$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.mft File: QxsKSDX89paz7NM1klqOE2EM0Tc.mft (raw, json) Hash identifier: 84U3uiRLpPKmVObyIquLtnjM3LZMYGOnmSR44YLW8aM= Subject key identifier: 8B:CD:BD:B4:68:4D:5A:79:DF:7F:EF:35:BA:B3:BB:FD:CC:67:DB:D0 Authority key identifier: 43:1B:0A:48:35:FC:F6:96:B3:EC:D3:35:92:5A:8E:13:61:0C:D1:37 Certificate issuer: /CN=A91BE89F/serialNumber=431B0A4835FCF696B3ECD335925A8E13610CD137 Certificate serial: C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QxsKSDX89paz7NM1klqOE2EM0Tc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.mft Manifest number: C2 Signing time: Wed 17 Sep 2025 06:32:08 +0000 Manifest this update: Wed 17 Sep 2025 06:32:07 +0000 Manifest next update: Wed 24 Sep 2025 06:32:07 +0000 Files and hashes: 1: QxsKSDX89paz7NM1klqOE2EM0Tc.crl (hash: Zbesq6mFgx2Oo+gWDAc35XGxHhd8KekMvzB2+oKjeM4=) 2: 49ADB44C6DCC11EF8BE2A566C4F9AE02.roa (hash: mtRkpBofIEP/NFZvK+kr1cdx0dZa5TNObQf1xWdBFqI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.crl rsync://rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QxsKSDX89paz7NM1klqOE2EM0Tc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 06:32:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE89F, serialNumber=431B0A4835FCF696B3ECD335925A8E13610CD137 Validity Not Before: Sep 17 06:32:07 2025 GMT Not After : Sep 24 06:32:07 2025 GMT Subject: CN=68ca55e7-57a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:7e:38:80:56:47:51:59:53:f5:6d:50:9b:be: b7:00:c5:97:ef:30:5c:f9:4f:d8:4c:38:a0:75:ec: 97:f1:ce:c6:b1:7e:6f:9e:e8:7d:c9:9c:53:30:c5: 2a:1d:ce:1e:ea:c1:51:f8:34:bc:07:78:9f:e3:b7: 1a:aa:4b:75:4c:7e:2c:72:14:c9:4f:ac:4b:11:04: fc:28:2a:fa:4c:4c:ff:8c:c5:c7:67:e8:d9:7c:a6: 7f:77:a9:34:13:9d:de:c6:9f:37:28:d9:fd:43:a2: 0b:18:a7:f6:dd:25:e0:84:1b:bd:08:ab:af:8c:b2: 2f:3e:1c:a9:c2:2a:7b:9b:a1:db:3e:3c:cf:85:9a: 80:0a:92:e9:f6:46:fc:d9:04:41:8c:3d:f0:61:8f: 30:29:66:ac:5b:2e:3d:18:e7:d3:39:04:bc:99:42: 20:03:a7:6d:c2:25:87:36:4a:b3:e8:3f:51:5a:66: 31:8f:f3:86:2f:ea:49:6a:a5:ce:65:8f:6a:c8:b8: 57:79:e9:3a:b6:24:62:cf:7f:86:2d:f9:ee:fc:cd: 70:5c:41:16:df:b3:c7:f1:a7:00:7e:28:4e:f5:85: 6e:d6:60:22:8f:06:44:b8:a7:2f:c2:ed:8e:21:47: 71:c9:5a:a1:d6:89:11:83:b6:d2:e5:13:51:41:4e: 69:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:CD:BD:B4:68:4D:5A:79:DF:7F:EF:35:BA:B3:BB:FD:CC:67:DB:D0 X509v3 Authority Key Identifier: keyid:43:1B:0A:48:35:FC:F6:96:B3:EC:D3:35:92:5A:8E:13:61:0C:D1:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QxsKSDX89paz7NM1klqOE2EM0Tc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:44:2f:f8:77:da:5f:b9:7e:c7:f8:77:31:03:8b:f3:d5:a1: 09:4d:87:b7:3d:08:e3:c1:e2:b5:3a:56:7e:d2:77:f9:69:d4: 4e:01:a2:b2:c7:f8:f8:5b:4c:a8:24:08:f7:1e:77:90:8a:c2: 57:1b:1e:b5:19:16:c5:0f:78:82:e9:4b:07:fc:7e:e1:ca:db: 75:9c:01:28:dc:ec:ef:92:04:c7:12:3e:b6:9d:94:61:02:af: da:46:77:84:c1:1e:81:be:6b:55:58:ab:d3:65:d0:02:5e:ff: 9a:8d:a5:96:0e:26:20:bc:59:b8:80:91:a9:b0:7d:dc:f8:3f: 03:ec:d8:31:e0:75:c4:66:6f:4c:db:10:25:62:a5:99:55:b9: fe:f5:aa:c8:94:59:b6:6b:2e:f7:54:2d:d0:20:f1:85:73:aa: 1b:3b:fc:50:24:fe:36:8a:6d:e2:89:6f:b0:51:84:5d:46:6e: 70:7c:d3:49:36:16:ad:2b:0c:58:47:31:27:c8:2d:1a:7c:81: d8:14:1e:50:d4:9a:c1:a8:fc:ea:56:cc:e0:77:dc:4c:e9:40: b1:1f:8b:d6:5a:9d:92:a6:7e:7b:13:57:14:49:14:fe:12:b9: 49:d2:13:7a:ab:71:09:59:5f:11:80:83:4d:16:fd:7d:65:d5: 43:6d:43:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkU4OUYxMTAvBgNVBAUTKDQzMUIwQTQ4MzVGQ0Y2OTZCM0VDRDMzNTkyNUE4RTEz NjEwQ0QxMzcwHhcNMjUwOTE3MDYzMjA3WhcNMjUwOTI0MDYzMjA3WjAYMRYwFAYD VQQDEw02OGNhNTVlNy01N2EzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0344gFZHUVlT9W1Qm763AMWX7zBc+U/YTDigdeyX8c7GsX5vnuh9yZxTMMUq Hc4e6sFR+DS8B3if47caqkt1TH4schTJT6xLEQT8KCr6TEz/jMXHZ+jZfKZ/d6k0 E53exp83KNn9Q6ILGKf23SXghBu9CKuvjLIvPhypwip7m6HbPjzPhZqACpLp9kb8 2QRBjD3wYY8wKWasWy49GOfTOQS8mUIgA6dtwiWHNkqz6D9RWmYxj/OGL+pJaqXO ZY9qyLhXeek6tiRiz3+GLfnu/M1wXEEW37PH8acAfihO9YVu1mAijwZEuKcvwu2O IUdxyVqh1okRg7bS5RNRQU5p4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIvNvbRo TVp533/vNbqzu/3MZ9vQMB8GA1UdIwQYMBaAFEMbCkg1/PaWs+zTNZJajhNhDNE3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRTg5Ri9BRkZEMjE3MDZE Q0IxMUVGOUIzOUI4NjVDNEY5QUUwMi9ReHNLU0RYODlwYXo3Tk0xa2xxT0UyRU0w VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F4c0tTRFg4OXBhejdOTTFrbHFPRTJFTTBUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RTg5Ri9BRkZEMjE3MDZEQ0IxMUVGOUIzOUI4NjVDNEY5QUUwMi9ReHNLU0RYODlw YXo3Tk0xa2xxT0UyRU0wVGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoRC/4d9pfuX7H+HcxA4vz1aEJTYe3PQjjweK1OlZ+0nf5adROAaKy x/j4W0yoJAj3HneQisJXGx61GRbFD3iC6UsH/H7hytt1nAEo3OzvkgTHEj62nZRh Aq/aRneEwR6BvmtVWKvTZdACXv+ajaWWDiYgvFm4gJGpsH3c+D8D7Ngx4HXEZm9M 2xAlYqWZVbn+9arIlFm2ay73VC3QIPGFc6obO/xQJP42im3iiW+wUYRdRm5wfNNJ NhatKwxYRzEnyC0afIHYFB5Q1JrBqPzqVszgd9xM6UCxH4vWWp2Spn57E1cUSRT+ ErlJ0hN6q3EJWV8RgINNFv19ZdVDbUMY -----END CERTIFICATE-----Generated at Fri Sep 19 02:28:47 2025 by rpki-client