$ rpki-client -vvf rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft File: QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft (raw, json) Hash identifier: l8AmTpE1x9cHT2ibE4/N4M1PX6givb6CoeALJ5+nQMY= Subject key identifier: 2E:83:CA:09:38:A6:6F:C8:A2:F4:46:27:09:E5:A7:6D:22:85:D7:EE Authority key identifier: 40:2D:1D:0B:D9:1F:43:80:2C:7A:0D:70:73:61:88:BE:BA:0A:08:12 Certificate issuer: /CN=A917FACB/serialNumber=402D1D0BD91F43802C7A0D70736188BEBA0A0812 Certificate serial: 89 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QC0dC9kfQ4Aseg1wc2GIvroKCBI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft Manifest number: 87 Signing time: Sat 23 Aug 2025 06:52:18 +0000 Manifest this update: Sat 23 Aug 2025 06:52:17 +0000 Manifest next update: Sat 30 Aug 2025 06:52:17 +0000 Files and hashes: 1: QC0dC9kfQ4Aseg1wc2GIvroKCBI.crl (hash: olAZwHLGbZZEdJEKuKtTwQWvPG2UwxNudXe+etFt738=) 2: 817FDF1EB46511EF86BEAC6BC4F9AE02.roa (hash: k7rH1FXyr6kI4qM4Y34KT+7MpF/68ClavEu5cICvIzc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.crl rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QC0dC9kfQ4Aseg1wc2GIvroKCBI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:52:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 137 (0x89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FACB, serialNumber=402D1D0BD91F43802C7A0D70736188BEBA0A0812 Validity Not Before: Aug 23 06:52:17 2025 GMT Not After : Aug 30 06:52:17 2025 GMT Subject: CN=68a96521-b575 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:3f:4d:6d:e1:e2:fa:94:ef:13:a4:55:02:91: e6:28:36:24:ec:ec:0b:e6:34:6f:e6:22:dd:83:2f: a6:c7:1e:73:82:a8:28:c4:c9:f3:3b:4e:f9:a7:71: c3:59:04:0a:ce:51:fe:b6:e6:c4:6f:28:03:14:a9: ee:19:19:2b:98:4d:ba:06:4e:d2:89:b4:e4:9c:fe: b5:bb:6f:76:22:ba:dd:f6:00:97:e8:51:3c:27:1f: ad:56:50:d0:09:4b:6e:40:2a:58:c8:18:43:48:51: 27:4e:42:61:2e:aa:09:d6:04:d3:d0:75:59:e9:4d: 95:ac:8d:f3:ee:34:79:59:d9:f7:7b:1e:f8:b6:bd: af:43:a4:54:0f:e1:ca:c6:0f:26:ff:fe:d6:ed:6d: 29:52:ad:98:f5:22:bd:56:6e:a5:bc:dd:4c:15:6e: 90:d1:85:06:25:19:4c:3e:40:ea:87:17:14:07:f2: 9a:d2:f6:7e:4d:88:6e:ff:d3:82:d6:ee:71:6e:7f: 01:06:7b:08:41:11:ae:1a:68:fe:c5:69:59:17:55: 3f:ed:35:06:3e:e8:c7:91:92:97:9f:1c:5f:43:e2: 72:02:63:ef:92:a5:b4:93:b7:b8:4e:a0:a7:8b:fc: b0:fa:b6:c7:ce:8d:8f:f7:2f:d9:f7:39:33:9e:2e: 14:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:83:CA:09:38:A6:6F:C8:A2:F4:46:27:09:E5:A7:6D:22:85:D7:EE X509v3 Authority Key Identifier: keyid:40:2D:1D:0B:D9:1F:43:80:2C:7A:0D:70:73:61:88:BE:BA:0A:08:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QC0dC9kfQ4Aseg1wc2GIvroKCBI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:ea:f3:8c:2a:96:92:d2:d5:f9:33:b9:a0:1d:46:d8:5f:5b: 21:76:8f:a6:3b:2c:e9:97:73:5a:44:41:db:d3:7b:c3:6b:ed: 06:94:38:ae:5d:e1:68:0c:f4:42:b7:dc:36:f8:e3:8f:b2:6f: 79:54:7c:e0:21:fb:00:73:39:6e:9a:71:5a:ad:3a:31:41:e7: 10:76:ad:e6:29:fc:0d:a4:10:74:bb:14:67:9c:62:c7:b4:27: 81:44:17:35:21:c8:24:cc:9b:b1:49:7b:06:e9:d3:ea:c4:df: 23:01:2d:4f:b2:0e:29:9e:e5:d0:aa:77:48:af:d6:40:7d:60: c8:b6:59:66:1d:d2:d1:98:ee:02:73:06:db:5e:a8:53:33:ed: d1:ac:73:56:b9:2e:e3:1b:42:a6:4d:6f:ea:9f:b2:ab:3f:00: b8:fc:18:44:6f:50:57:dc:0b:15:57:e7:b2:63:31:e1:7c:f4: b5:2c:f7:53:ae:b4:10:86:22:6f:4d:90:f6:48:93:35:2e:b7: a7:fb:6f:06:7f:13:2c:a4:15:1c:bc:a1:71:36:f3:63:c5:f0: cd:ff:d2:a4:47:bf:f5:e5:ea:74:9c:88:ae:dc:1b:2d:1c:86: ca:23:94:d7:09:9f:2d:ce:e0:49:e7:d9:e4:9c:b2:70:a4:03: f0:99:46:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZBQ0IxMTAvBgNVBAUTKDQwMkQxRDBCRDkxRjQzODAyQzdBMEQ3MDczNjE4OEJF QkEwQTA4MTIwHhcNMjUwODIzMDY1MjE3WhcNMjUwODMwMDY1MjE3WjAYMRYwFAYD VQQDEw02OGE5NjUyMS1iNTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApz9NbeHi+pTvE6RVApHmKDYk7OwL5jRv5iLdgy+mxx5zgqgoxMnzO075p3HD WQQKzlH+tubEbygDFKnuGRkrmE26Bk7SibTknP61u292Irrd9gCX6FE8Jx+tVlDQ CUtuQCpYyBhDSFEnTkJhLqoJ1gTT0HVZ6U2VrI3z7jR5Wdn3ex74tr2vQ6RUD+HK xg8m//7W7W0pUq2Y9SK9Vm6lvN1MFW6Q0YUGJRlMPkDqhxcUB/Ka0vZ+TYhu/9OC 1u5xbn8BBnsIQRGuGmj+xWlZF1U/7TUGPujHkZKXnxxfQ+JyAmPvkqW0k7e4TqCn i/yw+rbHzo2P9y/Z9zkzni4UUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC6Dygk4 pm/IovRGJwnlp20ihdfuMB8GA1UdIwQYMBaAFEAtHQvZH0OALHoNcHNhiL66CggS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkFDQi8xQzk0NkFGMkI0 NjUxMUVGOUJGQkFBNjdDNEY5QUUwMi9RQzBkQzlrZlE0QXNlZzF3YzJHSXZyb0tD QkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FDMGRDOWtmUTRBc2VnMXdjMkdJdnJvS0NCSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RkFDQi8xQzk0NkFGMkI0NjUxMUVGOUJGQkFBNjdDNEY5QUUwMi9RQzBkQzlrZlE0 QXNlZzF3YzJHSXZyb0tDQkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBg6vOMKpaS0tX5M7mgHUbYX1shdo+mOyzpl3NaREHb03vDa+0GlDiu XeFoDPRCt9w2+OOPsm95VHzgIfsAczlumnFarToxQecQdq3mKfwNpBB0uxRnnGLH tCeBRBc1IcgkzJuxSXsG6dPqxN8jAS1Psg4pnuXQqndIr9ZAfWDItllmHdLRmO4C cwbbXqhTM+3RrHNWuS7jG0KmTW/qn7KrPwC4/BhEb1BX3AsVV+eyYzHhfPS1LPdT rrQQhiJvTZD2SJM1Lren+28GfxMspBUcvKFxNvNjxfDN/9KkR7/15ep0nIiu3Bst HIbKI5TXCZ8tzuBJ59nknLJwpAPwmUYd -----END CERTIFICATE-----Generated at Sat Aug 23 16:10:20 2025 by rpki-client