$ rpki-client -vvf rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.mft File: Q_dCP5PWuglpQFn7I974Uo0mSZ0.mft (raw, json) Hash identifier: KsfwzOL44cPbml9VccZgJv+hXbIBzNKhJkivgU8Ue8M= Subject key identifier: DA:70:22:6A:D9:22:23:28:78:BF:01:4C:00:DE:48:E2:E9:B1:9B:92 Authority key identifier: 43:F7:42:3F:93:D6:BA:09:69:40:59:FB:23:DE:F8:52:8D:26:49:9D Certificate issuer: /CN=A9186D9F/serialNumber=43F7423F93D6BA09694059FB23DEF8528D26499D Certificate serial: 0100 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q_dCP5PWuglpQFn7I974Uo0mSZ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.mft Manifest number: FC Signing time: Sun 19 Oct 2025 08:04:15 +0000 Manifest this update: Sun 19 Oct 2025 08:04:15 +0000 Manifest next update: Sun 26 Oct 2025 08:04:15 +0000 Files and hashes: 1: Q_dCP5PWuglpQFn7I974Uo0mSZ0.crl (hash: VzXJRG9UIhcPn8iYkNvrn6X52PV9Wna18x8WO9jWQaI=) 2: 17EA0C7A38DF11EF8EEDB25EC4F9AE02.roa (hash: w+HKOaC0+jfhSxKVMJ9ShZE05MyOqwYCqtIs1clN5KI=) 3: A63A2DFA2F5411EF9A12027FC4F9AE02.roa (hash: wkNRLxYMTSQ9zGepk4yzqzlqbEMp0dmX1JQWykvEvPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.crl rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q_dCP5PWuglpQFn7I974Uo0mSZ0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:04:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 256 (0x100) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186D9F, serialNumber=43F7423F93D6BA09694059FB23DEF8528D26499D Validity Not Before: Oct 19 08:04:15 2025 GMT Not After : Oct 26 08:04:15 2025 GMT Subject: CN=68f49b7f-870c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:dc:36:0a:96:d3:5b:6f:a9:95:3b:32:b2:f0: ca:cd:29:e4:e6:8b:e7:cb:36:6c:32:72:8d:4d:54: 51:6b:aa:a6:73:55:e8:65:bc:55:27:22:bc:3d:e6: a6:df:a4:91:92:35:2f:4e:f4:7f:49:6b:bd:be:f4: d2:ea:58:91:0c:ec:87:00:87:b2:d2:a3:f2:25:96: c9:4d:ca:93:07:eb:4c:23:32:be:7d:e9:d0:dd:e9: 7a:48:4d:2f:c3:4d:48:62:61:36:7d:4e:47:93:03: b0:c1:af:70:b3:cd:70:47:7a:b0:be:29:ce:de:15: 98:7b:1b:2e:ed:48:0a:f8:72:48:81:f5:51:ce:7c: 16:55:8f:4d:69:c8:da:1a:14:db:37:b0:72:96:bc: c5:f1:a0:e4:79:9d:65:63:7f:3e:a1:ae:67:3b:87: f5:6d:d3:6c:30:92:40:c5:27:2f:24:5a:cc:9e:f4: f1:4a:42:8d:79:ad:c7:a1:7e:e7:af:fb:df:72:21: 33:a8:3a:f7:48:99:a9:24:5e:2a:56:43:9b:4d:bb: db:af:6b:5a:bb:16:9c:d0:fe:62:ce:0f:6a:e6:72: ff:06:58:59:4f:1c:cd:73:d5:7b:ff:81:6a:53:a0: ea:4b:79:12:90:f6:0d:e6:1b:f7:1c:14:79:c8:6b: a6:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:70:22:6A:D9:22:23:28:78:BF:01:4C:00:DE:48:E2:E9:B1:9B:92 X509v3 Authority Key Identifier: keyid:43:F7:42:3F:93:D6:BA:09:69:40:59:FB:23:DE:F8:52:8D:26:49:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q_dCP5PWuglpQFn7I974Uo0mSZ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:2d:2e:7e:83:30:5b:fd:fa:8b:cc:c4:7e:36:a6:fb:15:af: 45:92:3f:cd:ac:99:b2:6c:68:e8:73:fc:fd:26:95:f9:79:36: b0:ee:c5:fb:de:40:be:83:ea:3e:c8:fa:45:d6:ac:eb:3c:07: c4:74:6c:f4:8d:17:9f:84:9b:f9:9b:7e:16:b0:11:be:c1:b7: 12:81:28:48:52:17:24:71:ca:70:8e:39:d6:c0:0c:a4:63:35: 6d:0f:20:16:af:92:e7:1a:85:e1:68:23:e8:a9:b5:2a:ca:57: 97:db:ba:fe:77:93:72:7a:44:06:56:79:d9:f4:25:e2:06:13: 36:cc:9f:04:d1:41:c6:57:85:db:9e:17:7f:e6:3c:12:62:19: 06:dc:28:6f:51:d1:96:9d:c9:2c:26:35:43:4e:94:98:fa:ba: 52:56:a4:39:62:db:72:88:04:eb:96:30:18:6a:e8:ae:87:52: 1a:65:cc:16:e5:12:6b:2a:a8:83:19:ac:7b:60:b9:a7:2c:89: 53:dd:6b:82:18:2a:1b:09:55:fd:69:d3:1b:fc:ff:a3:dd:72: 50:9b:26:a7:59:7d:d5:f6:99:c6:e6:19:06:29:90:b7:f0:65: a9:23:f7:a5:a2:07:15:1a:40:6f:9e:bc:29:69:6d:be:e2:8a: 6a:83:cf:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZEOUYxMTAvBgNVBAUTKDQzRjc0MjNGOTNENkJBMDk2OTQwNTlGQjIzREVGODUy OEQyNjQ5OUQwHhcNMjUxMDE5MDgwNDE1WhcNMjUxMDI2MDgwNDE1WjAYMRYwFAYD VQQDEw02OGY0OWI3Zi04NzBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9w2CpbTW2+plTsysvDKzSnk5ovnyzZsMnKNTVRRa6qmc1XoZbxVJyK8Peam 36SRkjUvTvR/SWu9vvTS6liRDOyHAIey0qPyJZbJTcqTB+tMIzK+fenQ3el6SE0v w01IYmE2fU5HkwOwwa9ws81wR3qwvinO3hWYexsu7UgK+HJIgfVRznwWVY9Nacja GhTbN7BylrzF8aDkeZ1lY38+oa5nO4f1bdNsMJJAxScvJFrMnvTxSkKNea3HoX7n r/vfciEzqDr3SJmpJF4qVkObTbvbr2tauxac0P5izg9q5nL/BlhZTxzNc9V7/4Fq U6DqS3kSkPYN5hv3HBR5yGumVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNpwImrZ IiMoeL8BTADeSOLpsZuSMB8GA1UdIwQYMBaAFEP3Qj+T1roJaUBZ+yPe+FKNJkmd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkQ5Ri9BOTM2RTQ0MDJF MDQxMUVGODZGMjlENzlDNEY5QUUwMi9RX2RDUDVQV3VnbHBRRm43STk3NFVvMG1T WjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FfZENQNVBXdWdscFFGbjdJOTc0VW8wbVNaMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NkQ5Ri9BOTM2RTQ0MDJFMDQxMUVGODZGMjlENzlDNEY5QUUwMi9RX2RDUDVQV3Vn bHBRRm43STk3NFVvMG1TWjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATLS5+gzBb/fqLzMR+Nqb7Fa9Fkj/NrJmybGjoc/z9JpX5eTaw7sX7 3kC+g+o+yPpF1qzrPAfEdGz0jRefhJv5m34WsBG+wbcSgShIUhckccpwjjnWwAyk YzVtDyAWr5LnGoXhaCPoqbUqyleX27r+d5NyekQGVnnZ9CXiBhM2zJ8E0UHGV4Xb nhd/5jwSYhkG3ChvUdGWncksJjVDTpSY+rpSVqQ5YttyiATrljAYauiuh1IaZcwW 5RJrKqiDGax7YLmnLIlT3WuCGCobCVX9adMb/P+j3XJQmyanWX3V9pnG5hkGKZC3 8GWpI/elogcVGkBvnrwpaW2+4opqg8+q -----END CERTIFICATE-----Generated at Tue Oct 21 02:25:44 2025 by rpki-client