$ rpki-client -vvf rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft File: qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft (raw, json) Hash identifier: vFV+AzCd+99D/Kbl2+bxMkxHjThzrqlXRwrcADmZaTA= Subject key identifier: 66:16:13:90:0E:7D:DE:BE:44:52:10:5C:D3:BB:99:83:55:CD:14:CD Authority key identifier: A8:72:42:B7:36:27:D4:29:23:4A:5F:54:C5:23:BB:41:EB:BE:87:AA Certificate issuer: /CN=A911FABC/serialNumber=A87242B73627D429234A5F54C523BB41EBBE87AA Certificate serial: 01C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft Manifest number: 01C3 Signing time: Sat 19 Jul 2025 03:17:22 +0000 Manifest this update: Sat 19 Jul 2025 03:17:22 +0000 Manifest next update: Sat 26 Jul 2025 03:17:22 +0000 Files and hashes: 1: qHJCtzYn1CkjSl9UxSO7Qeu-h6o.crl (hash: lmPrsjsNGpofDhArsBTzgwY8LEkOK4gchY8Mh6wWHzw=) 2: 9BF55430C4D611EDA65E8C87C4F9AE02.roa (hash: li4OxnhOQgQRujPF67sN5Xz793LOnzHpSZGFaFwRWYE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.crl rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:17:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 456 (0x1c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FABC, serialNumber=A87242B73627D429234A5F54C523BB41EBBE87AA Validity Not Before: Jul 19 03:17:22 2025 GMT Not After : Jul 26 03:17:22 2025 GMT Subject: CN=687b0e42-79ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:03:7d:ac:9f:2c:b8:aa:7d:21:78:e2:e7:3e: 55:78:85:c7:21:7b:1b:ef:f6:e1:79:85:00:e7:54: 9b:dd:dc:7a:79:d1:2a:a6:b3:cf:3a:af:4f:56:04: 79:66:af:2d:f7:25:a3:d8:e5:a8:21:11:f3:66:9c: da:c1:2d:7e:a4:57:62:53:ed:88:09:7f:c8:60:87: be:b4:4f:c0:52:05:84:59:fe:2d:a5:72:86:40:aa: 6a:88:fa:37:d2:e4:13:1d:68:37:9b:23:f2:b3:9e: 81:0b:59:a7:76:c3:dc:b4:39:30:69:af:6e:2c:4b: f8:05:39:78:fc:0b:d7:7d:24:2b:6f:7e:15:2b:5f: 00:b3:5f:29:9f:23:6e:60:19:be:6c:60:90:2b:c5: 39:a4:93:d1:6b:12:31:21:8d:07:e2:ca:29:66:dd: b1:5a:ff:28:4b:ab:5f:a3:31:79:b6:9a:7c:a3:01: 0f:df:c8:3f:39:c3:81:91:34:12:54:dd:e2:74:39: 6e:3d:19:e7:23:e6:e5:15:61:4e:57:76:05:be:d7: a2:85:93:16:48:62:56:c3:7d:5a:93:81:35:32:07: 88:ed:70:6f:a6:ff:ec:85:bc:ac:9a:aa:a9:3f:1f: f2:a3:1b:bf:90:80:1c:c6:60:0a:70:83:bb:c8:e3: d7:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:16:13:90:0E:7D:DE:BE:44:52:10:5C:D3:BB:99:83:55:CD:14:CD X509v3 Authority Key Identifier: keyid:A8:72:42:B7:36:27:D4:29:23:4A:5F:54:C5:23:BB:41:EB:BE:87:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:9a:d5:d1:d3:d1:3a:a3:f6:46:6c:39:2e:30:e1:be:56:86: 90:bb:80:df:d3:34:c0:50:df:58:f2:c8:cb:b2:fc:79:2c:72: f0:f0:98:3e:46:6b:92:1d:a8:08:39:15:e1:f0:68:2e:16:8a: 98:71:37:7b:fa:7b:89:ca:f7:f1:24:5c:bd:e9:62:58:4a:7b: 34:f3:d9:e5:8b:5a:20:7e:6d:3b:ef:f4:de:53:ed:df:44:dd: 1f:af:74:19:cc:0e:2d:7b:c9:c5:76:f0:92:fa:25:20:4d:d6: 44:bb:8e:98:a9:c4:55:c9:27:60:87:cd:11:b5:72:34:43:53: ed:a6:4a:dd:31:de:bc:f6:ec:fe:aa:c5:3d:69:7e:d4:5c:e0: 7c:64:dc:a4:dd:99:fb:a8:1c:da:67:98:99:a0:37:dc:e0:23: 01:1f:26:07:db:4f:76:a9:b4:f4:d5:77:87:af:37:bf:8f:ba: 6b:50:6a:90:b2:91:a1:f6:43:8b:0c:56:8b:c1:be:46:b8:12: d4:77:75:9c:54:e5:0c:33:bf:51:ed:01:68:ba:6f:03:36:99: fd:eb:0f:04:9d:fc:3f:8d:19:31:79:b4:ec:5c:32:59:31:73: b8:47:8f:60:26:53:f4:c9:0e:f1:7d:99:9a:ba:c2:85:1a:8b: 35:f2:c7:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZBQkMxMTAvBgNVBAUTKEE4NzI0MkI3MzYyN0Q0MjkyMzRBNUY1NEM1MjNCQjQx RUJCRTg3QUEwHhcNMjUwNzE5MDMxNzIyWhcNMjUwNzI2MDMxNzIyWjAYMRYwFAYD VQQDEw02ODdiMGU0Mi03OWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxgN9rJ8suKp9IXji5z5VeIXHIXsb7/bheYUA51Sb3dx6edEqprPPOq9PVgR5 Zq8t9yWj2OWoIRHzZpzawS1+pFdiU+2ICX/IYIe+tE/AUgWEWf4tpXKGQKpqiPo3 0uQTHWg3myPys56BC1mndsPctDkwaa9uLEv4BTl4/AvXfSQrb34VK18As18pnyNu YBm+bGCQK8U5pJPRaxIxIY0H4sopZt2xWv8oS6tfozF5tpp8owEP38g/OcOBkTQS VN3idDluPRnnI+blFWFOV3YFvteihZMWSGJWw31ak4E1MgeI7XBvpv/shbysmqqp Px/yoxu/kIAcxmAKcIO7yOPXAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGYWE5AO fd6+RFIQXNO7mYNVzRTNMB8GA1UdIwQYMBaAFKhyQrc2J9QpI0pfVMUju0Hrvoeq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkFCQy9EOTQyMDA3NkM0 RDIxMUVEQkYwRTE5ODJDNEY5QUUwMi9xSEpDdHpZbjFDa2pTbDlVeFNPN1FldS1o Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FISkN0elluMUNralNsOVV4U083UWV1LWg2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RkFCQy9EOTQyMDA3NkM0RDIxMUVEQkYwRTE5ODJDNEY5QUUwMi9xSEpDdHpZbjFD a2pTbDlVeFNPN1FldS1oNm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYmtXR09E6o/ZGbDkuMOG+VoaQu4Df0zTAUN9Y8sjLsvx5LHLw8Jg+ RmuSHagIORXh8GguFoqYcTd7+nuJyvfxJFy96WJYSns089nli1ogfm077/TeU+3f RN0fr3QZzA4te8nFdvCS+iUgTdZEu46YqcRVySdgh80RtXI0Q1PtpkrdMd689uz+ qsU9aX7UXOB8ZNyk3Zn7qBzaZ5iZoDfc4CMBHyYH2092qbT01XeHrze/j7prUGqQ spGh9kOLDFaLwb5GuBLUd3WcVOUMM79R7QFoum8DNpn96w8Enfw/jRkxebTsXDJZ MXO4R49gJlP0yQ7xfZmausKFGos18scN -----END CERTIFICATE-----Generated at Sun Jul 20 19:00:25 2025 by rpki-client