$ rpki-client -vvf rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft File: QgBM9ryh-lZCT17qJPYqkrJc3s8.mft (raw, json) Hash identifier: AL3QLDiZH56AckM8wtJl08JtHdpqUMRB8HBMK3zo6AY= Subject key identifier: 0A:CB:58:B7:3A:BF:F3:13:92:46:FB:A7:73:D7:D8:66:68:80:BD:B0 Authority key identifier: 42:00:4C:F6:BC:A1:FA:56:42:4F:5E:EA:24:F6:2A:92:B2:5C:DE:CF Certificate issuer: /CN=A919960D/serialNumber=42004CF6BCA1FA56424F5EEA24F62A92B25CDECF Certificate serial: 0212 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft Manifest number: 020D Signing time: Thu 23 Oct 2025 03:48:30 +0000 Manifest this update: Thu 23 Oct 2025 03:48:29 +0000 Manifest next update: Thu 30 Oct 2025 03:48:29 +0000 Files and hashes: 1: QgBM9ryh-lZCT17qJPYqkrJc3s8.crl (hash: E/CL7/3UPaDuw2KJycv7HA9SMt2cGAduD3uLTLjNsLs=) 2: BE9174768DDE11ED97AFDA82C4F9AE02.roa (hash: L+V30ULZZ1KBiifHC7zDGdNJ17lrpWMv8iHx76Nc92w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.crl rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 03:48:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 530 (0x212) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919960D, serialNumber=42004CF6BCA1FA56424F5EEA24F62A92B25CDECF Validity Not Before: Oct 23 03:48:29 2025 GMT Not After : Oct 30 03:48:29 2025 GMT Subject: CN=68f9a58d-ac61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7a:dd:cf:ff:38:20:9d:2b:9e:50:e0:b8:09: 70:d8:d6:37:ec:ce:26:30:17:ce:56:16:8f:5a:da: 63:aa:e1:92:d2:3c:f0:c7:1f:af:87:8c:90:d5:28: 94:5d:93:2e:bc:36:d7:9a:da:de:24:e9:d7:ba:30: 48:52:fb:ce:be:7c:bb:57:50:f0:f9:75:78:4e:90: 1b:83:74:ba:6e:39:50:ee:19:27:78:1f:67:91:8f: 23:e4:b1:52:d4:a3:59:eb:2f:be:c7:bd:26:56:19: ad:c8:64:d9:6b:e7:b0:8e:7f:00:63:9b:aa:ed:00: 56:9c:58:45:d9:e3:9b:ed:8e:bf:8f:db:ca:f2:0d: 12:e8:e7:2b:be:8e:0b:20:70:b7:2d:99:f4:e1:36: 33:95:d7:46:fb:d9:70:4c:ad:78:e8:63:59:42:97: ad:c3:38:88:b5:4f:64:89:cb:cc:d2:b7:55:d1:73: d2:56:b3:d2:0c:8d:cb:96:33:ee:a8:26:6d:ff:72: 7e:cc:24:19:b2:0a:54:ed:3f:47:3f:82:98:98:a9: 0c:82:f5:e7:32:b6:32:67:c0:35:bc:00:71:18:ab: e0:b2:78:23:dc:64:d8:36:92:bc:f9:6d:39:d3:8f: d9:89:a2:c4:66:d6:88:44:46:80:41:a0:be:9a:a2: ab:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:CB:58:B7:3A:BF:F3:13:92:46:FB:A7:73:D7:D8:66:68:80:BD:B0 X509v3 Authority Key Identifier: keyid:42:00:4C:F6:BC:A1:FA:56:42:4F:5E:EA:24:F6:2A:92:B2:5C:DE:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgBM9ryh-lZCT17qJPYqkrJc3s8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919960D/BD0B64C68DDA11ED873A7487C4F9AE02/QgBM9ryh-lZCT17qJPYqkrJc3s8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:89:c9:5c:01:18:57:10:e3:09:07:8e:6b:2e:23:3a:3b:b8: 3a:35:58:5f:7e:3b:17:45:18:23:81:4b:05:56:84:d1:11:c2: 6c:0d:b4:ef:93:3f:8a:e7:48:b4:ba:34:d6:8d:1a:7c:e5:78: c1:87:9a:3b:d6:51:69:f8:02:4a:77:ba:15:a8:22:2a:fe:9c: 66:e0:aa:28:ac:ba:b0:4d:64:6d:4d:37:ef:87:64:2b:4a:34: 77:56:4d:26:c9:56:c1:ba:3b:41:00:7e:05:ad:34:6f:1d:19: 5c:a5:2d:6e:c5:d6:06:a6:19:ad:f5:09:22:86:39:ef:f6:e0: 00:6e:41:1d:ba:4d:bd:ba:2c:d3:5a:65:73:30:15:a3:a7:4b: 6d:a6:fe:f5:6e:40:a9:e5:f5:c4:ab:2b:89:fd:89:25:de:10: e4:2f:c3:a1:02:fe:72:84:2f:59:61:1e:ef:7a:e2:30:2c:9f: a3:2d:47:52:e6:5f:8a:47:81:53:be:9d:63:b1:e5:42:cc:89: a8:32:12:36:87:70:91:7b:0d:65:08:f4:e2:cd:1b:4c:f2:af: e0:c6:ef:09:70:38:b8:1d:04:6c:b8:8d:d0:b9:c0:ea:b5:f8: c4:96:a3:29:03:a4:71:5b:9a:17:4c:fe:0b:cb:1d:f6:16:ae: 29:08:78:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk2MEQxMTAvBgNVBAUTKDQyMDA0Q0Y2QkNBMUZBNTY0MjRGNUVFQTI0RjYyQTky QjI1Q0RFQ0YwHhcNMjUxMDIzMDM0ODI5WhcNMjUxMDMwMDM0ODI5WjAYMRYwFAYD VQQDEw02OGY5YTU4ZC1hYzYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAunrdz/84IJ0rnlDguAlw2NY37M4mMBfOVhaPWtpjquGS0jzwxx+vh4yQ1SiU XZMuvDbXmtreJOnXujBIUvvOvny7V1Dw+XV4TpAbg3S6bjlQ7hkneB9nkY8j5LFS 1KNZ6y++x70mVhmtyGTZa+ewjn8AY5uq7QBWnFhF2eOb7Y6/j9vK8g0S6Ocrvo4L IHC3LZn04TYzlddG+9lwTK146GNZQpetwziItU9kicvM0rdV0XPSVrPSDI3LljPu qCZt/3J+zCQZsgpU7T9HP4KYmKkMgvXnMrYyZ8A1vABxGKvgsngj3GTYNpK8+W05 04/ZiaLEZtaIREaAQaC+mqKrhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFArLWLc6 v/MTkkb7p3PX2GZogL2wMB8GA1UdIwQYMBaAFEIATPa8ofpWQk9e6iT2KpKyXN7P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTYwRC9CRDBCNjRDNjhE REExMUVEODczQTc0ODdDNEY5QUUwMi9RZ0JNOXJ5aC1sWkNUMTdxSlBZcWtySmMz czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FnQk05cnloLWxaQ1QxN3FKUFlxa3JKYzNzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTYwRC9CRDBCNjRDNjhEREExMUVEODczQTc0ODdDNEY5QUUwMi9RZ0JNOXJ5aC1s WkNUMTdxSlBZcWtySmMzczgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiiclcARhXEOMJB45rLiM6O7g6NVhffjsXRRgjgUsFVoTREcJsDbTv kz+K50i0ujTWjRp85XjBh5o71lFp+AJKd7oVqCIq/pxm4KoorLqwTWRtTTfvh2Qr SjR3Vk0myVbBujtBAH4FrTRvHRlcpS1uxdYGphmt9Qkihjnv9uAAbkEduk29uizT WmVzMBWjp0ttpv71bkCp5fXEqyuJ/Ykl3hDkL8OhAv5yhC9ZYR7veuIwLJ+jLUdS 5l+KR4FTvp1jseVCzImoMhI2h3CRew1lCPTizRtM8q/gxu8JcDi4HQRsuI3QucDq tfjElqMpA6RxW5oXTP4Lyx32Fq4pCHjV -----END CERTIFICATE-----Generated at Thu Oct 23 10:07:49 2025 by rpki-client