$ rpki-client -vvf rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft File: qleQsPfXYr6TK53GEbfWm5BoWk4.mft (raw, json) Hash identifier: bds/oX/5Oh7VVJ76JkHedFmlSWnhZvuBQU8a3yBe9XI= Subject key identifier: 1A:E4:9E:79:83:DD:03:F9:99:D7:F6:EB:A8:DC:26:77:D5:3B:FD:CE Authority key identifier: AA:57:90:B0:F7:D7:62:BE:93:2B:9D:C6:11:B7:D6:9B:90:68:5A:4E Certificate issuer: /CN=A91977F9/serialNumber=AA5790B0F7D762BE932B9DC611B7D69B90685A4E Certificate serial: 0272 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qleQsPfXYr6TK53GEbfWm5BoWk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft Manifest number: 026E Signing time: Fri 19 Sep 2025 02:10:38 +0000 Manifest this update: Fri 19 Sep 2025 02:10:37 +0000 Manifest next update: Fri 26 Sep 2025 02:10:37 +0000 Files and hashes: 1: qleQsPfXYr6TK53GEbfWm5BoWk4.crl (hash: cr5xXZTOxLC38V0Kh8o9JvryFE/uo2oYzcNPL+NPzw0=) 2: 728286AE27BF11EDA6A02960C4F9AE02.roa (hash: DvV5HozP+sR1ACB5NUpTfiC/G52OiXFRlLclsmTMjHI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.crl rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qleQsPfXYr6TK53GEbfWm5BoWk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 02:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 626 (0x272) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91977F9, serialNumber=AA5790B0F7D762BE932B9DC611B7D69B90685A4E Validity Not Before: Sep 19 02:10:37 2025 GMT Not After : Sep 26 02:10:37 2025 GMT Subject: CN=68ccbb9e-5359 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:59:8d:33:30:48:58:27:2c:3c:74:25:d4:f4: f0:2b:41:81:ae:28:d5:22:ec:3e:06:e0:bf:0e:f9: c5:30:b6:e2:27:cc:ea:94:f3:3c:b9:35:32:6d:ad: ef:cb:8d:95:1f:2f:c3:59:a3:52:df:ab:ef:c4:73: 8f:e1:06:75:e6:49:b2:f4:b6:c5:b3:82:86:db:52: a1:4b:ed:52:f7:f6:ec:9f:8d:56:4f:33:a4:5e:95: 48:76:3e:4a:2d:c3:11:4d:a7:98:71:3f:1d:f7:d2: 5a:10:3d:f6:b7:da:24:56:e4:01:ee:ba:51:4e:be: 7b:e5:ea:b4:b4:73:e1:69:7b:d7:38:6b:24:8d:f9: 68:f1:6e:91:9f:05:2e:da:d8:0f:c5:1a:fd:68:6b: 0d:60:40:ba:36:a2:b6:78:0f:11:d6:18:71:07:81: b8:54:b2:d2:55:4b:ed:5c:54:81:11:9e:63:1d:30: 46:4e:03:b4:0f:3e:2c:c6:79:0a:52:ee:f7:97:e7: 93:37:c1:d4:18:8c:09:57:23:c2:2e:02:0c:d0:22: 1f:2e:e7:e7:b0:7c:2c:55:b4:a0:1d:6b:c7:6e:59: 80:ba:ae:12:fa:db:2e:7a:44:29:a5:4b:33:1e:c4: 40:95:92:45:07:c8:e0:f1:2c:96:a0:ca:c0:6e:54: 5d:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:E4:9E:79:83:DD:03:F9:99:D7:F6:EB:A8:DC:26:77:D5:3B:FD:CE X509v3 Authority Key Identifier: keyid:AA:57:90:B0:F7:D7:62:BE:93:2B:9D:C6:11:B7:D6:9B:90:68:5A:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qleQsPfXYr6TK53GEbfWm5BoWk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91977F9/2AECE66A27BD11EDB5884D5FC4F9AE02/qleQsPfXYr6TK53GEbfWm5BoWk4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:9b:ad:69:58:4f:82:c7:fa:fe:bf:e5:cd:80:9c:9b:e7:a3: 98:28:79:58:7d:f3:f4:28:08:49:5b:83:ac:66:b6:7d:17:b8: 84:0b:be:e5:2c:1d:e9:de:34:12:e2:7b:b4:e9:f3:14:6f:fc: c3:4d:67:af:8e:ed:3a:22:6b:fa:f8:1d:bc:c3:3a:9a:8b:0d: c2:04:8e:30:58:ff:5b:84:82:e9:cc:44:34:20:a5:63:e3:fa: 1f:47:34:3d:f9:a0:c5:70:a2:96:e3:2d:93:2e:17:d4:f1:95: e5:67:5a:d6:53:49:29:b2:c2:82:9a:4f:72:99:67:00:94:29: 09:20:f3:23:4d:1b:b9:fc:af:ac:1d:79:63:a6:7a:33:3e:ea: 71:07:9a:c3:b1:77:d5:bc:07:5c:e4:9c:46:8a:5d:e8:38:eb: 5c:b0:3e:72:39:27:13:d8:b6:eb:30:14:ff:e5:3b:52:07:43: 15:a8:24:38:57:d5:43:0b:83:b5:3e:8c:a1:13:8d:1e:36:65: 7e:fa:b2:24:2d:cf:cc:ab:2b:54:be:70:65:32:0a:78:15:84: 05:2d:af:81:d0:da:58:dc:c6:f6:d9:9a:7e:bd:ed:97:88:ad: 72:e2:ac:2c:ff:fa:db:b0:8a:22:4e:2e:8e:62:40:2b:c7:74: ea:e8:05:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc3RjkxMTAvBgNVBAUTKEFBNTc5MEIwRjdENzYyQkU5MzJCOURDNjExQjdENjlC OTA2ODVBNEUwHhcNMjUwOTE5MDIxMDM3WhcNMjUwOTI2MDIxMDM3WjAYMRYwFAYD VQQDEw02OGNjYmI5ZS01MzU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArlmNMzBIWCcsPHQl1PTwK0GBrijVIuw+BuC/DvnFMLbiJ8zqlPM8uTUyba3v y42VHy/DWaNS36vvxHOP4QZ15kmy9LbFs4KG21KhS+1S9/bsn41WTzOkXpVIdj5K LcMRTaeYcT8d99JaED32t9okVuQB7rpRTr575eq0tHPhaXvXOGskjflo8W6RnwUu 2tgPxRr9aGsNYEC6NqK2eA8R1hhxB4G4VLLSVUvtXFSBEZ5jHTBGTgO0Dz4sxnkK Uu73l+eTN8HUGIwJVyPCLgIM0CIfLufnsHwsVbSgHWvHblmAuq4S+tsuekQppUsz HsRAlZJFB8jg8SyWoMrAblRd+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBrknnmD 3QP5mdf266jcJnfVO/3OMB8GA1UdIwQYMBaAFKpXkLD312K+kyudxhG31puQaFpO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzdGOS8yQUVDRTY2QTI3 QkQxMUVEQjU4ODRENUZDNEY5QUUwMi9xbGVRc1BmWFlyNlRLNTNHRWJmV201Qm9X azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FsZVFzUGZYWXI2VEs1M0dFYmZXbTVCb1drNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzdGOS8yQUVDRTY2QTI3QkQxMUVEQjU4ODRENUZDNEY5QUUwMi9xbGVRc1BmWFly NlRLNTNHRWJmV201Qm9XazQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5m61pWE+Cx/r+v+XNgJyb56OYKHlYffP0KAhJW4OsZrZ9F7iEC77l LB3p3jQS4nu06fMUb/zDTWevju06Imv6+B28wzqaiw3CBI4wWP9bhILpzEQ0IKVj 4/ofRzQ9+aDFcKKW4y2TLhfU8ZXlZ1rWU0kpssKCmk9ymWcAlCkJIPMjTRu5/K+s HXljpnozPupxB5rDsXfVvAdc5JxGil3oOOtcsD5yOScT2LbrMBT/5TtSB0MVqCQ4 V9VDC4O1PoyhE40eNmV++rIkLc/MqytUvnBlMgp4FYQFLa+B0NpY3Mb22Zp+ve2X iK1y4qws//rbsIoiTi6OYkArx3Tq6AXB -----END CERTIFICATE-----Generated at Fri Sep 19 16:43:24 2025 by rpki-client