$ rpki-client -vvf rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.mft File: qHH05sNy2xC2TfOZX6FR77OfmYs.mft (raw, json) Hash identifier: l4vD3BXSk2gPKmBHJynhJ7XnG0m5UGv36UaXYuBGLzk= Subject key identifier: 92:A7:A8:E2:50:E1:72:78:63:52:BC:28:AA:10:B3:91:B1:73:9B:15 Authority key identifier: A8:71:F4:E6:C3:72:DB:10:B6:4D:F3:99:5F:A1:51:EF:B3:9F:99:8B Certificate issuer: /CN=A9195F49/serialNumber=A871F4E6C372DB10B64DF3995FA151EFB39F998B Certificate serial: 0453 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHH05sNy2xC2TfOZX6FR77OfmYs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.mft Manifest number: 044C Signing time: Sat 09 Aug 2025 00:47:08 +0000 Manifest this update: Sat 09 Aug 2025 00:47:07 +0000 Manifest next update: Sat 16 Aug 2025 00:47:07 +0000 Files and hashes: 1: qHH05sNy2xC2TfOZX6FR77OfmYs.crl (hash: iluWMPD60ABUYzuP6zdTSadLH/9WztqFbxzlt55uJCk=) 2: 5FC75DCC66A511EC9C199341C4F9AE02.roa (hash: jsVFzS1V8/4nPs0LiSJz70mLYAraQYwRrwx0A1zMdZQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.crl rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHH05sNy2xC2TfOZX6FR77OfmYs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1107 (0x453) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195F49, serialNumber=A871F4E6C372DB10B64DF3995FA151EFB39F998B Validity Not Before: Aug 9 00:47:07 2025 GMT Not After : Aug 16 00:47:07 2025 GMT Subject: CN=68969a8c-3581 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f5:53:18:c0:69:92:97:79:e1:a2:5d:e9:58: e4:ba:9c:94:a1:76:8a:95:61:91:6e:1e:f0:af:34: b7:19:45:4c:f2:92:66:84:08:ec:86:c9:5e:b3:ab: 97:45:28:f1:eb:f1:87:7e:a7:dc:ac:65:c8:40:fb: 09:9d:6d:f1:04:af:3a:76:23:99:ae:43:01:f2:4d: 73:96:92:7e:99:56:6c:9d:d5:d8:42:b3:67:4e:57: ef:e9:ae:c0:65:ac:0a:1b:27:77:5b:af:e9:21:fc: 0f:99:ef:55:af:77:f4:4a:41:09:f8:09:5f:39:c9: 00:f5:bd:a5:71:c5:73:a3:a5:90:85:82:bb:57:41: d8:07:f3:d9:39:1c:24:5f:96:90:be:13:9e:11:70: 88:ee:ec:9f:1b:7d:7b:2e:77:94:3b:11:6c:50:57: 7a:e9:b6:39:b5:3f:6e:bd:ff:e2:07:4d:df:85:bc: e6:e6:75:b6:ce:ee:5d:e6:52:d5:dc:57:21:1b:c7: eb:c1:99:9b:3a:ea:10:ab:9b:52:1a:39:ae:85:cf: f0:65:c9:66:99:3e:0b:0e:ed:66:65:86:62:1f:09: 0e:c3:26:d8:9b:fc:88:07:a5:dc:7c:4c:83:dc:4c: 97:18:8a:93:91:24:29:a5:b8:40:72:e1:8f:09:9d: 51:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:A7:A8:E2:50:E1:72:78:63:52:BC:28:AA:10:B3:91:B1:73:9B:15 X509v3 Authority Key Identifier: keyid:A8:71:F4:E6:C3:72:DB:10:B6:4D:F3:99:5F:A1:51:EF:B3:9F:99:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHH05sNy2xC2TfOZX6FR77OfmYs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195F49/9D3C749266A211ECBB7A0A3CC4F9AE02/qHH05sNy2xC2TfOZX6FR77OfmYs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:6d:6c:ba:53:e9:09:d3:56:da:0c:b3:d6:8b:5d:ae:81:e7: fa:07:5c:da:56:66:8a:91:31:5e:56:ce:c1:12:67:a6:81:70: 08:92:ac:5d:7d:08:4b:2a:0f:f3:a0:07:18:44:ca:94:32:56: 71:e0:54:c1:69:f5:8c:ac:6b:81:fa:f1:90:82:8f:b4:90:c1: 86:54:b0:cc:6b:51:53:e3:1d:41:5e:98:3e:aa:87:c1:08:83: 8f:c3:ec:f4:9c:59:06:8b:fd:1c:49:a5:e6:84:41:1e:38:82: af:34:80:51:41:e1:3b:76:0c:2b:03:2c:a0:dd:f3:9d:be:f1: 82:43:4e:c4:74:af:1e:3b:49:71:86:25:59:f8:a8:08:cf:ab: ef:9a:d2:df:7f:9a:41:c7:29:b6:6b:2d:60:6f:4c:a3:90:cd: 20:ac:62:a4:0a:9a:0d:b2:bf:6b:fc:e7:c3:c1:ec:7d:91:3d: 8c:37:ee:8d:64:48:9c:1e:ce:73:c3:49:24:2e:e6:c9:65:1b: c4:90:06:cc:31:1e:82:0b:8c:1f:15:e1:fb:b8:ea:a5:59:20: a2:ab:51:0f:a3:d9:70:c5:82:ba:ce:08:c1:95:1b:1b:54:00: 97:3f:b8:f3:4c:35:d0:b8:b0:af:fc:2d:d3:9b:cc:1b:75:e4: 42:46:19:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVGNDkxMTAvBgNVBAUTKEE4NzFGNEU2QzM3MkRCMTBCNjRERjM5OTVGQTE1MUVG QjM5Rjk5OEIwHhcNMjUwODA5MDA0NzA3WhcNMjUwODE2MDA0NzA3WjAYMRYwFAYD VQQDEw02ODk2OWE4Yy0zNTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuPVTGMBpkpd54aJd6VjkupyUoXaKlWGRbh7wrzS3GUVM8pJmhAjshsles6uX RSjx6/GHfqfcrGXIQPsJnW3xBK86diOZrkMB8k1zlpJ+mVZsndXYQrNnTlfv6a7A ZawKGyd3W6/pIfwPme9Vr3f0SkEJ+AlfOckA9b2lccVzo6WQhYK7V0HYB/PZORwk X5aQvhOeEXCI7uyfG317LneUOxFsUFd66bY5tT9uvf/iB03fhbzm5nW2zu5d5lLV 3FchG8frwZmbOuoQq5tSGjmuhc/wZclmmT4LDu1mZYZiHwkOwybYm/yIB6XcfEyD 3EyXGIqTkSQppbhAcuGPCZ1RZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJKnqOJQ 4XJ4Y1K8KKoQs5Gxc5sVMB8GA1UdIwQYMBaAFKhx9ObDctsQtk3zmV+hUe+zn5mL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUY0OS85RDNDNzQ5MjY2 QTIxMUVDQkI3QTBBM0NDNEY5QUUwMi9xSEgwNXNOeTJ4QzJUZk9aWDZGUjc3T2Zt WXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FISDA1c055MnhDMlRmT1pYNkZSNzdPZm1Zcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUY0OS85RDNDNzQ5MjY2QTIxMUVDQkI3QTBBM0NDNEY5QUUwMi9xSEgwNXNOeTJ4 QzJUZk9aWDZGUjc3T2ZtWXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhbWy6U+kJ01baDLPWi12ugef6B1zaVmaKkTFeVs7BEmemgXAIkqxd fQhLKg/zoAcYRMqUMlZx4FTBafWMrGuB+vGQgo+0kMGGVLDMa1FT4x1BXpg+qofB CIOPw+z0nFkGi/0cSaXmhEEeOIKvNIBRQeE7dgwrAyyg3fOdvvGCQ07EdK8eO0lx hiVZ+KgIz6vvmtLff5pBxym2ay1gb0yjkM0grGKkCpoNsr9r/OfDwex9kT2MN+6N ZEicHs5zw0kkLubJZRvEkAbMMR6CC4wfFeH7uOqlWSCiq1EPo9lwxYK6zgjBlRsb VACXP7jzTDXQuLCv/C3Tm8wbdeRCRhkb -----END CERTIFICATE-----Generated at Sat Aug 9 23:18:01 2025 by rpki-client