$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB04D/E958AFE6019C11EC91644B7BC4F9AE02/qhOo9ipv0n6bme44axRRnm_MhjI.mft File: qhOo9ipv0n6bme44axRRnm_MhjI.mft (raw, json) Hash identifier: /hsBQ8StN7crWdDKuqQO1TSTEcTzpaslkNAx2cZ4nGw= Subject key identifier: F1:90:30:CC:C8:90:42:56:80:BB:A4:4E:B5:21:0F:4F:61:5D:95:71 Authority key identifier: AA:13:A8:F6:2A:6F:D2:7E:9B:99:EE:38:6B:14:51:9E:6F:CC:86:32 Certificate issuer: /CN=A91DB04D/serialNumber=AA13A8F62A6FD27E9B99EE386B14519E6FCC8632 Certificate serial: 0561 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qhOo9ipv0n6bme44axRRnm_MhjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB04D/E958AFE6019C11EC91644B7BC4F9AE02/qhOo9ipv0n6bme44axRRnm_MhjI.mft Manifest number: 055B Signing time: Thu 18 Sep 2025 23:44:47 +0000 Manifest this update: Thu 18 Sep 2025 23:44:47 +0000 Manifest next update: Thu 25 Sep 2025 23:44:47 +0000 Files and hashes: 1: qhOo9ipv0n6bme44axRRnm_MhjI.crl (hash: kz5k+f2QdUQHAGiRASaZ4HirFjyZ1i43zRuyUx6+oM0=) 2: 5913DBAA01A011ECBFF72849C4F9AE02.roa (hash: L2t/K4jYZMjKtZ2tLHjje+iSEvp8dgbz2aouwvg2y60=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB04D/E958AFE6019C11EC91644B7BC4F9AE02/qhOo9ipv0n6bme44axRRnm_MhjI.crl rsync://rpki.apnic.net/member_repository/A91DB04D/E958AFE6019C11EC91644B7BC4F9AE02/qhOo9ipv0n6bme44axRRnm_MhjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qhOo9ipv0n6bme44axRRnm_MhjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 23:44:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1377 (0x561) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB04D, serialNumber=AA13A8F62A6FD27E9B99EE386B14519E6FCC8632 Validity Not Before: Sep 18 23:44:47 2025 GMT Not After : Sep 25 23:44:47 2025 GMT Subject: CN=68cc996f-98a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:4e:82:0a:00:73:05:a6:ba:0b:76:91:15:f1: cf:0b:c5:dd:da:ec:71:81:3f:2e:93:a6:ac:d1:43: 57:03:bd:ff:af:51:af:79:90:b4:df:98:93:66:ed: 8b:34:90:c1:72:3a:c6:48:11:4f:39:a9:50:0e:33: f2:1c:48:08:5e:11:b3:22:15:00:71:e4:31:1f:fb: ce:5a:be:d3:06:3d:58:50:b6:ab:49:d8:95:93:0f: 89:c5:a4:04:d7:90:89:0b:db:0a:1a:c4:cc:06:b9: 85:c6:5b:bc:71:0c:27:49:46:5f:d0:11:26:ff:cf: 81:b6:b8:44:0b:93:73:20:2d:44:94:fb:2c:9c:3f: 0f:85:34:9e:25:a0:f3:6e:97:dd:be:8b:f2:36:13: dd:f6:0f:e7:4a:0a:00:e2:e8:ad:a6:46:7b:69:73: 5c:7a:6c:7e:5f:8e:ac:42:af:81:a9:5c:66:17:b6: d7:03:84:11:3d:ec:eb:c2:cf:26:15:29:87:2e:a8: c8:50:6d:c6:bb:dc:e6:29:7b:4f:06:43:57:ff:fc: ba:c8:da:c7:a9:ab:85:d3:5a:17:3a:8f:9f:ad:4c: 6a:4b:6c:d8:65:b0:d6:e9:3c:ef:26:f6:84:3a:83: b6:37:d6:a8:2f:6f:14:0d:c9:d7:08:b8:79:41:d9: 1a:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:90:30:CC:C8:90:42:56:80:BB:A4:4E:B5:21:0F:4F:61:5D:95:71 X509v3 Authority Key Identifier: keyid:AA:13:A8:F6:2A:6F:D2:7E:9B:99:EE:38:6B:14:51:9E:6F:CC:86:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB04D/E958AFE6019C11EC91644B7BC4F9AE02/qhOo9ipv0n6bme44axRRnm_MhjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qhOo9ipv0n6bme44axRRnm_MhjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB04D/E958AFE6019C11EC91644B7BC4F9AE02/qhOo9ipv0n6bme44axRRnm_MhjI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:64:d6:b5:ce:b6:d4:f4:66:b3:54:5d:49:bc:c2:ab:c3:02: ba:a7:c8:54:bf:4d:ad:a3:08:7d:14:c8:ce:45:05:37:b2:a0: 55:44:9d:8e:39:6b:88:9f:72:26:b1:72:f0:4b:4b:35:1c:df: ea:5f:0f:11:b8:89:1f:58:c8:24:ce:76:b6:57:9a:62:f1:a3: 2a:ca:52:fd:a0:a4:9a:b5:f0:bf:2b:76:da:36:1b:7c:60:3f: dc:a4:f0:0a:a1:78:8e:a3:10:c9:5f:17:cc:c1:f1:dd:d6:97: 90:c7:1d:01:7a:e6:f2:e7:ab:9f:12:6d:8e:40:d3:2e:8e:4a: 07:f7:c3:13:cf:89:88:71:34:02:cc:9f:38:af:e1:01:8a:b7: e0:69:76:5c:9a:86:28:1a:43:c1:bc:4b:6e:71:30:19:7e:02: de:5d:16:c8:cb:25:02:54:23:dd:00:e1:a6:07:88:bf:1d:42: a5:9f:84:a6:f7:50:9c:5b:8e:90:80:62:fb:b9:28:b7:a4:7f: 8e:f8:e0:16:23:4d:23:a9:04:05:ef:83:13:4b:61:a5:b9:b7: 34:29:7c:d1:7e:73:44:05:6f:af:1c:36:e7:96:6b:f6:41:17: 9c:7d:9d:be:91:f9:17:f6:76:d4:f3:50:ac:ed:d5:5f:18:10: ab:39:b9:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REIwNEQxMTAvBgNVBAUTKEFBMTNBOEY2MkE2RkQyN0U5Qjk5RUUzODZCMTQ1MTlF NkZDQzg2MzIwHhcNMjUwOTE4MjM0NDQ3WhcNMjUwOTI1MjM0NDQ3WjAYMRYwFAYD VQQDEw02OGNjOTk2Zi05OGE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuU6CCgBzBaa6C3aRFfHPC8Xd2uxxgT8uk6as0UNXA73/r1GveZC035iTZu2L NJDBcjrGSBFPOalQDjPyHEgIXhGzIhUAceQxH/vOWr7TBj1YULarSdiVkw+JxaQE 15CJC9sKGsTMBrmFxlu8cQwnSUZf0BEm/8+BtrhEC5NzIC1ElPssnD8PhTSeJaDz bpfdvovyNhPd9g/nSgoA4uitpkZ7aXNcemx+X46sQq+BqVxmF7bXA4QRPezrws8m FSmHLqjIUG3Gu9zmKXtPBkNX//y6yNrHqauF01oXOo+frUxqS2zYZbDW6TzvJvaE OoO2N9aoL28UDcnXCLh5QdkabwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPGQMMzI kEJWgLukTrUhD09hXZVxMB8GA1UdIwQYMBaAFKoTqPYqb9J+m5nuOGsUUZ5vzIYy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjA0RC9FOTU4QUZFNjAx OUMxMUVDOTE2NDRCN0JDNEY5QUUwMi9xaE9vOWlwdjBuNmJtZTQ0YXhSUm5tX01o akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FoT285aXB2MG42Ym1lNDRheFJSbm1fTWhqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjA0RC9FOTU4QUZFNjAxOUMxMUVDOTE2NDRCN0JDNEY5QUUwMi9xaE9vOWlwdjBu NmJtZTQ0YXhSUm5tX01oakkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRZNa1zrbU9GazVF1JvMKrwwK6p8hUv02towh9FMjORQU3sqBVRJ2O OWuIn3ImsXLwS0s1HN/qXw8RuIkfWMgkzna2V5pi8aMqylL9oKSatfC/K3baNht8 YD/cpPAKoXiOoxDJXxfMwfHd1peQxx0Beuby56ufEm2OQNMujkoH98MTz4mIcTQC zJ84r+EBirfgaXZcmoYoGkPBvEtucTAZfgLeXRbIyyUCVCPdAOGmB4i/HUKln4Sm 91CcW46QgGL7uSi3pH+O+OAWI00jqQQF74MTS2Glubc0KXzRfnNEBW+vHDbnlmv2 QRecfZ2+kfkX9nbU81Cs7dVfGBCrOblZ -----END CERTIFICATE-----Generated at Fri Sep 19 02:28:44 2025 by rpki-client