$ rpki-client -vvf rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft File: QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft (raw, json) Hash identifier: OQaGVjAUudN4qV/eWbVkoSGuuSkhpUa/1iJ6omZdksw= Subject key identifier: FF:96:E1:F2:9D:66:5A:30:85:7A:0D:12:F1:38:82:B5:1C:27:66:69 Authority key identifier: 40:EB:C2:5A:08:BA:5E:75:41:CE:14:2D:2B:C2:8A:E4:F8:28:8A:4B Certificate issuer: /CN=A9165C64/serialNumber=40EBC25A08BA5E7541CE142D2BC28AE4F8288A4B Certificate serial: 0CA9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft Manifest number: 0C9A Signing time: Fri 22 Aug 2025 18:21:43 +0000 Manifest this update: Fri 22 Aug 2025 18:21:43 +0000 Manifest next update: Fri 29 Aug 2025 18:21:43 +0000 Files and hashes: 1: QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl (hash: GfIg1cn7ZanWUrzjvOftg0Pthbz/PaOsJdvIX6szBOc=) 2: FD9E07EAAB1111EF89574855C4F9AE02.roa (hash: CJEgaP8KqXDJxOZP2RnxuUbrLWDCGR55rSwKPSomEHQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:21:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3241 (0xca9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165C64, serialNumber=40EBC25A08BA5E7541CE142D2BC28AE4F8288A4B Validity Not Before: Aug 22 18:21:43 2025 GMT Not After : Aug 29 18:21:43 2025 GMT Subject: CN=68a8b537-2069 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:3f:ab:0a:3a:16:4b:a8:f6:d2:85:e7:28:52: be:f8:de:34:70:1a:43:0b:1f:fc:04:3d:17:96:1e: 82:4c:7e:d4:0e:22:4e:c1:e2:44:bd:c0:32:e1:f2: e2:19:fe:3e:c5:c8:a5:b6:a1:13:6a:aa:52:01:2c: 2d:32:8a:61:05:0a:61:98:15:ad:a6:2e:e3:14:f8: 74:ee:d7:a5:7c:18:e6:27:a1:df:bc:1b:a9:06:f5: e2:7e:49:b5:b4:d1:01:c5:f0:76:ca:12:da:53:56: 38:56:36:40:4d:28:4f:ed:be:b6:1c:06:bd:2d:62: 31:27:17:06:e2:c9:4e:82:db:1a:67:6e:c1:85:5b: f1:53:7e:16:55:28:61:7f:4f:18:d5:60:08:66:a5: df:55:29:04:75:f0:66:f8:35:a4:9f:df:a7:76:88: fe:eb:15:fb:0d:76:19:85:5a:64:70:9f:70:11:a7: 21:ea:6d:bc:16:50:31:d7:27:40:4a:d3:0d:67:b7: df:42:1f:f3:ce:8f:82:de:73:a7:8a:6e:6a:ed:74: 70:c5:94:47:cf:39:8d:7b:a5:18:f2:fd:b6:72:89: 24:a8:2e:3e:6d:a7:35:66:2c:e7:9f:ae:ef:56:1d: 8a:ed:2c:70:08:d8:f8:a9:b6:0b:e7:f7:8d:14:2e: 56:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:96:E1:F2:9D:66:5A:30:85:7A:0D:12:F1:38:82:B5:1C:27:66:69 X509v3 Authority Key Identifier: keyid:40:EB:C2:5A:08:BA:5E:75:41:CE:14:2D:2B:C2:8A:E4:F8:28:8A:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:4f:10:3e:fd:c4:eb:01:bf:2f:02:23:ff:a6:b4:48:43:49: 78:9f:b2:23:e2:e9:86:0e:8a:0b:51:c6:28:23:7c:8a:b7:3c: b8:6e:02:50:e6:d3:58:a2:6c:5f:14:3b:d8:1b:ed:ca:a3:0f: 17:15:b5:16:9f:34:42:15:68:4f:03:b4:3c:00:95:9b:62:2b: 18:68:a7:85:b7:91:16:9a:03:a1:bd:58:9e:72:31:7f:47:d8: ab:24:b3:b8:a8:35:75:88:be:a2:aa:5b:4b:e6:d9:e3:d8:6c: 95:00:16:c5:21:42:03:ea:1f:c1:e5:b8:af:ac:9d:d0:c3:b8: 77:5d:7c:55:8c:17:6d:d3:06:2e:1e:c1:8d:6a:a0:d9:63:cf: cb:51:88:3a:b1:1d:6e:82:75:9c:34:b2:83:4e:ce:d3:cd:21: 11:de:b0:3b:da:01:d9:d5:8f:c8:76:5b:59:da:a1:57:1f:f3: 8c:ce:2e:12:a7:da:96:76:dd:d2:2a:c7:a0:30:57:c5:d1:65: c1:ce:b5:ff:e4:cb:cd:e2:e5:33:a9:ac:cc:d2:23:1a:1c:b0: 66:c9:c9:e2:cc:08:f9:f6:51:ed:e5:98:5d:c3:8d:6d:df:29: f9:39:17:5f:e7:b2:d7:97:72:bc:7a:26:67:fc:a2:13:c0:c6: 76:03:eb:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVDNjQxMTAvBgNVBAUTKDQwRUJDMjVBMDhCQTVFNzU0MUNFMTQyRDJCQzI4QUU0 RjgyODhBNEIwHhcNMjUwODIyMTgyMTQzWhcNMjUwODI5MTgyMTQzWjAYMRYwFAYD VQQDEw02OGE4YjUzNy0yMDY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3j+rCjoWS6j20oXnKFK++N40cBpDCx/8BD0Xlh6CTH7UDiJOweJEvcAy4fLi Gf4+xciltqETaqpSASwtMophBQphmBWtpi7jFPh07telfBjmJ6HfvBupBvXifkm1 tNEBxfB2yhLaU1Y4VjZATShP7b62HAa9LWIxJxcG4slOgtsaZ27BhVvxU34WVShh f08Y1WAIZqXfVSkEdfBm+DWkn9+ndoj+6xX7DXYZhVpkcJ9wEach6m28FlAx1ydA StMNZ7ffQh/zzo+C3nOnim5q7XRwxZRHzzmNe6UY8v22cokkqC4+bac1Ziznn67v Vh2K7SxwCNj4qbYL5/eNFC5W9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP+W4fKd ZlowhXoNEvE4grUcJ2ZpMB8GA1UdIwQYMBaAFEDrwloIul51Qc4ULSvCiuT4KIpL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUM2NC80MjVCNDIzQ0ZG QTMxMUU5ODczNUE2ODVDNEY5QUUwMi9RT3ZDV2dpNlhuVkJ6aFF0SzhLSzVQZ29p a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FPdkNXZ2k2WG5WQnpoUXRLOEtLNVBnb2lrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUM2NC80MjVCNDIzQ0ZGQTMxMUU5ODczNUE2ODVDNEY5QUUwMi9RT3ZDV2dpNlhu VkJ6aFF0SzhLSzVQZ29pa3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsTxA+/cTrAb8vAiP/prRIQ0l4n7Ij4umGDooLUcYoI3yKtzy4bgJQ 5tNYomxfFDvYG+3Kow8XFbUWnzRCFWhPA7Q8AJWbYisYaKeFt5EWmgOhvViecjF/ R9irJLO4qDV1iL6iqltL5tnj2GyVABbFIUID6h/B5bivrJ3Qw7h3XXxVjBdt0wYu HsGNaqDZY8/LUYg6sR1ugnWcNLKDTs7TzSER3rA72gHZ1Y/IdltZ2qFXH/OMzi4S p9qWdt3SKsegMFfF0WXBzrX/5MvN4uUzqazM0iMaHLBmycnizAj59lHt5Zhdw41t 3yn5ORdf57LXl3K8eiZn/KITwMZ2A+vM -----END CERTIFICATE-----Generated at Sat Aug 23 19:31:17 2025 by rpki-client