$ rpki-client -vvf rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft File: QgHlq32GvGha8R8C3mhAUVttgFg.mft (raw, json) Hash identifier: 5VPDnikDJPSHL6YSjInQPwHS3fCsAgVPxXVqgW06Y4A= Subject key identifier: 51:62:84:81:12:8A:54:0D:E8:57:99:1B:6D:32:29:FB:AA:B0:62:21 Authority key identifier: 42:01:E5:AB:7D:86:BC:68:5A:F1:1F:02:DE:68:40:51:5B:6D:80:58 Certificate issuer: /CN=A91454B0/serialNumber=4201E5AB7D86BC685AF11F02DE6840515B6D8058 Certificate serial: 34A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft Manifest number: 34A2 Signing time: Fri 18 Jul 2025 14:40:01 +0000 Manifest this update: Fri 18 Jul 2025 14:40:00 +0000 Manifest next update: Fri 25 Jul 2025 14:40:00 +0000 Files and hashes: 1: QgHlq32GvGha8R8C3mhAUVttgFg.crl (hash: QItsp+n2UBnFhT0G91DWTNAWMKNpC0d3PpYr4PctI/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.crl rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 14:40:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13474 (0x34a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91454B0, serialNumber=4201E5AB7D86BC685AF11F02DE6840515B6D8058 Validity Not Before: Jul 18 14:40:00 2025 GMT Not After : Jul 25 14:40:00 2025 GMT Subject: CN=687a5cc1-434c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:08:7e:47:e8:7a:90:f9:bd:18:8d:ba:55:fb: 16:e9:18:26:99:0e:c9:7b:be:42:1e:29:17:fd:b4: 77:98:7a:77:9c:23:60:bc:fe:5f:89:dd:91:a1:bf: 40:d6:de:36:e1:87:4e:03:d6:21:c2:cb:82:f8:79: 9f:d3:3a:10:a9:22:eb:9d:86:f3:fb:74:de:b0:69: 47:0c:50:f1:da:c8:07:c5:d6:8f:ae:b7:a2:e1:25: 8c:6f:b5:41:e0:ef:50:20:49:ed:62:0f:f5:b9:7e: 4b:35:7f:1a:1c:7e:19:9f:73:b1:f6:1a:e5:00:ba: 9f:12:91:0b:3d:89:68:01:49:29:1b:6b:0d:08:ea: 1e:ee:54:ac:26:0c:cf:e4:b1:87:9f:ef:eb:82:bd: 75:e5:b1:38:1c:4c:8e:84:63:65:1c:ee:95:42:4b: a6:b6:b5:7d:70:d9:6d:a9:da:11:58:b5:18:30:19: 0f:e3:8a:eb:12:36:16:3c:a4:ef:6b:37:87:13:b2: 76:42:1a:43:d6:3d:c0:3a:1c:b7:56:e3:ef:e7:92: 13:ac:8f:77:fe:7d:d2:ff:7c:61:e1:65:e0:6c:12: de:d1:30:76:ed:7e:6b:63:0b:f9:ee:5a:ba:c0:1a: 40:85:8a:4c:52:2a:92:79:3d:cf:1e:77:af:23:dc: 0a:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:62:84:81:12:8A:54:0D:E8:57:99:1B:6D:32:29:FB:AA:B0:62:21 X509v3 Authority Key Identifier: keyid:42:01:E5:AB:7D:86:BC:68:5A:F1:1F:02:DE:68:40:51:5B:6D:80:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QgHlq32GvGha8R8C3mhAUVttgFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91454B0/1CC4DDB61D8E11E2902E3CEC08B02CD2/QgHlq32GvGha8R8C3mhAUVttgFg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:44:18:0f:4f:fd:1c:c9:6e:e1:ff:4a:ed:36:10:ef:84:ec: 71:86:4d:6e:b6:9a:bf:e1:93:cc:b6:54:88:b2:5b:8b:41:c7: b6:1b:18:0c:36:60:1c:d0:e7:3e:b8:b7:d6:64:7a:d0:a0:2f: 4b:c8:2d:35:22:31:9c:fa:10:a5:39:12:83:2c:b1:d2:17:3c: c7:86:73:6b:66:09:5e:27:94:79:aa:42:fd:a3:ec:a9:28:65: 3b:98:a3:74:4a:82:28:92:0f:4e:99:71:d0:1c:1f:87:96:fd: b2:d1:35:31:9b:f6:3b:1b:69:de:f9:ae:fd:70:3d:a1:ec:3b: 46:f3:31:6d:2e:2e:cb:de:8e:26:0d:ba:64:de:12:74:f6:77: 41:c8:43:c6:c9:d9:52:c6:25:c6:1a:70:1b:f2:c7:bd:b1:99: 8c:f6:7c:1b:a5:01:67:7c:44:4c:c9:2d:89:0f:99:bf:d9:bf: f7:39:d6:cc:ab:24:5b:23:73:48:54:66:10:63:b1:6b:b4:c6: ba:6a:c1:57:b1:4d:99:a9:d2:2d:d5:64:66:aa:ae:e3:3c:ca: f3:8d:0c:4e:45:ec:c1:c9:5f:a7:fa:0f:20:30:28:9f:88:63: 0b:14:91:81:f5:05:5d:67:0f:1b:ed:50:a6:e5:b6:0c:53:23: 71:29:16:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0QjAxMTAvBgNVBAUTKDQyMDFFNUFCN0Q4NkJDNjg1QUYxMUYwMkRFNjg0MDUx NUI2RDgwNTgwHhcNMjUwNzE4MTQ0MDAwWhcNMjUwNzI1MTQ0MDAwWjAYMRYwFAYD VQQDEw02ODdhNWNjMS00MzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQh+R+h6kPm9GI26VfsW6RgmmQ7Je75CHikX/bR3mHp3nCNgvP5fid2Rob9A 1t424YdOA9YhwsuC+Hmf0zoQqSLrnYbz+3TesGlHDFDx2sgHxdaPrrei4SWMb7VB 4O9QIEntYg/1uX5LNX8aHH4Zn3Ox9hrlALqfEpELPYloAUkpG2sNCOoe7lSsJgzP 5LGHn+/rgr115bE4HEyOhGNlHO6VQkumtrV9cNltqdoRWLUYMBkP44rrEjYWPKTv azeHE7J2QhpD1j3AOhy3VuPv55ITrI93/n3S/3xh4WXgbBLe0TB27X5rYwv57lq6 wBpAhYpMUiqSeT3PHnevI9wKfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFFihIES ilQN6FeZG20yKfuqsGIhMB8GA1UdIwQYMBaAFEIB5at9hrxoWvEfAt5oQFFbbYBY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTRCMC8xQ0M0RERCNjFE OEUxMUUyOTAyRTNDRUMwOEIwMkNEMi9RZ0hscTMyR3ZHaGE4UjhDM21oQVVWdHRn RmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FnSGxxMzJHdkdoYThSOEMzbWhBVVZ0dGdGZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTRCMC8xQ0M0RERCNjFEOEUxMUUyOTAyRTNDRUMwOEIwMkNEMi9RZ0hscTMyR3ZH aGE4UjhDM21oQVVWdHRnRmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIRBgPT/0cyW7h/0rtNhDvhOxxhk1utpq/4ZPMtlSIsluLQce2GxgM NmAc0Oc+uLfWZHrQoC9LyC01IjGc+hClORKDLLHSFzzHhnNrZgleJ5R5qkL9o+yp KGU7mKN0SoIokg9OmXHQHB+Hlv2y0TUxm/Y7G2ne+a79cD2h7DtG8zFtLi7L3o4m Dbpk3hJ09ndByEPGydlSxiXGGnAb8se9sZmM9nwbpQFnfERMyS2JD5m/2b/3OdbM qyRbI3NIVGYQY7FrtMa6asFXsU2ZqdIt1WRmqq7jPMrzjQxORezByV+n+g8gMCif iGMLFJGB9QVdZw8b7VCm5bYMUyNxKRZ4 -----END CERTIFICATE-----Generated at Sun Jul 20 06:39:35 2025 by rpki-client