$ rpki-client -vvf rpki.apnic.net/member_repository/A912A13F/A672E3B6BF6E11EAB656BF2FC4F9AE02/qxYnt6hRQ5Lhxni3sHiFWkRVZuQ.mft File: qxYnt6hRQ5Lhxni3sHiFWkRVZuQ.mft (raw, json) Hash identifier: iJTyYXau/20wA7sYPb4ZhRZZssewGe3N7HUSudrYRqI= Subject key identifier: 7A:2D:00:BC:9E:EB:00:C4:C6:46:E0:F9:55:82:E1:89:EB:65:17:BF Authority key identifier: AB:16:27:B7:A8:51:43:92:E1:C6:78:B7:B0:78:85:5A:44:55:66:E4 Certificate issuer: /CN=A912A13F/serialNumber=AB1627B7A8514392E1C678B7B078855A445566E4 Certificate serial: 08B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qxYnt6hRQ5Lhxni3sHiFWkRVZuQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A13F/A672E3B6BF6E11EAB656BF2FC4F9AE02/qxYnt6hRQ5Lhxni3sHiFWkRVZuQ.mft Manifest number: 08B1 Signing time: Fri 22 Aug 2025 20:38:15 +0000 Manifest this update: Fri 22 Aug 2025 20:38:15 +0000 Manifest next update: Fri 29 Aug 2025 20:38:15 +0000 Files and hashes: 1: qxYnt6hRQ5Lhxni3sHiFWkRVZuQ.crl (hash: gm8+HMTNjk8FsZE8FQRemrULvQvVOX8SdooL5755gAc=) 2: 34E1DFE8BF7011EAB745BE31C4F9AE02.roa (hash: Ikd/LHIFGkrNvlawlhSa/JEAr9UmpAWA/8H+UH2uQws=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A13F/A672E3B6BF6E11EAB656BF2FC4F9AE02/qxYnt6hRQ5Lhxni3sHiFWkRVZuQ.crl rsync://rpki.apnic.net/member_repository/A912A13F/A672E3B6BF6E11EAB656BF2FC4F9AE02/qxYnt6hRQ5Lhxni3sHiFWkRVZuQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qxYnt6hRQ5Lhxni3sHiFWkRVZuQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:38:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2232 (0x8b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A13F, serialNumber=AB1627B7A8514392E1C678B7B078855A445566E4 Validity Not Before: Aug 22 20:38:15 2025 GMT Not After : Aug 29 20:38:15 2025 GMT Subject: CN=68a8d537-89f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:07:2c:a9:83:34:3d:d4:cb:74:05:4b:83:52: 82:9d:43:f3:16:52:8f:72:e2:e1:8b:f8:cc:f4:cc: 1c:80:ab:05:a4:ed:d9:2f:37:04:17:b3:bb:d5:79: 18:9a:7c:f2:3a:d3:ba:27:d2:de:f0:37:2e:a0:61: 3e:f3:66:1f:f2:fd:a6:c6:4a:ae:f0:ea:96:c1:0d: b9:19:ab:70:70:ab:78:d2:5a:ec:04:61:ca:f0:9a: da:55:fb:0e:8a:61:0b:dc:a0:66:84:c3:72:58:7b: ac:51:dd:30:cb:c4:1a:79:09:3c:35:17:91:0b:18: c5:a4:b7:18:90:98:b3:6b:d0:85:ff:d9:9b:bb:af: 3c:c0:cf:59:36:a4:3e:1f:a5:06:d1:f2:72:91:9e: eb:3e:96:01:bf:b7:37:d5:b2:46:17:74:ba:5d:85: 8d:97:58:93:10:c2:af:a7:02:95:4c:29:8b:15:d4: 33:50:1a:05:6d:8d:35:9b:c4:72:07:47:68:66:78: e3:bc:89:3f:88:9c:63:be:3a:4e:b8:d2:8e:8b:5e: b5:bc:ed:15:73:80:90:2e:3d:09:a2:ea:0d:6f:8e: db:91:ca:4f:c3:1b:fe:41:99:da:0f:2a:c8:16:bc: c9:60:75:54:13:83:c8:4b:e3:68:8a:ba:dd:05:54: 58:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:2D:00:BC:9E:EB:00:C4:C6:46:E0:F9:55:82:E1:89:EB:65:17:BF X509v3 Authority Key Identifier: keyid:AB:16:27:B7:A8:51:43:92:E1:C6:78:B7:B0:78:85:5A:44:55:66:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A13F/A672E3B6BF6E11EAB656BF2FC4F9AE02/qxYnt6hRQ5Lhxni3sHiFWkRVZuQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qxYnt6hRQ5Lhxni3sHiFWkRVZuQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A13F/A672E3B6BF6E11EAB656BF2FC4F9AE02/qxYnt6hRQ5Lhxni3sHiFWkRVZuQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:82:90:2d:fe:ed:ab:19:83:5b:a0:27:cd:29:81:9e:18:69: 46:d2:a5:31:49:97:7a:60:d4:d2:ec:82:d4:70:ca:59:f3:a9: 45:2b:b2:44:7d:6e:d1:cb:b6:9b:56:87:2c:e3:7b:75:a2:4b: dd:2c:02:59:cf:45:9f:bc:75:42:a6:0b:f6:4f:23:42:1b:4c: 6a:81:b7:b4:76:87:4d:b6:49:68:4b:2e:22:34:fb:57:20:4c: 91:49:53:3d:e6:6b:ff:1b:8a:68:3c:30:de:af:8d:4d:5f:1c: 61:1d:c3:fd:73:7d:78:c3:5f:62:0e:be:f4:95:26:c2:42:67: d8:bb:1d:fb:d2:9e:17:b4:48:3f:f1:ec:3c:5f:bc:a1:ff:70: 86:85:9a:e1:e6:75:14:85:c6:ae:84:db:c6:39:2c:83:3a:5a: 51:9f:df:a4:ca:60:7e:6e:0b:11:cb:ee:3e:91:5d:7d:af:9f: a1:19:f1:4a:f4:5c:dc:8c:03:1d:38:22:21:50:40:2b:b0:cf: 6b:bb:93:8f:9f:fc:8e:bb:64:ca:d7:45:a4:da:01:ff:4b:18: 5d:70:37:9c:ca:bd:15:f8:98:bd:45:70:58:59:b7:7d:b5:cf: a0:e3:0b:b1:8a:f3:b5:47:22:9e:28:18:07:6d:6d:63:96:be: 51:ec:5c:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkExM0YxMTAvBgNVBAUTKEFCMTYyN0I3QTg1MTQzOTJFMUM2NzhCN0IwNzg4NTVB NDQ1NTY2RTQwHhcNMjUwODIyMjAzODE1WhcNMjUwODI5MjAzODE1WjAYMRYwFAYD VQQDEw02OGE4ZDUzNy04OWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1QcsqYM0PdTLdAVLg1KCnUPzFlKPcuLhi/jM9MwcgKsFpO3ZLzcEF7O71XkY mnzyOtO6J9Le8DcuoGE+82Yf8v2mxkqu8OqWwQ25GatwcKt40lrsBGHK8JraVfsO imEL3KBmhMNyWHusUd0wy8QaeQk8NReRCxjFpLcYkJiza9CF/9mbu688wM9ZNqQ+ H6UG0fJykZ7rPpYBv7c31bJGF3S6XYWNl1iTEMKvpwKVTCmLFdQzUBoFbY01m8Ry B0doZnjjvIk/iJxjvjpOuNKOi161vO0Vc4CQLj0JouoNb47bkcpPwxv+QZnaDyrI FrzJYHVUE4PIS+NoirrdBVRYvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHotALye 6wDExkbg+VWC4YnrZRe/MB8GA1UdIwQYMBaAFKsWJ7eoUUOS4cZ4t7B4hVpEVWbk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTEzRi9BNjcyRTNCNkJG NkUxMUVBQjY1NkJGMkZDNEY5QUUwMi9xeFludDZoUlE1TGh4bmkzc0hpRldrUlZa dVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3F4WW50NmhSUTVMaHhuaTNzSGlGV2tSVlp1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTEzRi9BNjcyRTNCNkJGNkUxMUVBQjY1NkJGMkZDNEY5QUUwMi9xeFludDZoUlE1 TGh4bmkzc0hpRldrUlZadVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxgpAt/u2rGYNboCfNKYGeGGlG0qUxSZd6YNTS7ILUcMpZ86lFK7JE fW7Ry7abVocs43t1okvdLAJZz0WfvHVCpgv2TyNCG0xqgbe0dodNtkloSy4iNPtX IEyRSVM95mv/G4poPDDer41NXxxhHcP9c314w19iDr70lSbCQmfYux370p4XtEg/ 8ew8X7yh/3CGhZrh5nUUhcauhNvGOSyDOlpRn9+kymB+bgsRy+4+kV19r5+hGfFK 9FzcjAMdOCIhUEArsM9ru5OPn/yOu2TK10Wk2gH/SxhdcDecyr0V+Ji9RXBYWbd9 tc+g4wuxivO1RyKeKBgHbW1jlr5R7FyY -----END CERTIFICATE-----Generated at Sun Aug 24 03:33:17 2025 by rpki-client