$ rpki-client -vvf rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft File: KQX7MhK9YWRvt69jPqGiV7w6Pew.mft (raw, json) Hash identifier: V/WvRpbwucLtQHNH4lsYNon6FXBST/gilqhV6IgmFAk= Subject key identifier: 19:B8:D5:91:5B:B0:71:6D:FF:CF:AA:22:97:3E:AC:BC:B6:66:50:8F Authority key identifier: 29:05:FB:32:12:BD:61:64:6F:B7:AF:63:3E:A1:A2:57:BC:3A:3D:EC Certificate issuer: /CN=A9156971/serialNumber=2905FB3212BD61646FB7AF633EA1A257BC3A3DEC Certificate serial: 34BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft Manifest number: 34B6 Signing time: Fri 22 Aug 2025 14:45:08 +0000 Manifest this update: Fri 22 Aug 2025 14:45:07 +0000 Manifest next update: Fri 29 Aug 2025 14:45:07 +0000 Files and hashes: 1: KQX7MhK9YWRvt69jPqGiV7w6Pew.crl (hash: P7wuqqJjPCan/8NoyMoOLJNQqm5TOBb0P7c7dx4GiKA=) 2: 4AF78A4AFEC611EF86B4765BC4F9AE02.roa (hash: 4eibZFZxCBojQ0XF3++/6D4cGjzEkC+cfaewXmXRSYk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.crl rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:45:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13500 (0x34bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156971, serialNumber=2905FB3212BD61646FB7AF633EA1A257BC3A3DEC Validity Not Before: Aug 22 14:45:07 2025 GMT Not After : Aug 29 14:45:07 2025 GMT Subject: CN=68a88273-2906 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:bd:32:4f:69:95:72:55:96:bd:d2:ee:be:c2: 1c:d4:ea:ff:a8:9a:b6:97:2f:ea:4d:ae:77:39:fc: 28:ec:92:5c:f1:99:c0:21:48:4c:24:2c:46:77:ba: 62:10:e8:6b:b5:5e:b3:51:b7:4d:60:35:bd:92:f5: 62:13:b6:5f:66:22:ee:69:78:e4:91:35:13:18:ae: 9d:fd:4a:39:73:2d:2c:c0:df:a1:14:59:a7:e3:78: 75:a3:05:e4:43:85:a5:8c:1a:ec:4c:2a:72:be:40: ff:02:03:7e:4a:40:07:1f:68:a9:71:43:d5:1d:26: 06:76:09:5d:b5:97:29:86:da:99:f6:07:fb:ef:91: e8:ec:10:b2:1f:00:05:6f:3e:45:b7:1b:14:2f:e7: 6c:a4:f0:50:33:93:36:b6:63:59:9e:ec:4f:32:a7: 41:82:14:71:4b:d9:58:5a:f8:45:d7:5e:4a:c9:de: fe:4b:42:54:e4:08:f9:de:e4:27:35:95:88:77:e0: c4:27:b1:5a:16:42:fb:58:b2:cb:aa:69:53:07:5e: af:d2:f0:83:52:a3:a2:22:d6:aa:6f:78:a7:07:35: 3a:e2:3c:c0:38:5a:e1:56:e9:33:23:13:71:23:08: 4c:2f:6b:12:5c:9b:88:5e:60:d9:ae:a4:b7:03:91: cb:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:B8:D5:91:5B:B0:71:6D:FF:CF:AA:22:97:3E:AC:BC:B6:66:50:8F X509v3 Authority Key Identifier: keyid:29:05:FB:32:12:BD:61:64:6F:B7:AF:63:3E:A1:A2:57:BC:3A:3D:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:88:95:08:d3:62:cf:f5:32:45:a4:f8:8e:03:60:97:e2:9a: 55:3e:37:6f:94:5a:77:f5:02:40:56:02:7f:97:65:82:ad:14: 34:8f:3d:6a:e2:d4:23:84:b7:14:c2:fc:4e:3e:54:61:5e:a1: d5:9b:bd:b2:9d:72:ba:44:86:fd:89:44:c9:02:87:9f:05:0d: 6c:b4:2b:a1:28:97:c7:4b:16:2b:2c:a8:58:05:f9:98:35:20: 2e:11:21:85:37:18:0c:12:e0:42:f2:8a:37:a7:57:bb:ad:15: 25:60:c7:15:89:49:77:4c:eb:70:a2:b8:2f:eb:b7:fb:d9:fb: fb:5e:a5:05:4c:df:2d:bd:1e:a0:27:fd:83:31:d7:c9:48:02: c2:de:f2:35:7f:b8:56:0e:23:e7:a0:0d:1b:78:c5:6b:94:7f: a7:5e:ba:10:a4:5a:d2:f1:8f:15:a7:2b:55:53:74:6e:71:6c: f8:f5:50:59:c2:0b:e8:16:f9:48:ee:d8:43:27:14:a9:0a:0f: 1b:3f:f3:a1:59:93:79:ac:fa:db:f8:90:9e:3d:c5:56:87:6a: 08:b2:39:fd:19:06:3d:06:fd:e0:aa:da:53:ba:58:1d:34:0c: 00:43:cd:63:cb:45:22:1a:bc:4b:bb:ff:15:61:f3:71:e4:30: 3b:b2:d5:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY5NzExMTAvBgNVBAUTKDI5MDVGQjMyMTJCRDYxNjQ2RkI3QUY2MzNFQTFBMjU3 QkMzQTNERUMwHhcNMjUwODIyMTQ0NTA3WhcNMjUwODI5MTQ0NTA3WjAYMRYwFAYD VQQDEw02OGE4ODI3My0yOTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9r0yT2mVclWWvdLuvsIc1Or/qJq2ly/qTa53Ofwo7JJc8ZnAIUhMJCxGd7pi EOhrtV6zUbdNYDW9kvViE7ZfZiLuaXjkkTUTGK6d/Uo5cy0swN+hFFmn43h1owXk Q4WljBrsTCpyvkD/AgN+SkAHH2ipcUPVHSYGdgldtZcphtqZ9gf775Ho7BCyHwAF bz5FtxsUL+dspPBQM5M2tmNZnuxPMqdBghRxS9lYWvhF115Kyd7+S0JU5Aj53uQn NZWId+DEJ7FaFkL7WLLLqmlTB16v0vCDUqOiItaqb3inBzU64jzAOFrhVukzIxNx IwhML2sSXJuIXmDZrqS3A5HLKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBm41ZFb sHFt/8+qIpc+rLy2ZlCPMB8GA1UdIwQYMBaAFCkF+zISvWFkb7evYz6hole8Oj3s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Njk3MS80OEMyMjE4NjFE OTIxMUUyQURCMzBCRjUwOEIwMkNEMi9LUVg3TWhLOVlXUnZ0NjlqUHFHaVY3dzZQ ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tRWDdNaEs5WVdSdnQ2OWpQcUdpVjd3NlBldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Njk3MS80OEMyMjE4NjFEOTIxMUUyQURCMzBCRjUwOEIwMkNEMi9LUVg3TWhLOVlX UnZ0NjlqUHFHaVY3dzZQZXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtiJUI02LP9TJFpPiOA2CX4ppVPjdvlFp39QJAVgJ/l2WCrRQ0jz1q 4tQjhLcUwvxOPlRhXqHVm72ynXK6RIb9iUTJAoefBQ1stCuhKJfHSxYrLKhYBfmY NSAuESGFNxgMEuBC8oo3p1e7rRUlYMcViUl3TOtworgv67f72fv7XqUFTN8tvR6g J/2DMdfJSALC3vI1f7hWDiPnoA0beMVrlH+nXroQpFrS8Y8VpytVU3RucWz49VBZ wgvoFvlI7thDJxSpCg8bP/OhWZN5rPrb+JCePcVWh2oIsjn9GQY9Bv3gqtpTulgd NAwAQ81jy0UiGrxLu/8VYfNx5DA7stVO -----END CERTIFICATE-----Generated at Sat Aug 23 16:42:24 2025 by rpki-client