$ rpki-client -vvf rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.mft File: -QbZf3qofIbamQOdI27NtR0jH3o.mft (raw, json) Hash identifier: EDgYj4zZiN1Grtt6yN9yPC8c264+r8sfj7TJtAjVe0w= Subject key identifier: E1:37:A2:7E:E0:18:4E:27:F4:5B:8D:A2:60:8C:09:17:B6:7F:8A:93 Authority key identifier: F9:06:D9:7F:7A:A8:7C:86:DA:99:03:9D:23:6E:CD:B5:1D:23:1F:7A Certificate issuer: /CN=A919FE97/serialNumber=F906D97F7AA87C86DA99039D236ECDB51D231F7A Certificate serial: 06A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-QbZf3qofIbamQOdI27NtR0jH3o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.mft Manifest number: 0698 Signing time: Fri 22 Aug 2025 22:23:37 +0000 Manifest this update: Fri 22 Aug 2025 22:23:36 +0000 Manifest next update: Fri 29 Aug 2025 22:23:36 +0000 Files and hashes: 1: -QbZf3qofIbamQOdI27NtR0jH3o.crl (hash: vcwJrGZBo/Fa3V4pflChbJ+Xvt6pI6Iq7vSwOROodV8=) 2: 06EFF1D07D4B11EBA736017DC4F9AE02.roa (hash: ACBayas3sWm8LRkAgsG4BLCCWR0NJPgThMvDEl+trzE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.crl rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-QbZf3qofIbamQOdI27NtR0jH3o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:23:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1697 (0x6a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FE97, serialNumber=F906D97F7AA87C86DA99039D236ECDB51D231F7A Validity Not Before: Aug 22 22:23:36 2025 GMT Not After : Aug 29 22:23:36 2025 GMT Subject: CN=68a8ede9-7971 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:97:dc:5e:dc:dd:2d:6f:69:06:46:59:79:ef: 80:cb:4d:72:6b:c3:45:68:ea:6d:b5:75:1d:c8:c6: e3:29:46:e5:3f:dc:ab:72:52:4b:1f:3d:cb:e4:02: d0:16:8f:a4:62:6c:f4:05:ad:89:3f:61:7d:8c:60: a5:e7:15:21:1f:30:24:bb:47:3d:b8:79:36:6f:07: 3e:94:41:a2:1d:96:92:88:e4:b2:e1:82:9b:a1:b8: 89:d8:8b:64:80:42:15:73:c9:bd:1f:23:f7:d6:4c: d4:7f:f6:84:94:3a:29:d7:eb:31:16:51:4a:72:be: 1f:74:a0:a4:7c:2a:71:40:c3:85:5e:ad:05:78:19: 90:c4:8d:a4:e9:81:3b:c1:f5:5b:ef:f7:c2:1d:5a: dd:2e:2d:fb:28:6e:b1:21:ce:54:66:32:b4:c5:98: 2c:58:8f:94:87:ef:cc:2c:67:b9:de:3d:26:53:c0: 53:21:3b:6f:c6:87:60:c2:cd:c3:0e:cb:22:9e:c5: f6:e0:8d:e2:99:78:04:64:37:c3:b4:a8:62:66:ac: 3d:3f:5a:31:41:f4:a4:e9:59:61:b8:57:ba:ea:df: 6c:5b:85:b6:dd:44:b3:53:66:e0:45:45:14:4a:8e: 68:66:3b:d3:3d:6f:10:87:4a:2d:f3:16:cc:39:09: fa:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:37:A2:7E:E0:18:4E:27:F4:5B:8D:A2:60:8C:09:17:B6:7F:8A:93 X509v3 Authority Key Identifier: keyid:F9:06:D9:7F:7A:A8:7C:86:DA:99:03:9D:23:6E:CD:B5:1D:23:1F:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-QbZf3qofIbamQOdI27NtR0jH3o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:2e:93:38:f1:8f:84:e7:af:04:48:09:e8:43:0d:35:ee:8d: d2:b2:40:94:39:87:59:6d:fa:3a:e1:e8:8a:6a:b9:8d:03:e5: ee:a3:b1:72:fa:f0:d3:d3:bc:a2:c3:62:e6:90:b6:6d:bd:04: c7:13:fa:01:2a:10:ee:ba:db:1a:d7:47:f0:41:bd:b0:25:a1: a3:23:72:b9:f3:cd:32:bc:81:62:7b:27:e8:b8:12:8c:37:c4: 0d:b9:89:a8:f9:53:38:4f:00:ef:c3:36:62:42:3c:1a:33:92: 3b:78:a0:76:03:8c:63:3d:d1:8e:6a:04:d3:e7:75:d4:9f:f0: 5e:dd:04:aa:d1:51:e9:00:6b:b3:63:19:be:b6:60:32:fe:b8: 33:c0:f3:58:66:5b:e2:75:66:28:11:ce:f0:4c:01:26:7e:b6: 55:60:35:01:68:09:e6:2e:c3:39:c3:ba:32:ed:c5:0a:15:77: b0:dd:5f:89:52:a5:3a:bf:2d:f7:37:7b:ae:db:ea:55:82:1d: aa:42:95:2e:b2:e1:8a:c9:cc:c8:0d:a8:76:19:f7:06:7a:e2: 7b:82:ed:c2:20:8c:64:66:5f:b9:9c:11:f3:71:ac:53:96:89: af:e2:30:5a:0d:d0:3a:f9:4d:1c:d0:96:9d:37:d2:da:3a:ae: b7:9e:11:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUZFOTcxMTAvBgNVBAUTKEY5MDZEOTdGN0FBODdDODZEQTk5MDM5RDIzNkVDREI1 MUQyMzFGN0EwHhcNMjUwODIyMjIyMzM2WhcNMjUwODI5MjIyMzM2WjAYMRYwFAYD VQQDEw02OGE4ZWRlOS03OTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz5fcXtzdLW9pBkZZee+Ay01ya8NFaOpttXUdyMbjKUblP9yrclJLHz3L5ALQ Fo+kYmz0Ba2JP2F9jGCl5xUhHzAku0c9uHk2bwc+lEGiHZaSiOSy4YKbobiJ2Itk gEIVc8m9HyP31kzUf/aElDop1+sxFlFKcr4fdKCkfCpxQMOFXq0FeBmQxI2k6YE7 wfVb7/fCHVrdLi37KG6xIc5UZjK0xZgsWI+Uh+/MLGe53j0mU8BTITtvxodgws3D DssinsX24I3imXgEZDfDtKhiZqw9P1oxQfSk6VlhuFe66t9sW4W23USzU2bgRUUU So5oZjvTPW8Qh0ot8xbMOQn6twIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOE3on7g GE4n9FuNomCMCRe2f4qTMB8GA1UdIwQYMBaAFPkG2X96qHyG2pkDnSNuzbUdIx96 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkU5Ny9EMjE4MzAyRTdE NDcxMUVCOTMxMjFGNThDNEY5QUUwMi8tUWJaZjNxb2ZJYmFtUU9kSTI3TnRSMGpI M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1RYlpmM3FvZkliYW1RT2RJMjdOdFIwakgzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RkU5Ny9EMjE4MzAyRTdENDcxMUVCOTMxMjFGNThDNEY5QUUwMi8tUWJaZjNxb2ZJ YmFtUU9kSTI3TnRSMGpIM28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCLpM48Y+E568ESAnoQw017o3SskCUOYdZbfo64eiKarmNA+Xuo7Fy +vDT07yiw2LmkLZtvQTHE/oBKhDuutsa10fwQb2wJaGjI3K5880yvIFieyfouBKM N8QNuYmo+VM4TwDvwzZiQjwaM5I7eKB2A4xjPdGOagTT53XUn/Be3QSq0VHpAGuz Yxm+tmAy/rgzwPNYZlvidWYoEc7wTAEmfrZVYDUBaAnmLsM5w7oy7cUKFXew3V+J UqU6vy33N3uu2+pVgh2qQpUusuGKyczIDah2GfcGeuJ7gu3CIIxkZl+5nBHzcaxT lomv4jBaDdA6+U0c0JadN9LaOq63nhFh -----END CERTIFICATE-----Generated at Sun Aug 24 00:42:34 2025 by rpki-client