$ rpki-client -vvf rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.mft File: qafXPj7Y1cRm3LxsIJzUNTzemM8.mft (raw, json) Hash identifier: FsK88wpiUFciguN/2wBwKCenU0Nse0053x5pfMQfiJI= Subject key identifier: 28:67:90:E3:28:AD:B9:F3:6D:4B:6E:60:75:C4:F7:F8:3A:72:89:6D Authority key identifier: A9:A7:D7:3E:3E:D8:D5:C4:66:DC:BC:6C:20:9C:D4:35:3C:DE:98:CF Certificate issuer: /CN=A9143FC4/serialNumber=A9A7D73E3ED8D5C466DCBC6C209CD4353CDE98CF Certificate serial: 346F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qafXPj7Y1cRm3LxsIJzUNTzemM8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.mft Manifest number: 346D Signing time: Sun 10 Aug 2025 15:18:20 +0000 Manifest this update: Sun 10 Aug 2025 15:18:19 +0000 Manifest next update: Sun 17 Aug 2025 15:18:19 +0000 Files and hashes: 1: qafXPj7Y1cRm3LxsIJzUNTzemM8.crl (hash: msUtVUmFtnMCQjCnl0ydnNQJZnxl4xOSwIr6fH6lGME=) 2: FE96F04256EE11F09D243832C4F9AE02.roa (hash: i7V57Dro1PeoCEaseJh0ivldyfQ81BauNS5GWJcFu1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.crl rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qafXPj7Y1cRm3LxsIJzUNTzemM8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13423 (0x346f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143FC4, serialNumber=A9A7D73E3ED8D5C466DCBC6C209CD4353CDE98CF Validity Not Before: Aug 10 15:18:19 2025 GMT Not After : Aug 17 15:18:19 2025 GMT Subject: CN=6898b83c-7019 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:59:09:4c:cd:7c:87:0c:43:86:bb:c4:30:91: ad:df:68:43:c0:30:58:3c:ee:10:9d:67:fa:bb:66: 05:32:a9:47:8e:45:8a:ec:52:0b:02:95:1b:fe:76: 03:39:f3:3f:b5:51:64:01:cc:e2:f4:e2:47:03:51: 83:25:1e:da:a9:e2:79:a3:69:31:f3:33:23:15:30: d4:bd:61:47:af:f8:26:4c:68:56:e3:68:24:e0:57: 1c:7c:cf:92:ad:56:3c:8f:27:d6:70:1f:5e:f5:c1: 2f:d8:24:f2:53:d4:42:e6:a0:34:3f:b1:ef:6c:ae: 64:cb:ad:4a:10:58:db:ab:0e:ea:d9:bd:06:73:f4: c4:98:3c:fa:f3:31:ae:3d:b4:72:18:51:4f:1f:07: de:4f:78:88:59:f8:16:02:a7:90:8e:78:06:d3:78: 3a:63:c6:c7:3f:d3:00:d3:03:4f:84:e8:a0:09:e2: 84:17:5d:6d:71:a9:55:32:f2:dd:ac:23:98:bd:55: b5:82:a0:15:3d:ac:c2:87:a9:56:96:c9:62:35:bb: 29:9a:be:f1:49:75:e8:ec:24:4a:c9:e4:8a:53:dc: 1f:d6:4e:ba:d2:74:9d:bf:06:ef:d3:78:78:a5:3e: 47:93:c6:a5:ab:06:7e:3d:db:e4:b8:a7:9e:2f:b1: f8:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:67:90:E3:28:AD:B9:F3:6D:4B:6E:60:75:C4:F7:F8:3A:72:89:6D X509v3 Authority Key Identifier: keyid:A9:A7:D7:3E:3E:D8:D5:C4:66:DC:BC:6C:20:9C:D4:35:3C:DE:98:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qafXPj7Y1cRm3LxsIJzUNTzemM8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143FC4/B165A3A8295811E2B38D58FB08B02CD2/qafXPj7Y1cRm3LxsIJzUNTzemM8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:a6:e2:6a:86:32:ae:41:3e:96:2e:7e:75:af:c7:e9:e3:54: 32:2a:fb:6d:7f:6a:85:9d:c1:8f:ac:00:ee:cb:a7:52:13:69: 73:16:d8:ec:64:4c:1f:66:f5:a6:95:cf:44:29:58:78:85:ab: 59:ee:4f:fa:36:bc:48:7b:89:8d:d6:33:0d:0c:0c:8c:cb:b6: ba:67:78:60:9b:a8:22:e4:14:90:53:a2:07:4d:6d:ef:e0:b3: 54:4d:6a:01:de:9b:f3:16:5d:e6:c9:25:8e:0e:6b:6b:36:03: a0:05:16:dc:7c:94:f0:fc:40:05:05:cc:7f:9b:99:a4:36:0a: e9:c5:d5:37:bc:21:f7:8e:26:05:a4:4a:d6:06:6e:63:87:98: 26:97:17:75:00:2c:d2:3c:cc:22:58:74:56:e6:13:f9:d9:12: 4c:bf:f2:f9:ed:0f:cc:79:44:38:38:f0:d9:5f:3d:8c:26:1d: 3f:05:1a:6d:d7:32:e1:65:f1:5f:49:5f:24:46:fa:28:45:56: d8:2f:c7:ac:a0:de:6c:c5:13:db:be:ec:c4:05:d7:3f:82:d4: 66:0b:89:25:da:c2:d6:1d:c1:f6:f4:cd:40:95:b1:d3:1c:01: 8b:f3:87:94:2e:f9:cc:6e:5d:9e:99:b3:33:2f:bd:46:12:57: da:10:36:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNG8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNGQzQxMTAvBgNVBAUTKEE5QTdENzNFM0VEOEQ1QzQ2NkRDQkM2QzIwOUNENDM1 M0NERTk4Q0YwHhcNMjUwODEwMTUxODE5WhcNMjUwODE3MTUxODE5WjAYMRYwFAYD VQQDEw02ODk4YjgzYy03MDE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5FkJTM18hwxDhrvEMJGt32hDwDBYPO4QnWf6u2YFMqlHjkWK7FILApUb/nYD OfM/tVFkAczi9OJHA1GDJR7aqeJ5o2kx8zMjFTDUvWFHr/gmTGhW42gk4FccfM+S rVY8jyfWcB9e9cEv2CTyU9RC5qA0P7HvbK5ky61KEFjbqw7q2b0Gc/TEmDz68zGu PbRyGFFPHwfeT3iIWfgWAqeQjngG03g6Y8bHP9MA0wNPhOigCeKEF11tcalVMvLd rCOYvVW1gqAVPazCh6lWlsliNbspmr7xSXXo7CRKyeSKU9wf1k660nSdvwbv03h4 pT5Hk8alqwZ+PdvkuKeeL7H4PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFChnkOMo rbnzbUtuYHXE9/g6coltMB8GA1UdIwQYMBaAFKmn1z4+2NXEZty8bCCc1DU83pjP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0ZDNC9CMTY1QTNBODI5 NTgxMUUyQjM4RDU4RkIwOEIwMkNEMi9xYWZYUGo3WTFjUm0zTHhzSUp6VU5UemVt TTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FhZlhQajdZMWNSbTNMeHNJSnpVTlR6ZW1NOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0ZDNC9CMTY1QTNBODI5NTgxMUUyQjM4RDU4RkIwOEIwMkNEMi9xYWZYUGo3WTFj Um0zTHhzSUp6VU5UemVtTTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDPpuJqhjKuQT6WLn51r8fp41QyKvttf2qFncGPrADuy6dSE2lzFtjs ZEwfZvWmlc9EKVh4hatZ7k/6NrxIe4mN1jMNDAyMy7a6Z3hgm6gi5BSQU6IHTW3v 4LNUTWoB3pvzFl3mySWODmtrNgOgBRbcfJTw/EAFBcx/m5mkNgrpxdU3vCH3jiYF pErWBm5jh5gmlxd1ACzSPMwiWHRW5hP52RJMv/L57Q/MeUQ4OPDZXz2MJh0/BRpt 1zLhZfFfSV8kRvooRVbYL8esoN5sxRPbvuzEBdc/gtRmC4kl2sLWHcH29M1AlbHT HAGL84eULvnMbl2embMzL71GElfaEDb2 -----END CERTIFICATE-----Generated at Mon Aug 11 10:31:12 2025 by rpki-client