$ rpki-client -vvf rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.mft File: Q_dCP5PWuglpQFn7I974Uo0mSZ0.mft (raw, json) Hash identifier: Oc07ezZCx8XOwhpStwQT2CmRXvpSkMiIRLUlz4svlQk= Subject key identifier: 17:CA:A6:1D:CE:B6:B6:9E:F8:D4:FC:C7:F6:4A:69:79:20:B7:BB:C1 Authority key identifier: 43:F7:42:3F:93:D6:BA:09:69:40:59:FB:23:DE:F8:52:8D:26:49:9D Certificate issuer: /CN=A9186D9F/serialNumber=43F7423F93D6BA09694059FB23DEF8528D26499D Certificate serial: E3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q_dCP5PWuglpQFn7I974Uo0mSZ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.mft Manifest number: DF Signing time: Sat 23 Aug 2025 05:38:01 +0000 Manifest this update: Sat 23 Aug 2025 05:38:01 +0000 Manifest next update: Sat 30 Aug 2025 05:38:01 +0000 Files and hashes: 1: Q_dCP5PWuglpQFn7I974Uo0mSZ0.crl (hash: 4Muk3ggCVeTemkaUI44IVJyL9g87YyIjT4fnS9MByRs=) 2: 17EA0C7A38DF11EF8EEDB25EC4F9AE02.roa (hash: w+HKOaC0+jfhSxKVMJ9ShZE05MyOqwYCqtIs1clN5KI=) 3: A63A2DFA2F5411EF9A12027FC4F9AE02.roa (hash: wkNRLxYMTSQ9zGepk4yzqzlqbEMp0dmX1JQWykvEvPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.crl rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q_dCP5PWuglpQFn7I974Uo0mSZ0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:38:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 227 (0xe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186D9F, serialNumber=43F7423F93D6BA09694059FB23DEF8528D26499D Validity Not Before: Aug 23 05:38:01 2025 GMT Not After : Aug 30 05:38:01 2025 GMT Subject: CN=68a953b9-5287 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:f3:43:d0:14:87:24:f2:d5:48:c7:99:c7:5e: e8:e5:d1:f6:f9:22:cc:da:48:1f:93:24:91:c9:bc: 19:b8:63:a1:c4:72:d7:6c:cd:68:0f:d4:0d:d5:1c: 95:e7:10:2d:3d:2c:ef:5e:48:f7:12:d3:d6:a9:fb: 51:1e:42:0d:76:f3:9a:a1:71:3c:9e:7b:ed:9a:91: f6:af:1d:f6:c9:83:e4:6b:f2:26:6e:07:25:bb:4d: 68:c2:1c:fa:51:66:1c:69:24:de:9e:82:5d:68:a1: 07:07:1a:83:b5:09:1b:46:2b:6b:40:5f:0f:04:c7: 41:e9:21:79:56:ad:aa:c3:03:9b:f2:88:52:b0:02: d2:2d:c2:05:a5:c4:b3:f4:41:69:ae:59:12:10:35: 50:fd:23:59:52:9e:f6:7e:1f:e7:42:e8:01:8f:66: 57:04:9d:26:48:98:7a:8b:c1:90:33:93:49:6c:03: c9:59:58:94:2b:df:c2:1b:8d:b8:cd:8d:cd:29:61: 60:9d:8d:f2:f3:37:94:f2:64:0e:64:5f:c1:b0:a8: 2b:7d:f4:4b:ec:d5:aa:cb:55:b6:e9:4c:62:7e:8c: da:c7:08:5d:c5:cb:b4:7b:4d:02:de:e2:2d:9b:96: 38:d3:60:ac:ce:9d:24:7d:24:b1:a5:25:ea:14:3a: a5:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:CA:A6:1D:CE:B6:B6:9E:F8:D4:FC:C7:F6:4A:69:79:20:B7:BB:C1 X509v3 Authority Key Identifier: keyid:43:F7:42:3F:93:D6:BA:09:69:40:59:FB:23:DE:F8:52:8D:26:49:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q_dCP5PWuglpQFn7I974Uo0mSZ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:75:52:56:c7:f0:d9:d5:89:57:4c:b7:57:bc:82:33:53:ce: 46:21:24:15:a1:99:0b:bb:a7:49:c5:8d:ad:a5:06:28:b1:f8: ff:b4:d6:22:14:68:01:3d:9c:fb:83:cf:c1:2f:ae:e2:0f:48: f6:f8:15:d6:65:e4:64:87:e5:c7:a8:78:16:3c:19:a7:64:8f: 2f:dc:23:ee:9e:8e:ca:d6:bd:ac:be:1c:34:7a:17:0a:e5:e7: ab:1d:93:0a:44:d1:d0:f4:94:83:00:10:74:5b:82:d6:b6:f5: cf:77:a9:45:32:52:83:a1:92:05:fa:59:6f:83:c0:5b:64:23: 53:09:95:db:18:85:5e:7c:6e:69:77:eb:a8:80:45:cb:9b:53: a4:02:1e:68:bb:4c:82:66:85:88:2f:70:26:ef:e3:5a:56:fa: 19:db:e9:58:80:ef:c3:78:bc:a4:5b:cd:11:fa:ea:ef:c3:e6: ef:29:17:88:47:07:23:68:c4:df:47:5f:4f:a5:9d:8e:64:57: 89:29:ba:c5:ce:31:6b:ee:d3:00:14:c0:b5:5d:4f:93:c2:73: 52:68:d6:1c:9f:a1:7e:fc:61:72:02:cc:89:b6:b2:8a:dc:b0: 56:1f:48:ff:9f:c7:ee:15:96:20:48:ce:86:04:89:c1:9a:0d: 11:e2:22:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZEOUYxMTAvBgNVBAUTKDQzRjc0MjNGOTNENkJBMDk2OTQwNTlGQjIzREVGODUy OEQyNjQ5OUQwHhcNMjUwODIzMDUzODAxWhcNMjUwODMwMDUzODAxWjAYMRYwFAYD VQQDEw02OGE5NTNiOS01Mjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2fND0BSHJPLVSMeZx17o5dH2+SLM2kgfkySRybwZuGOhxHLXbM1oD9QN1RyV 5xAtPSzvXkj3EtPWqftRHkINdvOaoXE8nnvtmpH2rx32yYPka/Imbgclu01owhz6 UWYcaSTenoJdaKEHBxqDtQkbRitrQF8PBMdB6SF5Vq2qwwOb8ohSsALSLcIFpcSz 9EFprlkSEDVQ/SNZUp72fh/nQugBj2ZXBJ0mSJh6i8GQM5NJbAPJWViUK9/CG424 zY3NKWFgnY3y8zeU8mQOZF/BsKgrffRL7NWqy1W26Uxifozaxwhdxcu0e00C3uIt m5Y402Cszp0kfSSxpSXqFDql2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBfKph3O trae+NT8x/ZKaXkgt7vBMB8GA1UdIwQYMBaAFEP3Qj+T1roJaUBZ+yPe+FKNJkmd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkQ5Ri9BOTM2RTQ0MDJF MDQxMUVGODZGMjlENzlDNEY5QUUwMi9RX2RDUDVQV3VnbHBRRm43STk3NFVvMG1T WjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FfZENQNVBXdWdscFFGbjdJOTc0VW8wbVNaMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NkQ5Ri9BOTM2RTQ0MDJFMDQxMUVGODZGMjlENzlDNEY5QUUwMi9RX2RDUDVQV3Vn bHBRRm43STk3NFVvMG1TWjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcdVJWx/DZ1YlXTLdXvIIzU85GISQVoZkLu6dJxY2tpQYosfj/tNYi FGgBPZz7g8/BL67iD0j2+BXWZeRkh+XHqHgWPBmnZI8v3CPuno7K1r2svhw0ehcK 5eerHZMKRNHQ9JSDABB0W4LWtvXPd6lFMlKDoZIF+llvg8BbZCNTCZXbGIVefG5p d+uogEXLm1OkAh5ou0yCZoWIL3Am7+NaVvoZ2+lYgO/DeLykW80R+urvw+bvKReI RwcjaMTfR19PpZ2OZFeJKbrFzjFr7tMAFMC1XU+TwnNSaNYcn6F+/GFyAsyJtrKK 3LBWH0j/n8fuFZYgSM6GBInBmg0R4iKk -----END CERTIFICATE-----Generated at Sat Aug 23 19:41:53 2025 by rpki-client