$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft File: QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft (raw, json) Hash identifier: 3xNMVRPtJ3R0XBDPmXbXWIT3crG2stSQBCyFJM8IL5w= Subject key identifier: 63:03:3C:C8:D8:09:A3:CF:C9:50:6F:DA:90:ED:0F:03:D6:74:FA:B7 Authority key identifier: 40:E4:BD:36:AE:15:07:7F:E5:99:85:D1:37:0D:5D:64:67:0A:88:D9 Certificate issuer: /CN=A91BB492/serialNumber=40E4BD36AE15077FE59985D1370D5D64670A88D9 Certificate serial: 4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft Manifest number: 4E Signing time: Sat 23 Aug 2025 07:33:55 +0000 Manifest this update: Sat 23 Aug 2025 07:33:54 +0000 Manifest next update: Sat 30 Aug 2025 07:33:54 +0000 Files and hashes: 1: QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl (hash: IvdC48myu+BeelDGMgIRD8j2iLqyEwjyEoAcg3lXgUU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:33:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB492, serialNumber=40E4BD36AE15077FE59985D1370D5D64670A88D9 Validity Not Before: Aug 23 07:33:54 2025 GMT Not After : Aug 30 07:33:54 2025 GMT Subject: CN=68a96ee3-f165 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:8f:d6:f3:a0:79:ab:74:f6:fb:3c:05:29:c1: 6e:40:81:50:ac:57:77:56:9c:c3:99:a0:d5:60:8e: 04:22:0c:65:15:2c:22:70:3f:56:12:1c:1d:e4:2d: db:bc:ca:04:78:80:d9:82:f9:45:9e:6b:0a:9c:a1: 68:1a:32:6c:fe:c8:9c:c3:e0:68:b0:07:b0:96:d2: 11:ec:6a:55:46:73:98:59:6b:01:54:a6:1f:c8:ac: df:af:d6:05:ae:01:c3:95:61:23:ee:89:40:f5:fc: 50:af:ba:7b:b3:52:64:27:4c:bd:8e:ef:fa:cd:93: 2b:90:ec:97:f8:ec:74:40:df:9e:cc:03:cd:7f:4d: 32:87:e3:4d:8a:65:05:73:df:10:95:b1:82:9a:19: c5:c9:ac:42:c4:cf:30:90:67:d9:28:c3:d3:01:ca: a4:79:bd:62:4b:31:b3:db:31:51:73:a6:1d:0d:00: f4:6c:65:19:a0:99:2c:b3:98:ac:91:a2:04:3a:92: ee:8f:1e:08:ef:89:50:01:e6:eb:0d:95:c0:c5:55: da:53:5c:d5:58:a2:5f:d9:89:c0:f7:c0:8c:69:0e: 39:65:16:7c:ab:c2:17:c0:12:c2:75:fb:6c:50:9a: a7:17:f9:c9:60:ff:c6:b8:e5:f8:37:25:ca:e1:29: 60:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:03:3C:C8:D8:09:A3:CF:C9:50:6F:DA:90:ED:0F:03:D6:74:FA:B7 X509v3 Authority Key Identifier: keyid:40:E4:BD:36:AE:15:07:7F:E5:99:85:D1:37:0D:5D:64:67:0A:88:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB492/2C0B32D8093611F0A2842D57C4F9AE02/QOS9Nq4VB3_lmYXRNw1dZGcKiNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:58:f2:45:21:1e:35:f3:75:72:20:21:78:0a:ab:91:f3:88: 58:f2:32:e3:73:64:61:e5:47:a2:63:79:16:2a:8a:dc:d0:a5: 9c:90:0a:16:79:b2:e4:4d:61:50:4f:10:cc:90:47:43:79:8a: b6:cc:e7:c8:7f:ac:42:fc:e3:7c:b7:6e:61:b6:78:6c:37:b2: d2:d7:6e:15:d6:c5:f4:43:c7:6c:74:3f:b8:45:e1:24:b7:c8: cc:69:2c:fa:09:f0:67:28:7e:3d:8c:58:c3:aa:c9:5c:b0:6b: 0b:1e:ff:e9:a1:5d:ff:89:06:7c:d2:a3:0d:a7:5e:c5:fa:fe: 52:df:55:0f:54:0c:ae:66:09:bd:33:32:c3:dd:66:30:ef:6b: db:f1:99:97:02:94:bc:0d:9d:13:14:cd:94:50:e3:43:66:4f: 95:4a:9a:e0:a2:49:f1:23:7b:44:50:ff:e4:ab:9e:b7:3b:7b: ab:bd:52:49:ab:d7:7a:5a:cf:8e:1b:3f:52:d3:ab:3e:9b:3b: b1:2d:8a:62:29:ef:d0:f0:b8:02:2a:3d:09:4d:e4:ec:77:81: 36:ff:2f:f7:da:4e:e3:55:ea:8e:59:cc:7f:0d:fa:2f:04:f5: eb:83:f2:1f:c9:e6:dc:0c:71:a2:94:e8:3c:d6:e9:6c:ef:43: aa:16:1c:46 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QjQ5MjExMC8GA1UEBRMoNDBFNEJEMzZBRTE1MDc3RkU1OTk4NUQxMzcwRDVENjQ2 NzBBODhEOTAeFw0yNTA4MjMwNzMzNTRaFw0yNTA4MzAwNzMzNTRaMBgxFjAUBgNV BAMTDTY4YTk2ZWUzLWYxNjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCbj9bzoHmrdPb7PAUpwW5AgVCsV3dWnMOZoNVgjgQiDGUVLCJwP1YSHB3kLdu8 ygR4gNmC+UWeawqcoWgaMmz+yJzD4GiwB7CW0hHsalVGc5hZawFUph/IrN+v1gWu AcOVYSPuiUD1/FCvunuzUmQnTL2O7/rNkyuQ7Jf47HRA357MA81/TTKH402KZQVz 3xCVsYKaGcXJrELEzzCQZ9kow9MByqR5vWJLMbPbMVFzph0NAPRsZRmgmSyzmKyR ogQ6ku6PHgjviVAB5usNlcDFVdpTXNVYol/ZicD3wIxpDjllFnyrwhfAEsJ1+2xQ mqcX+clg/8a45fg3JcrhKWBLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUYwM8yNgJ o8/JUG/akO0PA9Z0+rcwHwYDVR0jBBgwFoAUQOS9Nq4VB3/lmYXRNw1dZGcKiNkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJCNDkyLzJDMEIzMkQ4MDkz NjExRjBBMjg0MkQ1N0M0RjlBRTAyL1FPUzlOcTRWQjNfbG1ZWFJOdzFkWkdjS2lO ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUU9TOU5xNFZCM19sbVlYUk53MWRaR2NLaU5rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJC NDkyLzJDMEIzMkQ4MDkzNjExRjBBMjg0MkQ1N0M0RjlBRTAyL1FPUzlOcTRWQjNf bG1ZWFJOdzFkWkdjS2lOay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAExY8kUhHjXzdXIgIXgKq5HziFjyMuNzZGHlR6JjeRYqitzQpZyQChZ5 suRNYVBPEMyQR0N5irbM58h/rEL843y3bmG2eGw3stLXbhXWxfRDx2x0P7hF4SS3 yMxpLPoJ8Gcofj2MWMOqyVywawse/+mhXf+JBnzSow2nXsX6/lLfVQ9UDK5mCb0z MsPdZjDva9vxmZcClLwNnRMUzZRQ40NmT5VKmuCiSfEje0RQ/+Srnrc7e6u9Ukmr 13paz44bP1LTqz6bO7EtimIp79DwuAIqPQlN5Ox3gTb/L/faTuNV6o5ZzH8N+i8E 9euD8h/J5twMcaKU6DzW6WzvQ6oWHEY= -----END CERTIFICATE-----Generated at Sat Aug 23 17:18:30 2025 by rpki-client