$ rpki-client -vvf rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft File: QL0lotYDGHPlXfzdrTpI97z4jIs.mft (raw, json) Hash identifier: 8Y8AaP/WwuopT/2sg3del/ACqo+ofGayyBaK3+MZX6Q= Subject key identifier: A4:B9:1F:22:F2:3D:7C:AB:C6:FE:E3:91:90:67:C8:74:46:CB:AA:FA Authority key identifier: 40:BD:25:A2:D6:03:18:73:E5:5D:FC:DD:AD:3A:48:F7:BC:F8:8C:8B Certificate issuer: /CN=A9194A58/serialNumber=40BD25A2D6031873E55DFCDDAD3A48F7BCF88C8B Certificate serial: 1869 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QL0lotYDGHPlXfzdrTpI97z4jIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft Manifest number: 185E Signing time: Fri 22 Aug 2025 16:36:30 +0000 Manifest this update: Fri 22 Aug 2025 16:36:29 +0000 Manifest next update: Fri 29 Aug 2025 16:36:29 +0000 Files and hashes: 1: QL0lotYDGHPlXfzdrTpI97z4jIs.crl (hash: y1qK2BRY+wuWxIwTnAjt9191/o9U4kgpnV8aqD4aQFY=) 2: 42D0E9A4AFD911E7B8A7E96CC4F9AE02.roa (hash: WFmZvmOIKNk0az+zKPBYrOXakumFbE34A1nRoyLlGgY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.crl rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QL0lotYDGHPlXfzdrTpI97z4jIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:36:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6249 (0x1869) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194A58, serialNumber=40BD25A2D6031873E55DFCDDAD3A48F7BCF88C8B Validity Not Before: Aug 22 16:36:29 2025 GMT Not After : Aug 29 16:36:29 2025 GMT Subject: CN=68a89c8e-31c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:35:ac:18:68:be:67:e8:21:f4:a1:c5:85:b7: 2a:7b:be:5d:f7:0e:c6:e9:8a:21:9e:84:0e:be:3f: 26:86:03:57:3b:e2:5c:94:90:74:da:c6:f7:5f:eb: 7c:04:47:c6:74:09:d8:73:e5:d6:76:c4:ff:8d:1e: 21:97:ec:79:98:33:8c:a5:67:e3:e7:7d:b7:a8:3f: e2:72:ff:6f:76:f3:54:70:76:98:ef:63:e4:a6:84: 26:c5:74:af:b2:a9:c1:bb:34:a4:24:96:f2:cc:a7: 91:92:af:3c:9e:2a:1c:db:a0:73:7d:5e:54:15:29: 4d:89:af:c7:81:94:83:6d:76:67:5b:fb:fd:09:60: 93:bc:57:3b:ce:69:55:37:bc:97:39:dd:f1:55:ae: be:57:41:92:15:fc:82:4a:41:c6:86:80:71:3f:82: 31:43:55:32:5b:28:9f:26:2a:17:f1:71:54:b8:30: 64:71:6b:63:29:21:58:0f:27:f6:ff:05:ab:c7:e8: ba:3c:54:78:3e:be:fe:59:3d:2d:bb:44:a7:b6:ae: 97:31:2e:7b:da:2a:58:64:8f:b3:a2:9c:55:e6:13: c9:5f:a2:4f:91:3e:c1:76:10:8a:18:28:8e:6a:2f: 16:1b:62:eb:dc:db:c5:22:54:9e:7d:55:4d:ba:e6: 36:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:B9:1F:22:F2:3D:7C:AB:C6:FE:E3:91:90:67:C8:74:46:CB:AA:FA X509v3 Authority Key Identifier: keyid:40:BD:25:A2:D6:03:18:73:E5:5D:FC:DD:AD:3A:48:F7:BC:F8:8C:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QL0lotYDGHPlXfzdrTpI97z4jIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:39:88:de:54:d0:60:11:68:34:40:dd:56:53:f2:e1:2d:be: 8b:af:85:b4:75:b4:78:d3:1b:8f:69:82:93:3a:30:08:e8:e3: 9a:2a:5a:0f:3f:e2:6f:60:56:4e:38:78:ff:19:11:1e:7b:23: 06:10:b7:01:b9:07:8f:d0:1a:75:b2:58:2a:ef:ba:b5:4d:ae: 54:20:0c:ac:cb:00:d5:91:97:f3:5b:3d:df:23:6e:6c:58:50: 22:96:88:64:4a:07:18:c7:a1:c9:6a:cf:ee:7e:fd:4a:e9:d8: 95:8b:73:c4:5c:41:f6:78:17:c4:74:0c:a1:42:b0:08:f5:ec: 43:ee:eb:72:ee:07:64:e7:b2:2e:c4:35:84:7e:c2:b4:cb:3f: df:35:b4:fa:10:45:7d:b0:96:4e:18:2c:ae:00:00:f8:51:50: 9c:5d:a7:b8:54:d9:74:0e:4e:bb:bf:0a:81:fd:27:53:16:69: 97:a5:a2:c6:75:36:7d:ef:1c:49:ef:57:10:ae:9f:e6:2d:99: ba:f1:01:8d:47:57:a1:21:ca:4c:10:f5:0c:9e:6e:c2:14:ea: 80:90:72:a8:1f:dc:df:9b:2a:c3:11:38:03:96:aa:d8:cb:f1: 19:80:62:45:c0:ed:64:7a:cf:bb:21:4a:20:19:be:e0:d1:0f: 29:27:ca:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGGkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRBNTgxMTAvBgNVBAUTKDQwQkQyNUEyRDYwMzE4NzNFNTVERkNEREFEM0E0OEY3 QkNGODhDOEIwHhcNMjUwODIyMTYzNjI5WhcNMjUwODI5MTYzNjI5WjAYMRYwFAYD VQQDEw02OGE4OWM4ZS0zMWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwzWsGGi+Z+gh9KHFhbcqe75d9w7G6YohnoQOvj8mhgNXO+JclJB02sb3X+t8 BEfGdAnYc+XWdsT/jR4hl+x5mDOMpWfj5323qD/icv9vdvNUcHaY72PkpoQmxXSv sqnBuzSkJJbyzKeRkq88nioc26BzfV5UFSlNia/HgZSDbXZnW/v9CWCTvFc7zmlV N7yXOd3xVa6+V0GSFfyCSkHGhoBxP4IxQ1UyWyifJioX8XFUuDBkcWtjKSFYDyf2 /wWrx+i6PFR4Pr7+WT0tu0Sntq6XMS572ipYZI+zopxV5hPJX6JPkT7BdhCKGCiO ai8WG2Lr3NvFIlSefVVNuuY2sQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKS5HyLy PXyrxv7jkZBnyHRGy6r6MB8GA1UdIwQYMBaAFEC9JaLWAxhz5V383a06SPe8+IyL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEE1OC80RUFDRTQ5MEFF NDMxMUU3ODgxQzY0MTZDNEY5QUUwMi9RTDBsb3RZREdIUGxYZnpkclRwSTk3ejRq SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FMMGxvdFlER0hQbFhmemRyVHBJOTd6NGpJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEE1OC80RUFDRTQ5MEFFNDMxMUU3ODgxQzY0MTZDNEY5QUUwMi9RTDBsb3RZREdI UGxYZnpkclRwSTk3ejRqSXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmOYjeVNBgEWg0QN1WU/LhLb6Lr4W0dbR40xuPaYKTOjAI6OOaKloP P+JvYFZOOHj/GREeeyMGELcBuQeP0Bp1slgq77q1Ta5UIAysywDVkZfzWz3fI25s WFAilohkSgcYx6HJas/ufv1K6diVi3PEXEH2eBfEdAyhQrAI9exD7uty7gdk57Iu xDWEfsK0yz/fNbT6EEV9sJZOGCyuAAD4UVCcXae4VNl0Dk67vwqB/SdTFmmXpaLG dTZ97xxJ71cQrp/mLZm68QGNR1ehIcpMEPUMnm7CFOqAkHKoH9zfmyrDETgDlqrY y/EZgGJFwO1kes+7IUogGb7g0Q8pJ8qa -----END CERTIFICATE-----Generated at Sat Aug 23 19:09:51 2025 by rpki-client