$ rpki-client -vvf rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.mft File: qHNyAfpMZPoAVkAi2wb2Dn7izQ0.mft (raw, json) Hash identifier: hTvIm2/0fQBSEWUCDTwiQB477sZkszYHbrbCZnoD62k= Subject key identifier: 4E:76:6C:53:8F:3C:07:15:92:B2:E0:9F:3C:9C:25:E0:06:A5:7E:B2 Authority key identifier: A8:73:72:01:FA:4C:64:FA:00:56:40:22:DB:06:F6:0E:7E:E2:CD:0D Certificate issuer: /CN=A9164164/serialNumber=A8737201FA4C64FA00564022DB06F60E7EE2CD0D Certificate serial: 8B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.mft Manifest number: 8A Signing time: Sat 09 Aug 2025 06:59:38 +0000 Manifest this update: Sat 09 Aug 2025 06:59:37 +0000 Manifest next update: Sat 16 Aug 2025 06:59:36 +0000 Files and hashes: 1: qHNyAfpMZPoAVkAi2wb2Dn7izQ0.crl (hash: 6uxLBNsuvD+e0K8VSxOdei5rPbqxU2bOg36WG0doeig=) 2: F1487C2AA18211EFA2B7E923C4F9AE02.roa (hash: ow0JlSSKtHwrzhAKotnC4Hb7SPL+BmK/kbudjjYhQGA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.crl rsync://rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 139 (0x8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164164, serialNumber=A8737201FA4C64FA00564022DB06F60E7EE2CD0D Validity Not Before: Aug 9 06:59:37 2025 GMT Not After : Aug 16 06:59:36 2025 GMT Subject: CN=6896f1d9-8725 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:30:7d:e8:59:6d:f2:a6:ac:1c:0d:ac:33:d8: 57:5d:10:68:3c:a7:3d:b4:ad:fe:c6:a2:7a:8f:58: 52:f4:fc:ed:17:c6:fe:08:e8:83:1e:69:8f:60:42: 66:88:15:3c:e7:01:94:50:64:0f:66:f6:6e:25:90: d6:29:59:92:f8:33:a5:b6:bb:18:d8:52:a1:41:13: b6:cc:b4:90:69:16:a9:5f:d1:87:8e:af:72:40:7a: a8:09:af:70:db:23:15:87:24:f6:da:91:80:17:85: ed:68:13:0e:b5:c7:2a:d3:26:ee:3c:c5:e3:3d:8d: 04:82:ff:87:66:b5:c7:ae:71:7f:72:3a:1f:46:58: f7:51:15:f9:a3:57:2f:b6:9a:c5:9a:2b:fc:1b:57: d7:15:29:17:ec:4d:85:07:50:37:d9:19:f8:bc:83: 82:ce:4d:13:87:6e:87:c0:9b:6e:0b:b5:05:01:1b: bb:fd:d7:13:4d:7f:26:1d:7b:55:87:2c:c3:d7:04: 31:d9:76:9d:ea:a8:20:ad:a1:2b:ed:71:d8:19:b7: f8:eb:ec:19:59:af:15:81:f8:01:4e:3f:75:91:1a: c6:be:b2:4f:dd:7f:60:93:31:17:39:07:f6:32:ad: cb:11:38:29:b0:4e:30:a9:9b:11:64:10:11:d0:8f: 2b:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:76:6C:53:8F:3C:07:15:92:B2:E0:9F:3C:9C:25:E0:06:A5:7E:B2 X509v3 Authority Key Identifier: keyid:A8:73:72:01:FA:4C:64:FA:00:56:40:22:DB:06:F6:0E:7E:E2:CD:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164164/A68E264EA18211EF8F4E1623C4F9AE02/qHNyAfpMZPoAVkAi2wb2Dn7izQ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:55:5b:12:56:6b:b9:7c:6d:57:48:6b:da:93:68:69:2b:62: 70:fd:64:8b:3a:9b:46:70:2b:2f:35:22:52:1d:23:84:e7:48: eb:b1:72:56:e5:c3:72:5c:82:1b:37:1f:47:bf:df:8d:70:b7: 11:13:fd:b2:98:54:ca:2a:3a:5b:b8:92:e1:d6:1d:c6:97:04: 00:dc:3f:62:ab:6b:59:dd:f0:f5:29:25:3e:41:48:99:9d:04: 2f:ba:28:11:a5:e1:69:ec:7e:d9:e4:14:58:dc:9b:2f:68:0e: 67:ad:8b:25:73:bf:8c:96:44:ea:24:3e:54:8f:b3:87:b4:c9: 19:23:c7:2d:24:25:ba:4b:33:92:cd:fc:d4:b5:8e:65:5b:a9: f7:62:c8:02:fe:e5:1e:70:5e:a2:b2:cd:c2:b3:67:a5:ac:1e: 64:a5:c4:5f:83:a5:d2:7b:39:3c:c4:4e:68:0d:4d:a9:51:59: aa:94:3b:e9:a1:2c:63:f7:dd:7b:b3:16:1d:7a:22:8b:29:41: c1:ff:c4:f0:72:40:73:8d:60:08:34:6a:1d:30:ef:29:66:e1: 72:a4:64:90:08:fd:37:d5:a2:13:59:b4:f3:c3:53:ff:00:70: 49:db:9b:c5:ce:a3:0f:58:44:c9:d5:98:94:22:82:7a:7d:a8: de:b4:d1:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQxNjQxMTAvBgNVBAUTKEE4NzM3MjAxRkE0QzY0RkEwMDU2NDAyMkRCMDZGNjBF N0VFMkNEMEQwHhcNMjUwODA5MDY1OTM3WhcNMjUwODE2MDY1OTM2WjAYMRYwFAYD VQQDEw02ODk2ZjFkOS04NzI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArDB96Flt8qasHA2sM9hXXRBoPKc9tK3+xqJ6j1hS9PztF8b+COiDHmmPYEJm iBU85wGUUGQPZvZuJZDWKVmS+DOltrsY2FKhQRO2zLSQaRapX9GHjq9yQHqoCa9w 2yMVhyT22pGAF4XtaBMOtccq0ybuPMXjPY0Egv+HZrXHrnF/cjofRlj3URX5o1cv tprFmiv8G1fXFSkX7E2FB1A32Rn4vIOCzk0Th26HwJtuC7UFARu7/dcTTX8mHXtV hyzD1wQx2Xad6qggraEr7XHYGbf46+wZWa8VgfgBTj91kRrGvrJP3X9gkzEXOQf2 Mq3LETgpsE4wqZsRZBAR0I8rvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE52bFOP PAcVkrLgnzycJeAGpX6yMB8GA1UdIwQYMBaAFKhzcgH6TGT6AFZAItsG9g5+4s0N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDE2NC9BNjhFMjY0RUEx ODIxMUVGOEY0RTE2MjNDNEY5QUUwMi9xSE55QWZwTVpQb0FWa0FpMndiMkRuN2l6 UTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3FITnlBZnBNWlBvQVZrQWkyd2IyRG43aXpRMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDE2NC9BNjhFMjY0RUExODIxMUVGOEY0RTE2MjNDNEY5QUUwMi9xSE55QWZwTVpQ b0FWa0FpMndiMkRuN2l6UTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9VVsSVmu5fG1XSGvak2hpK2Jw/WSLOptGcCsvNSJSHSOE50jrsXJW 5cNyXIIbNx9Hv9+NcLcRE/2ymFTKKjpbuJLh1h3GlwQA3D9iq2tZ3fD1KSU+QUiZ nQQvuigRpeFp7H7Z5BRY3JsvaA5nrYslc7+MlkTqJD5Uj7OHtMkZI8ctJCW6SzOS zfzUtY5lW6n3YsgC/uUecF6iss3Cs2elrB5kpcRfg6XSezk8xE5oDU2pUVmqlDvp oSxj9917sxYdeiKLKUHB/8TwckBzjWAINGodMO8pZuFypGSQCP031aITWbTzw1P/ AHBJ25vFzqMPWETJ1ZiUIoJ6fajetNGB -----END CERTIFICATE-----Generated at Sun Aug 10 04:26:48 2025 by rpki-client