$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft File: a-Q-axOWQ8tMGebfcyO1A8STEds.mft (raw, json) Hash identifier: C0eiZJi75Rru7UBzJIkMThUyzB/KmD8d0ZghMQSPdLw= Subject key identifier: 27:B4:39:75:B6:C8:2D:AB:F2:79:CB:10:A7:79:C3:39:BE:BB:B1:36 Authority key identifier: 6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB Certificate issuer: /CN=A91E8D27/serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Certificate serial: 343F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft Manifest number: 3422 Signing time: Thu 18 Sep 2025 15:23:45 +0000 Manifest this update: Thu 18 Sep 2025 15:23:44 +0000 Manifest next update: Thu 25 Sep 2025 15:23:44 +0000 Files and hashes: 1: a-Q-axOWQ8tMGebfcyO1A8STEds.crl (hash: cl5PxmcmCSwFaca2wWp+HpWPa2E3WzBkxmGo/FzwnbI=) 2: 56C3DC822B0B11EF97C4A74AC4F9AE02.roa (hash: CVWZvuJMAyjtpzrMYgtcHwOIm2n01TzT8z4GiPVYHFA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 15:23:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13375 (0x343f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D27, serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Validity Not Before: Sep 18 15:23:44 2025 GMT Not After : Sep 25 15:23:44 2025 GMT Subject: CN=68cc2400-6a98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:42:dc:b2:38:0b:f1:1b:e0:96:1c:00:a7:90: cc:2b:06:0d:7a:0a:22:46:c8:ac:ab:57:cd:b7:44: ce:5a:e1:a1:ee:2e:24:17:24:d1:d1:ea:35:fb:b6: c3:df:ac:0f:3f:8b:66:c6:64:a5:cc:86:cf:d1:a6: 50:e2:5e:2c:ae:09:44:15:0a:86:3e:18:c8:cd:0e: b5:7e:f5:a0:0e:ac:a0:52:2b:cc:1f:f7:5c:61:58: 0e:cb:c4:4e:61:47:11:fd:d6:8b:80:9e:15:b5:40: 65:a4:10:69:ab:2f:88:0a:e0:09:ca:45:74:dc:7a: e1:64:1f:ee:3d:21:27:b4:41:d3:c2:d3:24:26:27: 4f:89:66:6c:4b:cd:6b:bd:c1:00:78:80:72:6a:39: 15:b3:ae:4c:a4:27:23:bd:72:cc:7b:7d:44:14:c6: 32:2e:b7:d3:8e:f4:21:95:0a:9b:7a:07:b9:82:6d: ac:4e:50:9e:ee:c0:b0:25:44:8b:cf:a1:0b:48:84: 27:59:e9:d4:cd:e4:c5:a2:5c:29:39:db:2b:a5:3d: 7b:e0:a9:3a:8c:88:1b:1e:c3:61:1b:5c:02:d3:89: ff:3c:ed:13:48:83:08:0e:1d:5b:1e:2c:31:8f:4b: a5:a5:fe:3a:3f:57:38:07:0f:0f:ce:64:b9:64:64: f0:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:B4:39:75:B6:C8:2D:AB:F2:79:CB:10:A7:79:C3:39:BE:BB:B1:36 X509v3 Authority Key Identifier: keyid:6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:0e:90:34:d0:c4:6f:99:5f:e5:c1:74:fc:bb:8f:86:33:bc: d2:ef:28:fd:b9:e5:b9:8b:7d:ca:8a:20:6c:40:d4:eb:d7:89: f3:c4:1d:4a:81:5d:8d:15:e1:15:d6:fe:be:fe:a6:b8:90:f4: 24:98:d9:dd:21:8e:3e:40:e1:27:0c:67:79:d7:9d:15:ad:7c: 45:c2:66:39:f3:55:6e:bd:3c:b0:6b:d0:d5:4f:03:19:4c:5c: e0:04:47:fd:8e:d5:10:4c:28:96:69:40:ac:74:b0:d6:a8:5a: 6d:24:41:6e:3b:fc:fb:33:cd:c4:c2:af:f8:42:25:27:14:c3: e8:67:07:5a:1b:0e:de:63:1c:8b:80:61:60:8e:69:a3:b6:34: 7d:82:7f:1b:f3:2a:f2:96:19:ae:d9:ab:c3:75:89:7f:4d:a7: 47:75:ad:da:e9:21:c4:ec:fc:c0:0e:58:d7:1a:8b:98:79:16: 40:9c:75:7e:44:04:85:e3:c6:72:63:cb:a5:d7:8d:a7:cf:0f: 6e:7e:0e:28:01:6b:f8:25:b1:20:ed:d2:0c:1f:a0:ce:3d:cf: 46:85:5a:76:92:6e:7f:cb:f9:e7:c2:5f:fe:71:ab:35:cf:83: 9e:01:dd:30:27:65:b3:86:35:16:66:21:f8:b0:44:fd:34:7f: ed:c5:ac:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICND8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThEMjcxMTAvBgNVBAUTKDZCRTQzRTZCMTM5NjQzQ0I0QzE5RTZERjczMjNCNTAz QzQ5MzExREIwHhcNMjUwOTE4MTUyMzQ0WhcNMjUwOTI1MTUyMzQ0WjAYMRYwFAYD VQQDEw02OGNjMjQwMC02YTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ELcsjgL8RvglhwAp5DMKwYNegoiRsisq1fNt0TOWuGh7i4kFyTR0eo1+7bD 36wPP4tmxmSlzIbP0aZQ4l4srglEFQqGPhjIzQ61fvWgDqygUivMH/dcYVgOy8RO YUcR/daLgJ4VtUBlpBBpqy+ICuAJykV03HrhZB/uPSEntEHTwtMkJidPiWZsS81r vcEAeIByajkVs65MpCcjvXLMe31EFMYyLrfTjvQhlQqbege5gm2sTlCe7sCwJUSL z6ELSIQnWenUzeTFolwpOdsrpT174Kk6jIgbHsNhG1wC04n/PO0TSIMIDh1bHiwx j0ulpf46P1c4Bw8PzmS5ZGTw/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCe0OXW2 yC2r8nnLEKd5wzm+u7E2MB8GA1UdIwQYMBaAFGvkPmsTlkPLTBnm33MjtQPEkxHb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyNy9DMEM1ODA3MDQy RTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4dE1HZWJmY3lPMUE4U1RF ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EtUS1heE9XUTh0TUdlYmZjeU8xQThTVEVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEQyNy9DMEM1ODA3MDQyRTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4 dE1HZWJmY3lPMUE4U1RFZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEDpA00MRvmV/lwXT8u4+GM7zS7yj9ueW5i33KiiBsQNTr14nzxB1K gV2NFeEV1v6+/qa4kPQkmNndIY4+QOEnDGd5150VrXxFwmY581VuvTywa9DVTwMZ TFzgBEf9jtUQTCiWaUCsdLDWqFptJEFuO/z7M83Ewq/4QiUnFMPoZwdaGw7eYxyL gGFgjmmjtjR9gn8b8yrylhmu2avDdYl/TadHda3a6SHE7PzADljXGouYeRZAnHV+ RASF48ZyY8ul142nzw9ufg4oAWv4JbEg7dIMH6DOPc9GhVp2km5/y/nnwl/+cas1 z4OeAd0wJ2WzhjUWZiH4sET9NH/txayX -----END CERTIFICATE-----Generated at Thu Sep 18 20:31:11 2025 by rpki-client