$ rpki-client -vvf rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft File: KQX7MhK9YWRvt69jPqGiV7w6Pew.mft (raw, json) Hash identifier: oYIm2J9koks5B6BiggkNLnzW4tZFg1v5wj1QmcWuAag= Subject key identifier: DC:20:68:04:3A:8C:91:61:38:E5:53:71:8C:AC:21:31:13:3D:74:B9 Authority key identifier: 29:05:FB:32:12:BD:61:64:6F:B7:AF:63:3E:A1:A2:57:BC:3A:3D:EC Certificate issuer: /CN=A9156971/serialNumber=2905FB3212BD61646FB7AF633EA1A257BC3A3DEC Certificate serial: 34D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft Manifest number: 34D3 Signing time: Sat 18 Oct 2025 14:48:56 +0000 Manifest this update: Sat 18 Oct 2025 14:48:55 +0000 Manifest next update: Sat 25 Oct 2025 14:48:55 +0000 Files and hashes: 1: KQX7MhK9YWRvt69jPqGiV7w6Pew.crl (hash: WLHtcKHj6BqDr9FniW/x+m6nYJlTHj8cj+ea0ffsZQI=) 2: 4AF78A4AFEC611EF86B4765BC4F9AE02.roa (hash: 4eibZFZxCBojQ0XF3++/6D4cGjzEkC+cfaewXmXRSYk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.crl rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:48:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13529 (0x34d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156971, serialNumber=2905FB3212BD61646FB7AF633EA1A257BC3A3DEC Validity Not Before: Oct 18 14:48:55 2025 GMT Not After : Oct 25 14:48:55 2025 GMT Subject: CN=68f3a8d8-fd2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:d8:e5:d4:20:c8:26:65:37:74:cf:db:b1:0b: a6:e0:91:c7:de:18:b5:30:92:4e:26:d4:4e:65:9e: 83:d7:9b:10:c8:92:b3:82:6a:aa:bc:2b:52:d2:3f: 8b:8c:76:67:f0:23:27:66:60:8b:01:55:e3:d4:ea: 94:2a:0a:08:45:29:91:7c:46:7f:b6:cb:5f:4a:08: 63:21:3e:f0:2c:8b:bf:b8:6a:19:b8:fa:22:b6:a3: c7:f5:7e:b3:ea:37:d3:3a:30:bc:17:04:4c:30:e0: 18:a2:e4:93:03:89:68:16:6f:e5:f6:6b:e9:d8:f0: 93:5f:df:fd:c7:38:30:32:25:5a:f6:51:8b:f5:c8: 80:c3:f8:b2:f4:ce:55:f2:16:17:1d:be:ad:95:6a: b6:f4:9f:27:33:bc:aa:44:f5:0e:64:39:c3:a4:0f: 13:2e:c9:65:37:af:b7:6c:8b:c6:df:a9:e5:f2:db: 72:0c:60:a9:29:d4:ac:b4:94:a1:a7:2f:e8:c6:28: 2d:f5:af:8f:1e:93:18:86:21:a0:b2:43:b4:47:5d: b8:44:a0:57:02:27:d1:ee:0a:4d:e8:1a:c8:85:7f: 07:2e:7c:f8:79:8e:50:a9:cf:fb:76:8f:ac:75:f9: 86:66:fc:25:f5:38:45:2f:69:37:c1:13:3d:d7:8f: 5c:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:20:68:04:3A:8C:91:61:38:E5:53:71:8C:AC:21:31:13:3D:74:B9 X509v3 Authority Key Identifier: keyid:29:05:FB:32:12:BD:61:64:6F:B7:AF:63:3E:A1:A2:57:BC:3A:3D:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:87:34:7a:e6:9b:84:64:4f:d5:ea:47:bf:6f:2f:6b:58:f4: f8:f6:a0:0c:5d:af:5b:a8:eb:3c:4c:cd:85:dd:9d:88:72:b6: 35:6e:e3:cf:4b:29:25:23:a9:8a:2d:d1:c9:de:d7:65:94:c6: d8:97:13:6b:f5:a3:3f:0c:3f:34:6b:54:d2:11:ba:bd:42:d5: bc:59:1a:a0:f6:de:da:06:4a:6d:c1:8f:d2:89:d6:e0:1e:9a: 68:63:a0:df:cb:f0:1e:70:e3:bc:74:17:d5:7d:50:c4:27:61: c8:d4:b3:18:b5:43:28:6b:9a:3f:32:3e:e6:03:ca:c8:3d:5a: cb:80:23:90:8d:65:23:3e:32:4c:6f:f6:eb:dc:56:75:5b:08: e9:28:67:4b:86:18:d1:b1:e4:c5:2b:0f:36:3a:b5:79:70:69: 2b:cb:a8:e1:f8:75:a5:40:f2:66:b5:6c:d5:9c:b6:0c:ec:54: 2e:b8:c1:79:18:74:a5:66:17:3b:0b:c4:08:79:cb:a8:a4:a9: a6:2d:f1:26:4a:40:31:6f:5f:eb:65:da:bd:8c:24:53:6a:cd: 3b:b2:ee:4f:c2:1c:3d:af:a8:a3:b1:66:4b:d5:5e:a4:81:28: a8:0b:b4:b2:1d:e6:96:13:fb:07:f8:98:a9:36:64:0d:50:1e: 4f:c6:fe:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY5NzExMTAvBgNVBAUTKDI5MDVGQjMyMTJCRDYxNjQ2RkI3QUY2MzNFQTFBMjU3 QkMzQTNERUMwHhcNMjUxMDE4MTQ0ODU1WhcNMjUxMDI1MTQ0ODU1WjAYMRYwFAYD VQQDEw02OGYzYThkOC1mZDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5djl1CDIJmU3dM/bsQum4JHH3hi1MJJOJtROZZ6D15sQyJKzgmqqvCtS0j+L jHZn8CMnZmCLAVXj1OqUKgoIRSmRfEZ/tstfSghjIT7wLIu/uGoZuPoitqPH9X6z 6jfTOjC8FwRMMOAYouSTA4loFm/l9mvp2PCTX9/9xzgwMiVa9lGL9ciAw/iy9M5V 8hYXHb6tlWq29J8nM7yqRPUOZDnDpA8TLsllN6+3bIvG36nl8ttyDGCpKdSstJSh py/oxigt9a+PHpMYhiGgskO0R124RKBXAifR7gpN6BrIhX8HLnz4eY5Qqc/7do+s dfmGZvwl9ThFL2k3wRM9149c9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNwgaAQ6 jJFhOOVTcYysITETPXS5MB8GA1UdIwQYMBaAFCkF+zISvWFkb7evYz6hole8Oj3s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Njk3MS80OEMyMjE4NjFE OTIxMUUyQURCMzBCRjUwOEIwMkNEMi9LUVg3TWhLOVlXUnZ0NjlqUHFHaVY3dzZQ ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tRWDdNaEs5WVdSdnQ2OWpQcUdpVjd3NlBldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Njk3MS80OEMyMjE4NjFEOTIxMUUyQURCMzBCRjUwOEIwMkNEMi9LUVg3TWhLOVlX UnZ0NjlqUHFHaVY3dzZQZXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAahzR65puEZE/V6ke/by9rWPT49qAMXa9bqOs8TM2F3Z2IcrY1buPP SyklI6mKLdHJ3tdllMbYlxNr9aM/DD80a1TSEbq9QtW8WRqg9t7aBkptwY/Sidbg HppoY6Dfy/AecOO8dBfVfVDEJ2HI1LMYtUMoa5o/Mj7mA8rIPVrLgCOQjWUjPjJM b/br3FZ1WwjpKGdLhhjRseTFKw82OrV5cGkry6jh+HWlQPJmtWzVnLYM7FQuuMF5 GHSlZhc7C8QIecuopKmmLfEmSkAxb1/rZdq9jCRTas07su5Pwhw9r6ijsWZL1V6k gSioC7SyHeaWE/sH+JipNmQNUB5Pxv5+ -----END CERTIFICATE-----Generated at Mon Oct 20 16:14:11 2025 by rpki-client