$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft File: Qf4dQTWrLWdiPnYIM5hGitT6odw.mft (raw, json) Hash identifier: CXCQXmFpI7BZtF14vxM8QlJjywAMAFvCIsHUVrhhwY8= Subject key identifier: A3:29:36:81:66:4B:B4:7F:2B:02:26:FC:F5:5E:A9:33:B5:13:13:63 Authority key identifier: 41:FE:1D:41:35:AB:2D:67:62:3E:76:08:33:98:46:8A:D4:FA:A1:DC Certificate issuer: /CN=A911B5D7/serialNumber=41FE1D4135AB2D67623E76083398468AD4FAA1DC Certificate serial: 1C11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft Manifest number: 1BDF Signing time: Sun 20 Jul 2025 16:17:05 +0000 Manifest this update: Sun 20 Jul 2025 16:17:04 +0000 Manifest next update: Sun 27 Jul 2025 16:17:04 +0000 Files and hashes: 1: Qf4dQTWrLWdiPnYIM5hGitT6odw.crl (hash: ek9sxvM7Fcs8n8FBf4iKHYd7VLP/K60UfLn6Sz+WmjQ=) 2: C177A6728D2011EF97C11D3CC4F9AE02.roa (hash: DzfAqd947/aw0GqhghbdVi3PbAms0DDMSaZSwYpp3rk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.crl rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 16:17:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7185 (0x1c11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5D7, serialNumber=41FE1D4135AB2D67623E76083398468AD4FAA1DC Validity Not Before: Jul 20 16:17:04 2025 GMT Not After : Jul 27 16:17:04 2025 GMT Subject: CN=687d1681-cffe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:76:88:f7:3e:f6:e2:15:0a:c9:eb:01:e2:d8: 6f:b0:27:61:18:41:cf:ca:52:81:8b:f3:25:cf:25: 9e:2a:d6:ac:ca:9d:32:d5:95:09:2a:5a:25:8a:9c: ff:83:05:76:95:31:00:18:f8:d1:ad:5f:5b:b9:ac: e6:e3:ad:ba:00:1b:74:c3:1e:35:09:e6:4c:62:34: f7:88:bb:7c:49:51:45:c1:23:42:cc:02:60:de:ff: 0e:f9:4d:d1:73:3a:48:ff:7f:d6:9d:44:42:de:5d: e2:c9:84:c0:55:13:6d:dc:7e:5d:ae:9d:41:d4:bf: b8:9f:50:97:a1:ee:0b:8e:f3:96:06:dc:d5:59:39: f2:cf:4f:a6:c2:b0:77:bf:25:f3:93:14:86:09:20: 59:d0:69:b4:42:31:b7:84:d7:40:29:cc:9f:d0:01: d7:12:5f:c4:78:df:d9:05:fb:27:56:2f:c0:f3:8f: 9b:7a:a2:47:50:98:78:a7:09:d3:9f:57:d4:03:bd: 73:35:b5:c6:99:04:d3:3f:11:08:8a:d7:e2:8e:99: 1d:f8:e3:75:39:b6:2d:d4:9a:3a:ef:eb:a7:24:c3: 08:46:55:e1:6d:6d:1f:35:81:59:49:ad:ad:2b:a2: 6c:f5:6a:4a:13:47:b6:cf:e7:3b:81:ee:83:d8:75: 79:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:29:36:81:66:4B:B4:7F:2B:02:26:FC:F5:5E:A9:33:B5:13:13:63 X509v3 Authority Key Identifier: keyid:41:FE:1D:41:35:AB:2D:67:62:3E:76:08:33:98:46:8A:D4:FA:A1:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qf4dQTWrLWdiPnYIM5hGitT6odw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5D7/25872BBE03B411E7B811AA14C4F9AE02/Qf4dQTWrLWdiPnYIM5hGitT6odw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:3a:99:95:7e:19:23:e5:6e:05:02:4e:e0:32:a0:70:44:64: 82:14:75:32:fb:d5:e4:05:e9:bc:b4:a3:89:99:b6:a9:ab:21: e0:b5:5b:96:f2:54:9d:8c:94:8b:1b:5b:af:18:1c:b2:11:d0: 1c:5a:84:2b:dc:ac:c4:4c:3d:8a:5b:7f:9a:9b:63:d3:7c:62: e6:e1:16:d5:9a:f2:28:10:ea:c8:f0:44:9a:01:6a:3d:17:46: 5e:dd:63:6e:d0:aa:5b:36:5c:87:24:dd:86:a0:3f:59:9a:84: 1e:7b:d8:25:02:90:f6:e3:84:03:81:31:3c:c9:47:2c:22:56: fa:78:a8:50:f7:8d:0d:60:54:11:f5:34:19:38:c5:3e:6f:6e: 05:32:9c:a1:72:a6:98:ef:4a:92:bc:2e:ac:c5:98:2b:c3:fb: 61:3a:91:2c:4a:f8:11:2d:0c:f8:e1:bd:65:15:2f:33:84:56: 47:6f:5e:e5:cc:1a:73:ba:23:37:d6:2a:8e:32:d4:b3:f2:09: e4:e3:2a:ce:c9:24:74:cf:c9:cb:23:6d:0a:cc:29:90:3b:27: 7e:e0:dc:04:a5:42:69:9a:6c:19:0c:12:7d:6a:ee:26:f5:b4: c9:f8:e5:7f:1d:21:5f:62:42:e3:33:83:03:43:1f:59:fe:7e: f3:2b:a5:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHBEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1RDcxMTAvBgNVBAUTKDQxRkUxRDQxMzVBQjJENjc2MjNFNzYwODMzOTg0NjhB RDRGQUExREMwHhcNMjUwNzIwMTYxNzA0WhcNMjUwNzI3MTYxNzA0WjAYMRYwFAYD VQQDEw02ODdkMTY4MS1jZmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3aI9z724hUKyesB4thvsCdhGEHPylKBi/MlzyWeKtasyp0y1ZUJKlolipz/ gwV2lTEAGPjRrV9buazm4626ABt0wx41CeZMYjT3iLt8SVFFwSNCzAJg3v8O+U3R czpI/3/WnURC3l3iyYTAVRNt3H5drp1B1L+4n1CXoe4LjvOWBtzVWTnyz0+mwrB3 vyXzkxSGCSBZ0Gm0QjG3hNdAKcyf0AHXEl/EeN/ZBfsnVi/A84+beqJHUJh4pwnT n1fUA71zNbXGmQTTPxEIitfijpkd+ON1ObYt1Jo67+unJMMIRlXhbW0fNYFZSa2t K6Js9WpKE0e2z+c7ge6D2HV5yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKMpNoFm S7R/KwIm/PVeqTO1ExNjMB8GA1UdIwQYMBaAFEH+HUE1qy1nYj52CDOYRorU+qHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVENy8yNTg3MkJCRTAz QjQxMUU3QjgxMUFBMTRDNEY5QUUwMi9RZjRkUVRXckxXZGlQbllJTTVoR2l0VDZv ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FmNGRRVFdyTFdkaVBuWUlNNWhHaXRUNm9kdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVENy8yNTg3MkJCRTAzQjQxMUU3QjgxMUFBMTRDNEY5QUUwMi9RZjRkUVRXckxX ZGlQbllJTTVoR2l0VDZvZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBuOpmVfhkj5W4FAk7gMqBwRGSCFHUy+9XkBem8tKOJmbapqyHgtVuW 8lSdjJSLG1uvGByyEdAcWoQr3KzETD2KW3+am2PTfGLm4RbVmvIoEOrI8ESaAWo9 F0Ze3WNu0KpbNlyHJN2GoD9ZmoQee9glApD244QDgTE8yUcsIlb6eKhQ940NYFQR 9TQZOMU+b24FMpyhcqaY70qSvC6sxZgrw/thOpEsSvgRLQz44b1lFS8zhFZHb17l zBpzuiM31iqOMtSz8gnk4yrOySR0z8nLI20KzCmQOyd+4NwEpUJpmmwZDBJ9au4m 9bTJ+OV/HSFfYkLjM4MDQx9Z/n7zK6WK -----END CERTIFICATE-----Generated at Mon Jul 21 06:09:33 2025 by rpki-client