$ rpki-client -vvf rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft File: QBS8tK-bGBlk17ekDRv51vieCP8.mft (raw, json) Hash identifier: t1BRfQpdgHxnpKcIkNo6qJ8tEVClze1GuAVX2BXqkRY= Subject key identifier: 30:60:ED:A1:44:67:7E:18:11:07:BB:C2:3B:4B:07:96:53:BC:70:3F Authority key identifier: 40:14:BC:B4:AF:9B:18:19:64:D7:B7:A4:0D:1B:F9:D6:F8:9E:08:FF Certificate issuer: /CN=A91323E4/serialNumber=4014BCB4AF9B181964D7B7A40D1BF9D6F89E08FF Certificate serial: 07E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft Manifest number: 07E5 Signing time: Fri 18 Jul 2025 21:15:17 +0000 Manifest this update: Fri 18 Jul 2025 21:15:17 +0000 Manifest next update: Fri 25 Jul 2025 21:15:17 +0000 Files and hashes: 1: QBS8tK-bGBlk17ekDRv51vieCP8.crl (hash: gX5Ki+GDi9UTVvDI0+XYj9DpwilqOehmhEEt08Mt6Ac=) 2: 6944587246B311F090CDB927C4F9AE02.roa (hash: Xm1qupXC//oXbz29OwYv/8QXpHuz3gLyZUWmRlVaUYU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.crl rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 21:15:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2022 (0x7e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91323E4, serialNumber=4014BCB4AF9B181964D7B7A40D1BF9D6F89E08FF Validity Not Before: Jul 18 21:15:17 2025 GMT Not After : Jul 25 21:15:17 2025 GMT Subject: CN=687ab965-c937 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:e9:51:71:cc:9c:55:e2:b5:d0:02:98:4c:66: 5f:5d:45:d2:ba:1b:87:b3:af:de:92:f6:e6:2a:16: 6c:fc:ff:e1:df:8a:a3:55:71:6f:aa:c9:b9:ca:ba: c7:12:a9:c4:68:fe:32:c2:49:b7:00:5b:22:b5:f1: 8b:8d:a8:24:9c:c6:8d:34:d1:1f:6a:58:17:83:48: 63:c9:12:69:33:fe:3a:c7:cc:3e:58:f7:42:43:e2: 4b:12:cf:9d:fb:41:f6:7c:c4:25:e7:18:73:54:6a: 0c:5d:b0:77:13:34:91:77:2e:6c:9a:06:bc:93:08: 7a:ea:11:d9:80:b0:86:1e:3c:19:f9:29:98:bb:c8: de:be:f9:c7:a8:11:92:37:f0:79:cf:12:3a:30:cb: 30:97:7e:a4:04:50:8a:50:0c:69:16:68:fe:7b:b6: 18:f0:2b:91:3e:c1:5c:a9:ea:fc:49:b0:31:06:d3: 12:52:4b:81:ee:8a:0a:a2:07:48:bb:67:53:34:82: 78:d0:36:86:12:9c:4b:ca:55:c4:45:cf:77:ac:8c: cd:2a:e6:64:91:b8:19:1e:c5:aa:99:23:17:27:cd: 7d:87:f1:40:de:c6:c8:a7:ef:ca:ad:29:53:a7:56: 79:d9:1c:53:df:b3:51:8b:81:81:aa:c5:3e:72:a7: 9a:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:60:ED:A1:44:67:7E:18:11:07:BB:C2:3B:4B:07:96:53:BC:70:3F X509v3 Authority Key Identifier: keyid:40:14:BC:B4:AF:9B:18:19:64:D7:B7:A4:0D:1B:F9:D6:F8:9E:08:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBS8tK-bGBlk17ekDRv51vieCP8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91323E4/190B0D06F26211EAA522345AC4F9AE02/QBS8tK-bGBlk17ekDRv51vieCP8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:bd:8d:2e:1c:85:f1:0d:74:6c:ae:46:a6:b1:63:0a:38:1d: 7e:d5:57:c0:c3:bd:15:7d:f6:6b:ad:ca:b8:7d:b0:e4:87:18: 2c:c6:19:07:38:a6:f2:b6:97:37:a7:6d:28:a0:b1:42:f9:c6: c3:d1:ed:d5:53:81:29:6f:5d:8d:93:cd:66:9e:17:40:cd:89: 3a:e7:c5:ec:33:fc:64:02:bc:d9:99:43:07:60:cb:09:f5:22: 83:52:e0:9f:ec:15:c6:44:79:69:87:f0:7b:f5:0c:ff:77:ef: c2:a0:7a:b4:30:63:b6:30:dc:55:14:88:d4:d4:62:c6:88:0e: 86:3d:34:ff:f7:b9:3e:e8:74:94:2f:34:6c:0c:cb:7f:e1:be: 92:73:1a:fb:1f:43:8a:8e:4d:f4:3e:b8:16:9e:e4:8b:87:8e: 4f:83:bb:4c:da:b2:fd:89:52:18:3a:70:2f:f9:84:22:a6:c0: 6d:b7:a3:af:19:16:a1:36:5f:bd:0f:11:fd:ec:c5:50:84:a8: fe:99:3b:07:0c:83:28:7d:a7:10:b3:cf:bb:bf:d8:9c:3e:d2: b8:39:f6:6e:34:29:d7:ab:81:27:a0:0e:bc:e9:c1:96:f5:bd: 5d:57:7c:4d:39:a7:01:c7:c2:6b:3f:a9:7b:7c:86:1a:93:0f: 05:af:95:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzIzRTQxMTAvBgNVBAUTKDQwMTRCQ0I0QUY5QjE4MTk2NEQ3QjdBNDBEMUJGOUQ2 Rjg5RTA4RkYwHhcNMjUwNzE4MjExNTE3WhcNMjUwNzI1MjExNTE3WjAYMRYwFAYD VQQDEw02ODdhYjk2NS1jOTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnelRccycVeK10AKYTGZfXUXSuhuHs6/ekvbmKhZs/P/h34qjVXFvqsm5yrrH EqnEaP4ywkm3AFsitfGLjagknMaNNNEfalgXg0hjyRJpM/46x8w+WPdCQ+JLEs+d +0H2fMQl5xhzVGoMXbB3EzSRdy5smga8kwh66hHZgLCGHjwZ+SmYu8jevvnHqBGS N/B5zxI6MMswl36kBFCKUAxpFmj+e7YY8CuRPsFcqer8SbAxBtMSUkuB7ooKogdI u2dTNIJ40DaGEpxLylXERc93rIzNKuZkkbgZHsWqmSMXJ819h/FA3sbIp+/KrSlT p1Z52RxT37NRi4GBqsU+cqeagwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDBg7aFE Z34YEQe7wjtLB5ZTvHA/MB8GA1UdIwQYMBaAFEAUvLSvmxgZZNe3pA0b+db4ngj/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjNFNC8xOTBCMEQwNkYy NjIxMUVBQTUyMjM0NUFDNEY5QUUwMi9RQlM4dEstYkdCbGsxN2VrRFJ2NTF2aWVD UDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FCUzh0Sy1iR0JsazE3ZWtEUnY1MXZpZUNQOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjNFNC8xOTBCMEQwNkYyNjIxMUVBQTUyMjM0NUFDNEY5QUUwMi9RQlM4dEstYkdC bGsxN2VrRFJ2NTF2aWVDUDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+vY0uHIXxDXRsrkamsWMKOB1+1VfAw70VffZrrcq4fbDkhxgsxhkH OKbytpc3p20ooLFC+cbD0e3VU4Epb12Nk81mnhdAzYk658XsM/xkArzZmUMHYMsJ 9SKDUuCf7BXGRHlph/B79Qz/d+/CoHq0MGO2MNxVFIjU1GLGiA6GPTT/97k+6HSU LzRsDMt/4b6Scxr7H0OKjk30PrgWnuSLh45Pg7tM2rL9iVIYOnAv+YQipsBtt6Ov GRahNl+9DxH97MVQhKj+mTsHDIMofacQs8+7v9icPtK4OfZuNCnXq4EnoA686cGW 9b1dV3xNOacBx8JrP6l7fIYakw8Fr5XN -----END CERTIFICATE-----Generated at Sun Jul 20 07:57:56 2025 by rpki-client