$ rpki-client -vvf rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft File: qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft (raw, json) Hash identifier: PWGdKpqrQXAbqJ5sw44Lvr0Ja8WCrtsmpqoa45O8toE= Subject key identifier: 8D:EA:2E:FC:E7:DC:F6:07:5C:E2:57:EF:EB:C4:3F:D9:B3:F0:38:C7 Authority key identifier: AA:43:6A:AF:C6:88:04:5B:F5:14:88:61:54:6F:A3:FD:CA:98:40:8E Certificate issuer: /CN=A917E4BA/serialNumber=AA436AAFC688045BF5148861546FA3FDCA98408E Certificate serial: 0B06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft Manifest number: 0AF8 Signing time: Sat 06 Sep 2025 19:35:24 +0000 Manifest this update: Sat 06 Sep 2025 19:35:24 +0000 Manifest next update: Sat 13 Sep 2025 19:35:24 +0000 Files and hashes: 1: qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl (hash: bngRh3fHiLKgaq5rO/kHOuFOkkRqIufeTOtdf+ox0YI=) 2: 2512D04C22BE11EC9240097DC4F9AE02.roa (hash: En9dIPtNAsqzocSYMmtm97H1ooZs8MGknLuErJdgZyg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 19:35:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2822 (0xb06) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E4BA, serialNumber=AA436AAFC688045BF5148861546FA3FDCA98408E Validity Not Before: Sep 6 19:35:24 2025 GMT Not After : Sep 13 19:35:24 2025 GMT Subject: CN=68bc8cfc-72ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:7d:a3:ed:1c:03:1c:e3:11:07:71:18:45:08: c3:c3:d9:59:72:5e:ec:2a:c9:af:ec:1e:8e:ae:a3: 50:7d:a6:ae:3e:4c:f9:17:9b:26:c1:41:88:3f:bd: 16:75:e4:93:4a:bb:ca:e0:b7:8d:d9:52:4c:6a:e0: bd:81:95:cf:5c:53:6c:59:23:c7:0e:50:2c:b9:01: 95:9f:ea:d1:58:e6:b8:1a:79:82:5c:e8:9e:fc:59: 8c:30:ed:bf:04:6b:77:2c:ff:1d:fe:cd:13:bf:7a: 02:db:53:1c:cd:83:32:79:d4:69:ae:cc:55:b3:e2: d8:da:98:90:9d:b3:85:17:15:a5:2f:e5:7f:5d:26: 05:2d:8e:54:1a:15:d2:a4:1d:77:ac:9f:02:29:7e: a9:af:1b:31:50:ea:77:e6:ea:89:65:b0:e2:35:73: 78:f3:5c:4c:94:d2:47:15:c3:5a:d0:a0:7e:42:d3: d7:32:88:be:47:98:f4:9b:7b:c3:aa:73:a2:8e:4d: 1a:52:59:1c:cd:20:28:2f:71:ca:e1:8d:76:5d:6e: af:30:a8:78:d4:03:6d:a3:55:68:80:43:23:db:af: 6a:51:3d:eb:2a:19:a8:59:a2:3a:24:6b:f2:e7:54: 46:fe:41:f5:3c:77:94:4d:35:f0:1c:f3:cc:89:ea: 0a:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:EA:2E:FC:E7:DC:F6:07:5C:E2:57:EF:EB:C4:3F:D9:B3:F0:38:C7 X509v3 Authority Key Identifier: keyid:AA:43:6A:AF:C6:88:04:5B:F5:14:88:61:54:6F:A3:FD:CA:98:40:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:ce:98:71:98:fb:e8:52:fb:48:7e:d7:75:18:b4:ca:2e:9c: 61:18:2e:75:c6:6a:14:9a:33:10:95:66:10:44:b6:d1:5d:ec: cf:f8:99:a0:72:58:f4:72:71:eb:e1:f4:46:36:50:36:b2:40: e6:6c:54:00:0e:89:77:37:19:13:c4:49:0b:70:f7:98:da:ea: f0:a3:31:f5:1e:11:db:7f:c1:9b:bf:cd:bf:38:68:34:d2:03: 71:55:a6:8d:dd:0f:17:80:ad:ab:36:0a:02:57:dd:67:45:0d: ba:3d:0b:73:20:a3:e1:eb:e0:86:b2:2a:0e:5c:f5:a4:f7:23: 86:80:28:9b:61:e0:c7:5c:62:f8:a0:09:c7:ac:78:b9:9f:b9: 01:90:26:80:71:c6:09:db:13:9b:ad:2e:7c:34:f5:ea:a6:04: 1d:5b:18:b8:89:0b:67:b7:dd:94:42:45:96:92:8d:90:f7:30: 45:d6:a5:bf:87:5b:16:81:40:b5:dc:0d:33:15:61:3d:b9:a7: 95:db:8a:5f:9e:ce:c4:a2:4b:fc:0e:c7:96:e8:17:28:e3:a5: 26:e9:0d:fc:45:35:59:21:41:88:f8:d8:35:34:b5:85:95:3c: 41:29:37:b6:81:8a:a6:e5:9b:40:9b:2d:ae:76:9d:1d:38:72: 9c:50:af:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0QkExMTAvBgNVBAUTKEFBNDM2QUFGQzY4ODA0NUJGNTE0ODg2MTU0NkZBM0ZE Q0E5ODQwOEUwHhcNMjUwOTA2MTkzNTI0WhcNMjUwOTEzMTkzNTI0WjAYMRYwFAYD VQQDEw02OGJjOGNmYy03MmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA232j7RwDHOMRB3EYRQjDw9lZcl7sKsmv7B6OrqNQfaauPkz5F5smwUGIP70W deSTSrvK4LeN2VJMauC9gZXPXFNsWSPHDlAsuQGVn+rRWOa4GnmCXOie/FmMMO2/ BGt3LP8d/s0Tv3oC21MczYMyedRprsxVs+LY2piQnbOFFxWlL+V/XSYFLY5UGhXS pB13rJ8CKX6prxsxUOp35uqJZbDiNXN481xMlNJHFcNa0KB+QtPXMoi+R5j0m3vD qnOijk0aUlkczSAoL3HK4Y12XW6vMKh41ANto1VogEMj269qUT3rKhmoWaI6JGvy 51RG/kH1PHeUTTXwHPPMieoKtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI3qLvzn 3PYHXOJX7+vEP9mz8DjHMB8GA1UdIwQYMBaAFKpDaq/GiARb9RSIYVRvo/3KmECO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTRCQS9EMDZCRjMyODUy REMxMUVBODI2MDFCMEZDNEY5QUUwMi9xa05xcjhhSUJGdjFGSWhoVkctal9jcVlR STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FrTnFyOGFJQkZ2MUZJaGhWRy1qX2NxWVFJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTRCQS9EMDZCRjMyODUyREMxMUVBODI2MDFCMEZDNEY5QUUwMi9xa05xcjhhSUJG djFGSWhoVkctal9jcVlRSTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAazphxmPvoUvtIftd1GLTKLpxhGC51xmoUmjMQlWYQRLbRXezP+Jmg clj0cnHr4fRGNlA2skDmbFQADol3NxkTxEkLcPeY2urwozH1HhHbf8Gbv82/OGg0 0gNxVaaN3Q8XgK2rNgoCV91nRQ26PQtzIKPh6+CGsioOXPWk9yOGgCibYeDHXGL4 oAnHrHi5n7kBkCaAccYJ2xObrS58NPXqpgQdWxi4iQtnt92UQkWWko2Q9zBF1qW/ h1sWgUC13A0zFWE9uaeV24pfns7Eokv8DseW6Bco46Um6Q38RTVZIUGI+Ng1NLWF lTxBKTe2gYqm5ZtAmy2udp0dOHKcUK+V -----END CERTIFICATE-----Generated at Mon Sep 8 04:44:51 2025 by rpki-client