$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft File: QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft (raw, json) Hash identifier: RWOotZs3cCITirQsUmNfSFr92cDx1K+iLCAKs7crnnU= Subject key identifier: A8:59:4F:8C:0E:40:25:1C:A6:C0:0D:CA:AE:8F:A6:C6:AA:22:FE:78 Authority key identifier: 40:E4:BD:36:AE:15:07:7F:E5:99:85:D1:37:0D:5D:64:67:0A:88:D9 Certificate issuer: /CN=A91BB492/serialNumber=40E4BD36AE15077FE59985D1370D5D64670A88D9 Certificate serial: 5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft Manifest number: 5B Signing time: Wed 17 Sep 2025 07:53:49 +0000 Manifest this update: Wed 17 Sep 2025 07:53:49 +0000 Manifest next update: Wed 24 Sep 2025 07:53:49 +0000 Files and hashes: 1: QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl (hash: p7gI8PBt1WUFiWd41UnZrcQJufigugYsgKttfP7y9eU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 07:53:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB492, serialNumber=40E4BD36AE15077FE59985D1370D5D64670A88D9 Validity Not Before: Sep 17 07:53:49 2025 GMT Not After : Sep 24 07:53:49 2025 GMT Subject: CN=68ca690d-a4a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:bb:b9:60:ff:de:64:31:ef:26:99:3d:60:4e: 29:50:91:0a:24:9f:b5:90:cc:24:70:4d:8c:6a:23: f2:ae:a5:b3:09:b9:be:76:91:d0:97:64:97:9d:c2: e3:af:6e:75:6d:3e:ce:15:b0:2a:91:24:6b:35:0c: be:ac:ad:56:52:91:a5:6e:69:1b:34:19:04:20:be: 90:73:50:90:d6:06:ec:29:88:76:72:6e:4e:0c:be: 54:e2:ca:64:e9:c1:3c:5b:56:e7:6e:9f:5c:3a:2a: fd:26:60:90:3a:af:87:c8:73:f6:44:73:67:3a:98: e8:d1:af:91:a0:7b:cb:76:77:75:00:ea:75:1f:6b: b6:bc:f9:88:8d:49:72:d3:2a:2e:bf:0c:80:4f:66: 85:81:21:8f:e1:05:00:c8:65:e4:b5:dc:03:d4:aa: fb:68:22:c2:28:45:53:38:e4:11:1f:37:f8:4a:a9: aa:fd:85:bf:43:4c:1b:f7:73:96:a9:01:82:57:0a: de:24:23:bd:69:5e:ea:19:f7:35:94:b6:04:21:75: 1c:be:08:eb:d2:e5:1f:05:6d:ae:59:04:10:ea:21: fc:57:57:90:08:c0:96:06:f1:bb:ec:79:01:4c:c8: cc:00:53:70:15:5d:30:87:0b:6a:2f:74:6f:47:c3: 40:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:59:4F:8C:0E:40:25:1C:A6:C0:0D:CA:AE:8F:A6:C6:AA:22:FE:78 X509v3 Authority Key Identifier: keyid:40:E4:BD:36:AE:15:07:7F:E5:99:85:D1:37:0D:5D:64:67:0A:88:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:0c:17:8f:9b:16:0b:eb:f8:98:0e:99:91:4e:2f:ff:35:0e: fa:6a:83:73:23:aa:8d:d0:f1:16:65:ea:2a:02:70:a3:57:a0: b1:c4:68:f9:3d:22:e7:6d:de:91:5a:d5:96:e0:5f:32:cf:84: 15:46:a6:db:01:06:e4:02:61:cf:3e:50:49:ba:a3:2e:1a:ac: 15:83:19:6a:1b:6c:23:48:25:9c:b9:18:f9:7b:7f:c1:62:cf: 5c:23:4b:65:3b:37:a3:cf:34:50:9e:e5:f7:f0:5e:fd:31:ae: 30:5a:9d:43:ad:2a:bc:86:66:18:23:9d:46:bd:85:c5:85:03: 74:d4:48:65:3e:b7:b7:3e:e8:90:38:b8:64:7b:4c:99:6a:dc: a9:bb:f6:28:e0:35:23:1a:72:2c:5e:fc:ec:0c:44:d3:d8:70: f2:f3:68:07:60:08:a4:cb:ca:3f:06:ad:b6:ec:38:8c:fd:53: 95:ed:55:69:62:62:02:5c:24:cc:00:15:8a:ce:7a:3e:50:6f: 11:77:f0:65:79:4b:75:b9:85:a4:28:d8:e4:88:13:c6:36:c8: 5e:03:23:ce:68:82:8d:8e:ba:e2:ab:5f:e0:5d:cb:16:d8:86: 02:7c:a0:1b:0a:06:96:28:32:89:51:75:f6:3d:11:07:84:df: 0e:27:e5:6b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QjQ5MjExMC8GA1UEBRMoNDBFNEJEMzZBRTE1MDc3RkU1OTk4NUQxMzcwRDVENjQ2 NzBBODhEOTAeFw0yNTA5MTcwNzUzNDlaFw0yNTA5MjQwNzUzNDlaMBgxFjAUBgNV BAMTDTY4Y2E2OTBkLWE0YTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLu7lg/95kMe8mmT1gTilQkQokn7WQzCRwTYxqI/KupbMJub52kdCXZJedwuOv bnVtPs4VsCqRJGs1DL6srVZSkaVuaRs0GQQgvpBzUJDWBuwpiHZybk4MvlTiymTp wTxbVudun1w6Kv0mYJA6r4fIc/ZEc2c6mOjRr5Gge8t2d3UA6nUfa7a8+YiNSXLT Ki6/DIBPZoWBIY/hBQDIZeS13APUqvtoIsIoRVM45BEfN/hKqar9hb9DTBv3c5ap AYJXCt4kI71pXuoZ9zWUtgQhdRy+COvS5R8Fba5ZBBDqIfxXV5AIwJYG8bvseQFM yMwAU3AVXTCHC2ovdG9Hw0D5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqFlPjA5A JRymwA3Kro+mxqoi/ngwHwYDVR0jBBgwFoAUQOS9Nq4VB3/lmYXRNw1dZGcKiNkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJCNDkyLzJDMEIzMkQ4MDkz NjExRjBBMjg0MkQ1N0M0RjlBRTAyL1FPUzlOcTRWQjNfbG1ZWFJOdzFkWkdjS2lO ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUU9TOU5xNFZCM19sbVlYUk53MWRaR2NLaU5rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJC NDkyLzJDMEIzMkQ4MDkzNjExRjBBMjg0MkQ1N0M0RjlBRTAyL1FPUzlOcTRWQjNf bG1ZWFJOdzFkWkdjS2lOay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIAMF4+bFgvr+JgOmZFOL/81Dvpqg3Mjqo3Q8RZl6ioCcKNXoLHEaPk9 Iudt3pFa1ZbgXzLPhBVGptsBBuQCYc8+UEm6oy4arBWDGWobbCNIJZy5GPl7f8Fi z1wjS2U7N6PPNFCe5ffwXv0xrjBanUOtKryGZhgjnUa9hcWFA3TUSGU+t7c+6JA4 uGR7TJlq3Km79ijgNSMacixe/OwMRNPYcPLzaAdgCKTLyj8GrbbsOIz9U5XtVWli YgJcJMwAFYrOej5QbxF38GV5S3W5haQo2OSIE8Y2yF4DI85ogo2OuuKrX+BdyxbY hgJ8oBsKBpYoMolRdfY9EQeE3w4n5Ws= -----END CERTIFICATE-----Generated at Thu Sep 18 21:55:02 2025 by rpki-client