$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft File: cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft (raw, json) Hash identifier: tg1LTghvqZyTY5Vw9qp3/D/XR4d5smP3p22Ogrl5xY8= Subject key identifier: 63:41:F9:3A:6F:4B:BE:CE:98:DB:EE:C7:19:44:61:A0:3C:DC:7B:A1 Authority key identifier: 71:05:37:24:46:A2:06:45:46:D9:62:9F:42:1C:37:6F:DC:EF:21:D6 Certificate issuer: /CN=A9125C31/serialNumber=7105372446A2064546D9629F421C376FDCEF21D6 Certificate serial: 0C1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft Manifest number: 0C18 Signing time: Fri 22 Aug 2025 18:50:11 +0000 Manifest this update: Fri 22 Aug 2025 18:50:10 +0000 Manifest next update: Fri 29 Aug 2025 18:50:10 +0000 Files and hashes: 1: cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl (hash: 8mCQLYXtqosQfACH2Isu4NHI6mO+/54sr8WyI+913hU=) 2: 4697751815B111EA8277BA34C4F9AE02.roa (hash: dxDp9E0tHPQ++XAIde+nxMm3Ga/WWcWY96m0Hl+beDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3103 (0xc1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C31, serialNumber=7105372446A2064546D9629F421C376FDCEF21D6 Validity Not Before: Aug 22 18:50:10 2025 GMT Not After : Aug 29 18:50:10 2025 GMT Subject: CN=68a8bbe3-8469 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:be:8a:f4:59:ad:23:0a:21:b9:6e:65:c2:dd: 6c:ac:d0:50:20:47:35:af:5f:c3:68:25:e9:c4:3d: 64:4c:f4:8d:05:fb:c2:d7:b9:03:a6:20:c2:30:9d: 26:a7:a3:79:c6:36:ab:6f:b0:be:b5:39:1b:ae:5e: f2:d8:cd:76:50:d7:d4:97:1a:06:69:e1:df:dc:d8: c7:b1:62:e2:88:fa:c9:72:1c:a8:c5:4c:3f:17:60: bc:7c:c4:78:d9:38:a2:4c:98:c4:06:6c:84:5e:68: 57:2a:a7:e2:0c:b5:3a:18:5e:ed:ec:10:1a:7f:cc: 53:5f:da:16:b2:13:18:aa:8c:94:19:46:93:06:5b: 6b:2f:f8:0f:dd:10:c0:02:56:67:9c:ab:4e:cb:ba: 97:2c:0b:b8:3b:4e:5b:a2:7d:cf:4d:5f:8b:a4:da: c7:62:f2:1b:57:e3:e2:b9:37:2f:83:b3:16:3e:10: 1b:9d:db:4e:38:34:f2:4c:ce:78:c5:17:68:df:c7: 99:da:93:68:94:ba:cc:49:a0:46:7e:f6:49:bd:13: 77:da:e2:49:66:0a:3d:54:38:6d:3e:a1:41:a5:15: 47:7a:fd:22:a5:a3:89:7d:ca:61:89:ae:c5:a7:2a: 34:fd:cc:ab:1d:57:8a:c9:32:ce:6d:97:3e:30:78: 23:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:41:F9:3A:6F:4B:BE:CE:98:DB:EE:C7:19:44:61:A0:3C:DC:7B:A1 X509v3 Authority Key Identifier: keyid:71:05:37:24:46:A2:06:45:46:D9:62:9F:42:1C:37:6F:DC:EF:21:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:30:d3:62:4d:95:56:c5:66:c5:40:79:8a:f1:5a:2d:dd:46: 5a:df:4d:f0:fc:c2:fa:35:c0:c4:e4:d6:a0:07:c1:a1:03:11: 4a:c6:05:1c:5f:b3:ba:9f:9e:2d:0d:bb:b3:60:74:85:fc:b0: 55:18:98:07:93:47:0e:66:df:45:cf:77:6a:40:6e:70:72:c9: cc:d6:82:27:6a:ea:6b:b4:fd:6a:72:cc:69:5a:cc:e1:ce:9a: c6:16:09:11:9c:d6:57:c1:d6:22:51:b1:7e:27:09:33:11:9c: 4f:67:36:76:18:f3:fb:86:70:b3:f7:df:30:18:bb:c6:6d:ee: b0:fb:af:17:c1:6b:2d:d5:9f:1c:d3:72:40:c6:17:09:f0:32: fa:52:43:39:ae:04:73:d9:65:d8:aa:f9:0b:4a:24:ba:a2:f4: 31:d6:35:bc:cc:a8:45:80:95:17:92:0b:e8:e0:6c:c5:e0:9f: d7:ad:d1:cc:75:5f:bd:89:38:39:b2:f1:25:34:af:cb:48:7e: 02:91:5f:06:a1:22:1a:99:41:d3:65:83:10:27:95:74:49:38: 42:84:d8:c7:0d:23:78:d1:26:51:4e:f6:11:f6:c8:c3:ab:2a: 46:5f:a8:3c:d9:69:eb:68:cf:fd:78:2c:9d:d3:f8:c7:30:a5: 86:b1:03:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMzExMTAvBgNVBAUTKDcxMDUzNzI0NDZBMjA2NDU0NkQ5NjI5RjQyMUMzNzZG RENFRjIxRDYwHhcNMjUwODIyMTg1MDEwWhcNMjUwODI5MTg1MDEwWjAYMRYwFAYD VQQDEw02OGE4YmJlMy04NDY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7L6K9FmtIwohuW5lwt1srNBQIEc1r1/DaCXpxD1kTPSNBfvC17kDpiDCMJ0m p6N5xjarb7C+tTkbrl7y2M12UNfUlxoGaeHf3NjHsWLiiPrJchyoxUw/F2C8fMR4 2TiiTJjEBmyEXmhXKqfiDLU6GF7t7BAaf8xTX9oWshMYqoyUGUaTBltrL/gP3RDA AlZnnKtOy7qXLAu4O05bon3PTV+LpNrHYvIbV+PiuTcvg7MWPhAbndtOODTyTM54 xRdo38eZ2pNolLrMSaBGfvZJvRN32uJJZgo9VDhtPqFBpRVHev0ipaOJfcphia7F pyo0/cyrHVeKyTLObZc+MHgjiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGNB+Tpv S77OmNvuxxlEYaA83HuhMB8GA1UdIwQYMBaAFHEFNyRGogZFRtlin0IcN2/c7yHW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMzMS8zOEJGNDA5QTE1 OTAxMUVBOUM0MTM2NTJDNEY5QUUwMi9jUVUzSkVhaUJrVkcyV0tmUWh3M2I5enZJ ZFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NRVTNKRWFpQmtWRzJXS2ZRaHczYjl6dklkWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMzMS8zOEJGNDA5QTE1OTAxMUVBOUM0MTM2NTJDNEY5QUUwMi9jUVUzSkVhaUJr VkcyV0tmUWh3M2I5enZJZFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABMNNiTZVWxWbFQHmK8Vot3UZa303w/ML6NcDE5NagB8GhAxFKxgUc X7O6n54tDbuzYHSF/LBVGJgHk0cOZt9Fz3dqQG5wcsnM1oInauprtP1qcsxpWszh zprGFgkRnNZXwdYiUbF+JwkzEZxPZzZ2GPP7hnCz998wGLvGbe6w+68XwWst1Z8c 03JAxhcJ8DL6UkM5rgRz2WXYqvkLSiS6ovQx1jW8zKhFgJUXkgvo4GzF4J/XrdHM dV+9iTg5svElNK/LSH4CkV8GoSIamUHTZYMQJ5V0SThChNjHDSN40SZRTvYR9sjD qypGX6g82WnraM/9eCyd0/jHMKWGsQOb -----END CERTIFICATE-----Generated at Sat Aug 23 20:27:11 2025 by rpki-client