$ rpki-client -vvf rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft File: QZ8npM_s9GHbgvb5BnZPttZfI88.mft (raw, json) Hash identifier: ERNGaMfoMIQSYntBAJ4c4NjJzDp02RNbNJkNp1vwefs= Subject key identifier: C1:A5:10:76:23:ED:04:79:24:15:47:68:85:F2:B9:15:BE:D0:A4:D0 Authority key identifier: 41:9F:27:A4:CF:EC:F4:61:DB:82:F6:F9:06:76:4F:B6:D6:5F:23:CF Certificate issuer: /CN=A9140BED/serialNumber=419F27A4CFECF461DB82F6F906764FB6D65F23CF Certificate serial: EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft Manifest number: EA Signing time: Sat 23 Aug 2025 05:32:31 +0000 Manifest this update: Sat 23 Aug 2025 05:32:30 +0000 Manifest next update: Sat 30 Aug 2025 05:32:30 +0000 Files and hashes: 1: QZ8npM_s9GHbgvb5BnZPttZfI88.crl (hash: Ng9Ygv30VteU0zI7owJuD9JgwshME7Ecs6Gh1SbJwAQ=) 2: ED7C0BCC287211EFA1483A2FC4F9AE02.roa (hash: TrqB+PZze3/PHsx+S+f9vvK9WuKsfRUtYIK0Ow1+dU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.crl rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:32:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 239 (0xef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140BED, serialNumber=419F27A4CFECF461DB82F6F906764FB6D65F23CF Validity Not Before: Aug 23 05:32:30 2025 GMT Not After : Aug 30 05:32:30 2025 GMT Subject: CN=68a9526f-bd6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e7:e2:fe:b2:38:aa:00:8a:5f:f2:2a:6f:bc: f9:70:80:15:39:74:6e:c5:0f:86:0d:a7:7e:1d:33: 78:e7:cd:4d:5a:8a:82:58:b8:92:b4:d9:05:3d:35: 10:0b:8b:32:89:ac:8e:d8:82:de:67:b1:21:7d:3f: 93:0b:d4:19:df:2a:72:4d:ea:31:fb:3d:17:5e:ed: a1:43:13:15:05:0e:cd:a3:2c:83:24:3e:08:34:a7: 2f:2e:bb:c8:27:8a:bb:ef:26:42:2f:33:dc:ce:09: b8:62:e2:8b:8a:8d:82:dc:47:81:7f:4a:6a:76:1f: af:6b:32:f5:8d:96:f5:c3:bc:c8:e9:05:2c:32:d3: 8b:cc:1f:40:b8:06:32:06:67:0c:d7:8c:65:74:f9: c4:28:b3:df:57:4b:b9:f5:6d:56:30:4f:0f:2c:7b: cc:2e:52:7e:91:95:3e:10:84:7c:28:a6:86:8c:fb: 02:05:b8:cf:b0:31:dc:8c:fb:d5:14:5a:b0:a4:c1: 42:b3:3c:5b:da:d9:88:88:39:f2:a6:36:84:4a:c7: de:4b:e0:d1:0e:d5:c2:07:6c:0f:1e:d7:81:8b:24: 9e:e2:fd:97:db:cf:ca:52:94:00:99:24:9c:c3:de: e9:32:0c:9f:90:e8:d2:f3:18:3e:7f:77:e7:d1:86: be:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:A5:10:76:23:ED:04:79:24:15:47:68:85:F2:B9:15:BE:D0:A4:D0 X509v3 Authority Key Identifier: keyid:41:9F:27:A4:CF:EC:F4:61:DB:82:F6:F9:06:76:4F:B6:D6:5F:23:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:7f:f2:8e:db:fb:db:da:59:7f:bc:b3:20:7d:b4:cd:84:2f: ea:b9:fa:a6:c1:4a:fe:d7:92:0b:e4:62:27:13:e5:b8:b0:cb: fe:fa:ab:5e:7e:6e:15:ff:4d:ba:72:c3:e3:d0:5b:f7:a6:c8: 17:68:8b:ba:f5:a7:d7:67:83:0c:aa:a0:dd:c8:96:aa:ee:42: 4e:db:65:52:ea:6c:b1:6f:3f:d4:28:44:f4:df:cf:e9:c7:33: 9d:c4:d8:3e:2a:d7:a4:36:42:6e:e3:cb:2d:5f:33:c1:be:d4: 22:db:39:a6:15:a3:de:aa:fc:f7:31:38:15:50:f5:11:1c:20: 20:be:84:72:3a:24:82:90:18:81:6a:3b:98:8b:9e:f2:17:2e: 51:9d:a4:75:81:37:28:b5:c7:6e:25:5c:b8:74:52:83:e1:54: 41:b8:04:5c:b6:2d:44:66:58:54:0d:0f:e8:70:5f:e2:d8:28: b1:99:2a:63:60:4a:b2:b0:e1:24:72:9f:18:ef:39:b7:ab:1c: bb:c3:d8:da:49:00:25:b3:8d:d9:7b:aa:dd:fb:c4:7f:9d:f9: 00:f4:71:78:29:23:89:69:d6:ff:00:0d:2f:88:39:cf:d9:09: be:c9:7f:29:1d:2f:e8:8d:aa:9c:3e:d3:c0:fb:68:4e:8b:c8: 3c:b6:2e:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBCRUQxMTAvBgNVBAUTKDQxOUYyN0E0Q0ZFQ0Y0NjFEQjgyRjZGOTA2NzY0RkI2 RDY1RjIzQ0YwHhcNMjUwODIzMDUzMjMwWhcNMjUwODMwMDUzMjMwWjAYMRYwFAYD VQQDEw02OGE5NTI2Zi1iZDZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArufi/rI4qgCKX/Iqb7z5cIAVOXRuxQ+GDad+HTN4581NWoqCWLiStNkFPTUQ C4syiayO2ILeZ7EhfT+TC9QZ3ypyTeox+z0XXu2hQxMVBQ7NoyyDJD4INKcvLrvI J4q77yZCLzPczgm4YuKLio2C3EeBf0pqdh+vazL1jZb1w7zI6QUsMtOLzB9AuAYy BmcM14xldPnEKLPfV0u59W1WME8PLHvMLlJ+kZU+EIR8KKaGjPsCBbjPsDHcjPvV FFqwpMFCszxb2tmIiDnypjaESsfeS+DRDtXCB2wPHteBiySe4v2X28/KUpQAmSSc w97pMgyfkOjS8xg+f3fn0Ya+mwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMGlEHYj 7QR5JBVHaIXyuRW+0KTQMB8GA1UdIwQYMBaAFEGfJ6TP7PRh24L2+QZ2T7bWXyPP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEJFRC8wOEUwRTA2NjFG MzgxMUVGQjA1OUI2NjVDNEY5QUUwMi9RWjhucE1fczlHSGJndmI1Qm5aUHR0WmZJ ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FaOG5wTV9zOUdIYmd2YjVCblpQdHRaZkk4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEJFRC8wOEUwRTA2NjFGMzgxMUVGQjA1OUI2NjVDNEY5QUUwMi9RWjhucE1fczlH SGJndmI1Qm5aUHR0WmZJODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDf/KO2/vb2ll/vLMgfbTNhC/qufqmwUr+15IL5GInE+W4sMv++qte fm4V/026csPj0Fv3psgXaIu69afXZ4MMqqDdyJaq7kJO22VS6myxbz/UKET038/p xzOdxNg+KtekNkJu48stXzPBvtQi2zmmFaPeqvz3MTgVUPURHCAgvoRyOiSCkBiB ajuYi57yFy5RnaR1gTcotcduJVy4dFKD4VRBuARcti1EZlhUDQ/ocF/i2CixmSpj YEqysOEkcp8Y7zm3qxy7w9jaSQAls43Ze6rd+8R/nfkA9HF4KSOJadb/AA0viDnP 2Qm+yX8pHS/ojaqcPtPA+2hOi8g8ti6c -----END CERTIFICATE-----Generated at Sat Aug 23 21:35:47 2025 by rpki-client