$ rpki-client -vvf rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft File: QG4t-6oOoAfdxmmT8sezCNoKGlc.mft (raw, json) Hash identifier: l2hjaODrrJM8PF+FfTXeRU5Cvf3goCSD9GAPe7dPfmY= Subject key identifier: 8B:DF:C1:C0:E7:6E:89:66:71:A7:D6:0F:B9:3E:09:B1:DC:05:4F:2E Authority key identifier: 40:6E:2D:FB:AA:0E:A0:07:DD:C6:69:93:F2:C7:B3:08:DA:0A:1A:57 Certificate issuer: /CN=A91315C1/serialNumber=406E2DFBAA0EA007DDC66993F2C7B308DA0A1A57 Certificate serial: 0BE8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft Manifest number: 0BE1 Signing time: Fri 18 Jul 2025 19:00:00 +0000 Manifest this update: Fri 18 Jul 2025 19:00:00 +0000 Manifest next update: Fri 25 Jul 2025 19:00:00 +0000 Files and hashes: 1: QG4t-6oOoAfdxmmT8sezCNoKGlc.crl (hash: ybx97t/dslcPOtJFDDp86Ww4QeA3GuC/Xnkp5s694C8=) 2: 9D6DB59E1C5211EA8C6AAE37C4F9AE02.roa (hash: D/Qj3pCK2Np4jpoJRYW5KlTZ+Slzggz4RvRPZv/ZYEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.crl rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 18:59:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3048 (0xbe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91315C1, serialNumber=406E2DFBAA0EA007DDC66993F2C7B308DA0A1A57 Validity Not Before: Jul 18 19:00:00 2025 GMT Not After : Jul 25 19:00:00 2025 GMT Subject: CN=687a99b0-eba9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:f3:e0:d4:26:d0:a4:69:99:88:22:10:4b:26: e9:66:24:1a:f6:28:89:53:a3:29:1a:37:1a:da:b1: ab:d6:13:0c:ff:37:d0:1f:98:4a:d8:f0:6e:2d:ae: 4d:46:49:28:31:d1:e3:48:44:ac:c1:08:df:00:78: 0e:33:e6:e1:6f:28:99:61:0d:07:1e:dd:76:66:bb: 45:a1:dc:0e:9f:a7:41:22:be:47:85:97:2e:c7:7a: 57:6b:0e:8e:b9:64:ba:cc:a1:11:34:da:31:9f:77: 80:6a:d6:0a:2c:41:05:68:ba:a8:89:3c:40:1f:4e: 81:f1:14:41:16:47:ab:64:09:2b:84:17:26:c9:71: 57:6e:61:60:06:bd:a8:4c:15:a8:4f:5e:e6:f2:5f: e9:3e:6c:6e:f1:63:c3:b9:e0:9c:ce:9f:5f:8d:83: a9:fc:cc:fa:85:f8:d4:ed:e7:11:e7:05:cc:c7:10: 1a:ea:e2:ff:0c:3e:c7:00:3a:76:15:ad:4c:47:cd: 79:50:64:9b:67:b1:c7:d1:fb:b3:ee:10:45:fd:6d: eb:a3:01:d4:e1:2d:b4:c8:cd:e2:76:2f:49:75:eb: 19:72:43:e4:37:33:53:fa:68:cb:b9:c3:31:73:f6: 20:6e:be:22:d9:7c:d4:fb:fe:3b:49:fc:64:d3:2f: b0:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:DF:C1:C0:E7:6E:89:66:71:A7:D6:0F:B9:3E:09:B1:DC:05:4F:2E X509v3 Authority Key Identifier: keyid:40:6E:2D:FB:AA:0E:A0:07:DD:C6:69:93:F2:C7:B3:08:DA:0A:1A:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QG4t-6oOoAfdxmmT8sezCNoKGlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91315C1/3009A8AA1C5211EA84D19937C4F9AE02/QG4t-6oOoAfdxmmT8sezCNoKGlc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:50:60:c3:c0:fd:8d:7d:70:74:09:0a:17:bf:dd:4e:fd:15: 2b:04:6b:15:de:0c:99:da:17:e0:ca:17:e3:bc:bb:b0:8d:bb: 24:ab:77:aa:7a:03:19:f6:14:d5:5f:42:5b:34:f7:03:d2:9e: 02:c3:c3:fd:eb:68:87:5d:2f:22:5b:41:cd:c0:00:39:c4:5d: 79:ee:c3:a5:43:50:d7:88:5d:1d:12:89:a4:4c:69:d5:9e:9e: ee:63:5e:12:49:25:f0:97:e0:92:df:8c:1b:2b:6c:63:e1:74: 3c:28:ec:94:0f:6b:25:e1:ad:f6:7e:85:30:c7:81:ee:d4:58: 39:4d:62:4a:1c:ae:80:e1:c4:07:36:b8:49:3f:70:c8:e5:c9: fc:e8:2a:ea:bd:c9:31:67:c6:0b:7b:31:a1:af:53:7d:c4:a8: 1c:24:d6:39:77:4d:cb:01:b7:b5:52:91:59:0c:d5:ed:52:36: e4:0c:c7:d6:90:a3:b3:98:5a:f0:a1:f7:92:45:50:19:69:24: 2d:d6:ee:da:bd:3a:4b:c1:54:a8:ac:5f:e0:f6:f3:51:13:ef: bf:d3:d2:51:74:91:86:0c:3c:47:0f:ea:e7:45:77:d3:a2:58: 08:1c:d6:0b:20:20:c4:a9:b7:e3:f0:ab:1f:07:73:04:44:45: d1:a6:95:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE1QzExMTAvBgNVBAUTKDQwNkUyREZCQUEwRUEwMDdEREM2Njk5M0YyQzdCMzA4 REEwQTFBNTcwHhcNMjUwNzE4MTkwMDAwWhcNMjUwNzI1MTkwMDAwWjAYMRYwFAYD VQQDEw02ODdhOTliMC1lYmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8/Pg1CbQpGmZiCIQSybpZiQa9iiJU6MpGjca2rGr1hMM/zfQH5hK2PBuLa5N RkkoMdHjSESswQjfAHgOM+bhbyiZYQ0HHt12ZrtFodwOn6dBIr5HhZcux3pXaw6O uWS6zKERNNoxn3eAatYKLEEFaLqoiTxAH06B8RRBFkerZAkrhBcmyXFXbmFgBr2o TBWoT17m8l/pPmxu8WPDueCczp9fjYOp/Mz6hfjU7ecR5wXMxxAa6uL/DD7HADp2 Fa1MR815UGSbZ7HH0fuz7hBF/W3rowHU4S20yM3idi9JdesZckPkNzNT+mjLucMx c/Ygbr4i2XzU+/47Sfxk0y+wPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIvfwcDn bolmcafWD7k+CbHcBU8uMB8GA1UdIwQYMBaAFEBuLfuqDqAH3cZpk/LHswjaChpX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTVDMS8zMDA5QThBQTFD NTIxMUVBODREMTk5MzdDNEY5QUUwMi9RRzR0LTZvT29BZmR4bW1UOHNlekNOb0tH bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FHNHQtNm9Pb0FmZHhtbVQ4c2V6Q05vS0dsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTVDMS8zMDA5QThBQTFDNTIxMUVBODREMTk5MzdDNEY5QUUwMi9RRzR0LTZvT29B ZmR4bW1UOHNlekNOb0tHbGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAUGDDwP2NfXB0CQoXv91O/RUrBGsV3gyZ2hfgyhfjvLuwjbskq3eq egMZ9hTVX0JbNPcD0p4Cw8P962iHXS8iW0HNwAA5xF157sOlQ1DXiF0dEomkTGnV np7uY14SSSXwl+CS34wbK2xj4XQ8KOyUD2sl4a32foUwx4Hu1Fg5TWJKHK6A4cQH NrhJP3DI5cn86CrqvckxZ8YLezGhr1N9xKgcJNY5d03LAbe1UpFZDNXtUjbkDMfW kKOzmFrwofeSRVAZaSQt1u7avTpLwVSorF/g9vNRE++/09JRdJGGDDxHD+rnRXfT olgIHNYLICDEqbfj8KsfB3MEREXRppW0 -----END CERTIFICATE-----Generated at Sun Jul 20 07:56:49 2025 by rpki-client