$ rpki-client -vvf rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft File: q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft (raw, json) Hash identifier: HOR/PnD2C/LQqt65nOgFS3AalYkdxyBMU/nVvy2cndY= Subject key identifier: 1E:B7:95:72:1E:ED:61:43:F7:17:78:36:42:5B:89:1E:C0:20:31:AC Authority key identifier: AB:90:5D:DC:0A:FB:BD:15:49:F6:6E:FE:81:17:AE:15:00:0A:5E:0F Certificate issuer: /CN=A918B5FE/serialNumber=AB905DDC0AFBBD1549F66EFE8117AE15000A5E0F Certificate serial: 06E9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft Manifest number: 06D7 Signing time: Thu 04 Sep 2025 22:19:00 +0000 Manifest this update: Thu 04 Sep 2025 22:18:59 +0000 Manifest next update: Thu 11 Sep 2025 22:18:59 +0000 Files and hashes: 1: q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.crl (hash: GzEbQ7tjjZGDmFkCLOgTx9jiF3hBBGY8aqooM+jG43g=) 2: DAE15A7248F911EC9F04C439C4F9AE02.roa (hash: CcS2RgyDh/Mt65cyyvz7PDgLBgmPqkXqjVn09wN+d7I=) 3: DBB4BB6A48F911EC9F04C439C4F9AE02.roa (hash: sB2xN+NI3UCkCts4i5bUwtcZvKVfZaogReZtF2ClOtM=) 4: DCC969B048F911EC9F04C439C4F9AE02.roa (hash: Ey7sXMoZK5X/9B/g0P4vb+TT1dBxjAAcErSKVPBVZ8c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.crl rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 22:18:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1769 (0x6e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B5FE, serialNumber=AB905DDC0AFBBD1549F66EFE8117AE15000A5E0F Validity Not Before: Sep 4 22:18:59 2025 GMT Not After : Sep 11 22:18:59 2025 GMT Subject: CN=68ba1054-67d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:6a:1c:cc:f9:f0:f4:02:32:62:5a:3c:05:43: 2b:43:db:23:b8:05:8b:1a:e9:0d:d6:c7:a3:23:2d: da:a5:fe:78:f7:90:d1:68:27:ec:32:bf:7d:ae:95: e6:ed:50:b6:6b:33:94:78:d6:76:5f:fd:56:09:68: b8:03:df:f3:40:eb:6b:89:4a:37:fd:22:e8:ba:05: 9f:6d:57:14:5e:cd:2a:14:3d:35:12:02:2f:e3:35: 4a:f7:25:21:f9:9c:2d:4f:59:29:45:75:63:f8:45: b3:b2:89:99:f8:8c:14:f5:61:d2:4a:04:05:dc:d7: 95:86:d1:3a:bb:6c:1b:af:40:43:19:fc:f3:c1:67: 64:d7:ee:49:d4:01:39:6f:46:2c:f5:f5:45:99:f4: ff:c6:d6:d3:3a:98:9d:b3:26:f9:69:42:90:2d:46: 47:85:a0:d1:4a:42:76:1b:cd:20:28:31:7c:21:02: 5f:b5:a6:6e:4f:71:ef:8e:62:70:c2:3f:f9:60:7b: e4:2e:ac:d5:7f:38:12:5f:b8:58:2c:85:7d:f8:6d: 5a:ef:ed:ef:6a:f6:72:ee:78:c1:e9:3f:51:52:04: 24:0a:6b:5e:a1:7f:ae:ed:2a:cb:74:e4:29:60:2b: 12:75:10:f5:d4:3e:30:02:db:44:fa:9c:9d:ad:85: 1b:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:B7:95:72:1E:ED:61:43:F7:17:78:36:42:5B:89:1E:C0:20:31:AC X509v3 Authority Key Identifier: keyid:AB:90:5D:DC:0A:FB:BD:15:49:F6:6E:FE:81:17:AE:15:00:0A:5E:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:cd:e6:ef:07:87:44:43:79:46:13:32:60:66:70:02:c5:a2: 2d:64:ee:46:c5:cb:1c:4e:20:bb:c8:51:e5:dd:c3:6f:17:6e: 89:a9:1b:b9:29:03:c0:e8:9b:ba:ba:53:8b:c4:64:78:cc:99: 5d:ce:0e:ac:57:65:25:05:c1:1d:a0:dd:2d:11:29:ea:ef:54: d1:88:76:11:a1:58:04:57:49:97:50:13:0b:86:4e:61:ec:84: 9b:b5:f4:43:e5:51:7c:ad:62:2e:00:ce:c7:f2:11:d8:02:11: de:45:c0:9b:3a:b3:be:2f:03:ff:f3:f7:58:51:3f:0b:e9:c5: b4:3e:0e:0a:e9:d2:f6:a6:11:36:da:ce:4c:d5:5d:24:2a:8b: bb:d0:79:a8:88:29:2e:82:ee:2c:ca:1c:c6:27:6a:ff:26:8d: 02:2d:c9:5f:b5:c6:a1:ff:8b:88:2f:c7:4c:fa:ce:50:2f:3a: 09:55:26:27:a9:c4:9b:c5:84:26:bd:41:52:7f:aa:c4:44:8d: 83:60:ea:af:6c:b4:b2:2f:71:0b:47:c2:94:0f:32:de:21:a5: 4b:21:84:15:bd:66:ea:22:7c:48:dc:47:f5:15:19:8a:57:d0: e8:b4:5d:84:e4:97:51:41:80:8f:c7:6f:26:8f:53:31:0f:95: 0d:37:c7:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBukwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI1RkUxMTAvBgNVBAUTKEFCOTA1RERDMEFGQkJEMTU0OUY2NkVGRTgxMTdBRTE1 MDAwQTVFMEYwHhcNMjUwOTA0MjIxODU5WhcNMjUwOTExMjIxODU5WjAYMRYwFAYD VQQDEw02OGJhMTA1NC02N2Q5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvmoczPnw9AIyYlo8BUMrQ9sjuAWLGukN1sejIy3apf5495DRaCfsMr99rpXm 7VC2azOUeNZ2X/1WCWi4A9/zQOtriUo3/SLougWfbVcUXs0qFD01EgIv4zVK9yUh +ZwtT1kpRXVj+EWzsomZ+IwU9WHSSgQF3NeVhtE6u2wbr0BDGfzzwWdk1+5J1AE5 b0Ys9fVFmfT/xtbTOpidsyb5aUKQLUZHhaDRSkJ2G80gKDF8IQJftaZuT3HvjmJw wj/5YHvkLqzVfzgSX7hYLIV9+G1a7+3vavZy7njB6T9RUgQkCmteoX+u7SrLdOQp YCsSdRD11D4wAttE+pydrYUbIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB63lXIe 7WFD9xd4NkJbiR7AIDGsMB8GA1UdIwQYMBaAFKuQXdwK+70VSfZu/oEXrhUACl4P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjVGRS8zMkMzMDAyODZB OUUxMUVCQjY3NjIzMThDNEY5QUUwMi9xNUJkM0FyN3ZSVko5bTctZ1JldUZRQUtY ZzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3E1QmQzQXI3dlJWSjltNy1nUmV1RlFBS1hnOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjVGRS8zMkMzMDAyODZBOUUxMUVCQjY3NjIzMThDNEY5QUUwMi9xNUJkM0FyN3ZS Vko5bTctZ1JldUZRQUtYZzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJzebvB4dEQ3lGEzJgZnACxaItZO5GxcscTiC7yFHl3cNvF26JqRu5 KQPA6Ju6ulOLxGR4zJldzg6sV2UlBcEdoN0tESnq71TRiHYRoVgEV0mXUBMLhk5h 7ISbtfRD5VF8rWIuAM7H8hHYAhHeRcCbOrO+LwP/8/dYUT8L6cW0Pg4K6dL2phE2 2s5M1V0kKou70HmoiCkugu4syhzGJ2r/Jo0CLclftcah/4uIL8dM+s5QLzoJVSYn qcSbxYQmvUFSf6rERI2DYOqvbLSyL3ELR8KUDzLeIaVLIYQVvWbqInxI3Ef1FRmK V9DotF2E5JdRQYCPx28mj1MxD5UNN8cc -----END CERTIFICATE-----Generated at Sat Sep 6 21:10:08 2025 by rpki-client