$ rpki-client -vvf rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft File: Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft (raw, json) Hash identifier: gAAqot7+tam94s83bvYNVEJv5drblWJJepjo0fgiVDI= Subject key identifier: 81:2E:F7:33:59:49:8A:C1:8F:4B:5F:53:8F:E7:A5:4E:E0:45:F2:0B Authority key identifier: 43:D2:50:D5:C1:F6:09:ED:17:4D:FF:26:43:01:DB:45:BE:25:B1:B4 Certificate issuer: /CN=A91978DD/serialNumber=43D250D5C1F609ED174DFF264301DB45BE25B1B4 Certificate serial: 175E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft Manifest number: 1755 Signing time: Fri 22 Aug 2025 16:42:40 +0000 Manifest this update: Fri 22 Aug 2025 16:42:40 +0000 Manifest next update: Fri 29 Aug 2025 16:42:40 +0000 Files and hashes: 1: Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.crl (hash: +FlM26tXVBTQrr6necLAPoLXYGEdRbKCv8IHDRCZEY8=) 2: 16ABD910E0C111E7BA64DE22C4F9AE02.roa (hash: Ooak6D5iQ2fJ6FZTf7sU2wRFg0kTNy2Wu4Ysho3zOO0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.crl rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:42:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5982 (0x175e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91978DD, serialNumber=43D250D5C1F609ED174DFF264301DB45BE25B1B4 Validity Not Before: Aug 22 16:42:40 2025 GMT Not After : Aug 29 16:42:40 2025 GMT Subject: CN=68a89e00-3b06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:02:43:11:be:55:36:db:99:5d:6f:84:44:97: b9:69:76:c1:23:00:34:1c:38:3e:d1:de:20:03:2a: 92:3e:32:69:b1:a2:95:df:ac:09:bb:43:a4:58:f3: 2d:7b:66:86:39:db:42:69:a9:ad:ca:0e:0d:8b:5c: fc:e1:c9:51:e1:8e:90:51:64:bd:4b:7e:09:69:98: 6a:31:ae:ea:d5:9b:fe:63:a8:d0:fc:a9:f0:40:35: 8f:c5:e3:25:28:77:54:ab:5f:5d:98:72:ce:b8:9b: 2a:c1:8e:22:c2:a9:fb:82:30:e6:50:2b:f2:9b:cb: dd:d6:27:b0:98:7a:7f:2c:90:b1:cd:fb:22:2e:3a: 04:67:c2:7f:02:c2:a5:57:c1:05:ca:f7:d9:4f:c2: 36:4a:fa:49:4e:82:b3:0d:ee:91:df:1c:d8:a5:68: 89:d2:b3:14:b2:f1:1c:e9:aa:15:19:93:5d:b2:eb: db:a0:c2:fa:63:83:47:18:7f:fa:e4:b4:ab:a6:25: 9a:63:0c:4c:40:20:0b:b4:95:80:5b:c1:67:06:7e: 51:fa:02:37:93:4d:b0:64:4c:70:0e:8c:bc:d0:7a: 04:77:05:b9:08:4b:87:83:cf:b1:76:42:f3:b0:dc: da:35:66:1f:09:e3:37:d1:10:15:17:8f:24:85:ea: 02:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:2E:F7:33:59:49:8A:C1:8F:4B:5F:53:8F:E7:A5:4E:E0:45:F2:0B X509v3 Authority Key Identifier: keyid:43:D2:50:D5:C1:F6:09:ED:17:4D:FF:26:43:01:DB:45:BE:25:B1:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91978DD/CC18D9D4E0B611E799A2B682C4F9AE02/Q9JQ1cH2Ce0XTf8mQwHbRb4lsbQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:04:34:84:d4:f6:c3:88:40:01:63:73:ff:1b:3e:bd:2e:d3: 49:5a:2d:db:3c:1e:e1:06:ae:d4:cd:37:73:be:ed:a3:4f:65: ae:ae:60:16:6d:61:94:e7:67:ec:6f:e4:3b:df:4b:a2:9a:34: 58:6e:5c:d9:7f:b5:b8:cd:1b:2c:4d:9b:69:10:6c:cb:49:b0: 32:2a:19:d3:2b:34:48:7a:dc:ed:86:8d:ee:46:96:d7:8f:bc: de:42:0a:57:b2:86:c9:27:15:35:5a:97:be:50:81:19:da:53: a1:b1:6d:c7:e1:cd:dd:02:35:b7:e0:9a:ca:cf:55:1e:a1:e1: c1:a8:f7:ba:e3:b5:7e:dc:97:66:6d:39:03:48:b9:fe:ca:a0: cf:16:84:14:01:64:3c:34:41:e4:a7:25:e0:9a:7c:90:de:08: b2:f6:ed:03:2f:d0:47:64:e3:10:92:95:d4:4b:b4:ba:4c:0a: 85:13:1e:a2:c4:ad:4f:b1:e7:e9:72:d0:20:1d:14:2b:b3:a0: 73:aa:27:b2:82:9e:d1:94:29:51:1b:ec:e8:d2:cc:43:25:a4: 93:3b:db:73:f5:7f:5d:6e:cf:d2:ce:6b:cc:ef:73:78:d6:ad: a0:77:82:9b:25:66:50:8c:12:28:3c:d6:46:24:97:d4:81:a6: b4:c3:d0:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF14wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTc4REQxMTAvBgNVBAUTKDQzRDI1MEQ1QzFGNjA5RUQxNzRERkYyNjQzMDFEQjQ1 QkUyNUIxQjQwHhcNMjUwODIyMTY0MjQwWhcNMjUwODI5MTY0MjQwWjAYMRYwFAYD VQQDEw02OGE4OWUwMC0zYjA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxgJDEb5VNtuZXW+ERJe5aXbBIwA0HDg+0d4gAyqSPjJpsaKV36wJu0OkWPMt e2aGOdtCaamtyg4Ni1z84clR4Y6QUWS9S34JaZhqMa7q1Zv+Y6jQ/KnwQDWPxeMl KHdUq19dmHLOuJsqwY4iwqn7gjDmUCvym8vd1iewmHp/LJCxzfsiLjoEZ8J/AsKl V8EFyvfZT8I2SvpJToKzDe6R3xzYpWiJ0rMUsvEc6aoVGZNdsuvboML6Y4NHGH/6 5LSrpiWaYwxMQCALtJWAW8FnBn5R+gI3k02wZExwDoy80HoEdwW5CEuHg8+xdkLz sNzaNWYfCeM30RAVF48kheoC9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIEu9zNZ SYrBj0tfU4/npU7gRfILMB8GA1UdIwQYMBaAFEPSUNXB9gntF03/JkMB20W+JbG0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzhERC9DQzE4RDlENEUw QjYxMUU3OTlBMkI2ODJDNEY5QUUwMi9ROUpRMWNIMkNlMFhUZjhtUXdIYlJiNGxz YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E5SlExY0gyQ2UwWFRmOG1Rd0hiUmI0bHNiUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzhERC9DQzE4RDlENEUwQjYxMUU3OTlBMkI2ODJDNEY5QUUwMi9ROUpRMWNIMkNl MFhUZjhtUXdIYlJiNGxzYlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9BDSE1PbDiEABY3P/Gz69LtNJWi3bPB7hBq7UzTdzvu2jT2WurmAW bWGU52fsb+Q730uimjRYblzZf7W4zRssTZtpEGzLSbAyKhnTKzRIetztho3uRpbX j7zeQgpXsobJJxU1Wpe+UIEZ2lOhsW3H4c3dAjW34JrKz1UeoeHBqPe647V+3Jdm bTkDSLn+yqDPFoQUAWQ8NEHkpyXgmnyQ3giy9u0DL9BHZOMQkpXUS7S6TAqFEx6i xK1PsefpctAgHRQrs6Bzqieygp7RlClRG+zo0sxDJaSTO9tz9X9dbs/SzmvM73N4 1q2gd4KbJWZQjBIoPNZGJJfUgaa0w9DJ -----END CERTIFICATE-----Generated at Sat Aug 23 19:39:08 2025 by rpki-client