$ rpki-client -vvf rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft File: qAw2f5IilG-YuDa86PbQA2SIHHw.mft (raw, json) Hash identifier: jzR0zbZI4rmq/SGt0QU6lkttO+wDj4dwM78pxE2Uru8= Subject key identifier: 83:3A:84:4B:58:35:A3:10:16:DE:3D:78:8B:02:05:7B:F2:63:65:A2 Authority key identifier: A8:0C:36:7F:92:22:94:6F:98:B8:36:BC:E8:F6:D0:03:64:88:1C:7C Certificate issuer: /CN=A919D1D9/serialNumber=A80C367F9222946F98B836BCE8F6D00364881C7C Certificate serial: 0E0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qAw2f5IilG-YuDa86PbQA2SIHHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft Manifest number: 0DEB Signing time: Thu 18 Sep 2025 18:03:32 +0000 Manifest this update: Thu 18 Sep 2025 18:03:32 +0000 Manifest next update: Thu 25 Sep 2025 18:03:31 +0000 Files and hashes: 1: qAw2f5IilG-YuDa86PbQA2SIHHw.crl (hash: Bn4garxJsxFnMlx2Bmy9GIt5AwhOqYtINn6zCYPICmk=) 2: C2ED1EEE617111EBBC678459C4F9AE02.roa (hash: /hGH0Pm/VcL/t48Buv7bSF4xPC6xqGHOH5JeW2XnqTU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.crl rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qAw2f5IilG-YuDa86PbQA2SIHHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 18:03:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3597 (0xe0d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D1D9, serialNumber=A80C367F9222946F98B836BCE8F6D00364881C7C Validity Not Before: Sep 18 18:03:32 2025 GMT Not After : Sep 25 18:03:31 2025 GMT Subject: CN=68cc4974-9e3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:48:94:7f:92:34:b5:91:d6:ca:4c:62:bb:2e: b9:d0:54:59:32:cc:fe:13:1b:0f:f3:b6:d5:61:cf: 58:ed:84:3d:32:d8:4c:80:39:af:10:a0:5b:62:73: 86:4a:e2:b8:fe:44:e6:af:7c:64:a0:b8:a4:2b:de: 04:94:0e:6e:f9:98:7f:04:5d:30:59:41:b3:9b:ed: b5:4b:98:fa:39:d8:74:c5:61:97:a1:ca:29:38:d5: 81:b2:b0:34:08:52:fe:1c:34:e5:c8:c7:84:47:b9: 11:4f:72:39:be:ee:22:86:7f:9e:db:0a:d1:ac:72: 63:4b:32:f0:3f:85:3d:b6:75:0b:52:2b:cf:76:dc: 62:04:d7:36:e7:f5:17:7d:8e:79:38:af:c6:83:da: 04:c6:4d:c4:d0:48:74:63:61:2e:c6:3b:e1:3f:e9: 28:7b:c0:a8:da:cd:b3:12:ae:63:de:c9:93:86:70: 29:e2:52:56:24:dc:0c:46:f7:3b:49:06:6f:77:1b: 69:ee:c6:d6:f8:20:c3:af:9a:05:91:e6:7b:20:b8: 63:be:aa:45:1e:53:8a:d6:f1:87:dd:5a:6f:f4:aa: 0d:08:cd:67:de:90:23:5f:0f:50:11:a3:9e:da:98: 5d:d5:42:46:96:57:2a:b1:9a:b5:94:da:d2:3f:3e: 3f:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:3A:84:4B:58:35:A3:10:16:DE:3D:78:8B:02:05:7B:F2:63:65:A2 X509v3 Authority Key Identifier: keyid:A8:0C:36:7F:92:22:94:6F:98:B8:36:BC:E8:F6:D0:03:64:88:1C:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qAw2f5IilG-YuDa86PbQA2SIHHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:54:b5:8f:0b:45:e6:cd:6c:8c:30:7d:76:32:6c:be:aa:55: 55:b5:48:c6:55:2d:85:c9:c3:85:aa:9f:91:3a:70:74:e1:7f: e8:e8:5f:d5:29:a4:9a:6e:89:90:35:de:3e:55:cd:6a:50:ae: 7e:59:12:87:a5:e8:6b:03:e9:ca:ce:26:79:87:51:48:1f:4f: 04:14:88:d1:e3:1e:86:c1:bc:39:22:07:a3:83:50:0b:75:3a: 8c:e6:6c:52:40:63:2f:0f:12:2b:08:55:e8:48:ee:7e:e2:ba: 13:08:26:ae:e7:28:f6:a2:5c:c4:31:75:fe:ee:52:52:82:f9: a0:d4:14:0c:10:72:9a:36:7a:5a:76:00:ec:46:18:48:b6:b7: d6:4a:b4:77:fb:6a:07:40:46:b3:50:ab:d8:fd:29:bb:f9:c4: 5d:ad:df:26:90:a3:b3:a6:b0:ba:5d:63:03:41:72:c9:15:f2: 72:9e:d9:88:40:f4:f8:09:d7:fb:dc:a6:66:08:e7:9b:48:1b: c7:a6:f3:df:09:45:5a:7a:7c:12:77:21:87:6b:2a:dd:23:ac: 3a:57:b6:50:15:27:a3:bc:76:b1:68:4b:69:45:53:af:0f:78: 00:9e:cd:5b:69:4b:c7:36:d5:d5:f7:4d:e6:ae:2c:00:03:5d: 3a:00:49:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDg0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQxRDkxMTAvBgNVBAUTKEE4MEMzNjdGOTIyMjk0NkY5OEI4MzZCQ0U4RjZEMDAz NjQ4ODFDN0MwHhcNMjUwOTE4MTgwMzMyWhcNMjUwOTI1MTgwMzMxWjAYMRYwFAYD VQQDEw02OGNjNDk3NC05ZTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUiUf5I0tZHWykxiuy650FRZMsz+ExsP87bVYc9Y7YQ9MthMgDmvEKBbYnOG SuK4/kTmr3xkoLikK94ElA5u+Zh/BF0wWUGzm+21S5j6Odh0xWGXocopONWBsrA0 CFL+HDTlyMeER7kRT3I5vu4ihn+e2wrRrHJjSzLwP4U9tnULUivPdtxiBNc25/UX fY55OK/Gg9oExk3E0Eh0Y2EuxjvhP+koe8Co2s2zEq5j3smThnAp4lJWJNwMRvc7 SQZvdxtp7sbW+CDDr5oFkeZ7ILhjvqpFHlOK1vGH3Vpv9KoNCM1n3pAjXw9QEaOe 2phd1UJGllcqsZq1lNrSPz4/TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIM6hEtY NaMQFt49eIsCBXvyY2WiMB8GA1UdIwQYMBaAFKgMNn+SIpRvmLg2vOj20ANkiBx8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDFEOS82QTM5QTBERUMz MzgxMUU5ODA0OEZCN0RDNEY5QUUwMi9xQXcyZjVJaWxHLVl1RGE4NlBiUUEyU0lI SHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FBdzJmNUlpbEctWXVEYTg2UGJRQTJTSUhIdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDFEOS82QTM5QTBERUMzMzgxMUU5ODA0OEZCN0RDNEY5QUUwMi9xQXcyZjVJaWxH LVl1RGE4NlBiUUEyU0lISHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHVLWPC0XmzWyMMH12Mmy+qlVVtUjGVS2FycOFqp+ROnB04X/o6F/V KaSabomQNd4+Vc1qUK5+WRKHpehrA+nKziZ5h1FIH08EFIjR4x6Gwbw5Igejg1AL dTqM5mxSQGMvDxIrCFXoSO5+4roTCCau5yj2olzEMXX+7lJSgvmg1BQMEHKaNnpa dgDsRhhItrfWSrR3+2oHQEazUKvY/Sm7+cRdrd8mkKOzprC6XWMDQXLJFfJyntmI QPT4Cdf73KZmCOebSBvHpvPfCUVaenwSdyGHayrdI6w6V7ZQFSejvHaxaEtpRVOv D3gAns1baUvHNtXV903mriwAA106AEmO -----END CERTIFICATE-----Generated at Thu Sep 18 23:38:08 2025 by rpki-client