$ rpki-client -vvf rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft File: KQX7MhK9YWRvt69jPqGiV7w6Pew.mft (raw, json) Hash identifier: 5zt/IecnpoRC0ooZzotYyp85A3Pbz3zi2mYVOGU/zJo= Subject key identifier: 3B:34:E2:46:13:37:1F:86:F5:CA:DC:8C:93:3B:41:D1:91:9C:34:79 Authority key identifier: 29:05:FB:32:12:BD:61:64:6F:B7:AF:63:3E:A1:A2:57:BC:3A:3D:EC Certificate issuer: /CN=A9156971/serialNumber=2905FB3212BD61646FB7AF633EA1A257BC3A3DEC Certificate serial: 34B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft Manifest number: 34AF Signing time: Fri 08 Aug 2025 14:45:42 +0000 Manifest this update: Fri 08 Aug 2025 14:45:42 +0000 Manifest next update: Fri 15 Aug 2025 14:45:42 +0000 Files and hashes: 1: KQX7MhK9YWRvt69jPqGiV7w6Pew.crl (hash: eX+5BuSQeBYn7X/E/kbcZyl4bB46pQOGxNAC6i2Ub4k=) 2: 4AF78A4AFEC611EF86B4765BC4F9AE02.roa (hash: 4eibZFZxCBojQ0XF3++/6D4cGjzEkC+cfaewXmXRSYk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.crl rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13493 (0x34b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156971, serialNumber=2905FB3212BD61646FB7AF633EA1A257BC3A3DEC Validity Not Before: Aug 8 14:45:42 2025 GMT Not After : Aug 15 14:45:42 2025 GMT Subject: CN=68960d96-314b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:4b:66:15:16:e4:33:eb:74:1e:93:4b:69:3b: 96:61:8a:22:d9:6f:30:4d:17:ff:90:05:44:9d:52: 8f:09:54:06:4b:ef:7e:ba:92:a4:62:ba:f9:58:70: 9c:6a:78:fe:82:ab:fe:73:e9:1b:ce:4b:32:81:b3: 2f:0b:5d:66:1c:b4:6d:09:03:4a:56:e3:a9:6b:f0: a8:dd:ae:9a:de:e6:83:5d:fc:2e:7f:2e:40:c4:77: d8:9b:ab:5b:27:d1:aa:61:92:33:e4:5f:a4:78:5e: 75:1d:01:d1:64:2a:bc:f0:e0:67:5b:72:30:23:ed: 9e:6b:8d:5c:23:ad:35:27:2b:e5:f2:7d:d1:99:67: 7f:e2:40:97:e5:ca:91:9a:f4:67:17:37:a4:09:d5: 2a:16:cb:6a:49:6e:90:bb:2e:30:78:86:c6:67:2a: 5c:02:6d:cd:47:45:37:e5:7c:0e:66:67:3f:e7:95: 3f:19:56:de:24:3c:4e:8c:23:f9:3d:4f:fb:44:06: a7:3d:18:6f:68:6a:a3:f5:ad:da:1f:fa:42:53:08: d4:64:d1:5b:be:1e:b2:f0:03:9b:59:67:73:ed:af: f9:09:cf:19:2a:4d:53:f8:a7:8f:d3:66:4e:4b:0d: ce:16:60:82:60:a2:cd:54:2f:82:40:1a:3d:fe:43: 00:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:34:E2:46:13:37:1F:86:F5:CA:DC:8C:93:3B:41:D1:91:9C:34:79 X509v3 Authority Key Identifier: keyid:29:05:FB:32:12:BD:61:64:6F:B7:AF:63:3E:A1:A2:57:BC:3A:3D:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:61:f8:51:2a:12:ae:d6:f4:e8:4c:19:77:ce:34:35:78:e7: 16:f2:3d:dd:86:a1:41:4d:59:8c:c8:1f:5b:d9:38:f4:9a:b9: 6a:f0:40:52:cf:a6:d5:94:6a:35:05:95:48:64:55:f7:00:bd: 00:a1:77:d9:15:80:1c:4a:f5:2d:3e:22:92:73:c9:a4:5f:9e: 33:23:81:7d:8d:cd:7a:f2:89:ba:ed:9a:4f:b8:28:4a:d4:80: 37:69:11:7a:bc:bc:d3:2f:fb:95:93:c3:5d:9f:cc:90:83:39: 6e:a5:6e:11:22:9d:96:a8:1f:ac:10:a7:3d:c8:41:a8:c4:cb: b2:ee:08:53:08:f1:36:4d:37:e8:db:56:90:f2:a2:26:54:d8: ad:db:4c:a1:90:21:f2:e3:75:c2:80:9d:cc:f0:e5:11:67:92: 65:09:f7:17:79:52:a6:82:b1:d6:7b:97:5b:0a:5f:7b:7d:ee: b1:4c:6c:12:d0:ee:ec:13:87:f4:11:e2:68:0b:d7:39:50:dc: 62:99:f6:d4:bd:19:cb:3f:96:8a:09:10:63:47:03:6e:c8:a3: 10:46:20:97:08:dc:d3:96:15:af:60:eb:52:cf:86:cf:67:19: 65:6c:93:86:25:68:ba:7f:c1:95:87:91:cc:77:82:2a:d0:c6: fe:90:37:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY5NzExMTAvBgNVBAUTKDI5MDVGQjMyMTJCRDYxNjQ2RkI3QUY2MzNFQTFBMjU3 QkMzQTNERUMwHhcNMjUwODA4MTQ0NTQyWhcNMjUwODE1MTQ0NTQyWjAYMRYwFAYD VQQDEw02ODk2MGQ5Ni0zMTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzEtmFRbkM+t0HpNLaTuWYYoi2W8wTRf/kAVEnVKPCVQGS+9+upKkYrr5WHCc anj+gqv+c+kbzksygbMvC11mHLRtCQNKVuOpa/Co3a6a3uaDXfwufy5AxHfYm6tb J9GqYZIz5F+keF51HQHRZCq88OBnW3IwI+2ea41cI601Jyvl8n3RmWd/4kCX5cqR mvRnFzekCdUqFstqSW6Quy4weIbGZypcAm3NR0U35XwOZmc/55U/GVbeJDxOjCP5 PU/7RAanPRhvaGqj9a3aH/pCUwjUZNFbvh6y8AObWWdz7a/5Cc8ZKk1T+KeP02ZO Sw3OFmCCYKLNVC+CQBo9/kMAfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDs04kYT Nx+G9crcjJM7QdGRnDR5MB8GA1UdIwQYMBaAFCkF+zISvWFkb7evYz6hole8Oj3s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Njk3MS80OEMyMjE4NjFE OTIxMUUyQURCMzBCRjUwOEIwMkNEMi9LUVg3TWhLOVlXUnZ0NjlqUHFHaVY3dzZQ ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tRWDdNaEs5WVdSdnQ2OWpQcUdpVjd3NlBldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Njk3MS80OEMyMjE4NjFEOTIxMUUyQURCMzBCRjUwOEIwMkNEMi9LUVg3TWhLOVlX UnZ0NjlqUHFHaVY3dzZQZXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVYfhRKhKu1vToTBl3zjQ1eOcW8j3dhqFBTVmMyB9b2Tj0mrlq8EBS z6bVlGo1BZVIZFX3AL0AoXfZFYAcSvUtPiKSc8mkX54zI4F9jc168om67ZpPuChK 1IA3aRF6vLzTL/uVk8Ndn8yQgzlupW4RIp2WqB+sEKc9yEGoxMuy7ghTCPE2TTfo 21aQ8qImVNit20yhkCHy43XCgJ3M8OURZ5JlCfcXeVKmgrHWe5dbCl97fe6xTGwS 0O7sE4f0EeJoC9c5UNximfbUvRnLP5aKCRBjRwNuyKMQRiCXCNzTlhWvYOtSz4bP ZxllbJOGJWi6f8GVh5HMd4Iq0Mb+kDcS -----END CERTIFICATE-----Generated at Fri Aug 8 20:48:52 2025 by rpki-client