$ rpki-client -vvf rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.mft File: QbMaaMknik1EdI4t-MasqBV47LU.mft (raw, json) Hash identifier: zGeJoLmVPK8njZSqD+/uNVqzlXvxAOjuB2qrX5lGJlg= Subject key identifier: 97:F4:60:A6:01:1C:7A:C3:71:B2:CD:63:4F:36:2E:48:66:3E:E0:24 Authority key identifier: 41:B3:1A:68:C9:27:8A:4D:44:74:8E:2D:F8:C6:AC:A8:15:78:EC:B5 Certificate issuer: /CN=A9120A29/serialNumber=41B31A68C9278A4D44748E2DF8C6ACA81578ECB5 Certificate serial: 0B1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbMaaMknik1EdI4t-MasqBV47LU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.mft Manifest number: 0B17 Signing time: Sat 18 Oct 2025 20:13:13 +0000 Manifest this update: Sat 18 Oct 2025 20:13:12 +0000 Manifest next update: Sat 25 Oct 2025 20:13:12 +0000 Files and hashes: 1: QbMaaMknik1EdI4t-MasqBV47LU.crl (hash: ohlpIvCUT5A4X+9QEm5wyN+UGUASLwrOg2acsZ8tME0=) 2: 73A346A24D5D11EAA811C368C4F9AE02.roa (hash: AtiHUqqiSc5seLUNoB/SjIutv6okcY16FsBOaprHkwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.crl rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbMaaMknik1EdI4t-MasqBV47LU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:13:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2846 (0xb1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120A29, serialNumber=41B31A68C9278A4D44748E2DF8C6ACA81578ECB5 Validity Not Before: Oct 18 20:13:12 2025 GMT Not After : Oct 25 20:13:12 2025 GMT Subject: CN=68f3f4d9-c9de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ab:a3:60:20:a7:3a:43:cd:fd:b7:2c:3a:3d: 56:a7:f7:f5:24:31:00:a7:3c:32:49:ec:87:42:6b: 56:9a:a7:b4:70:23:be:44:55:dd:87:14:af:00:7d: 27:ac:e1:1a:68:12:99:52:14:78:4b:4d:6e:e9:09: c3:39:40:3e:46:7a:6c:d9:75:b0:90:a0:ac:2b:82: 31:f3:1b:aa:a7:65:46:5c:86:a5:e1:63:71:bc:44: 80:5d:90:dd:06:2b:8d:31:df:01:09:70:11:18:59: 1d:54:19:1b:54:79:2b:0f:18:ed:35:32:85:71:6d: 47:04:ce:60:6a:b0:aa:62:81:71:ec:81:36:a2:49: f9:04:01:b6:37:1a:e6:07:86:83:14:35:a6:4f:a3: 4a:a3:7d:89:dd:11:2d:25:65:df:fd:04:74:ca:c2: 63:30:cb:67:ed:5f:52:05:85:80:1d:20:ad:45:11: eb:7e:dd:63:0c:1c:ba:bc:3e:bb:d4:b9:eb:d5:b1: 7e:fa:9d:81:56:68:bb:84:05:f6:b3:fc:1e:41:4c: 40:7a:eb:a8:5c:dd:dd:54:cc:c5:0d:84:ec:9b:eb: fc:f2:5a:fe:c1:eb:c7:39:2e:4f:20:1a:b3:cf:ec: 1f:f3:a4:e7:cc:bb:33:eb:49:39:ee:2e:8d:63:78: 00:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:F4:60:A6:01:1C:7A:C3:71:B2:CD:63:4F:36:2E:48:66:3E:E0:24 X509v3 Authority Key Identifier: keyid:41:B3:1A:68:C9:27:8A:4D:44:74:8E:2D:F8:C6:AC:A8:15:78:EC:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbMaaMknik1EdI4t-MasqBV47LU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:a3:c6:18:05:a6:76:57:b4:af:e5:db:6c:3b:af:de:6a:28: 24:90:7c:a1:80:8d:66:d2:4e:b4:90:a5:01:92:b6:9d:5d:4e: db:43:7d:74:94:3d:51:f6:6f:53:fe:59:b4:c2:45:f6:3b:07: 8f:57:c3:b9:b0:5c:14:01:f7:39:94:73:e4:52:0b:9e:47:e8: f4:4f:6b:c4:c9:0c:3a:60:de:40:2e:6b:26:0f:82:13:a7:1f: d1:71:e8:6b:7d:82:25:dd:bf:55:6f:a5:05:c6:43:6f:b7:fb: 1c:32:1f:b8:5c:60:c1:2c:7a:13:ac:40:45:2a:01:c1:0b:49: 4f:2a:3b:1f:71:33:65:23:65:b8:14:0e:10:35:13:19:28:3b: ac:e0:6f:e8:59:a2:55:67:6e:b0:85:da:88:57:9b:16:94:52: f8:85:50:85:f5:b9:9a:67:43:ea:17:81:dd:13:06:43:01:03: 17:7f:37:b0:6f:92:31:65:3f:8d:29:1a:92:63:47:ba:1c:6f: 58:89:4b:7d:6c:98:b8:21:76:71:ce:17:1c:c1:3b:cc:b4:87: 54:b9:b5:19:17:ef:7f:aa:d3:4f:21:7e:08:e6:83:ec:0f:0d: ce:6a:47:96:cf:4e:bc:05:0d:c1:44:8f:22:8d:f0:2a:9a:5b: 6e:86:cd:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCx4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBMjkxMTAvBgNVBAUTKDQxQjMxQTY4QzkyNzhBNEQ0NDc0OEUyREY4QzZBQ0E4 MTU3OEVDQjUwHhcNMjUxMDE4MjAxMzEyWhcNMjUxMDI1MjAxMzEyWjAYMRYwFAYD VQQDEw02OGYzZjRkOS1jOWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzaujYCCnOkPN/bcsOj1Wp/f1JDEApzwySeyHQmtWmqe0cCO+RFXdhxSvAH0n rOEaaBKZUhR4S01u6QnDOUA+Rnps2XWwkKCsK4Ix8xuqp2VGXIal4WNxvESAXZDd BiuNMd8BCXARGFkdVBkbVHkrDxjtNTKFcW1HBM5garCqYoFx7IE2okn5BAG2Nxrm B4aDFDWmT6NKo32J3REtJWXf/QR0ysJjMMtn7V9SBYWAHSCtRRHrft1jDBy6vD67 1Lnr1bF++p2BVmi7hAX2s/weQUxAeuuoXN3dVMzFDYTsm+v88lr+wevHOS5PIBqz z+wf86TnzLsz60k57i6NY3gA4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJf0YKYB HHrDcbLNY082LkhmPuAkMB8GA1UdIwQYMBaAFEGzGmjJJ4pNRHSOLfjGrKgVeOy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEEyOS8wRTA2REJBMjRE NUMxMUVBQTgwODhBNjZDNEY5QUUwMi9RYk1hYU1rbmlrMUVkSTR0LU1hc3FCVjQ3 TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FiTWFhTWtuaWsxRWRJNHQtTWFzcUJWNDdMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEEyOS8wRTA2REJBMjRENUMxMUVBQTgwODhBNjZDNEY5QUUwMi9RYk1hYU1rbmlr MUVkSTR0LU1hc3FCVjQ3TFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeo8YYBaZ2V7Sv5dtsO6/eaigkkHyhgI1m0k60kKUBkradXU7bQ310 lD1R9m9T/lm0wkX2OwePV8O5sFwUAfc5lHPkUgueR+j0T2vEyQw6YN5ALmsmD4IT px/RcehrfYIl3b9Vb6UFxkNvt/scMh+4XGDBLHoTrEBFKgHBC0lPKjsfcTNlI2W4 FA4QNRMZKDus4G/oWaJVZ26whdqIV5sWlFL4hVCF9bmaZ0PqF4HdEwZDAQMXfzew b5IxZT+NKRqSY0e6HG9YiUt9bJi4IXZxzhccwTvMtIdUubUZF+9/qtNPIX4I5oPs Dw3OakeWz068BQ3BRI8ijfAqmltuhs3l -----END CERTIFICATE-----Generated at Mon Oct 20 12:45:53 2025 by rpki-client