$ rpki-client -vvf rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft File: QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft (raw, json) Hash identifier: 2+0SgifTCAkjE8S/T7l2rqxhqYyZ8V3RP/7gwv1nUjA= Subject key identifier: 79:B1:EA:A6:82:AF:14:0B:7F:EA:B1:DC:3F:72:89:B2:4B:C3:93:75 Authority key identifier: 40:EB:C2:5A:08:BA:5E:75:41:CE:14:2D:2B:C2:8A:E4:F8:28:8A:4B Certificate issuer: /CN=A9165C64/serialNumber=40EBC25A08BA5E7541CE142D2BC28AE4F8288A4B Certificate serial: 0CA2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft Manifest number: 0C93 Signing time: Fri 08 Aug 2025 18:28:37 +0000 Manifest this update: Fri 08 Aug 2025 18:28:36 +0000 Manifest next update: Fri 15 Aug 2025 18:28:36 +0000 Files and hashes: 1: QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl (hash: Xt5NLlaygIYc5u1b2ZnLBYckZ9rutbb4GQCOU7iKNjg=) 2: FD9E07EAAB1111EF89574855C4F9AE02.roa (hash: CJEgaP8KqXDJxOZP2RnxuUbrLWDCGR55rSwKPSomEHQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3234 (0xca2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165C64, serialNumber=40EBC25A08BA5E7541CE142D2BC28AE4F8288A4B Validity Not Before: Aug 8 18:28:36 2025 GMT Not After : Aug 15 18:28:36 2025 GMT Subject: CN=689641d4-66ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:a7:5c:c5:89:36:71:f5:c5:5e:ca:ef:ed:a2: c4:cb:90:95:28:05:65:3f:8a:49:d8:1a:81:ca:aa: 82:ae:a0:40:7f:27:93:36:24:6f:c8:8f:80:e3:39: 64:0a:bf:6b:96:3b:8b:0a:f6:5d:c0:8e:c5:65:46: 61:8a:30:8c:29:c8:9b:10:17:2d:7e:57:87:2f:d1: a9:64:84:44:74:63:a5:15:8c:96:b0:38:08:2e:a9: f5:f8:85:5c:1c:68:9f:44:64:e9:79:2f:bc:09:f6: 91:61:72:0a:95:eb:f7:eb:a1:1d:97:62:41:81:a1: 46:8a:4d:1f:7e:73:02:7d:88:cf:51:2a:33:7a:1a: 9a:35:bf:39:13:d2:e0:54:8c:23:ad:57:32:dd:00: 3b:79:d5:1b:a4:c5:8e:25:ff:0e:95:d8:50:f0:71: 8a:9b:07:30:e2:0a:3d:09:bc:dd:30:e1:25:1d:0d: 40:a9:ff:44:ac:05:3d:22:aa:15:85:61:af:db:0c: 24:a0:87:a9:42:1a:5a:42:31:98:70:d0:84:56:ff: 16:b5:f3:fd:34:c4:a6:20:c7:3b:99:14:e2:3f:f2: d2:5c:f9:1e:cc:99:9f:ee:df:b7:8f:97:c7:07:27: f7:f9:d4:ec:be:6f:18:13:42:80:4b:d5:d1:e4:99: 3d:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:B1:EA:A6:82:AF:14:0B:7F:EA:B1:DC:3F:72:89:B2:4B:C3:93:75 X509v3 Authority Key Identifier: keyid:40:EB:C2:5A:08:BA:5E:75:41:CE:14:2D:2B:C2:8A:E4:F8:28:8A:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QOvCWgi6XnVBzhQtK8KK5Pgoiks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165C64/425B423CFFA311E98735A685C4F9AE02/QOvCWgi6XnVBzhQtK8KK5Pgoiks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:7a:c2:8f:95:68:e1:06:46:c3:b1:2b:67:e4:d5:09:60:21: 3e:69:6e:c8:fb:6d:ab:fc:c9:7d:f7:58:38:d3:cb:5b:74:7f: 09:23:a6:71:5c:8c:d4:c0:66:82:24:1a:24:13:4f:bb:5c:1f: a9:42:fd:1a:4e:5f:79:1d:3d:6e:f6:85:0e:0b:85:af:9e:16: 1f:80:94:dd:a7:2c:e1:86:31:f7:ac:97:33:31:06:62:6b:69: e4:8b:12:d6:62:48:73:1c:57:d9:60:63:47:b5:c9:c4:a8:d4: 17:14:3f:85:34:86:6e:ef:f8:70:80:aa:4d:4b:2f:6d:61:7d: fd:e9:3a:9c:3e:bd:63:25:e2:bb:ef:42:7b:c1:3e:dd:95:4a: 75:26:c8:b9:86:1b:41:79:9a:ce:21:63:6a:db:18:eb:e7:c4: 66:59:d2:e1:ee:e8:e0:71:69:91:50:19:77:2a:91:78:0f:8d: 9d:89:e2:9c:83:78:c0:66:15:47:f3:7e:6c:b7:ab:39:63:a9: 4e:07:a2:38:08:fb:15:3d:94:cc:ad:2b:d3:95:f9:93:0b:fc: 9b:ed:b7:b0:99:c1:54:c2:5a:b4:7b:d2:a6:e9:8a:8a:54:2a: a3:c4:d1:eb:02:c3:8a:f8:fb:4d:44:2b:82:f5:4c:5c:f1:9b: 3d:f2:c4:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVDNjQxMTAvBgNVBAUTKDQwRUJDMjVBMDhCQTVFNzU0MUNFMTQyRDJCQzI4QUU0 RjgyODhBNEIwHhcNMjUwODA4MTgyODM2WhcNMjUwODE1MTgyODM2WjAYMRYwFAYD VQQDEw02ODk2NDFkNC02NmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA76dcxYk2cfXFXsrv7aLEy5CVKAVlP4pJ2BqByqqCrqBAfyeTNiRvyI+A4zlk Cr9rljuLCvZdwI7FZUZhijCMKcibEBctfleHL9GpZIREdGOlFYyWsDgILqn1+IVc HGifRGTpeS+8CfaRYXIKlev366Edl2JBgaFGik0ffnMCfYjPUSozehqaNb85E9Lg VIwjrVcy3QA7edUbpMWOJf8OldhQ8HGKmwcw4go9CbzdMOElHQ1Aqf9ErAU9IqoV hWGv2wwkoIepQhpaQjGYcNCEVv8WtfP9NMSmIMc7mRTiP/LSXPkezJmf7t+3j5fH Byf3+dTsvm8YE0KAS9XR5Jk9LwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHmx6qaC rxQLf+qx3D9yibJLw5N1MB8GA1UdIwQYMBaAFEDrwloIul51Qc4ULSvCiuT4KIpL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUM2NC80MjVCNDIzQ0ZG QTMxMUU5ODczNUE2ODVDNEY5QUUwMi9RT3ZDV2dpNlhuVkJ6aFF0SzhLSzVQZ29p a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FPdkNXZ2k2WG5WQnpoUXRLOEtLNVBnb2lrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUM2NC80MjVCNDIzQ0ZGQTMxMUU5ODczNUE2ODVDNEY5QUUwMi9RT3ZDV2dpNlhu VkJ6aFF0SzhLSzVQZ29pa3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaesKPlWjhBkbDsStn5NUJYCE+aW7I+22r/Ml991g408tbdH8JI6Zx XIzUwGaCJBokE0+7XB+pQv0aTl95HT1u9oUOC4WvnhYfgJTdpyzhhjH3rJczMQZi a2nkixLWYkhzHFfZYGNHtcnEqNQXFD+FNIZu7/hwgKpNSy9tYX396TqcPr1jJeK7 70J7wT7dlUp1Jsi5hhtBeZrOIWNq2xjr58RmWdLh7ujgcWmRUBl3KpF4D42dieKc g3jAZhVH835st6s5Y6lOB6I4CPsVPZTMrSvTlfmTC/yb7bewmcFUwlq0e9Km6YqK VCqjxNHrAsOK+PtNRCuC9Uxc8Zs98sQm -----END CERTIFICATE-----Generated at Sun Aug 10 16:06:34 2025 by rpki-client