$ rpki-client -vvf rpki.apnic.net/member_repository/A9176E1D/FE8835BCF9F011EFB77A8C6EC4F9AE02/CqbkgyhCXhJMVhwqwYfIoZYkcRA.mft File: CqbkgyhCXhJMVhwqwYfIoZYkcRA.mft (raw, json) Hash identifier: ZUW1MRR3EGOyDPZ7rCmBGbxc9RpX828+VJ6imdbrJ18= Subject key identifier: 82:5B:47:85:CD:DC:CF:27:15:80:85:E6:26:4C:3C:CE:F8:78:B5:A9 Authority key identifier: 0A:A6:E4:83:28:42:5E:12:4C:56:1C:2A:C1:87:C8:A1:96:24:71:10 Certificate issuer: /CN=A9176E1D/serialNumber=0AA6E48328425E124C561C2AC187C8A196247110 Certificate serial: 81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqbkgyhCXhJMVhwqwYfIoZYkcRA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176E1D/FE8835BCF9F011EFB77A8C6EC4F9AE02/CqbkgyhCXhJMVhwqwYfIoZYkcRA.mft Manifest number: 7C Signing time: Sun 19 Oct 2025 10:08:16 +0000 Manifest this update: Sun 19 Oct 2025 10:08:15 +0000 Manifest next update: Sun 26 Oct 2025 10:08:15 +0000 Files and hashes: 1: CqbkgyhCXhJMVhwqwYfIoZYkcRA.crl (hash: DpsWIDdJSvd2/Rs6LQB6Vy1Lx0v0ibXL/M6zm4X/opw=) 2: 8A5CF8F0FB7411EF83C11685C4F9AE02.roa (hash: gNUxEstcyYM8bAYzOWKSq0siVBhwvrTxTLZTCsVvFik=) 3: 4C9617646D0611F0BBBF9039C4F9AE02.roa (hash: Vaj7yoUJUzeUA3126kxNxsmUyuPrhpFqRcjaAWEYWYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176E1D/FE8835BCF9F011EFB77A8C6EC4F9AE02/CqbkgyhCXhJMVhwqwYfIoZYkcRA.crl rsync://rpki.apnic.net/member_repository/A9176E1D/FE8835BCF9F011EFB77A8C6EC4F9AE02/CqbkgyhCXhJMVhwqwYfIoZYkcRA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqbkgyhCXhJMVhwqwYfIoZYkcRA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:08:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176E1D, serialNumber=0AA6E48328425E124C561C2AC187C8A196247110 Validity Not Before: Oct 19 10:08:15 2025 GMT Not After : Oct 26 10:08:15 2025 GMT Subject: CN=68f4b88f-e18d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:64:60:79:0a:b1:0a:8d:74:90:d8:04:00:3b: 17:33:88:b9:91:f4:02:f6:0c:e6:71:ac:e8:b3:20: dd:6d:75:24:a9:c3:bf:1b:c9:20:e7:44:52:ad:16: 46:3a:2e:8f:c6:15:fd:e7:8a:ff:ff:4b:32:b9:f7: 44:ba:ab:d3:2f:5b:d7:d3:60:b4:6a:b4:e0:fa:40: 2c:7f:06:bf:8d:53:1b:bb:58:b0:f5:87:f4:cb:57: f5:56:cf:c0:f9:2d:03:68:c3:99:5f:ed:fa:b9:0a: dc:40:b3:89:4b:b5:3e:0e:f7:0d:29:f0:39:d5:44: 69:c5:81:3c:3a:9c:da:fb:14:09:53:b9:9d:82:22: 22:fd:0b:b1:b6:2e:d7:62:6d:b5:04:5a:33:76:69: e4:11:d2:5a:12:e9:a5:fc:c6:d1:c6:13:31:f2:4e: 5a:ec:77:03:a5:b9:bd:13:19:da:8e:f4:9e:c7:e4: d1:2d:9e:df:63:85:0a:7c:bd:1b:e8:f6:eb:aa:37: 5a:8b:5f:ac:fd:8a:38:c1:b7:70:84:af:ef:d2:a7: 91:55:a0:6c:fa:44:07:d4:0b:0b:f8:f3:bd:0e:22: e2:85:76:26:d6:5e:e9:e8:fa:e5:17:43:12:b2:8b: 6d:b3:75:f1:bf:7a:f0:59:a9:d3:35:6d:18:51:e8: 51:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:5B:47:85:CD:DC:CF:27:15:80:85:E6:26:4C:3C:CE:F8:78:B5:A9 X509v3 Authority Key Identifier: keyid:0A:A6:E4:83:28:42:5E:12:4C:56:1C:2A:C1:87:C8:A1:96:24:71:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176E1D/FE8835BCF9F011EFB77A8C6EC4F9AE02/CqbkgyhCXhJMVhwqwYfIoZYkcRA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqbkgyhCXhJMVhwqwYfIoZYkcRA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176E1D/FE8835BCF9F011EFB77A8C6EC4F9AE02/CqbkgyhCXhJMVhwqwYfIoZYkcRA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:fb:b9:3c:dd:f8:10:5f:5d:20:34:d6:09:85:65:49:97:48: f5:ea:9d:50:81:1f:0c:ad:8a:4b:fc:fe:d0:ce:5d:e7:cb:37: 50:50:3d:72:19:7a:2e:92:c4:77:ac:3a:4a:81:e7:b4:1d:6d: 70:7c:5b:b7:75:0a:fb:e3:59:6f:ad:e3:1e:e8:ea:be:ca:17: 9f:bf:51:a4:26:35:8b:cc:db:c9:37:29:65:eb:a7:b4:87:5c: ce:c8:8b:53:f0:10:4d:b1:e8:a5:37:57:19:98:32:c9:b9:2b: ac:56:42:1c:77:a9:d1:5c:01:fc:99:83:d9:75:c2:d0:b2:33: 0b:2a:eb:88:51:cd:76:ed:22:3f:82:18:0e:cb:07:af:fc:5b: 6c:bb:b2:15:78:02:72:26:17:cb:f7:57:63:d0:14:fe:38:22: ed:15:6e:35:2c:1e:98:1a:62:a3:4e:50:75:df:99:4b:7c:f9: d5:64:2b:32:f0:d6:7b:03:7a:4f:60:7a:67:fa:23:36:b9:5f: fd:ef:6b:c3:7b:ae:7f:65:d5:04:22:9b:0e:44:e4:50:c0:db: 67:c0:e8:f5:62:08:8f:6f:d9:23:e7:37:12:91:a3:2d:68:a2: ca:8f:e9:74:05:22:db:62:93:b9:12:4f:8d:92:97:7a:6f:b1: 34:66:5b:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZFMUQxMTAvBgNVBAUTKDBBQTZFNDgzMjg0MjVFMTI0QzU2MUMyQUMxODdDOEEx OTYyNDcxMTAwHhcNMjUxMDE5MTAwODE1WhcNMjUxMDI2MTAwODE1WjAYMRYwFAYD VQQDEw02OGY0Yjg4Zi1lMThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz2RgeQqxCo10kNgEADsXM4i5kfQC9gzmcazosyDdbXUkqcO/G8kg50RSrRZG Oi6PxhX954r//0syufdEuqvTL1vX02C0arTg+kAsfwa/jVMbu1iw9Yf0y1f1Vs/A +S0DaMOZX+36uQrcQLOJS7U+DvcNKfA51URpxYE8Opza+xQJU7mdgiIi/Quxti7X Ym21BFozdmnkEdJaEuml/MbRxhMx8k5a7HcDpbm9ExnajvSex+TRLZ7fY4UKfL0b 6Pbrqjdai1+s/Yo4wbdwhK/v0qeRVaBs+kQH1AsL+PO9DiLihXYm1l7p6PrlF0MS sotts3Xxv3rwWanTNW0YUehRVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIJbR4XN 3M8nFYCF5iZMPM74eLWpMB8GA1UdIwQYMBaAFAqm5IMoQl4STFYcKsGHyKGWJHEQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkUxRC9GRTg4MzVCQ0Y5 RjAxMUVGQjc3QThDNkVDNEY5QUUwMi9DcWJrZ3loQ1hoSk1WaHdxd1lmSW9aWWtj UkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NxYmtneWhDWGhKTVZod3F3WWZJb1pZa2NSQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkUxRC9GRTg4MzVCQ0Y5RjAxMUVGQjc3QThDNkVDNEY5QUUwMi9DcWJrZ3loQ1ho Sk1WaHdxd1lmSW9aWWtjUkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAw+7k83fgQX10gNNYJhWVJl0j16p1QgR8MrYpL/P7Qzl3nyzdQUD1y GXouksR3rDpKgee0HW1wfFu3dQr741lvreMe6Oq+yhefv1GkJjWLzNvJNyll66e0 h1zOyItT8BBNseilN1cZmDLJuSusVkIcd6nRXAH8mYPZdcLQsjMLKuuIUc127SI/ ghgOywev/Ftsu7IVeAJyJhfL91dj0BT+OCLtFW41LB6YGmKjTlB135lLfPnVZCsy 8NZ7A3pPYHpn+iM2uV/972vDe65/ZdUEIpsORORQwNtnwOj1YgiPb9kj5zcSkaMt aKLKj+l0BSLbYpO5Ek+Nkpd6b7E0Zlui -----END CERTIFICATE-----Generated at Mon Oct 20 12:11:16 2025 by rpki-client