 28tVwHz8eiWXsQ0gydL8X0BNbYlGwSsnLabIxGRHaDGj59FlZvSu7XTZ2RTRZdww sUfJR8dT6zAidSkkIOM97mx9YyU9dZcHbJBGKXjWpdu8TnTXrpE3XJoQrgm3QcDM MwFKSFw0AOZUX3hb+ma39lU0QwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ3RMLsM ZMV5ljfHDj5vvEAhIBtlMB8GA1UdIwQYMBaAFEIYL19xpYmEzohZrmCkyspz/oNh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUY1RS9GMzhEQ0Y4QTEw NkIxMUU4QjhDQTAyMEJDNEY5QUUwMi9RaGd2WDNHbGlZVE9pRm11WUtUS3luUC1n MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FoZ3ZYM0dsaVlUT2lGbXVZS1RLeW5QLWcyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RUY1RS9GMzhEQ0Y4QTEwNkIxMUU4QjhDQTAyMEJDNEY5QUUwMi9RaGd2WDNHbGlZ VE9pRm11WUtUS3luUC1nMkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClTyekHgEljzhitkAJ5g+k8tUmdyI7av5RfdqZ+HwRYJyswUIOWIOp NFN7Pa5Mmw2ieVPD8aI9s2mDRdcisvJYscTJ/ihp6y3834GxyVzm0kFvMMGQpdRS 3Ecpr74Q+TfiRXmr+NBUxocMdIzLse1TWnTkyHQCAOjBqJkhvmw0cHlBWQaVFMrv lwee4szWd1ZAoMF0YUnMGG1niKHDnRi20mfYtNSKQKn2qTE9Ts/k1dXFgGYoZEA7 IQCDt4IkDBiAe62qsxz6+Ah+harHJfVc9C6q8uJFhbWsKVAajl8FiFa4wrmx1kbZ X8IlyD64iLM/rqJVH1i8JZGOynLtAV0G -----END CERTIFICATE-----Generated at Fri Sep 19 05:28:10 2025 by rpki-client