$ rpki-client -vvf rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft File: QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft (raw, json) Hash identifier: y2/iEoAUPi0a1ApLn1NyIdxTL8bvhoU7GvkFY+lssxc= Subject key identifier: 1F:EE:DE:5B:BB:2F:6B:F2:2E:5B:56:0B:8C:9E:2A:C2:7B:75:DB:5F Authority key identifier: 40:2D:1D:0B:D9:1F:43:80:2C:7A:0D:70:73:61:88:BE:BA:0A:08:12 Certificate issuer: /CN=A917FACB/serialNumber=402D1D0BD91F43802C7A0D70736188BEBA0A0812 Certificate serial: A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QC0dC9kfQ4Aseg1wc2GIvroKCBI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft Manifest number: A6 Signing time: Sun 19 Oct 2025 09:29:52 +0000 Manifest this update: Sun 19 Oct 2025 09:29:51 +0000 Manifest next update: Sun 26 Oct 2025 09:29:51 +0000 Files and hashes: 1: QC0dC9kfQ4Aseg1wc2GIvroKCBI.crl (hash: tl95iTK6x0VvqUSiDcdOhULSDiUVE7afU3yX1BNoVdg=) 2: 817FDF1EB46511EF86BEAC6BC4F9AE02.roa (hash: wJ3laQ7nVagMEJPomzazSfS6B/Yq1uHmjJhmSe/2HtA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.crl rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QC0dC9kfQ4Aseg1wc2GIvroKCBI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:29:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 169 (0xa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FACB, serialNumber=402D1D0BD91F43802C7A0D70736188BEBA0A0812 Validity Not Before: Oct 19 09:29:51 2025 GMT Not After : Oct 26 09:29:51 2025 GMT Subject: CN=68f4af90-86a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:71:ea:54:64:10:88:30:cf:90:b2:9c:b7:50: 5d:45:93:c0:dd:7e:a0:84:7e:6c:b0:ab:ee:d2:84: 9d:e7:5c:3c:fd:77:fc:c1:01:f0:fa:f2:0b:2c:1a: d0:2a:9e:5a:8a:a6:61:b9:70:9a:5a:0f:16:c9:7f: a9:a3:52:c2:d3:b9:2b:0a:b1:7c:ff:81:18:2b:30: 73:af:b4:50:a4:4b:bb:e8:a1:7c:57:cb:1a:39:aa: 4d:2d:d2:2f:5d:2a:88:b9:c7:55:dc:cf:de:02:d8: 56:3e:a3:83:87:02:7b:53:2b:83:98:56:76:fe:d7: 6a:97:be:ba:84:30:68:70:ac:47:92:4a:1d:b4:08: 5f:f1:b2:b0:4d:2e:24:97:eb:09:da:9b:5a:04:5c: 45:5f:c3:47:e9:a4:95:03:a9:aa:d6:fc:3f:b5:3c: 12:e2:2c:6b:ee:cf:74:1d:56:42:ba:2b:11:07:57: 92:1a:78:22:12:58:0f:a4:e1:2b:bd:43:b1:8c:be: 0b:28:6a:a5:9e:9a:47:3c:38:ac:1e:19:3c:f2:e8: 7a:c3:2c:d9:9c:fb:de:77:a3:ce:87:9c:78:2a:2a: 00:54:47:a7:3d:dc:58:99:19:f2:6b:13:bf:5a:57: b3:67:96:60:8c:d7:cf:e8:6c:d6:1a:b2:e8:a2:3a: e2:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:EE:DE:5B:BB:2F:6B:F2:2E:5B:56:0B:8C:9E:2A:C2:7B:75:DB:5F X509v3 Authority Key Identifier: keyid:40:2D:1D:0B:D9:1F:43:80:2C:7A:0D:70:73:61:88:BE:BA:0A:08:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QC0dC9kfQ4Aseg1wc2GIvroKCBI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:7b:ca:2a:00:a5:ef:41:fb:54:1f:d3:10:0d:73:93:99:5a: 2f:c0:11:67:13:70:f5:b8:14:a5:2b:0f:7c:b4:ca:b6:db:3d: 13:4a:d2:4a:b7:f1:82:7b:6e:21:df:1e:b0:01:96:e5:68:7b: 22:0a:0d:21:8c:5a:07:6f:93:8d:f6:b7:ae:86:f3:c4:ea:76: 08:8a:9f:cb:3f:d7:1d:b5:33:dd:f8:34:71:ed:64:da:43:0d: db:11:0b:bb:2e:92:52:85:59:62:ee:b5:95:76:74:d2:ec:d5: c2:12:10:e1:84:40:01:84:18:81:f7:f9:c0:68:d1:a6:9a:5b: 27:07:7f:37:14:ac:3b:b5:df:41:d1:7b:62:95:0f:e2:35:71: 93:4a:dd:33:17:43:a9:23:f8:e3:6a:e2:ca:c7:37:0b:41:14: e1:1b:14:64:4d:22:fa:c3:97:25:db:1f:fd:84:9f:f1:7a:12: 54:56:08:73:ef:47:66:9a:8d:d5:3d:c2:ba:f0:5e:8b:e9:c8: dd:97:ef:b8:42:ed:be:a6:25:4a:04:85:d4:80:73:ba:95:29: f4:68:59:dc:56:f0:28:ba:fb:f8:dd:2e:5d:5b:ac:cf:bd:31: 97:4b:93:2b:a5:be:33:e3:05:6f:47:3a:1c:91:5e:82:63:59: 86:74:3a:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZBQ0IxMTAvBgNVBAUTKDQwMkQxRDBCRDkxRjQzODAyQzdBMEQ3MDczNjE4OEJF QkEwQTA4MTIwHhcNMjUxMDE5MDkyOTUxWhcNMjUxMDI2MDkyOTUxWjAYMRYwFAYD VQQDEw02OGY0YWY5MC04NmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAonHqVGQQiDDPkLKct1BdRZPA3X6ghH5ssKvu0oSd51w8/Xf8wQHw+vILLBrQ Kp5aiqZhuXCaWg8WyX+po1LC07krCrF8/4EYKzBzr7RQpEu76KF8V8saOapNLdIv XSqIucdV3M/eAthWPqODhwJ7UyuDmFZ2/tdql766hDBocKxHkkodtAhf8bKwTS4k l+sJ2ptaBFxFX8NH6aSVA6mq1vw/tTwS4ixr7s90HVZCuisRB1eSGngiElgPpOEr vUOxjL4LKGqlnppHPDisHhk88uh6wyzZnPved6POh5x4KioAVEenPdxYmRnyaxO/ WlezZ5ZgjNfP6GzWGrLoojriSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB/u3lu7 L2vyLltWC4yeKsJ7ddtfMB8GA1UdIwQYMBaAFEAtHQvZH0OALHoNcHNhiL66CggS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkFDQi8xQzk0NkFGMkI0 NjUxMUVGOUJGQkFBNjdDNEY5QUUwMi9RQzBkQzlrZlE0QXNlZzF3YzJHSXZyb0tD QkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FDMGRDOWtmUTRBc2VnMXdjMkdJdnJvS0NCSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RkFDQi8xQzk0NkFGMkI0NjUxMUVGOUJGQkFBNjdDNEY5QUUwMi9RQzBkQzlrZlE0 QXNlZzF3YzJHSXZyb0tDQkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCze8oqAKXvQftUH9MQDXOTmVovwBFnE3D1uBSlKw98tMq22z0TStJK t/GCe24h3x6wAZblaHsiCg0hjFoHb5ON9reuhvPE6nYIip/LP9cdtTPd+DRx7WTa Qw3bEQu7LpJShVli7rWVdnTS7NXCEhDhhEABhBiB9/nAaNGmmlsnB383FKw7td9B 0XtilQ/iNXGTSt0zF0OpI/jjauLKxzcLQRThGxRkTSL6w5cl2x/9hJ/xehJUVghz 70dmmo3VPcK68F6L6cjdl++4Qu2+piVKBIXUgHO6lSn0aFncVvAouvv43S5dW6zP vTGXS5Mrpb4z4wVvRzockV6CY1mGdDqV -----END CERTIFICATE-----Generated at Mon Oct 20 20:43:31 2025 by rpki-client