$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.mft File: Q8PPEXS9crQ0xpKLir6_BdYxP0A.mft (raw, json) Hash identifier: pblWiwGOu2uRwdNWEIuH3meGwWCVZSSIf6QfuD5Voi8= Subject key identifier: 9B:5F:D1:3C:7B:E5:8B:57:D5:88:26:C6:2B:64:7E:43:55:1E:C1:64 Authority key identifier: 43:C3:CF:11:74:BD:72:B4:34:C6:92:8B:8A:BE:BF:05:D6:31:3F:40 Certificate issuer: /CN=A9198D20/serialNumber=43C3CF1174BD72B434C6928B8ABEBF05D6313F40 Certificate serial: 0BF8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q8PPEXS9crQ0xpKLir6_BdYxP0A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.mft Manifest number: 0BF1 Signing time: Fri 22 Aug 2025 18:56:16 +0000 Manifest this update: Fri 22 Aug 2025 18:56:15 +0000 Manifest next update: Fri 29 Aug 2025 18:56:15 +0000 Files and hashes: 1: Q8PPEXS9crQ0xpKLir6_BdYxP0A.crl (hash: HTbJm0GRXrLNt+803fX8scN8LmMk0um1sMjLKpeBasY=) 2: EE985C561CEA11EA8B382C0BC4F9AE02.roa (hash: /clDM2qDPD5uC0RxJEAiWWigew7J9uL+PN4x0Vi4eF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.crl rsync://rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q8PPEXS9crQ0xpKLir6_BdYxP0A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:56:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3064 (0xbf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D20, serialNumber=43C3CF1174BD72B434C6928B8ABEBF05D6313F40 Validity Not Before: Aug 22 18:56:15 2025 GMT Not After : Aug 29 18:56:15 2025 GMT Subject: CN=68a8bd4f-ea19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:58:d9:59:13:e7:b4:76:14:a2:04:87:d1:e1: 36:b5:a4:f9:95:ab:75:0d:3c:ca:80:31:9e:99:b0: 35:a9:2a:b9:41:0e:df:c1:71:be:37:c8:16:30:f5: 06:6f:f0:32:87:4c:ca:5c:3e:7c:83:7f:22:17:6b: 5f:e2:fe:e6:47:78:95:02:24:98:ad:68:39:2e:e4: 8e:14:f0:eb:83:cb:df:c7:4e:ba:d8:9a:51:34:24: fc:08:d9:82:0e:ee:2c:8b:fd:44:f4:0a:77:8b:01: 67:b6:0d:2a:48:31:75:87:d6:35:3c:78:c8:2d:dd: 90:1f:53:4f:ec:59:85:b3:e3:7c:63:0e:47:97:5a: 9a:0b:13:07:ca:4e:3c:7b:ee:fb:2f:14:e4:ea:fe: 20:f4:75:75:0b:82:21:5b:86:95:6e:eb:9a:94:29: bb:ad:6a:88:44:a3:8b:bf:ba:d3:9a:bf:df:dd:42: d2:fc:8e:d7:9c:60:e6:29:48:fc:63:b8:23:6b:c4: ac:eb:f2:b5:c2:25:00:51:e5:64:1b:73:a0:32:45: 4b:aa:57:ec:b8:ad:bf:9e:69:3f:06:44:b6:72:ba: 69:7c:d1:e3:c3:af:f9:64:2d:c8:b1:5d:41:e9:eb: 8c:1e:83:97:f3:45:8f:82:72:49:66:76:91:1a:04: 97:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:5F:D1:3C:7B:E5:8B:57:D5:88:26:C6:2B:64:7E:43:55:1E:C1:64 X509v3 Authority Key Identifier: keyid:43:C3:CF:11:74:BD:72:B4:34:C6:92:8B:8A:BE:BF:05:D6:31:3F:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q8PPEXS9crQ0xpKLir6_BdYxP0A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D20/3F7703C21CE911EA98897487C4F9AE02/Q8PPEXS9crQ0xpKLir6_BdYxP0A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:22:d2:56:38:0b:92:4b:be:7f:53:ac:1b:4f:e4:06:f0:a0: a3:5c:95:1b:50:3d:8f:24:a7:4e:98:b4:4a:21:f5:45:51:1c: cf:ad:17:d7:d2:9d:3b:d7:41:59:45:6a:46:4a:8b:d9:aa:37: c5:d6:0a:dd:18:23:57:0f:46:33:fb:d2:73:ba:93:9f:2b:af: 5a:54:0d:c6:8f:a7:cf:65:68:9e:0a:36:09:87:02:24:b5:12: a2:96:7d:df:f3:cd:a2:13:18:1d:b0:ff:9f:57:49:ac:c2:1f: da:72:bf:79:c2:a3:7d:e9:f3:f6:eb:a6:fa:63:5a:75:22:05: f5:38:9c:9a:61:50:fa:c5:65:1a:1c:ae:2a:e4:0e:dc:8e:c1: d9:7e:1c:f4:17:93:1d:81:7f:8c:ee:d5:8a:09:85:de:a0:63: 60:be:67:01:00:25:9a:aa:2f:be:11:67:ea:25:9c:de:5e:10: bc:f3:e1:6c:da:5b:49:eb:be:c4:44:98:df:8d:35:2d:6e:7c: 86:fa:1b:b3:e6:8e:47:d6:98:1e:48:9f:e5:59:b3:cf:87:00: f3:46:d8:82:67:2f:02:9c:4c:78:69:a9:e9:b2:6d:c0:46:22: ae:2a:ba:6f:13:c1:0c:c2:12:e4:ab:27:29:13:b9:d6:6e:84: 22:03:5d:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEMjAxMTAvBgNVBAUTKDQzQzNDRjExNzRCRDcyQjQzNEM2OTI4QjhBQkVCRjA1 RDYzMTNGNDAwHhcNMjUwODIyMTg1NjE1WhcNMjUwODI5MTg1NjE1WjAYMRYwFAYD VQQDEw02OGE4YmQ0Zi1lYTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ljZWRPntHYUogSH0eE2taT5lat1DTzKgDGembA1qSq5QQ7fwXG+N8gWMPUG b/Ayh0zKXD58g38iF2tf4v7mR3iVAiSYrWg5LuSOFPDrg8vfx0662JpRNCT8CNmC Du4si/1E9Ap3iwFntg0qSDF1h9Y1PHjILd2QH1NP7FmFs+N8Yw5Hl1qaCxMHyk48 e+77LxTk6v4g9HV1C4IhW4aVbuualCm7rWqIRKOLv7rTmr/f3ULS/I7XnGDmKUj8 Y7gja8Ss6/K1wiUAUeVkG3OgMkVLqlfsuK2/nmk/BkS2crppfNHjw6/5ZC3IsV1B 6euMHoOX80WPgnJJZnaRGgSX0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJtf0Tx7 5YtX1YgmxitkfkNVHsFkMB8GA1UdIwQYMBaAFEPDzxF0vXK0NMaSi4q+vwXWMT9A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQyMC8zRjc3MDNDMjFD RTkxMUVBOTg4OTc0ODdDNEY5QUUwMi9ROFBQRVhTOWNyUTB4cEtMaXI2X0JkWXhQ MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E4UFBFWFM5Y3JRMHhwS0xpcjZfQmRZeFAwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OEQyMC8zRjc3MDNDMjFDRTkxMUVBOTg4OTc0ODdDNEY5QUUwMi9ROFBQRVhTOWNy UTB4cEtMaXI2X0JkWXhQMEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWItJWOAuSS75/U6wbT+QG8KCjXJUbUD2PJKdOmLRKIfVFURzPrRfX 0p0710FZRWpGSovZqjfF1grdGCNXD0Yz+9JzupOfK69aVA3Gj6fPZWieCjYJhwIk tRKiln3f882iExgdsP+fV0mswh/acr95wqN96fP266b6Y1p1IgX1OJyaYVD6xWUa HK4q5A7cjsHZfhz0F5MdgX+M7tWKCYXeoGNgvmcBACWaqi++EWfqJZzeXhC88+Fs 2ltJ677ERJjfjTUtbnyG+huz5o5H1pgeSJ/lWbPPhwDzRtiCZy8CnEx4aanpsm3A RiKuKrpvE8EMwhLkqycpE7nWboQiA10i -----END CERTIFICATE-----Generated at Sat Aug 23 20:44:17 2025 by rpki-client