$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.mft File: sqJd3hqeyRtZmGpTL3iDVDYYMkg.mft (raw, json) Hash identifier: A+QEFB//npKuNfRifDHC0uTG5fEHXsFGRSydHbGoSR0= Subject key identifier: 01:26:70:3A:01:AB:F8:CB:AF:2A:FD:CA:65:D1:47:D1:36:12:D8:B0 Authority key identifier: B2:A2:5D:DE:1A:9E:C9:1B:59:98:6A:53:2F:78:83:54:36:18:32:48 Certificate issuer: /CN=A91BC966/serialNumber=B2A25DDE1A9EC91B59986A532F78835436183248 Certificate serial: 0C54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.mft Manifest number: 0C2A Signing time: Thu 18 Sep 2025 18:57:36 +0000 Manifest this update: Thu 18 Sep 2025 18:57:35 +0000 Manifest next update: Thu 25 Sep 2025 18:57:35 +0000 Files and hashes: 1: sqJd3hqeyRtZmGpTL3iDVDYYMkg.crl (hash: Q0BcgaJRgIW9hPoqBb39gH8RrbD1j9H/wS2FYpxOkkU=) 2: A6A53FA2D67E11EEAA2CA218C4F9AE02.roa (hash: vd/2YU/fZHY0X+88OePyC1GrfRf3guoIzxWdo48FOwA=) 3: 5DA849821C1211EA819EA46EC4F9AE02.roa (hash: 9WFKUJqUOgDB07wt9CN3L8jHFMm+Bp2TRv/IY0cRCLM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.crl rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 18:57:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3156 (0xc54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC966, serialNumber=B2A25DDE1A9EC91B59986A532F78835436183248 Validity Not Before: Sep 18 18:57:35 2025 GMT Not After : Sep 25 18:57:35 2025 GMT Subject: CN=68cc5620-cee8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:1a:3f:39:95:e0:05:30:42:cf:22:82:5b:6e: e6:54:fa:a4:e5:00:a8:01:b3:fe:07:bf:dc:d3:0a: ff:81:b2:22:fe:1d:b1:39:e5:87:68:7d:fc:12:ba: db:68:eb:bc:49:aa:2a:30:42:33:e3:6c:b3:87:e7: 99:23:7d:32:ff:04:6a:cd:87:1d:89:be:c0:72:89: 8f:3c:a0:6a:1d:a7:00:7c:a4:bd:77:8f:5d:91:c6: 4d:22:bd:76:b5:32:a2:cc:b4:69:9c:22:91:e8:7d: 6f:c6:4a:90:0a:2b:68:5d:6e:f5:dd:77:0a:ae:6e: c7:5a:26:5e:2a:68:83:39:30:cf:66:57:c2:ff:6b: d4:a9:9f:3a:97:49:d9:9d:b7:3a:d2:87:14:8c:01: 83:9d:9a:be:25:73:8f:4f:01:4d:fa:1a:8c:c2:fb: d7:45:5b:f2:6b:2c:53:db:ac:8a:e3:2d:2b:ff:59: d2:9d:02:76:7d:3f:2f:00:c0:4e:54:79:50:0b:65: 78:8f:39:5c:8b:3d:8c:2d:84:b1:85:99:90:59:33: 58:14:ea:46:5e:d8:f0:6c:b2:08:93:12:df:d5:91: 1c:bd:ff:1a:45:67:00:6c:a8:f0:6a:9b:a2:2c:b1: 1a:be:2f:3d:86:a0:e3:4c:a6:10:67:bf:49:2b:4c: a2:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:26:70:3A:01:AB:F8:CB:AF:2A:FD:CA:65:D1:47:D1:36:12:D8:B0 X509v3 Authority Key Identifier: keyid:B2:A2:5D:DE:1A:9E:C9:1B:59:98:6A:53:2F:78:83:54:36:18:32:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:24:99:e2:5c:ab:c9:a1:63:04:f1:57:96:35:47:2f:58:96: b3:95:a3:d7:97:ed:bd:66:c6:59:96:14:fd:ea:e1:fc:ce:dd: 45:b6:87:4c:f1:f1:49:8a:98:c8:8a:65:e5:d2:8a:59:0a:0f: be:e9:30:bb:e1:12:ba:6b:a1:5b:99:4c:12:ce:9a:aa:3f:9c: 7c:42:67:4a:7c:ec:ea:bb:e2:59:29:ce:6e:e0:f5:f2:50:58: 69:73:28:b4:94:27:03:21:d7:ba:a0:5b:48:b1:15:87:58:01: 47:55:a6:ac:82:b9:e6:16:a8:a1:56:c4:45:d9:56:8e:7a:47: 2e:87:e1:64:c1:60:73:62:3a:83:f5:e8:2c:1b:d1:48:ec:d6: fa:fd:78:fa:3e:43:b0:76:a0:be:ae:5c:ba:01:e4:7a:3c:f4: ff:f5:70:2b:55:cd:ba:2b:c7:5a:06:6b:f9:80:e8:2e:06:7f: 4c:8e:19:5a:db:bf:3a:4b:b5:d9:cc:4e:a8:6c:ff:ba:08:f7: b6:52:8b:ef:32:1d:f7:61:d8:01:b3:f3:5d:7c:39:62:c9:22: 43:61:21:46:98:06:07:77:3a:57:d2:56:b9:ce:c1:d1:35:e5: ae:c1:45:dc:5e:ac:29:d5:9f:d8:c7:c0:0b:01:be:8c:6c:4e: de:77:a5:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM5NjYxMTAvBgNVBAUTKEIyQTI1RERFMUE5RUM5MUI1OTk4NkE1MzJGNzg4MzU0 MzYxODMyNDgwHhcNMjUwOTE4MTg1NzM1WhcNMjUwOTI1MTg1NzM1WjAYMRYwFAYD VQQDEw02OGNjNTYyMC1jZWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzBo/OZXgBTBCzyKCW27mVPqk5QCoAbP+B7/c0wr/gbIi/h2xOeWHaH38Errb aOu8SaoqMEIz42yzh+eZI30y/wRqzYcdib7AcomPPKBqHacAfKS9d49dkcZNIr12 tTKizLRpnCKR6H1vxkqQCitoXW713XcKrm7HWiZeKmiDOTDPZlfC/2vUqZ86l0nZ nbc60ocUjAGDnZq+JXOPTwFN+hqMwvvXRVvyayxT26yK4y0r/1nSnQJ2fT8vAMBO VHlQC2V4jzlciz2MLYSxhZmQWTNYFOpGXtjwbLIIkxLf1ZEcvf8aRWcAbKjwapui LLEavi89hqDjTKYQZ79JK0yijQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAEmcDoB q/jLryr9ymXRR9E2EtiwMB8GA1UdIwQYMBaAFLKiXd4anskbWZhqUy94g1Q2GDJI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzk2Ni9BMTk1MkJBMjFD MTExMUVBQjZDM0M3NkRDNEY5QUUwMi9zcUpkM2hxZXlSdFptR3BUTDNpRFZEWVlN a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NxSmQzaHFleVJ0Wm1HcFRMM2lEVkRZWU1rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Qzk2Ni9BMTk1MkJBMjFDMTExMUVBQjZDM0M3NkRDNEY5QUUwMi9zcUpkM2hxZXlS dFptR3BUTDNpRFZEWVlNa2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGJJniXKvJoWME8VeWNUcvWJazlaPXl+29ZsZZlhT96uH8zt1FtodM 8fFJipjIimXl0opZCg++6TC74RK6a6FbmUwSzpqqP5x8QmdKfOzqu+JZKc5u4PXy UFhpcyi0lCcDIde6oFtIsRWHWAFHVaasgrnmFqihVsRF2VaOekcuh+FkwWBzYjqD 9egsG9FI7Nb6/Xj6PkOwdqC+rly6AeR6PPT/9XArVc26K8daBmv5gOguBn9Mjhla 2786S7XZzE6obP+6CPe2UovvMh33YdgBs/NdfDliySJDYSFGmAYHdzpX0la5zsHR NeWuwUXcXqwp1Z/Yx8ALAb6MbE7ed6Us -----END CERTIFICATE-----Generated at Fri Sep 19 04:26:04 2025 by rpki-client