$ rpki-client -vvf rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft File: QZ8npM_s9GHbgvb5BnZPttZfI88.mft (raw, json) Hash identifier: 6QGirpi5fR5aI7pld0GUsVMzjqsh/3IAdpwk0uSZ6nw= Subject key identifier: D3:C5:AB:1D:B3:DD:98:89:D1:0C:16:51:CE:F0:2E:C3:D4:92:D7:A6 Authority key identifier: 41:9F:27:A4:CF:EC:F4:61:DB:82:F6:F9:06:76:4F:B6:D6:5F:23:CF Certificate issuer: /CN=A9140BED/serialNumber=419F27A4CFECF461DB82F6F906764FB6D65F23CF Certificate serial: E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft Manifest number: E4 Signing time: Mon 11 Aug 2025 05:38:39 +0000 Manifest this update: Mon 11 Aug 2025 05:38:38 +0000 Manifest next update: Mon 18 Aug 2025 05:38:38 +0000 Files and hashes: 1: QZ8npM_s9GHbgvb5BnZPttZfI88.crl (hash: gGsM3PQ004Lh9pTsEIdFS18C45yXA6ETf1wFNDNhNTI=) 2: ED7C0BCC287211EFA1483A2FC4F9AE02.roa (hash: TrqB+PZze3/PHsx+S+f9vvK9WuKsfRUtYIK0Ow1+dU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.crl rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 233 (0xe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140BED, serialNumber=419F27A4CFECF461DB82F6F906764FB6D65F23CF Validity Not Before: Aug 11 05:38:38 2025 GMT Not After : Aug 18 05:38:38 2025 GMT Subject: CN=689981de-2414 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:0d:1b:b0:57:63:6e:57:ae:6b:aa:78:e7:12: 91:93:3a:4d:11:99:02:fb:07:45:cc:16:8b:6d:73: 65:06:cf:50:15:1e:dd:1f:20:8a:79:72:05:46:e7: 26:5d:a3:fb:e8:ca:07:5a:85:ca:57:77:da:dc:d8: b6:c6:54:84:25:00:8e:3c:f7:d5:29:ac:b4:db:38: ba:c6:45:0d:9f:f8:a5:7f:23:e9:02:e6:37:83:d0: 03:1e:18:29:1a:a9:85:18:da:48:0f:fa:cf:f7:d7: e1:6b:e5:3a:53:46:dd:bc:12:52:1e:a5:58:cf:59: 14:3f:29:13:11:98:11:22:51:06:c0:cf:6e:49:b4: 0c:60:ce:7f:62:27:d1:c5:50:d8:69:d9:e1:f0:a1: 51:98:2b:02:35:2c:19:14:2a:9e:86:29:1c:59:99: 2e:6a:76:28:24:2e:ee:ae:0e:b1:b1:4b:e7:a3:fe: 28:1a:e6:f2:d4:64:74:c9:de:a7:50:db:8a:94:e2: e1:ba:90:e7:e8:ee:d9:6e:54:d1:fe:a9:f5:ee:1a: 2f:83:67:df:15:43:81:95:84:92:33:57:19:82:34: 92:b6:bf:ea:b5:68:14:c9:5c:e3:de:e7:02:30:4a: f8:33:da:28:22:7e:b2:ee:6d:75:75:92:df:cd:9f: 06:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:C5:AB:1D:B3:DD:98:89:D1:0C:16:51:CE:F0:2E:C3:D4:92:D7:A6 X509v3 Authority Key Identifier: keyid:41:9F:27:A4:CF:EC:F4:61:DB:82:F6:F9:06:76:4F:B6:D6:5F:23:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:a6:35:87:b0:af:6e:bf:98:4b:0b:34:16:d1:c2:4d:cf:13: 5e:e3:0d:1e:02:1f:18:01:08:76:04:47:5e:1a:da:ee:68:51: 77:b4:d7:1c:8f:43:6d:cf:08:ed:94:22:57:01:33:ef:b4:06: 17:03:c6:b4:d4:3d:92:a2:e9:ac:50:92:68:db:22:51:9a:f3: 87:e7:03:c1:0a:5e:99:86:a0:d2:ac:33:36:78:06:ca:4c:97: b9:71:22:40:98:43:9d:4b:2f:10:1b:11:32:7d:1e:4a:04:dc: 20:35:cb:5c:89:91:69:0a:f2:cf:a1:12:43:e4:7e:7f:79:fb: 14:bd:d5:cf:6d:da:b0:e1:d9:ad:2b:8c:be:2f:24:0f:8d:93: d4:fb:36:c1:19:51:fe:05:10:b3:ae:62:ba:26:bc:c9:f4:65: f8:19:89:2f:59:4c:ae:2d:b1:50:88:e1:c1:52:79:97:d5:ae: 50:4b:72:d9:bc:dd:8e:94:25:52:fe:37:56:6f:34:58:96:42: 69:bd:84:20:c4:e3:d8:90:a9:b4:61:b9:23:30:1a:bf:20:a9: d8:8d:53:29:f9:3a:9c:b2:0a:d1:5d:e9:49:0a:98:02:56:ac: d8:28:a3:42:ca:44:be:de:77:cb:d9:50:33:02:f7:22:88:64: 63:69:af:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBCRUQxMTAvBgNVBAUTKDQxOUYyN0E0Q0ZFQ0Y0NjFEQjgyRjZGOTA2NzY0RkI2 RDY1RjIzQ0YwHhcNMjUwODExMDUzODM4WhcNMjUwODE4MDUzODM4WjAYMRYwFAYD VQQDEw02ODk5ODFkZS0yNDE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAog0bsFdjbleua6p45xKRkzpNEZkC+wdFzBaLbXNlBs9QFR7dHyCKeXIFRucm XaP76MoHWoXKV3fa3Ni2xlSEJQCOPPfVKay02zi6xkUNn/ilfyPpAuY3g9ADHhgp GqmFGNpID/rP99fha+U6U0bdvBJSHqVYz1kUPykTEZgRIlEGwM9uSbQMYM5/YifR xVDYadnh8KFRmCsCNSwZFCqehikcWZkuanYoJC7urg6xsUvno/4oGuby1GR0yd6n UNuKlOLhupDn6O7ZblTR/qn17hovg2ffFUOBlYSSM1cZgjSStr/qtWgUyVzj3ucC MEr4M9ooIn6y7m11dZLfzZ8G4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNPFqx2z 3ZiJ0QwWUc7wLsPUktemMB8GA1UdIwQYMBaAFEGfJ6TP7PRh24L2+QZ2T7bWXyPP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEJFRC8wOEUwRTA2NjFG MzgxMUVGQjA1OUI2NjVDNEY5QUUwMi9RWjhucE1fczlHSGJndmI1Qm5aUHR0WmZJ ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FaOG5wTV9zOUdIYmd2YjVCblpQdHRaZkk4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEJFRC8wOEUwRTA2NjFGMzgxMUVGQjA1OUI2NjVDNEY5QUUwMi9RWjhucE1fczlH SGJndmI1Qm5aUHR0WmZJODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAspjWHsK9uv5hLCzQW0cJNzxNe4w0eAh8YAQh2BEdeGtruaFF3tNcc j0NtzwjtlCJXATPvtAYXA8a01D2SoumsUJJo2yJRmvOH5wPBCl6ZhqDSrDM2eAbK TJe5cSJAmEOdSy8QGxEyfR5KBNwgNctciZFpCvLPoRJD5H5/efsUvdXPbdqw4dmt K4y+LyQPjZPU+zbBGVH+BRCzrmK6JrzJ9GX4GYkvWUyuLbFQiOHBUnmX1a5QS3LZ vN2OlCVS/jdWbzRYlkJpvYQgxOPYkKm0YbkjMBq/IKnYjVMp+TqcsgrRXelJCpgC VqzYKKNCykS+3nfL2VAzAvciiGRjaa9A -----END CERTIFICATE-----Generated at Mon Aug 11 07:36:12 2025 by rpki-client