$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft File: qCkvYgTIIT15H6bMqvV4UZTvgaA.mft (raw, json) Hash identifier: 1AD7nB392mTt1G6fqToBbyAyH6UE3perM5blf2isWjg= Subject key identifier: 25:C3:53:65:E9:C4:7F:D2:19:06:F0:F5:8D:01:34:95:E6:6F:F3:2E Authority key identifier: A8:29:2F:62:04:C8:21:3D:79:1F:A6:CC:AA:F5:78:51:94:EF:81:A0 Certificate issuer: /CN=A91FDEFE/serialNumber=A8292F6204C8213D791FA6CCAAF5785194EF81A0 Certificate serial: 9F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft Manifest number: 9E Signing time: Fri 19 Sep 2025 06:59:41 +0000 Manifest this update: Fri 19 Sep 2025 06:59:41 +0000 Manifest next update: Fri 26 Sep 2025 06:59:41 +0000 Files and hashes: 1: qCkvYgTIIT15H6bMqvV4UZTvgaA.crl (hash: x5qnahzdUYJ8rBy6kCW4K54dcELrHESgwcOj7WZyKt4=) 2: E7695EC6A53411EFB98AFE51C4F9AE02.roa (hash: Lu7YmWMIdl1OwrJtUhBGFe6+OAHwy7pjCKEXO1Xq/dY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.crl rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 06:59:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 159 (0x9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDEFE, serialNumber=A8292F6204C8213D791FA6CCAAF5785194EF81A0 Validity Not Before: Sep 19 06:59:41 2025 GMT Not After : Sep 26 06:59:41 2025 GMT Subject: CN=68ccff5d-444a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:9d:b8:1e:46:b1:28:b3:a2:30:37:d9:b4:d9: 33:8c:6a:33:45:01:21:48:c5:d4:ad:e6:ee:21:96: 89:0b:86:12:f8:3f:05:d4:46:b0:3d:15:ef:b2:b7: 0a:41:1b:a8:6a:f8:82:88:00:c7:ee:e2:85:41:61: 01:de:62:ab:24:08:09:d9:28:a9:01:ec:18:54:43: 4f:8b:d7:45:d9:70:f3:05:43:00:d3:2d:82:5f:5d: 0f:f3:83:bd:03:19:b4:52:fe:f0:2d:c9:ef:90:0a: 97:cd:53:17:35:36:30:29:d9:f9:f8:e9:60:83:f3: 2f:c8:37:62:85:1b:3e:f7:96:f4:67:3b:29:c0:5f: 6e:00:d7:1d:7e:fa:fe:3c:e8:ec:9d:61:12:e9:1d: 1a:ed:26:6b:21:c1:bb:49:d3:86:bd:c1:ef:17:d4: e5:1a:ec:5e:21:b5:0d:71:cb:bd:70:eb:62:f4:f5: 1b:e7:03:34:45:0e:95:8d:17:a7:d8:42:9e:1f:61: fd:5c:e3:6d:c4:51:8f:00:63:80:1c:14:4e:4a:07: 2c:9b:fa:2b:a0:59:7a:c7:3b:ae:94:dc:dd:c4:0f: 76:eb:d9:4c:ec:fe:66:ab:ea:fa:38:c2:7e:14:6d: 54:e6:71:fa:27:0a:6e:83:2f:f6:70:ca:ea:fb:61: 9e:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:C3:53:65:E9:C4:7F:D2:19:06:F0:F5:8D:01:34:95:E6:6F:F3:2E X509v3 Authority Key Identifier: keyid:A8:29:2F:62:04:C8:21:3D:79:1F:A6:CC:AA:F5:78:51:94:EF:81:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qCkvYgTIIT15H6bMqvV4UZTvgaA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDEFE/1164CAE0A51611EF890ECD3EC4F9AE02/qCkvYgTIIT15H6bMqvV4UZTvgaA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:36:86:46:ff:dd:33:9b:91:1c:37:3d:9a:91:47:d0:eb:df: 1e:e2:44:5d:da:56:c4:a4:5f:9c:a0:ad:c0:1a:f1:6f:46:70: 12:43:49:37:76:bc:b1:fc:ed:0a:c4:9b:00:be:d6:e7:d3:a5: ac:9f:34:10:66:44:04:38:c6:70:cd:52:b7:97:2c:a5:8a:d9: bb:27:22:32:5d:50:fe:c5:75:ad:19:d5:90:57:54:55:08:95: 88:0f:ba:ad:c2:66:3e:27:fb:7f:92:94:0b:5b:73:41:3d:58: 11:15:d5:c9:f5:a0:d0:bb:35:dd:1d:92:97:8f:c1:9b:68:79: 7e:68:4c:48:f2:2a:cb:2a:91:54:94:45:0b:5a:00:a4:b7:4d: 5f:33:fb:67:38:5e:4e:91:26:04:a1:0b:f2:9a:58:49:3b:89: 8a:96:af:e1:59:87:ef:77:45:55:0e:30:3c:90:9e:5c:72:ae: f7:77:e1:ef:d1:30:73:f3:00:fd:c5:3f:17:ca:de:6f:0a:56: c6:c7:75:9a:be:80:b0:50:96:fd:67:68:c4:da:24:48:3c:d4: de:89:84:24:a6:5e:38:70:71:97:f6:e6:3a:e7:ae:30:ab:dc: a5:61:0e:36:ed:4a:0e:85:e7:5e:33:d6:7a:cc:e5:31:0e:0d: 55:84:c8:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRFRkUxMTAvBgNVBAUTKEE4MjkyRjYyMDRDODIxM0Q3OTFGQTZDQ0FBRjU3ODUx OTRFRjgxQTAwHhcNMjUwOTE5MDY1OTQxWhcNMjUwOTI2MDY1OTQxWjAYMRYwFAYD VQQDEw02OGNjZmY1ZC00NDRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Z24HkaxKLOiMDfZtNkzjGozRQEhSMXUrebuIZaJC4YS+D8F1EawPRXvsrcK QRuoaviCiADH7uKFQWEB3mKrJAgJ2SipAewYVENPi9dF2XDzBUMA0y2CX10P84O9 Axm0Uv7wLcnvkAqXzVMXNTYwKdn5+Olgg/MvyDdihRs+95b0ZzspwF9uANcdfvr+ POjsnWES6R0a7SZrIcG7SdOGvcHvF9TlGuxeIbUNccu9cOti9PUb5wM0RQ6VjRen 2EKeH2H9XONtxFGPAGOAHBROSgcsm/oroFl6xzuulNzdxA9269lM7P5mq+r6OMJ+ FG1U5nH6Jwpugy/2cMrq+2GeIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCXDU2Xp xH/SGQbw9Y0BNJXmb/MuMB8GA1UdIwQYMBaAFKgpL2IEyCE9eR+mzKr1eFGU74Gg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREVGRS8xMTY0Q0FFMEE1 MTYxMUVGODkwRUNEM0VDNEY5QUUwMi9xQ2t2WWdUSUlUMTVINmJNcXZWNFVaVHZn YUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3FDa3ZZZ1RJSVQxNUg2Yk1xdlY0VVpUdmdhQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REVGRS8xMTY0Q0FFMEE1MTYxMUVGODkwRUNEM0VDNEY5QUUwMi9xQ2t2WWdUSUlU MTVINmJNcXZWNFVaVHZnYUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApNoZG/90zm5EcNz2akUfQ698e4kRd2lbEpF+coK3AGvFvRnASQ0k3 dryx/O0KxJsAvtbn06WsnzQQZkQEOMZwzVK3lyylitm7JyIyXVD+xXWtGdWQV1RV CJWID7qtwmY+J/t/kpQLW3NBPVgRFdXJ9aDQuzXdHZKXj8GbaHl+aExI8irLKpFU lEULWgCkt01fM/tnOF5OkSYEoQvymlhJO4mKlq/hWYfvd0VVDjA8kJ5ccq73d+Hv 0TBz8wD9xT8Xyt5vClbGx3WavoCwUJb9Z2jE2iRIPNTeiYQkpl44cHGX9uY6564w q9ylYQ427UoOhedeM9Z6zOUxDg1VhMgk -----END CERTIFICATE-----Generated at Sat Sep 20 03:14:28 2025 by rpki-client