$ rpki-client -vvf rpki.apnic.net/member_repository/A917618F/D28D75C0C2DF11E8A64EFD2CC4F9AE02/QJOHCXJ0OMjB3r_9BBWQWEggxug.mft File: QJOHCXJ0OMjB3r_9BBWQWEggxug.mft (raw, json) Hash identifier: 82EGAM/5dV9Fkvi8MLz8clwiojOPIcTOCnaPBIsk4p8= Subject key identifier: B4:63:65:C9:AC:8E:AA:46:2D:B6:92:A1:3B:07:2D:A8:C4:C2:CA:DE Authority key identifier: 40:93:87:09:72:74:38:C8:C1:DE:BF:FD:04:15:90:58:48:20:C6:E8 Certificate issuer: /CN=A917618F/serialNumber=40938709727438C8C1DEBFFD041590584820C6E8 Certificate serial: 12E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJOHCXJ0OMjB3r_9BBWQWEggxug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917618F/D28D75C0C2DF11E8A64EFD2CC4F9AE02/QJOHCXJ0OMjB3r_9BBWQWEggxug.mft Manifest number: 12DF Signing time: Sat 06 Sep 2025 17:09:22 +0000 Manifest this update: Sat 06 Sep 2025 17:09:22 +0000 Manifest next update: Sat 13 Sep 2025 17:09:22 +0000 Files and hashes: 1: QJOHCXJ0OMjB3r_9BBWQWEggxug.crl (hash: EUgCScJv3HD1CGXKA1BeWZ9d3HRo2wLt22fMLzUiM/o=) 2: 2FE4DA1EC2E111E8A19CB72FC4F9AE02.roa (hash: AtIY01QzRR0A54d2DL/Ntfs13u3zmiVedAjhi5vQD2s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917618F/D28D75C0C2DF11E8A64EFD2CC4F9AE02/QJOHCXJ0OMjB3r_9BBWQWEggxug.crl rsync://rpki.apnic.net/member_repository/A917618F/D28D75C0C2DF11E8A64EFD2CC4F9AE02/QJOHCXJ0OMjB3r_9BBWQWEggxug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJOHCXJ0OMjB3r_9BBWQWEggxug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 17:09:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4841 (0x12e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917618F, serialNumber=40938709727438C8C1DEBFFD041590584820C6E8 Validity Not Before: Sep 6 17:09:22 2025 GMT Not After : Sep 13 17:09:22 2025 GMT Subject: CN=68bc6ac2-ad79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:fb:89:4b:bc:a7:cc:94:a4:8e:f0:1e:b6:1d: fc:36:20:17:c3:1b:f9:b8:7c:5f:04:5f:b9:65:46: e8:f1:36:67:ce:0f:4c:67:b4:bb:7c:12:3d:bf:e4: 41:5b:fa:a9:9a:ea:3d:80:ac:b2:9e:c3:36:af:c6: 63:7e:e7:0f:a1:ce:d4:ca:dd:2f:c7:e4:ed:9a:a4: 6a:da:6b:f4:22:32:c8:ab:22:68:14:d8:68:9e:55: 81:77:84:ab:21:25:fb:35:2f:99:6c:77:48:64:df: 4e:46:b1:e5:96:88:c7:37:49:f6:55:4e:10:35:b0: ba:06:de:71:5d:b3:dc:23:67:1d:6e:39:0c:ed:ad: 99:8e:19:86:4a:e5:fe:6a:d4:4f:74:a0:03:5d:ad: 6b:88:31:4f:2a:bc:fd:75:11:79:ca:cf:b3:e2:50: 3e:b7:0d:2c:d9:f0:81:2b:b6:d9:a2:ab:ac:a8:93: 07:4c:65:ea:bc:a4:be:2c:e1:8f:c3:13:14:b6:ef: 6d:0e:03:11:f6:1b:51:36:4a:40:c7:47:41:47:01: 46:bc:8e:3a:a1:24:f9:f7:a0:6b:9f:f0:ba:4a:6c: 82:82:3f:ad:b5:85:b9:d1:73:20:8d:b0:2f:fd:f1: 66:d4:4b:88:26:3b:7c:d8:1f:8d:9f:c4:2e:e8:a5: c4:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:63:65:C9:AC:8E:AA:46:2D:B6:92:A1:3B:07:2D:A8:C4:C2:CA:DE X509v3 Authority Key Identifier: keyid:40:93:87:09:72:74:38:C8:C1:DE:BF:FD:04:15:90:58:48:20:C6:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917618F/D28D75C0C2DF11E8A64EFD2CC4F9AE02/QJOHCXJ0OMjB3r_9BBWQWEggxug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJOHCXJ0OMjB3r_9BBWQWEggxug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917618F/D28D75C0C2DF11E8A64EFD2CC4F9AE02/QJOHCXJ0OMjB3r_9BBWQWEggxug.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:4b:42:29:d3:69:a3:02:e5:f3:83:61:c6:41:25:6c:1f:b4: 55:e4:fd:36:e5:29:c2:b6:6d:ee:cc:e8:09:84:e6:fd:7b:df: 6c:24:dd:e6:64:ef:66:e0:c0:12:e7:6b:84:30:e3:8d:f8:00: 2d:1c:d6:80:b3:de:98:97:11:b1:ec:1e:11:ab:26:47:a3:0d: 42:91:0f:fb:b9:0c:3f:68:14:4c:62:43:f7:39:45:7b:f1:c3: fc:99:b4:b5:96:75:a9:de:a8:c2:c9:9c:17:a4:4f:57:9a:f9: de:16:d8:fa:2e:b3:ec:13:5c:08:bf:f1:e0:55:63:0c:62:b2: 97:dd:36:cb:0b:90:d4:12:67:c4:19:3a:59:25:77:3f:8d:e3: f5:70:f8:a0:42:74:64:e7:79:9e:55:25:42:44:12:89:97:6b: 02:f4:f1:13:1c:fd:51:5e:b7:5d:6f:58:08:1d:e8:da:c6:80: 58:7f:ee:21:f1:70:cf:26:ef:f7:75:0b:3f:20:90:e3:36:d8: 96:ae:95:74:04:1a:24:47:6a:f8:e5:5e:22:9f:f9:f5:43:32: 94:e0:56:b5:d7:fd:c8:d8:36:40:bd:9b:2b:5b:c8:2e:bb:33: 03:e0:fe:1b:40:70:cc:a0:42:ff:51:76:6a:d7:b9:b1:e4:45: 37:fa:28:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEukwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzYxOEYxMTAvBgNVBAUTKDQwOTM4NzA5NzI3NDM4QzhDMURFQkZGRDA0MTU5MDU4 NDgyMEM2RTgwHhcNMjUwOTA2MTcwOTIyWhcNMjUwOTEzMTcwOTIyWjAYMRYwFAYD VQQDEw02OGJjNmFjMi1hZDc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtPuJS7ynzJSkjvAeth38NiAXwxv5uHxfBF+5ZUbo8TZnzg9MZ7S7fBI9v+RB W/qpmuo9gKyynsM2r8ZjfucPoc7Uyt0vx+TtmqRq2mv0IjLIqyJoFNhonlWBd4Sr ISX7NS+ZbHdIZN9ORrHllojHN0n2VU4QNbC6Bt5xXbPcI2cdbjkM7a2ZjhmGSuX+ atRPdKADXa1riDFPKrz9dRF5ys+z4lA+tw0s2fCBK7bZoqusqJMHTGXqvKS+LOGP wxMUtu9tDgMR9htRNkpAx0dBRwFGvI46oST596Brn/C6SmyCgj+ttYW50XMgjbAv /fFm1EuIJjt82B+Nn8Qu6KXEZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLRjZcms jqpGLbaSoTsHLajEwsreMB8GA1UdIwQYMBaAFECThwlydDjIwd6//QQVkFhIIMbo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjE4Ri9EMjhENzVDMEMy REYxMUU4QTY0RUZEMkNDNEY5QUUwMi9RSk9IQ1hKME9NakIzcl85QkJXUVdFZ2d4 dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FKT0hDWEowT01qQjNyXzlCQldRV0VnZ3h1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjE4Ri9EMjhENzVDMEMyREYxMUU4QTY0RUZEMkNDNEY5QUUwMi9RSk9IQ1hKME9N akIzcl85QkJXUVdFZ2d4dWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCS0Ip02mjAuXzg2HGQSVsH7RV5P025SnCtm3uzOgJhOb9e99sJN3m ZO9m4MAS52uEMOON+AAtHNaAs96YlxGx7B4RqyZHow1CkQ/7uQw/aBRMYkP3OUV7 8cP8mbS1lnWp3qjCyZwXpE9XmvneFtj6LrPsE1wIv/HgVWMMYrKX3TbLC5DUEmfE GTpZJXc/jeP1cPigQnRk53meVSVCRBKJl2sC9PETHP1RXrddb1gIHejaxoBYf+4h 8XDPJu/3dQs/IJDjNtiWrpV0BBokR2r45V4in/n1QzKU4Fa11/3I2DZAvZsrW8gu uzMD4P4bQHDMoEL/UXZq17mx5EU3+ij/ -----END CERTIFICATE-----Generated at Mon Sep 8 08:09:13 2025 by rpki-client