$ rpki-client -vvf rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.mft File: QbMaaMknik1EdI4t-MasqBV47LU.mft (raw, json) Hash identifier: fu6C/bufScZw87shEnGqOHqTFwnYkEO5ohMyBfQMThc= Subject key identifier: 8E:12:50:7B:73:E2:C8:37:62:03:BB:28:15:5D:07:0A:16:23:B2:92 Authority key identifier: 41:B3:1A:68:C9:27:8A:4D:44:74:8E:2D:F8:C6:AC:A8:15:78:EC:B5 Certificate issuer: /CN=A9120A29/serialNumber=41B31A68C9278A4D44748E2DF8C6ACA81578ECB5 Certificate serial: 0B01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbMaaMknik1EdI4t-MasqBV47LU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.mft Manifest number: 0AFA Signing time: Fri 22 Aug 2025 19:29:33 +0000 Manifest this update: Fri 22 Aug 2025 19:29:32 +0000 Manifest next update: Fri 29 Aug 2025 19:29:32 +0000 Files and hashes: 1: QbMaaMknik1EdI4t-MasqBV47LU.crl (hash: G1e0UG8n/Qd4iO5r9mzLbKLQsbPGxuaetq5fYZPSa3Y=) 2: 73A346A24D5D11EAA811C368C4F9AE02.roa (hash: AtiHUqqiSc5seLUNoB/SjIutv6okcY16FsBOaprHkwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.crl rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbMaaMknik1EdI4t-MasqBV47LU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:29:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2817 (0xb01) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120A29, serialNumber=41B31A68C9278A4D44748E2DF8C6ACA81578ECB5 Validity Not Before: Aug 22 19:29:32 2025 GMT Not After : Aug 29 19:29:32 2025 GMT Subject: CN=68a8c51c-231f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b4:7b:32:9e:17:b6:dd:0a:7a:3a:d2:25:46: 69:b6:8a:28:4b:95:62:57:02:1d:01:b6:7a:85:60: 12:10:2f:30:6e:74:bc:1d:4f:ce:3c:42:3a:6d:9d: 1d:04:60:cc:7b:c5:88:27:4f:a0:e3:b9:0a:33:c2: 88:d2:73:1c:bb:2a:70:b2:97:0e:22:20:96:e4:11: d8:a2:c1:bd:b4:01:13:36:98:b5:9e:10:4c:78:ec: 4a:a2:7c:a2:b2:30:e5:43:30:8f:44:fb:f7:ec:b6: 93:6d:3a:3b:85:64:29:c0:72:b0:f2:33:25:bd:63: 61:cb:47:28:0b:0c:02:7e:c2:1c:ec:70:f2:c2:e7: 43:d7:14:7c:24:92:1a:61:82:a9:47:74:fd:5e:54: 96:0a:60:1b:1a:bc:e2:5a:5d:1d:9a:13:7f:e4:7c: 0b:88:8b:a6:09:e8:c8:9b:61:60:19:8c:09:35:79: ba:ce:f5:c1:19:dd:52:c9:62:a7:b9:12:b0:fc:07: 93:69:18:a7:78:22:f7:f9:8b:b4:d6:34:41:35:55: e3:0b:67:7c:2b:a3:ca:c5:00:df:12:9e:9f:e8:54: c4:35:86:2d:2a:48:62:a6:c8:0a:5a:ff:47:77:d8: 7d:56:8a:34:62:25:5c:bd:10:1a:92:11:76:ac:9d: a8:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:12:50:7B:73:E2:C8:37:62:03:BB:28:15:5D:07:0A:16:23:B2:92 X509v3 Authority Key Identifier: keyid:41:B3:1A:68:C9:27:8A:4D:44:74:8E:2D:F8:C6:AC:A8:15:78:EC:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbMaaMknik1EdI4t-MasqBV47LU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:66:3e:9a:6f:fc:4f:e2:17:83:e6:b7:a1:53:fe:fd:82:12: a5:8b:53:67:64:b1:ca:9d:4f:73:e3:12:af:5f:1a:e7:35:01: c2:a1:df:0c:a8:4e:99:78:19:3a:15:b3:44:90:a7:64:e6:ae: 5f:9e:b2:a0:57:c5:1e:8e:7e:df:f8:bb:95:67:f3:7d:5f:c5: c1:03:67:cb:96:4b:02:42:f1:ef:70:47:91:72:c4:97:50:50: 95:e4:b4:e6:9d:db:37:2c:51:aa:e4:fe:68:0e:19:8e:fa:cd: d6:df:08:e8:1a:b2:3f:77:f0:1c:9c:40:bd:89:46:d0:df:1e: b6:f9:2e:6f:78:c3:76:97:8b:a9:d5:5a:be:4b:4c:f4:a5:52: 57:20:51:e2:04:42:42:ef:ef:c8:c7:29:b3:06:c4:d3:75:0e: 79:f8:b9:b6:87:8d:ae:26:e9:1d:2f:66:40:fe:7a:17:8a:61: 10:7a:8e:90:34:0a:d5:1f:32:b3:2d:d7:ce:05:37:ab:c3:54: 9f:de:37:2f:f4:ba:0e:63:13:c5:2e:da:1c:26:f9:82:ad:12: f5:28:32:ba:72:b4:97:31:f2:09:83:42:f7:89:2c:dd:6e:1a: 2b:cf:b9:b1:db:03:63:e0:42:ce:36:60:e5:c6:69:93:65:bb: 5b:f5:08:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBMjkxMTAvBgNVBAUTKDQxQjMxQTY4QzkyNzhBNEQ0NDc0OEUyREY4QzZBQ0E4 MTU3OEVDQjUwHhcNMjUwODIyMTkyOTMyWhcNMjUwODI5MTkyOTMyWjAYMRYwFAYD VQQDEw02OGE4YzUxYy0yMzFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxbR7Mp4Xtt0KejrSJUZptoooS5ViVwIdAbZ6hWASEC8wbnS8HU/OPEI6bZ0d BGDMe8WIJ0+g47kKM8KI0nMcuypwspcOIiCW5BHYosG9tAETNpi1nhBMeOxKonyi sjDlQzCPRPv37LaTbTo7hWQpwHKw8jMlvWNhy0coCwwCfsIc7HDywudD1xR8JJIa YYKpR3T9XlSWCmAbGrziWl0dmhN/5HwLiIumCejIm2FgGYwJNXm6zvXBGd1SyWKn uRKw/AeTaRineCL3+Yu01jRBNVXjC2d8K6PKxQDfEp6f6FTENYYtKkhipsgKWv9H d9h9Voo0YiVcvRAakhF2rJ2oAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI4SUHtz 4sg3YgO7KBVdBwoWI7KSMB8GA1UdIwQYMBaAFEGzGmjJJ4pNRHSOLfjGrKgVeOy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEEyOS8wRTA2REJBMjRE NUMxMUVBQTgwODhBNjZDNEY5QUUwMi9RYk1hYU1rbmlrMUVkSTR0LU1hc3FCVjQ3 TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FiTWFhTWtuaWsxRWRJNHQtTWFzcUJWNDdMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEEyOS8wRTA2REJBMjRENUMxMUVBQTgwODhBNjZDNEY5QUUwMi9RYk1hYU1rbmlr MUVkSTR0LU1hc3FCVjQ3TFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhZj6ab/xP4heD5rehU/79ghKli1NnZLHKnU9z4xKvXxrnNQHCod8M qE6ZeBk6FbNEkKdk5q5fnrKgV8Uejn7f+LuVZ/N9X8XBA2fLlksCQvHvcEeRcsSX UFCV5LTmnds3LFGq5P5oDhmO+s3W3wjoGrI/d/AcnEC9iUbQ3x62+S5veMN2l4up 1Vq+S0z0pVJXIFHiBEJC7+/IxymzBsTTdQ55+Lm2h42uJukdL2ZA/noXimEQeo6Q NArVHzKzLdfOBTerw1Sf3jcv9LoOYxPFLtocJvmCrRL1KDK6crSXMfIJg0L3iSzd bhorz7mx2wNj4ELONmDlxmmTZbtb9Qhd -----END CERTIFICATE-----Generated at Sat Aug 23 17:06:37 2025 by rpki-client