$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft File: KQN7v5LysPTDMKHN1KdiVs16VCI.mft (raw, json) Hash identifier: VpSh7vyFAQIil525I0jXgFS2Io79ai6lsVCy1hGTQmY= Subject key identifier: 49:66:DE:B6:F0:8E:64:D6:18:AE:8B:E6:F3:6B:B2:D5:B0:E1:7E:AF Authority key identifier: 29:03:7B:BF:92:F2:B0:F4:C3:30:A1:CD:D4:A7:62:56:CD:7A:54:22 Certificate issuer: /CN=A91E9B89/serialNumber=29037BBF92F2B0F4C330A1CDD4A76256CD7A5422 Certificate serial: C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft Manifest number: C1 Signing time: Mon 15 Sep 2025 06:20:14 +0000 Manifest this update: Mon 15 Sep 2025 06:20:14 +0000 Manifest next update: Mon 22 Sep 2025 06:20:14 +0000 Files and hashes: 1: KQN7v5LysPTDMKHN1KdiVs16VCI.crl (hash: TZYu7M1Agw46U3ainFnxxBKYa7U7vVKFCinYQz/Dv80=) 2: 2025BD6C6C3311EF99E0EF34C4F9AE02.roa (hash: v8gSdO2Oyevi0udRA9oSIzZPAk2F5XphTGY0llKdCYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.crl rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Sep 2025 06:20:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 194 (0xc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9B89, serialNumber=29037BBF92F2B0F4C330A1CDD4A76256CD7A5422 Validity Not Before: Sep 15 06:20:14 2025 GMT Not After : Sep 22 06:20:14 2025 GMT Subject: CN=68c7b01e-6b71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:91:97:99:22:4c:f1:96:98:fa:db:62:55:18: ef:8d:9e:54:d7:84:a4:74:5f:31:02:46:78:e2:e8: 0a:d1:25:f0:ab:86:c7:88:e8:41:23:ac:63:43:5a: aa:d3:36:0f:c6:a1:39:c8:ce:c0:c5:2e:d9:3d:a0: 51:ec:bb:ae:a2:5f:08:7c:88:a8:c1:09:70:0a:24: 95:f3:69:5d:bb:7f:95:4d:f6:8f:1f:dd:ab:7e:df: 2b:8f:5d:82:f9:d2:9e:73:96:83:01:23:9f:f2:0c: 2d:32:f1:57:18:de:e9:22:3a:97:70:2d:50:48:c7: 25:43:80:a8:af:4b:91:e7:63:ca:82:db:fe:9d:2c: 92:ac:f4:e8:aa:c6:64:e9:0c:0a:a8:93:d7:46:f5: 9c:e9:c4:e6:ef:a1:ec:5f:29:68:f8:25:71:13:4d: 48:9a:6e:3e:4d:1e:13:ee:49:8c:fc:ec:9f:5d:dc: e6:1c:1c:27:c7:2a:21:f1:ae:7e:6b:09:5e:7e:f4: 01:78:86:3a:3b:8e:7e:dd:f6:95:4c:f3:36:43:21: ae:86:da:a6:2d:98:39:de:47:dc:83:76:c2:23:d2: f7:0a:1b:63:9e:d4:19:7c:b0:cd:13:1a:4b:ef:96: c7:49:b4:ca:ac:07:91:c3:a8:67:ac:30:d1:ea:7f: d4:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:66:DE:B6:F0:8E:64:D6:18:AE:8B:E6:F3:6B:B2:D5:B0:E1:7E:AF X509v3 Authority Key Identifier: keyid:29:03:7B:BF:92:F2:B0:F4:C3:30:A1:CD:D4:A7:62:56:CD:7A:54:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:eb:bc:54:ae:30:3a:72:5f:ee:3d:e5:89:0d:77:4b:0e:3f: e6:f8:1d:72:b4:fa:25:bb:e0:8d:a7:14:3b:86:2c:44:c3:68: 89:eb:db:72:13:ad:1f:0c:73:03:2f:23:93:22:78:25:5c:cb: 1b:79:7c:93:37:90:42:dd:79:c1:c9:c2:90:28:2b:f5:78:18: 8f:fe:5f:c3:56:fd:66:19:4c:44:b8:a0:30:56:8a:83:08:cc: a3:ec:bb:e0:ce:61:a8:78:05:64:86:df:a0:9f:f9:2d:e3:ef: 47:65:64:fa:08:da:eb:ee:c6:14:53:1b:d2:46:51:37:9a:b5: 93:07:79:b0:25:af:ae:7e:37:82:71:37:a7:e0:de:c0:05:99: e9:57:e2:8c:05:c7:28:46:93:20:58:b1:5a:67:34:e7:02:81: 25:be:96:92:f6:0c:4f:8a:a4:4d:64:39:67:3a:e7:5d:ba:31: d9:e2:26:f7:8b:36:78:cf:7d:67:58:e7:a3:f4:23:28:85:01: fb:88:35:b0:02:12:59:97:34:b7:23:58:8e:8f:4d:52:d0:54: 8d:f1:b9:de:a0:cc:92:66:38:91:23:c7:c0:b4:28:d4:d0:1b: fc:73:48:4d:a0:fb:1c:5a:3d:fa:e9:e8:23:bb:f3:90:00:b0: c6:ab:da:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlCODkxMTAvBgNVBAUTKDI5MDM3QkJGOTJGMkIwRjRDMzMwQTFDREQ0QTc2MjU2 Q0Q3QTU0MjIwHhcNMjUwOTE1MDYyMDE0WhcNMjUwOTIyMDYyMDE0WjAYMRYwFAYD VQQDEw02OGM3YjAxZS02YjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9JGXmSJM8ZaY+ttiVRjvjZ5U14SkdF8xAkZ44ugK0SXwq4bHiOhBI6xjQ1qq 0zYPxqE5yM7AxS7ZPaBR7Luuol8IfIiowQlwCiSV82ldu3+VTfaPH92rft8rj12C +dKec5aDASOf8gwtMvFXGN7pIjqXcC1QSMclQ4Cor0uR52PKgtv+nSySrPToqsZk 6QwKqJPXRvWc6cTm76HsXylo+CVxE01Imm4+TR4T7kmM/OyfXdzmHBwnxyoh8a5+ awlefvQBeIY6O45+3faVTPM2QyGuhtqmLZg53kfcg3bCI9L3ChtjntQZfLDNExpL 75bHSbTKrAeRw6hnrDDR6n/UXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFElm3rbw jmTWGK6L5vNrstWw4X6vMB8GA1UdIwQYMBaAFCkDe7+S8rD0wzChzdSnYlbNelQi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUI4OS80MzY3QzIwRTZD MTgxMUVGQUI2QjY5MENDNEY5QUUwMi9LUU43djVMeXNQVERNS0hOMUtkaVZzMTZW Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tRTjd2NUx5c1BURE1LSE4xS2RpVnMxNlZDSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUI4OS80MzY3QzIwRTZDMTgxMUVGQUI2QjY5MENDNEY5QUUwMi9LUU43djVMeXNQ VERNS0hOMUtkaVZzMTZWQ0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCq67xUrjA6cl/uPeWJDXdLDj/m+B1ytPolu+CNpxQ7hixEw2iJ69ty E60fDHMDLyOTInglXMsbeXyTN5BC3XnBycKQKCv1eBiP/l/DVv1mGUxEuKAwVoqD CMyj7LvgzmGoeAVkht+gn/kt4+9HZWT6CNrr7sYUUxvSRlE3mrWTB3mwJa+ufjeC cTen4N7ABZnpV+KMBccoRpMgWLFaZzTnAoElvpaS9gxPiqRNZDlnOuddujHZ4ib3 izZ4z31nWOej9CMohQH7iDWwAhJZlzS3I1iOj01S0FSN8bneoMySZjiRI8fAtCjU 0Bv8c0hNoPscWj366egju/OQALDGq9o5 -----END CERTIFICATE-----Generated at Wed Sep 17 02:48:35 2025 by rpki-client