$ rpki-client -vvf rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft File: QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft (raw, json) Hash identifier: YZwTMfWytP9RKpz76Mnww0L1IKvLmZncLJnMqQNpJbA= Subject key identifier: BE:4F:01:A9:0E:6B:55:E7:78:FF:4A:0C:C4:80:CD:A5:F2:F1:66:7C Authority key identifier: 41:B4:34:91:5A:49:19:DC:EF:57:D6:97:7C:40:48:0D:FC:31:13:4D Certificate issuer: /CN=A91A25DF/serialNumber=41B434915A4919DCEF57D6977C40480DFC31134D Certificate serial: 23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbQ0kVpJGdzvV9aXfEBIDfwxE00.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft Manifest number: 22 Signing time: Tue 09 Sep 2025 07:59:56 +0000 Manifest this update: Tue 09 Sep 2025 07:59:56 +0000 Manifest next update: Tue 16 Sep 2025 07:59:55 +0000 Files and hashes: 1: QbQ0kVpJGdzvV9aXfEBIDfwxE00.crl (hash: EsCYbIh0zHTqnA7WPvorjB/H9qTgWTy7dIMF49wERLw=) 2: C5B717905EDA11F0A5EAB579C4F9AE02.roa (hash: PqNnMtc0YzN3eHNjrg0ykkeSPjuNLhEa4HAV6yMUzA8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.crl rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbQ0kVpJGdzvV9aXfEBIDfwxE00.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 07:46:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A25DF, serialNumber=41B434915A4919DCEF57D6977C40480DFC31134D Validity Not Before: Sep 9 07:59:56 2025 GMT Not After : Sep 16 07:59:55 2025 GMT Subject: CN=68bfde7c-5d3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:aa:fd:c7:36:d2:62:47:ac:fd:de:0f:3a:4c: 86:35:55:a1:a2:bc:1b:a4:3a:e3:57:ea:62:2a:19: b1:df:5c:82:75:82:29:33:f0:c6:0f:d5:95:86:82: f6:e2:a1:14:aa:95:ae:8b:aa:65:a2:5e:e0:61:2a: 99:88:52:2d:d8:56:2f:6a:7e:ad:5b:bb:08:9c:fe: 2b:60:64:2c:b5:af:ea:b8:19:d1:8c:2b:8b:a5:d2: 33:bd:24:fa:a7:fa:99:92:f1:e1:4b:4f:9e:04:64: e9:62:fa:0d:e3:00:2c:f4:2c:2c:05:43:b1:a1:b6: 3b:27:04:b3:5b:ee:37:d2:72:f4:8f:9b:a5:de:82: 2f:fa:f3:13:24:dd:1f:e7:c5:0f:65:52:df:0b:12: 10:81:c7:7b:24:6a:15:85:de:4c:f6:a2:8f:5c:76: 90:e5:9e:5f:dd:a4:6f:a1:89:4b:36:c7:ce:fb:ee: 5b:ae:07:f0:fa:13:18:d9:99:0a:0f:66:af:10:b8: 5f:d5:1d:0f:49:b3:25:a5:c3:84:44:20:d5:69:c9: b1:0f:e2:00:38:d5:2b:56:2b:52:8c:07:a5:83:c7: 59:59:21:a0:a4:a4:89:3d:f4:69:2f:85:f0:e8:91: bc:74:5d:bf:77:0e:92:f6:d8:2e:08:13:13:ce:5c: c4:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:4F:01:A9:0E:6B:55:E7:78:FF:4A:0C:C4:80:CD:A5:F2:F1:66:7C X509v3 Authority Key Identifier: keyid:41:B4:34:91:5A:49:19:DC:EF:57:D6:97:7C:40:48:0D:FC:31:13:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbQ0kVpJGdzvV9aXfEBIDfwxE00.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:13:3e:ad:7b:cc:94:c3:47:38:f2:07:4b:13:d2:45:4f:d9: c0:19:6e:4c:7e:29:16:3d:3e:fa:6a:58:75:f7:6a:61:ac:41: 37:9f:a5:44:95:fa:9a:91:74:4d:4f:1e:03:3a:16:58:6f:dc: 66:59:08:1d:70:c5:f1:87:35:14:73:22:32:9c:ed:04:5f:4a: f5:91:69:f7:ee:34:bc:ce:44:9e:5d:b9:4f:3a:fa:3b:a3:56: 10:b4:ba:f4:3e:a2:27:b6:2a:97:8d:b2:a0:c2:28:fb:46:0a: 01:bf:4c:68:ba:99:d0:69:7f:1b:e4:9d:df:93:4e:e7:99:64: de:f1:6a:f1:bc:32:95:5b:ab:3e:b6:d6:bb:57:59:5f:64:98: 99:86:51:59:5b:be:49:82:23:63:c1:7e:3a:91:42:90:ff:34: 6b:94:67:13:1c:fd:02:43:ee:1c:96:3c:13:66:8b:c2:31:78: 5e:ae:81:e3:9f:ee:7a:72:27:b6:3a:a5:eb:1b:38:57:32:60: 47:b0:70:c1:c6:ca:59:74:af:01:17:7e:60:ed:1b:ea:69:98: 52:90:1b:de:40:61:8e:9a:99:cc:1f:fb:bf:17:2a:25:f2:6c: 90:77:0c:08:9e:9a:cc:26:de:b8:e8:b9:8b:ab:c6:08:de:0d: 95:d7:b0:34 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MjVERjExMC8GA1UEBRMoNDFCNDM0OTE1QTQ5MTlEQ0VGNTdENjk3N0M0MDQ4MERG QzMxMTM0RDAeFw0yNTA5MDkwNzU5NTZaFw0yNTA5MTYwNzU5NTVaMBgxFjAUBgNV BAMTDTY4YmZkZTdjLTVkM2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAqv3HNtJiR6z93g86TIY1VaGivBukOuNX6mIqGbHfXIJ1gikz8MYP1ZWGgvbi oRSqla6LqmWiXuBhKpmIUi3YVi9qfq1buwic/itgZCy1r+q4GdGMK4ul0jO9JPqn +pmS8eFLT54EZOli+g3jACz0LCwFQ7GhtjsnBLNb7jfScvSPm6Xegi/68xMk3R/n xQ9lUt8LEhCBx3skahWF3kz2oo9cdpDlnl/dpG+hiUs2x8777luuB/D6ExjZmQoP Zq8QuF/VHQ9JsyWlw4REINVpybEP4gA41StWK1KMB6WDx1lZIaCkpIk99GkvhfDo kbx0Xb93DpL22C4IExPOXMQrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvk8BqQ5r Ved4/0oMxIDNpfLxZnwwHwYDVR0jBBgwFoAUQbQ0kVpJGdzvV9aXfEBIDfwxE00w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEyNURGL0VGNEFENDUyNUVE NTExRjA5Q0YxRDUwQ0M0RjlBRTAyL1FiUTBrVnBKR2R6dlY5YVhmRUJJRGZ3eEUw MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUWJRMGtWcEpHZHp2VjlhWGZFQklEZnd4RTAwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEy NURGL0VGNEFENDUyNUVENTExRjA5Q0YxRDUwQ0M0RjlBRTAyL1FiUTBrVnBKR2R6 dlY5YVhmRUJJRGZ3eEUwMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF8TPq17zJTDRzjyB0sT0kVP2cAZbkx+KRY9PvpqWHX3amGsQTefpUSV +pqRdE1PHgM6Flhv3GZZCB1wxfGHNRRzIjKc7QRfSvWRaffuNLzORJ5duU86+juj VhC0uvQ+oie2KpeNsqDCKPtGCgG/TGi6mdBpfxvknd+TTueZZN7xavG8MpVbqz62 1rtXWV9kmJmGUVlbvkmCI2PBfjqRQpD/NGuUZxMc/QJD7hyWPBNmi8IxeF6ugeOf 7npyJ7Y6pesbOFcyYEewcMHGyll0rwEXfmDtG+ppmFKQG95AYY6amcwf+78XKiXy bJB3DAiemswm3rjouYurxgjeDZXXsDQ= -----END CERTIFICATE-----Generated at Tue Sep 9 13:20:56 2025 by rpki-client