$ rpki-client -vvf rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft File: QZ8npM_s9GHbgvb5BnZPttZfI88.mft (raw, json) Hash identifier: 3t47RER4ZH6om/iUHeHa3jiItCiPlopOx1uDzMmpSWI= Subject key identifier: A4:67:EE:B4:74:87:5B:66:DE:B3:E4:58:CA:7C:6E:31:98:56:0F:BC Authority key identifier: 41:9F:27:A4:CF:EC:F4:61:DB:82:F6:F9:06:76:4F:B6:D6:5F:23:CF Certificate issuer: /CN=A9140BED/serialNumber=419F27A4CFECF461DB82F6F906764FB6D65F23CF Certificate serial: 010F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft Manifest number: 0109 Signing time: Sun 19 Oct 2025 07:57:22 +0000 Manifest this update: Sun 19 Oct 2025 07:57:21 +0000 Manifest next update: Sun 26 Oct 2025 07:57:21 +0000 Files and hashes: 1: QZ8npM_s9GHbgvb5BnZPttZfI88.crl (hash: TY4rh7FIZdzMnkhri8n04FZXpfQnFC1P3IcBJCG//rw=) 2: ED7C0BCC287211EFA1483A2FC4F9AE02.roa (hash: SNdFFgbNj8G/zNTVCnmByHJjfzC5p20PH2d/HShK4p8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.crl rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:57:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 271 (0x10f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140BED, serialNumber=419F27A4CFECF461DB82F6F906764FB6D65F23CF Validity Not Before: Oct 19 07:57:21 2025 GMT Not After : Oct 26 07:57:21 2025 GMT Subject: CN=68f499e1-7b9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:95:49:91:fd:79:69:ef:95:85:0a:fa:a5:ed: 81:86:f6:37:00:c3:6c:06:4f:de:51:e3:60:8b:f2: c2:15:d5:02:fd:ad:2f:9c:52:da:37:03:f4:14:03: 6c:60:65:93:89:61:35:60:b3:2a:44:69:13:1d:e2: be:ad:6a:a7:ed:ef:32:ba:73:ec:9c:b5:7a:d5:29: b7:27:fa:ce:95:5a:52:61:fc:ed:4c:24:8f:ee:d9: ce:76:74:fa:e2:dc:36:a6:ea:d9:e7:84:0f:f9:ba: c0:53:b0:1e:0d:78:a1:f5:62:3a:0b:de:a7:41:67: 2c:7e:8c:bb:47:03:1e:0a:a0:db:d4:da:d5:1b:58: 10:b1:d0:29:a1:0d:cd:07:28:ab:67:8f:64:66:6e: 16:4d:6c:61:99:da:0a:3c:eb:48:7f:2b:f2:70:ee: e8:e6:33:f6:28:27:10:29:df:60:e1:2d:c0:05:27: 4e:df:50:bb:5a:c1:f2:6c:b4:e3:0d:84:d0:c5:7c: 76:8b:f9:8e:0d:fa:63:27:c0:19:e9:45:99:8a:53: 63:2a:01:bc:de:8e:80:d0:88:7b:3a:02:d7:15:57: fc:22:2b:74:d8:62:04:00:1a:29:45:97:f8:cf:e3: f1:d2:37:c9:33:e5:ee:bc:2f:59:f7:f3:df:29:67: 2b:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:67:EE:B4:74:87:5B:66:DE:B3:E4:58:CA:7C:6E:31:98:56:0F:BC X509v3 Authority Key Identifier: keyid:41:9F:27:A4:CF:EC:F4:61:DB:82:F6:F9:06:76:4F:B6:D6:5F:23:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ea:84:77:c8:48:0d:8c:36:ca:94:bc:02:b7:eb:c6:e1:b4:2d: 85:73:d7:13:e9:b5:68:50:91:29:e9:76:34:f8:a6:f3:b5:b7: 15:39:dc:2d:0c:5a:79:e6:c9:ba:4c:e0:52:ed:49:2d:40:0f: d8:eb:1c:19:e7:6c:34:c9:c8:21:86:7f:de:50:31:c5:01:ff: ce:5a:44:83:5c:ee:6f:9a:d6:53:0e:f9:2f:17:f8:e3:55:35: f4:80:3c:19:fa:9c:c0:57:b8:a6:b8:cf:1a:0f:e2:9c:48:b5: b8:94:4c:09:ae:0c:41:d0:75:7f:cc:cc:a7:a8:5e:d0:28:4c: 85:9f:23:27:d9:1d:24:c3:8c:b9:1b:fc:97:3b:a8:cf:a8:41: f1:87:9d:8b:d5:29:14:78:01:20:23:fd:e4:c1:6e:d1:02:fe: 00:87:2f:02:02:a4:20:6e:a7:8e:d1:a9:0f:2d:fd:40:39:2d: 13:fe:b7:2e:f7:56:23:91:2d:ea:02:65:e7:cc:a5:05:f8:0d: 43:c1:37:7d:d8:2b:6b:28:5a:87:a0:74:5a:7c:8e:81:4e:a2: 53:89:67:37:b1:3d:9a:47:cd:40:73:18:d0:7a:bc:bf:14:f3: 8d:6f:c3:be:0d:b2:61:1f:79:66:e6:6f:19:c4:38:56:fd:10: cd:a5:9c:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBCRUQxMTAvBgNVBAUTKDQxOUYyN0E0Q0ZFQ0Y0NjFEQjgyRjZGOTA2NzY0RkI2 RDY1RjIzQ0YwHhcNMjUxMDE5MDc1NzIxWhcNMjUxMDI2MDc1NzIxWjAYMRYwFAYD VQQDEw02OGY0OTllMS03YjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4JVJkf15ae+VhQr6pe2BhvY3AMNsBk/eUeNgi/LCFdUC/a0vnFLaNwP0FANs YGWTiWE1YLMqRGkTHeK+rWqn7e8yunPsnLV61Sm3J/rOlVpSYfztTCSP7tnOdnT6 4tw2purZ54QP+brAU7AeDXih9WI6C96nQWcsfoy7RwMeCqDb1NrVG1gQsdApoQ3N ByirZ49kZm4WTWxhmdoKPOtIfyvycO7o5jP2KCcQKd9g4S3ABSdO31C7WsHybLTj DYTQxXx2i/mODfpjJ8AZ6UWZilNjKgG83o6A0Ih7OgLXFVf8Iit02GIEABopRZf4 z+Px0jfJM+XuvC9Z9/PfKWcrowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKRn7rR0 h1tm3rPkWMp8bjGYVg+8MB8GA1UdIwQYMBaAFEGfJ6TP7PRh24L2+QZ2T7bWXyPP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEJFRC8wOEUwRTA2NjFG MzgxMUVGQjA1OUI2NjVDNEY5QUUwMi9RWjhucE1fczlHSGJndmI1Qm5aUHR0WmZJ ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FaOG5wTV9zOUdIYmd2YjVCblpQdHRaZkk4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEJFRC8wOEUwRTA2NjFGMzgxMUVGQjA1OUI2NjVDNEY5QUUwMi9RWjhucE1fczlH SGJndmI1Qm5aUHR0WmZJODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDqhHfISA2MNsqUvAK368bhtC2Fc9cT6bVoUJEp6XY0+KbztbcVOdwt DFp55sm6TOBS7UktQA/Y6xwZ52w0ycghhn/eUDHFAf/OWkSDXO5vmtZTDvkvF/jj VTX0gDwZ+pzAV7imuM8aD+KcSLW4lEwJrgxB0HV/zMynqF7QKEyFnyMn2R0kw4y5 G/yXO6jPqEHxh52L1SkUeAEgI/3kwW7RAv4Ahy8CAqQgbqeO0akPLf1AOS0T/rcu 91YjkS3qAmXnzKUF+A1DwTd92CtrKFqHoHRafI6BTqJTiWc3sT2aR81AcxjQery/ FPONb8O+DbJhH3lm5m8ZxDhW/RDNpZzQ -----END CERTIFICATE-----Generated at Tue Oct 21 01:02:34 2025 by rpki-client