$ rpki-client -vvf rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft File: QJ0BHok_2Mjws-isFGkqp7udAlk.mft (raw, json) Hash identifier: dY1eSYI/vXgPtdRFfY6/4bzKdiqNE1Ws5IqwvP8BxsM= Subject key identifier: 31:39:10:75:2A:F0:E8:40:BC:99:5B:D2:F9:97:44:E3:DC:89:FD:F3 Authority key identifier: 40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59 Certificate issuer: /CN=A91808E1/serialNumber=409D011E893FD8C8F0B3E8AC14692AA7BB9D0259 Certificate serial: 0428 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft Manifest number: 0422 Signing time: Fri 19 Sep 2025 00:43:36 +0000 Manifest this update: Fri 19 Sep 2025 00:43:36 +0000 Manifest next update: Fri 26 Sep 2025 00:43:36 +0000 Files and hashes: 1: QJ0BHok_2Mjws-isFGkqp7udAlk.crl (hash: KiaLFLLgB2FH3VBTQCY1afMvrusoH/xwOOjS27FIs9c=) 2: E7FE45667E8311ECA552B67FC4F9AE02.roa (hash: vev8cF3wVonEj/spB6AbH6AE+o8N+kb1JbFrPlAS1N8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 00:43:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1064 (0x428) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91808E1, serialNumber=409D011E893FD8C8F0B3E8AC14692AA7BB9D0259 Validity Not Before: Sep 19 00:43:36 2025 GMT Not After : Sep 26 00:43:36 2025 GMT Subject: CN=68cca738-5483 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:e4:4e:b8:eb:de:b8:32:23:b1:d7:23:11:83: 7d:4e:cc:58:0c:b6:5b:cf:9e:cf:57:a5:28:54:96: ba:dd:5b:8d:e0:d0:73:31:f9:30:de:55:e3:e9:b0: 10:5a:24:41:f5:1f:80:83:3a:54:2e:36:98:f6:d7: 9c:c0:11:c4:27:83:a3:76:cd:38:ba:01:cc:60:46: 8b:94:46:e1:b6:2f:9e:15:7f:49:2a:38:5c:4a:59: cf:59:ad:5f:e4:ef:ed:77:9d:b2:94:5f:65:02:35: 9f:d0:4a:a0:67:bc:a6:35:54:ce:14:95:83:91:e9: 76:25:e7:33:cc:fc:a9:a2:03:04:b2:b7:12:29:9c: 8c:0f:f8:5b:60:70:bf:fe:e1:af:a2:87:85:ca:91: 38:1f:83:b1:53:57:d4:eb:94:a5:70:5f:90:23:9f: 14:a5:7d:4d:b1:5e:c0:6f:7e:b0:d9:7e:31:89:7a: ed:b9:20:a0:e7:ab:f8:f6:0e:4e:cd:69:30:8c:6c: 87:7c:6d:f8:27:cf:4e:e3:4c:c8:29:eb:64:f5:bd: 80:36:04:09:30:1c:1b:ec:6b:48:c2:2a:d2:04:fd: ba:87:75:a9:70:8e:e9:9b:f4:ac:8d:2f:1e:1f:84: 43:87:9f:d4:2a:41:d2:5d:29:28:92:43:0c:7b:24: 72:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:39:10:75:2A:F0:E8:40:BC:99:5B:D2:F9:97:44:E3:DC:89:FD:F3 X509v3 Authority Key Identifier: keyid:40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:76:09:c8:a3:63:46:87:fe:89:7e:4b:2f:38:be:cf:2a:9c: 51:93:e2:59:94:ee:22:ff:54:5b:15:86:f3:ee:6d:48:e4:89: 13:0e:d0:4e:ca:97:04:5a:45:d4:08:68:2c:8a:98:c8:3b:0b: 6d:9d:b8:f2:28:a0:7f:13:45:d8:6e:3c:76:c7:65:8d:4c:59: ab:46:91:9c:72:1a:c9:a7:e0:1d:87:03:f2:48:31:27:0e:62: b5:ba:a8:6c:d9:37:16:47:f9:7e:da:59:48:e1:b4:57:fe:51: ea:11:e9:5b:67:a8:c7:c4:67:52:71:c3:31:95:97:d6:bb:ec: ff:0a:33:17:cb:4a:ba:f1:ae:71:ed:d1:1c:3d:c4:a8:bc:1c: c6:24:f6:c3:35:38:20:66:fa:05:95:91:f2:16:5a:ce:33:45: 8d:fe:13:78:47:52:5b:19:b5:8e:76:aa:dc:a6:f7:5a:ee:ff: 1a:90:f3:fc:c0:c0:ee:e2:95:9c:57:7f:93:6c:90:39:6c:4d: 24:63:42:31:60:80:23:1a:51:69:90:2a:53:0a:5e:cf:ac:8b: a7:58:20:cb:95:b5:dd:1c:bf:5b:f7:a8:b6:0a:d6:9c:79:00: d9:f8:c2:5e:62:60:01:d0:80:14:0d:63:59:3c:cf:08:11:7e: 32:7f:9e:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA4RTExMTAvBgNVBAUTKDQwOUQwMTFFODkzRkQ4QzhGMEIzRThBQzE0NjkyQUE3 QkI5RDAyNTkwHhcNMjUwOTE5MDA0MzM2WhcNMjUwOTI2MDA0MzM2WjAYMRYwFAYD VQQDEw02OGNjYTczOC01NDgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu+ROuOveuDIjsdcjEYN9TsxYDLZbz57PV6UoVJa63VuN4NBzMfkw3lXj6bAQ WiRB9R+AgzpULjaY9tecwBHEJ4Ojds04ugHMYEaLlEbhti+eFX9JKjhcSlnPWa1f 5O/td52ylF9lAjWf0EqgZ7ymNVTOFJWDkel2JeczzPypogMEsrcSKZyMD/hbYHC/ /uGvooeFypE4H4OxU1fU65SlcF+QI58UpX1NsV7Ab36w2X4xiXrtuSCg56v49g5O zWkwjGyHfG34J89O40zIKetk9b2ANgQJMBwb7GtIwirSBP26h3WpcI7pm/SsjS8e H4RDh5/UKkHSXSkokkMMeyRyWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDE5EHUq 8OhAvJlb0vmXROPcif3zMB8GA1UdIwQYMBaAFECdAR6JP9jI8LPorBRpKqe7nQJZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDhFMS9GOTBGOUU4ODdF ODExMUVDQjg4NzNBN0ZDNEY5QUUwMi9RSjBCSG9rXzJNandzLWlzRkdrcXA3dWRB bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FKMEJIb2tfMk1qd3MtaXNGR2txcDd1ZEFsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDhFMS9GOTBGOUU4ODdFODExMUVDQjg4NzNBN0ZDNEY5QUUwMi9RSjBCSG9rXzJN andzLWlzRkdrcXA3dWRBbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+dgnIo2NGh/6JfksvOL7PKpxRk+JZlO4i/1RbFYbz7m1I5IkTDtBO ypcEWkXUCGgsipjIOwttnbjyKKB/E0XYbjx2x2WNTFmrRpGcchrJp+AdhwPySDEn DmK1uqhs2TcWR/l+2llI4bRX/lHqEelbZ6jHxGdSccMxlZfWu+z/CjMXy0q68a5x 7dEcPcSovBzGJPbDNTggZvoFlZHyFlrOM0WN/hN4R1JbGbWOdqrcpvda7v8akPP8 wMDu4pWcV3+TbJA5bE0kY0IxYIAjGlFpkCpTCl7PrIunWCDLlbXdHL9b96i2Ctac eQDZ+MJeYmAB0IAUDWNZPM8IEX4yf54G -----END CERTIFICATE-----Generated at Fri Sep 19 07:13:07 2025 by rpki-client