$ rpki-client -vvf rpki.apnic.net/member_repository/A9176E1D/FE8835BCF9F011EFB77A8C6EC4F9AE02/CqbkgyhCXhJMVhwqwYfIoZYkcRA.mft File: CqbkgyhCXhJMVhwqwYfIoZYkcRA.mft (raw, json) Hash identifier: gKEhDN45W8n0BcEBFiM2mmZTIw3t2lj0sFFHyIq/okc= Subject key identifier: AF:9D:F8:44:A1:52:B3:6F:A8:19:15:C1:53:49:AA:30:AD:4A:08:8C Authority key identifier: 0A:A6:E4:83:28:42:5E:12:4C:56:1C:2A:C1:87:C8:A1:96:24:71:10 Certificate issuer: /CN=A9176E1D/serialNumber=0AA6E48328425E124C561C2AC187C8A196247110 Certificate serial: 64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqbkgyhCXhJMVhwqwYfIoZYkcRA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176E1D/FE8835BCF9F011EFB77A8C6EC4F9AE02/CqbkgyhCXhJMVhwqwYfIoZYkcRA.mft Manifest number: 5F Signing time: Sat 23 Aug 2025 07:24:37 +0000 Manifest this update: Sat 23 Aug 2025 07:24:37 +0000 Manifest next update: Sat 30 Aug 2025 07:24:37 +0000 Files and hashes: 1: CqbkgyhCXhJMVhwqwYfIoZYkcRA.crl (hash: NNgZOqBCRtV00KsUwwaE4P+b0xXXj5BYu6Binf5uVVk=) 2: 8A5CF8F0FB7411EF83C11685C4F9AE02.roa (hash: gNUxEstcyYM8bAYzOWKSq0siVBhwvrTxTLZTCsVvFik=) 3: 4C9617646D0611F0BBBF9039C4F9AE02.roa (hash: Vaj7yoUJUzeUA3126kxNxsmUyuPrhpFqRcjaAWEYWYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176E1D/FE8835BCF9F011EFB77A8C6EC4F9AE02/CqbkgyhCXhJMVhwqwYfIoZYkcRA.crl rsync://rpki.apnic.net/member_repository/A9176E1D/FE8835BCF9F011EFB77A8C6EC4F9AE02/CqbkgyhCXhJMVhwqwYfIoZYkcRA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqbkgyhCXhJMVhwqwYfIoZYkcRA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:24:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176E1D, serialNumber=0AA6E48328425E124C561C2AC187C8A196247110 Validity Not Before: Aug 23 07:24:37 2025 GMT Not After : Aug 30 07:24:37 2025 GMT Subject: CN=68a96cb5-1903 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:36:76:f6:b2:4d:09:7c:29:ad:e2:5b:74:ff: 68:aa:36:5c:70:34:20:f0:02:40:1e:7b:33:11:39: 6f:8b:3d:a1:30:b8:a1:d7:ae:f8:3e:bc:be:a8:38: 4e:19:4e:f1:eb:1d:97:c8:b4:5e:90:00:ef:96:90: 37:4b:f5:1e:bb:cc:b1:cd:0a:6e:16:e0:58:17:ff: 04:1d:a6:d9:3c:75:9c:ba:d4:b8:ad:74:9a:45:7d: 87:da:9a:3d:8d:10:af:0a:a2:19:72:ea:d1:63:e2: cc:d3:ea:34:d3:e1:1e:6c:97:f6:3f:42:e0:c8:eb: 3f:a8:65:86:04:87:ac:5e:8f:4e:cb:f9:95:24:ab: f4:72:94:59:ab:e4:32:ea:98:40:43:80:2e:c5:91: a6:68:e9:d5:10:b8:5a:60:54:a4:97:7e:34:c8:9a: 4e:99:6a:22:6c:24:15:fd:9a:d9:9c:d5:b2:11:15: 0c:c9:56:e6:c1:e4:ab:3b:09:9f:78:65:6d:1e:72: e8:e2:71:d3:7b:56:d8:63:f9:d4:9e:27:5a:71:db: c5:f7:d0:3b:fd:dd:61:ba:6d:20:4d:77:08:f9:9b: af:ac:0e:ea:8a:be:72:3c:0b:bb:57:55:41:5d:63: 24:d6:c1:9b:a1:b6:cd:20:7c:60:7e:1a:31:52:ff: f2:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:9D:F8:44:A1:52:B3:6F:A8:19:15:C1:53:49:AA:30:AD:4A:08:8C X509v3 Authority Key Identifier: keyid:0A:A6:E4:83:28:42:5E:12:4C:56:1C:2A:C1:87:C8:A1:96:24:71:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176E1D/FE8835BCF9F011EFB77A8C6EC4F9AE02/CqbkgyhCXhJMVhwqwYfIoZYkcRA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqbkgyhCXhJMVhwqwYfIoZYkcRA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176E1D/FE8835BCF9F011EFB77A8C6EC4F9AE02/CqbkgyhCXhJMVhwqwYfIoZYkcRA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:5b:06:d9:7c:b8:88:43:95:c7:ed:1f:35:02:64:16:ef:33: ba:e8:bb:04:44:98:dc:50:76:36:bb:2f:51:c4:be:25:38:a2: 14:1c:bb:98:5a:0d:a2:d5:88:70:39:d2:44:ad:8b:e0:18:3a: 67:0d:a2:28:6f:84:64:e5:3f:f4:2f:45:0b:f0:6a:fa:61:dc: 68:e6:e5:26:07:0c:11:f9:53:3a:d5:b6:fb:3d:30:22:4e:b9: f9:9b:cf:cf:2a:65:c9:00:b3:ec:9c:e3:8a:0e:fd:68:b2:14: f4:5b:61:cb:ee:a3:f4:22:bb:22:e8:5b:c8:04:b2:9d:a5:ef: 0d:2e:83:8b:43:62:dc:19:31:33:a6:33:b5:d3:4a:34:19:36: 7b:e4:fe:a1:fd:6e:08:b3:28:8a:d8:08:c4:aa:dc:63:c2:c1: e9:f4:76:b2:de:0e:61:15:03:e3:09:d0:65:3c:f4:b4:15:57: 25:ef:02:fa:0a:da:d8:89:bb:d8:57:2d:1d:56:56:63:4b:f7: ab:96:31:ed:7d:10:d6:4f:29:df:89:8e:70:9c:8b:7e:3e:87: 6c:6a:45:cd:fd:1b:c5:24:f2:58:59:d9:af:76:34:4e:ae:03: ef:26:64:c5:c0:90:49:71:63:52:09:50:78:bb:3a:2b:61:0b: 3b:ba:74:51 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NkUxRDExMC8GA1UEBRMoMEFBNkU0ODMyODQyNUUxMjRDNTYxQzJBQzE4N0M4QTE5 NjI0NzExMDAeFw0yNTA4MjMwNzI0MzdaFw0yNTA4MzAwNzI0MzdaMBgxFjAUBgNV BAMTDTY4YTk2Y2I1LTE5MDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHNnb2sk0JfCmt4lt0/2iqNlxwNCDwAkAeezMROW+LPaEwuKHXrvg+vL6oOE4Z TvHrHZfItF6QAO+WkDdL9R67zLHNCm4W4FgX/wQdptk8dZy61LitdJpFfYfamj2N EK8Kohly6tFj4szT6jTT4R5sl/Y/QuDI6z+oZYYEh6xej07L+ZUkq/RylFmr5DLq mEBDgC7FkaZo6dUQuFpgVKSXfjTImk6ZaiJsJBX9mtmc1bIRFQzJVubB5Ks7CZ94 ZW0ecujicdN7Vthj+dSeJ1px28X30Dv93WG6bSBNdwj5m6+sDuqKvnI8C7tXVUFd YyTWwZuhts0gfGB+GjFS//KFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUr534RKFS s2+oGRXBU0mqMK1KCIwwHwYDVR0jBBgwFoAUCqbkgyhCXhJMVhwqwYfIoZYkcRAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2RTFEL0ZFODgzNUJDRjlG MDExRUZCNzdBOEM2RUM0RjlBRTAyL0NxYmtneWhDWGhKTVZod3F3WWZJb1pZa2NS QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ3Fia2d5aENYaEpNVmh3cXdZZklvWllrY1JBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2 RTFEL0ZFODgzNUJDRjlGMDExRUZCNzdBOEM2RUM0RjlBRTAyL0NxYmtneWhDWGhK TVZod3F3WWZJb1pZa2NSQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIhbBtl8uIhDlcftHzUCZBbvM7rouwREmNxQdja7L1HEviU4ohQcu5ha DaLViHA50kSti+AYOmcNoihvhGTlP/QvRQvwavph3Gjm5SYHDBH5UzrVtvs9MCJO ufmbz88qZckAs+yc44oO/WiyFPRbYcvuo/QiuyLoW8gEsp2l7w0ug4tDYtwZMTOm M7XTSjQZNnvk/qH9bgizKIrYCMSq3GPCwen0drLeDmEVA+MJ0GU89LQVVyXvAvoK 2tiJu9hXLR1WVmNL96uWMe19ENZPKd+JjnCci34+h2xqRc39G8Uk8lhZ2a92NE6u A+8mZMXAkElxY1IJUHi7OithCzu6dFE= -----END CERTIFICATE-----Generated at Sat Aug 23 18:03:59 2025 by rpki-client