$ rpki-client -vvf rpki.apnic.net/member_repository/A917799C/2D335E6A554411F09342AC0CC4F9AE02/rQcCQCk6zcUkyhM2WC1wwhn8x-A.mft File: rQcCQCk6zcUkyhM2WC1wwhn8x-A.mft (raw, json) Hash identifier: I7UEYZAeKmKfFV15fpcMibC3xv8JXizsDlhYQTLq9Bg= Subject key identifier: B3:D8:EB:A6:CF:F8:CF:85:A8:81:E7:EE:D8:A6:DB:68:10:EF:C6:4C Authority key identifier: AD:07:02:40:29:3A:CD:C5:24:CA:13:36:58:2D:70:C2:19:FC:C7:E0 Certificate issuer: /CN=A917799C/serialNumber=AD070240293ACDC524CA1336582D70C219FCC7E0 Certificate serial: 3B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rQcCQCk6zcUkyhM2WC1wwhn8x-A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917799C/2D335E6A554411F09342AC0CC4F9AE02/rQcCQCk6zcUkyhM2WC1wwhn8x-A.mft Manifest number: 3A Signing time: Fri 17 Oct 2025 11:12:58 +0000 Manifest this update: Fri 17 Oct 2025 11:12:58 +0000 Manifest next update: Fri 24 Oct 2025 11:12:57 +0000 Files and hashes: 1: rQcCQCk6zcUkyhM2WC1wwhn8x-A.crl (hash: 28jeb6NOGKwiVTxJGkIM7odZ+UUeiHlET/Dj0l8TstY=) 2: 1A10CA38554511F0BE9D290EC4F9AE02.roa (hash: +cgq7m1m+3yCjZbwy4Qcjluah/ZFibIuVd5FM/B6ZOU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917799C/2D335E6A554411F09342AC0CC4F9AE02/rQcCQCk6zcUkyhM2WC1wwhn8x-A.crl rsync://rpki.apnic.net/member_repository/A917799C/2D335E6A554411F09342AC0CC4F9AE02/rQcCQCk6zcUkyhM2WC1wwhn8x-A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rQcCQCk6zcUkyhM2WC1wwhn8x-A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 11:12:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917799C, serialNumber=AD070240293ACDC524CA1336582D70C219FCC7E0 Validity Not Before: Oct 17 11:12:58 2025 GMT Not After : Oct 24 11:12:57 2025 GMT Subject: CN=68f224ba-2fcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:6a:c3:5a:b7:7b:d4:cb:0f:95:86:dd:f6:69: 6d:3f:78:35:28:52:86:e7:f6:1c:c6:50:83:83:f3: 70:69:8d:7d:9c:ff:90:b5:e9:08:7c:4a:2a:65:a1: f8:a7:b0:0d:da:bc:3a:a2:3e:23:d9:83:89:b4:af: ba:58:7e:b9:5f:70:db:a1:ce:11:f6:8d:4f:2d:89: bd:f1:43:62:fb:2b:93:1f:d2:5a:47:69:7f:1d:ed: 94:19:2d:e6:02:68:18:a3:72:d4:b7:39:44:b5:b4: 36:ca:23:c7:00:7b:69:ff:78:de:58:aa:4f:2e:93: 7d:9f:ad:81:6b:ce:ed:be:da:34:d9:c8:15:9c:62: 1a:28:9e:e5:4a:5e:37:e6:ad:ec:13:50:e9:83:06: 40:0f:1d:fb:fd:c1:a8:d3:a8:e9:51:55:d4:74:ee: ed:30:c6:1f:9f:31:f2:71:33:b2:0e:6b:21:fd:a5: 34:fb:8a:3a:bf:f1:70:2d:2b:f6:89:0d:d3:e8:5d: 1d:2e:97:a1:6d:19:c4:77:0a:d6:77:08:57:23:b0: 3d:dd:0f:6e:29:5c:71:3f:aa:72:94:92:69:bc:a1: f0:af:14:f2:df:37:9d:a4:93:ce:bd:e1:55:5a:06: 75:cf:07:a1:e8:60:c2:ba:d6:bb:7e:ae:cf:28:93: 96:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:D8:EB:A6:CF:F8:CF:85:A8:81:E7:EE:D8:A6:DB:68:10:EF:C6:4C X509v3 Authority Key Identifier: keyid:AD:07:02:40:29:3A:CD:C5:24:CA:13:36:58:2D:70:C2:19:FC:C7:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917799C/2D335E6A554411F09342AC0CC4F9AE02/rQcCQCk6zcUkyhM2WC1wwhn8x-A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rQcCQCk6zcUkyhM2WC1wwhn8x-A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917799C/2D335E6A554411F09342AC0CC4F9AE02/rQcCQCk6zcUkyhM2WC1wwhn8x-A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:8e:d3:d5:d1:90:06:da:b2:c1:f6:0e:7f:cf:4c:8d:4e:8a: 45:e5:55:52:55:cb:25:61:00:ca:c7:49:58:dd:65:58:7e:9d: f9:56:e9:69:34:23:a3:79:7b:04:c3:ed:cd:a1:dc:b7:9a:c2: 0b:8e:12:d7:dc:f8:e8:da:79:40:04:f5:d8:25:c9:17:45:a5: 89:ac:7c:05:0e:06:3b:fa:e4:83:8e:cb:56:ff:cb:60:d8:58: 26:1c:a6:2b:87:24:95:f8:fe:25:86:ad:c0:db:68:21:28:a2: d4:d5:ec:db:68:76:dc:e1:67:89:c7:1e:34:90:9a:35:92:20: 84:d9:6f:df:25:b7:47:c0:44:f8:e2:12:52:1c:84:93:e8:eb: 5b:a6:d1:20:d5:da:0c:0e:7c:b4:c5:a5:62:6c:f1:58:94:ea: be:57:3b:82:21:4b:ff:2f:97:d3:1e:a6:82:10:6a:b9:42:ff: a1:c4:93:f7:62:9b:77:37:7b:28:bf:99:ed:ca:5b:89:b8:78: 20:24:14:51:56:6c:4c:f9:09:f8:86:fa:94:08:c6:25:ab:9d: 4f:24:bc:74:42:d3:58:b6:90:8f:96:1c:9a:ca:b8:ac:7f:80: 5f:72:ab:23:2a:73:03:2a:13:2d:70:6a:8c:53:74:a8:18:ef: db:5e:aa:17 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 Nzk5QzExMC8GA1UEBRMoQUQwNzAyNDAyOTNBQ0RDNTI0Q0ExMzM2NTgyRDcwQzIx OUZDQzdFMDAeFw0yNTEwMTcxMTEyNThaFw0yNTEwMjQxMTEyNTdaMBgxFjAUBgNV BAMTDTY4ZjIyNGJhLTJmY2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNasNat3vUyw+Vht32aW0/eDUoUobn9hzGUIOD83BpjX2c/5C16Qh8Siplofin sA3avDqiPiPZg4m0r7pYfrlfcNuhzhH2jU8tib3xQ2L7K5Mf0lpHaX8d7ZQZLeYC aBijctS3OUS1tDbKI8cAe2n/eN5Yqk8uk32frYFrzu2+2jTZyBWcYhoonuVKXjfm rewTUOmDBkAPHfv9wajTqOlRVdR07u0wxh+fMfJxM7IOayH9pTT7ijq/8XAtK/aJ DdPoXR0ul6FtGcR3CtZ3CFcjsD3dD24pXHE/qnKUkmm8ofCvFPLfN52kk8694VVa BnXPB6HoYMK61rt+rs8ok5b5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUs9jrps/4 z4Wogefu2KbbaBDvxkwwHwYDVR0jBBgwFoAUrQcCQCk6zcUkyhM2WC1wwhn8x+Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3OTlDLzJEMzM1RTZBNTU0 NDExRjA5MzQyQUMwQ0M0RjlBRTAyL3JRY0NRQ2s2emNVa3loTTJXQzF3d2huOHgt QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvclFjQ1FDazZ6Y1VreWhNMldDMXd3aG44eC1BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3 OTlDLzJEMzM1RTZBNTU0NDExRjA5MzQyQUMwQ0M0RjlBRTAyL3JRY0NRQ2s2emNV a3loTTJXQzF3d2huOHgtQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG2O09XRkAbassH2Dn/PTI1OikXlVVJVyyVhAMrHSVjdZVh+nflW6Wk0 I6N5ewTD7c2h3LeawguOEtfc+OjaeUAE9dglyRdFpYmsfAUOBjv65IOOy1b/y2DY WCYcpiuHJJX4/iWGrcDbaCEootTV7NtodtzhZ4nHHjSQmjWSIITZb98lt0fARPji ElIchJPo61um0SDV2gwOfLTFpWJs8ViU6r5XO4IhS/8vl9MepoIQarlC/6HEk/di m3c3eyi/me3KW4m4eCAkFFFWbEz5CfiG+pQIxiWrnU8kvHRC01i2kI+WHJrKuKx/ gF9yqyMqcwMqEy1waoxTdKgY79teqhc= -----END CERTIFICATE-----Generated at Sat Oct 18 23:32:49 2025 by rpki-client