$ rpki-client -vvf rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft File: QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft (raw, json) Hash identifier: 1R1VnwiAGCCUlPl7QapbTUGG1CfeLzXhauxuyOPEGGg= Subject key identifier: 82:48:DB:20:91:FC:DA:21:0F:BD:CA:82:0E:E9:B9:A0:FB:43:EB:41 Authority key identifier: 40:2D:1D:0B:D9:1F:43:80:2C:7A:0D:70:73:61:88:BE:BA:0A:08:12 Certificate issuer: /CN=A917FACB/serialNumber=402D1D0BD91F43802C7A0D70736188BEBA0A0812 Certificate serial: 8F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QC0dC9kfQ4Aseg1wc2GIvroKCBI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft Manifest number: 8D Signing time: Wed 03 Sep 2025 07:12:34 +0000 Manifest this update: Wed 03 Sep 2025 07:12:33 +0000 Manifest next update: Wed 10 Sep 2025 07:12:33 +0000 Files and hashes: 1: QC0dC9kfQ4Aseg1wc2GIvroKCBI.crl (hash: Zlg/wSuXoffNr1sGElBx6r8GK5hIRFxtTdebCnO9hRw=) 2: 817FDF1EB46511EF86BEAC6BC4F9AE02.roa (hash: k7rH1FXyr6kI4qM4Y34KT+7MpF/68ClavEu5cICvIzc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.crl rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QC0dC9kfQ4Aseg1wc2GIvroKCBI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 07:12:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FACB, serialNumber=402D1D0BD91F43802C7A0D70736188BEBA0A0812 Validity Not Before: Sep 3 07:12:33 2025 GMT Not After : Sep 10 07:12:33 2025 GMT Subject: CN=68b7ea61-14b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:b9:a7:7a:0e:b4:45:d8:68:31:af:c4:dc:46: 69:d6:52:f1:56:c5:f8:bc:80:08:1a:df:0d:5a:cb: be:cb:0d:21:5b:ce:5f:a5:6a:34:2b:3b:ac:62:dd: 64:be:3a:00:e4:b8:dc:80:db:80:57:f6:d4:ce:fc: ad:be:77:64:be:07:04:86:8b:c7:23:e5:2f:66:f6: 11:28:a0:38:2f:4e:67:7a:dd:a7:c3:57:dd:c9:ad: 94:82:30:60:79:8a:3e:e5:e7:b5:eb:aa:45:8c:81: 55:34:b7:69:4b:4f:2b:c3:d0:5c:7f:9f:fe:82:e4: a3:e5:37:99:73:a0:db:55:2e:d1:fd:70:46:0b:8f: 48:41:0b:1a:28:28:b2:a7:31:51:be:3f:c0:c5:8d: 29:f0:b0:5b:07:e1:85:c9:82:42:04:25:45:be:1a: 1a:d6:27:eb:55:b6:cb:b2:5e:3d:0a:5c:d9:a5:83: 44:86:08:f6:e9:6c:80:82:48:19:40:42:2b:75:97: 18:47:82:f3:86:0c:87:a9:a2:68:85:a5:13:d3:9c: 3a:02:90:7a:05:e9:c7:7e:77:16:64:92:2f:d5:43: 9a:49:b0:25:2e:89:ee:df:7d:1d:82:62:c0:7f:9e: 13:51:ca:6e:e3:4e:7b:60:ca:b9:4d:1a:b5:8c:21: 5e:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:48:DB:20:91:FC:DA:21:0F:BD:CA:82:0E:E9:B9:A0:FB:43:EB:41 X509v3 Authority Key Identifier: keyid:40:2D:1D:0B:D9:1F:43:80:2C:7A:0D:70:73:61:88:BE:BA:0A:08:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QC0dC9kfQ4Aseg1wc2GIvroKCBI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:36:c9:b4:6e:f3:3f:88:50:a3:a1:08:ae:af:c7:13:30:72: ca:fc:09:c5:4f:c1:6d:d3:04:7f:93:c9:82:06:b7:d5:d5:eb: 57:cd:f8:22:94:40:55:27:f6:f6:05:9c:d3:dc:ab:1a:73:4a: 14:4e:53:fd:4a:01:97:05:9f:82:1f:d6:6d:57:82:f0:44:d2: b6:aa:68:22:92:39:1f:6e:54:98:22:b7:1c:32:60:fd:dd:78: 0a:50:81:9d:e0:47:8e:29:91:52:44:50:c4:2f:74:de:b4:62: f9:e8:c2:7b:20:6d:4d:ca:c1:c0:53:91:b4:1f:56:1a:a9:ef: cd:5c:87:39:18:15:78:9c:35:31:ec:8c:47:3b:b7:f5:c9:51: 1a:3b:da:c6:5a:8b:17:3e:40:06:3f:e2:de:2a:a7:2e:18:ef: e7:c6:4e:39:b0:12:2d:65:4b:87:e8:e0:27:1d:7f:70:56:e0: d6:59:a9:f0:99:1a:b8:1b:3e:9a:07:6c:c0:6b:70:2c:8b:ef: 72:3e:23:a6:14:f1:b9:68:03:eb:39:70:ad:3f:04:24:67:3a: e4:a9:2f:81:69:2f:5a:79:df:3f:a4:a0:1d:c0:28:5f:93:e5: 1c:00:2a:24:53:df:83:2a:fa:6b:00:e5:b8:5d:98:a5:10:30: 7f:19:30:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZBQ0IxMTAvBgNVBAUTKDQwMkQxRDBCRDkxRjQzODAyQzdBMEQ3MDczNjE4OEJF QkEwQTA4MTIwHhcNMjUwOTAzMDcxMjMzWhcNMjUwOTEwMDcxMjMzWjAYMRYwFAYD VQQDEw02OGI3ZWE2MS0xNGIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqLmneg60RdhoMa/E3EZp1lLxVsX4vIAIGt8NWsu+yw0hW85fpWo0KzusYt1k vjoA5LjcgNuAV/bUzvytvndkvgcEhovHI+UvZvYRKKA4L05net2nw1fdya2UgjBg eYo+5ee166pFjIFVNLdpS08rw9Bcf5/+guSj5TeZc6DbVS7R/XBGC49IQQsaKCiy pzFRvj/AxY0p8LBbB+GFyYJCBCVFvhoa1ifrVbbLsl49ClzZpYNEhgj26WyAgkgZ QEIrdZcYR4LzhgyHqaJohaUT05w6ApB6BenHfncWZJIv1UOaSbAlLonu330dgmLA f54TUcpu4057YMq5TRq1jCFecQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIJI2yCR /NohD73Kgg7puaD7Q+tBMB8GA1UdIwQYMBaAFEAtHQvZH0OALHoNcHNhiL66CggS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkFDQi8xQzk0NkFGMkI0 NjUxMUVGOUJGQkFBNjdDNEY5QUUwMi9RQzBkQzlrZlE0QXNlZzF3YzJHSXZyb0tD QkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FDMGRDOWtmUTRBc2VnMXdjMkdJdnJvS0NCSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RkFDQi8xQzk0NkFGMkI0NjUxMUVGOUJGQkFBNjdDNEY5QUUwMi9RQzBkQzlrZlE0 QXNlZzF3YzJHSXZyb0tDQkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiNsm0bvM/iFCjoQiur8cTMHLK/AnFT8Ft0wR/k8mCBrfV1etXzfgi lEBVJ/b2BZzT3Ksac0oUTlP9SgGXBZ+CH9ZtV4LwRNK2qmgikjkfblSYIrccMmD9 3XgKUIGd4EeOKZFSRFDEL3TetGL56MJ7IG1NysHAU5G0H1Yaqe/NXIc5GBV4nDUx 7IxHO7f1yVEaO9rGWosXPkAGP+LeKqcuGO/nxk45sBItZUuH6OAnHX9wVuDWWanw mRq4Gz6aB2zAa3Asi+9yPiOmFPG5aAPrOXCtPwQkZzrkqS+BaS9aed8/pKAdwChf k+UcACokU9+DKvprAOW4XZilEDB/GTCe -----END CERTIFICATE-----Generated at Thu Sep 4 15:53:24 2025 by rpki-client