$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.mft File: QSOsLsBp0u8nIB9NvKrGwZEhkCw.mft (raw, json) Hash identifier: i9H9wSxFoTZFfq3GaX3di8ulPPem4ECTIRU4u+DYuq4= Subject key identifier: 92:F8:A5:EF:F1:5E:8E:01:CA:A0:AF:AB:97:D9:1C:CF:18:47:BA:C2 Authority key identifier: 41:23:AC:2E:C0:69:D2:EF:27:20:1F:4D:BC:AA:C6:C1:91:21:90:2C Certificate issuer: /CN=A91EC8C9/serialNumber=4123AC2EC069D2EF27201F4DBCAAC6C19121902C Certificate serial: 03EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSOsLsBp0u8nIB9NvKrGwZEhkCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.mft Manifest number: 03E5 Signing time: Fri 19 Sep 2025 00:55:37 +0000 Manifest this update: Fri 19 Sep 2025 00:55:36 +0000 Manifest next update: Fri 26 Sep 2025 00:55:36 +0000 Files and hashes: 1: QSOsLsBp0u8nIB9NvKrGwZEhkCw.crl (hash: Gd1sZ+6Iw1x9DBAexrS7ZMmyiJSwbwa87ghGHdB9P2U=) 2: FFDA736894CB11ECA827746DC4F9AE02.roa (hash: pj2LnVj5JMKgQoW/CIO4SmTNgNuQfByzQiOUhiNM/dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.crl rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSOsLsBp0u8nIB9NvKrGwZEhkCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 00:55:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1002 (0x3ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC8C9, serialNumber=4123AC2EC069D2EF27201F4DBCAAC6C19121902C Validity Not Before: Sep 19 00:55:36 2025 GMT Not After : Sep 26 00:55:36 2025 GMT Subject: CN=68ccaa09-d235 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:d4:2f:72:d9:8c:3d:35:de:47:2b:da:63:bf: 3c:71:d4:17:15:16:37:3d:2f:90:8d:ad:6e:fd:2a: d1:23:e2:2b:55:ff:f9:1f:09:c2:69:98:ce:b4:7b: 60:b2:03:49:04:78:d1:4c:d5:c4:1e:41:f0:35:60: 62:44:62:f5:cc:88:f0:cd:c7:d2:bd:f1:7c:78:7d: 5c:4c:07:9b:9c:e6:1c:ef:26:01:44:54:28:e6:fa: 70:e7:c8:a0:0e:0d:25:20:d5:63:06:56:5a:fa:43: 75:c5:10:0b:71:8a:74:14:e7:02:86:8c:89:1b:01: f3:cf:8e:d1:2c:10:7e:c7:d0:74:42:d4:04:09:09: 39:21:3b:b0:5e:98:e3:0f:aa:f7:03:03:06:f2:2e: 17:76:9c:01:57:53:69:4e:e3:1f:18:63:71:a5:7f: e1:53:9c:f0:bf:f9:41:d5:4b:7a:61:01:e0:0b:c1: 60:22:b7:8b:a6:41:4f:04:6f:d0:48:45:8a:1d:ff: f0:9d:c3:f2:49:27:67:3b:ac:f9:1e:87:99:ce:13: 80:b9:79:2b:4c:62:72:cc:6a:d0:02:cb:89:57:95: 48:42:61:eb:ca:e2:99:6b:69:d7:b1:4c:e2:5a:72: d2:cc:09:e9:2c:67:2f:64:b1:7e:f9:7c:1f:60:2b: 59:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:F8:A5:EF:F1:5E:8E:01:CA:A0:AF:AB:97:D9:1C:CF:18:47:BA:C2 X509v3 Authority Key Identifier: keyid:41:23:AC:2E:C0:69:D2:EF:27:20:1F:4D:BC:AA:C6:C1:91:21:90:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSOsLsBp0u8nIB9NvKrGwZEhkCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC8C9/738DDFC494C811EC95CB9765C4F9AE02/QSOsLsBp0u8nIB9NvKrGwZEhkCw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:14:3f:7f:d6:76:00:c8:6e:9a:01:a9:70:39:c2:70:8b:fc: 74:3f:e0:7a:31:10:17:ab:3c:de:95:d2:96:0b:90:da:f9:a4: 7d:fe:2f:fa:f5:b2:a8:a5:7d:96:99:99:e8:63:e9:04:50:6d: 61:cc:ba:ad:78:75:b3:1b:da:23:94:33:53:ee:9b:7e:e9:d1: 9f:10:a1:6b:f5:f3:6f:ea:a0:8d:52:a1:fe:ec:05:36:30:13: 33:03:f4:a8:da:30:ba:95:0d:68:08:31:23:cd:5b:f3:1d:d5: a7:55:b8:ca:bd:d2:c7:01:6a:1c:5b:61:78:24:be:ed:b3:98: 1d:97:4e:50:b7:cb:10:ae:f2:f3:04:61:bc:4a:57:80:7a:2a: 8a:7f:27:4c:0b:e9:c1:d6:10:21:34:24:55:df:3c:85:64:66: 79:a6:d6:fe:47:68:e9:9d:82:ca:45:df:7d:9f:cb:fb:dd:52: bc:5e:95:ac:66:4b:da:45:a0:4c:8e:5b:c5:61:bd:fb:9c:1b: 0f:8c:ea:43:58:be:c6:ff:c8:f8:c8:fa:48:b3:59:c6:03:26: 3e:fb:e0:88:1f:cb:73:64:97:ca:ef:73:9e:d4:99:69:1d:67: b1:c1:50:8d:e0:56:2e:b2:0d:61:74:1b:e4:dd:a7:26:fc:2d: 06:00:17:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM4QzkxMTAvBgNVBAUTKDQxMjNBQzJFQzA2OUQyRUYyNzIwMUY0REJDQUFDNkMx OTEyMTkwMkMwHhcNMjUwOTE5MDA1NTM2WhcNMjUwOTI2MDA1NTM2WjAYMRYwFAYD VQQDEw02OGNjYWEwOS1kMjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA09QvctmMPTXeRyvaY788cdQXFRY3PS+Qja1u/SrRI+IrVf/5HwnCaZjOtHtg sgNJBHjRTNXEHkHwNWBiRGL1zIjwzcfSvfF8eH1cTAebnOYc7yYBRFQo5vpw58ig Dg0lINVjBlZa+kN1xRALcYp0FOcChoyJGwHzz47RLBB+x9B0QtQECQk5ITuwXpjj D6r3AwMG8i4XdpwBV1NpTuMfGGNxpX/hU5zwv/lB1Ut6YQHgC8FgIreLpkFPBG/Q SEWKHf/wncPySSdnO6z5HoeZzhOAuXkrTGJyzGrQAsuJV5VIQmHryuKZa2nXsUzi WnLSzAnpLGcvZLF++XwfYCtZtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJL4pe/x Xo4ByqCvq5fZHM8YR7rCMB8GA1UdIwQYMBaAFEEjrC7AadLvJyAfTbyqxsGRIZAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzhDOS83MzhEREZDNDk0 QzgxMUVDOTVDQjk3NjVDNEY5QUUwMi9RU09zTHNCcDB1OG5JQjlOdktyR3daRWhr Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FTT3NMc0JwMHU4bklCOU52S3JHd1pFaGtDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzhDOS83MzhEREZDNDk0QzgxMUVDOTVDQjk3NjVDNEY5QUUwMi9RU09zTHNCcDB1 OG5JQjlOdktyR3daRWhrQ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7FD9/1nYAyG6aAalwOcJwi/x0P+B6MRAXqzzeldKWC5Da+aR9/i/6 9bKopX2WmZnoY+kEUG1hzLqteHWzG9ojlDNT7pt+6dGfEKFr9fNv6qCNUqH+7AU2 MBMzA/So2jC6lQ1oCDEjzVvzHdWnVbjKvdLHAWocW2F4JL7ts5gdl05Qt8sQrvLz BGG8SleAeiqKfydMC+nB1hAhNCRV3zyFZGZ5ptb+R2jpnYLKRd99n8v73VK8XpWs ZkvaRaBMjlvFYb37nBsPjOpDWL7G/8j4yPpIs1nGAyY+++CIH8tzZJfK73Oe1Jlp HWexwVCN4FYusg1hdBvk3acm/C0GABc4 -----END CERTIFICATE-----Generated at Fri Sep 19 05:47:16 2025 by rpki-client