$ rpki-client -vvf rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/qjJWJCn4lsCly95WRDFIAzm-upc.mft File: qjJWJCn4lsCly95WRDFIAzm-upc.mft (raw, json) Hash identifier: sJfivmgpyhdJf5Tmjvkw3X7duhI+d32clZC9UohC1z8= Subject key identifier: 53:3B:5B:C2:33:65:E6:36:F1:B1:4C:F3:45:8A:96:D5:CE:F7:61:44 Authority key identifier: AA:32:56:24:29:F8:96:C0:A5:CB:DE:56:44:31:48:03:39:BE:BA:97 Certificate issuer: /CN=A9150F66/serialNumber=AA32562429F896C0A5CBDE564431480339BEBA97 Certificate serial: 1ABF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qjJWJCn4lsCly95WRDFIAzm-upc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/qjJWJCn4lsCly95WRDFIAzm-upc.mft Manifest number: 1AAA Signing time: Sun 20 Jul 2025 15:40:28 +0000 Manifest this update: Sun 20 Jul 2025 15:40:27 +0000 Manifest next update: Sun 27 Jul 2025 15:40:27 +0000 Files and hashes: 1: qjJWJCn4lsCly95WRDFIAzm-upc.crl (hash: ZuikIV3D4uiZXDPoMEkusBjQ2r2sdGFo4opNSe7PKBo=) 2: 753F0A48CFB611EE83724A58C4F9AE02.roa (hash: Y0zJtnbzpmd90X17sv9yMGgLuPfyz+VuYGcqduHEde8=) 3: 7A1D009C0EB611ECB5408277C4F9AE02.roa (hash: OAplGjEOMAWR+zChRVlz8SiE1O7bb/QPXcg3VkFMFkA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/qjJWJCn4lsCly95WRDFIAzm-upc.crl rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/qjJWJCn4lsCly95WRDFIAzm-upc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qjJWJCn4lsCly95WRDFIAzm-upc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 15:40:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6847 (0x1abf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150F66, serialNumber=AA32562429F896C0A5CBDE564431480339BEBA97 Validity Not Before: Jul 20 15:40:27 2025 GMT Not After : Jul 27 15:40:27 2025 GMT Subject: CN=687d0deb-7350 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:67:35:03:35:85:9b:66:f1:fb:c4:ff:7c:b0: ee:85:f7:4f:a0:0a:98:c4:fc:15:8e:d8:b5:10:cd: a8:39:72:77:52:a2:cf:3f:f7:9f:72:6a:63:a4:7d: 9c:01:9c:c3:81:bc:ae:d8:b0:f3:3d:0d:0b:7b:13: 00:ac:8f:79:cb:f0:b6:8a:c1:ef:d9:56:ca:71:b3: 50:98:76:54:63:33:b6:69:4e:2d:14:b9:72:fb:02: b5:42:18:58:90:89:8b:14:de:1e:b0:e7:f7:2c:2a: 13:86:e0:e1:7c:46:02:4d:56:3c:f9:62:18:8b:03: a8:02:5a:4d:84:78:4a:e8:b5:64:1d:41:66:bc:b6: 88:a9:5f:ea:c4:ee:2b:e3:97:5e:3c:02:40:dd:c3: 50:20:df:bf:81:01:16:67:ba:b2:68:1d:91:c2:8a: 41:2e:e5:e6:fc:8f:f6:a6:4c:00:a2:6f:85:43:f0: 87:57:d4:23:5e:99:06:a9:7a:fe:2d:54:09:75:9b: 68:41:c1:a4:09:91:00:14:c2:6e:fc:72:e3:63:f1: 78:0b:2d:69:22:ce:4a:30:47:dc:11:ff:e3:62:c6: c3:ae:05:08:0c:df:cd:dc:da:d4:d9:2c:de:b1:d8: 3d:2e:ac:87:2e:ca:68:23:27:30:e1:f1:75:95:88: ec:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:3B:5B:C2:33:65:E6:36:F1:B1:4C:F3:45:8A:96:D5:CE:F7:61:44 X509v3 Authority Key Identifier: keyid:AA:32:56:24:29:F8:96:C0:A5:CB:DE:56:44:31:48:03:39:BE:BA:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/qjJWJCn4lsCly95WRDFIAzm-upc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qjJWJCn4lsCly95WRDFIAzm-upc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/qjJWJCn4lsCly95WRDFIAzm-upc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:5f:7d:de:b4:45:7d:17:12:b9:7d:d9:82:fe:2c:3a:98:a9: 91:08:fb:ec:95:d8:f4:6d:61:71:ca:03:c9:c8:10:52:ab:80: 5c:96:42:c4:77:80:b8:22:79:98:8f:57:36:33:f3:9f:6e:88: 60:e5:ed:dd:34:8f:0a:8c:8d:49:c8:49:d2:9d:81:4e:b7:6f: 3b:71:f0:19:58:90:1b:8b:3d:9e:da:0c:b7:a2:e3:9e:7b:91: 62:31:3f:73:7b:0a:64:b6:11:f2:e2:b4:7b:df:43:66:b9:9b: 29:60:7a:8a:47:6e:44:cc:ad:ae:f0:88:61:61:ad:c0:2e:74: 7b:af:fe:c3:a7:57:cf:6d:70:7d:0e:77:86:3b:42:95:56:de: ae:f7:c9:03:f8:04:6d:ee:c3:2d:3b:47:a4:9a:dd:47:ab:d6: b2:26:22:88:54:34:2b:af:85:1c:d9:ae:c9:d1:08:92:14:94: c4:ef:f4:30:48:a4:4f:47:f9:7b:5b:c0:d3:75:3e:d4:56:29: e2:9c:40:db:45:41:e9:64:2a:ec:7a:12:8b:b2:6d:8d:9b:02: b2:ee:7e:4f:9d:3b:3b:3b:3b:2e:17:a2:34:44:54:bc:c0:f4: 79:67:62:0a:ed:3e:b8:ab:af:68:ee:29:1c:07:c9:62:82:de: 88:74:eb:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGr8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBGNjYxMTAvBgNVBAUTKEFBMzI1NjI0MjlGODk2QzBBNUNCREU1NjQ0MzE0ODAz MzlCRUJBOTcwHhcNMjUwNzIwMTU0MDI3WhcNMjUwNzI3MTU0MDI3WjAYMRYwFAYD VQQDEw02ODdkMGRlYi03MzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2c1AzWFm2bx+8T/fLDuhfdPoAqYxPwVjti1EM2oOXJ3UqLPP/efcmpjpH2c AZzDgbyu2LDzPQ0LexMArI95y/C2isHv2VbKcbNQmHZUYzO2aU4tFLly+wK1QhhY kImLFN4esOf3LCoThuDhfEYCTVY8+WIYiwOoAlpNhHhK6LVkHUFmvLaIqV/qxO4r 45dePAJA3cNQIN+/gQEWZ7qyaB2RwopBLuXm/I/2pkwAom+FQ/CHV9QjXpkGqXr+ LVQJdZtoQcGkCZEAFMJu/HLjY/F4Cy1pIs5KMEfcEf/jYsbDrgUIDN/N3NrU2Sze sdg9LqyHLspoIycw4fF1lYjs8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFM7W8Iz ZeY28bFM80WKltXO92FEMB8GA1UdIwQYMBaAFKoyViQp+JbApcveVkQxSAM5vrqX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEY2Ni8zRDk4MUNDQzNB MUUxMUU3OUFBMEQ1MUNDNEY5QUUwMi9xakpXSkNuNGxzQ2x5OTVXUkRGSUF6bS11 cGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3FqSldKQ240bHNDbHk5NVdSREZJQXptLXVwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEY2Ni8zRDk4MUNDQzNBMUUxMUU3OUFBMEQ1MUNDNEY5QUUwMi9xakpXSkNuNGxz Q2x5OTVXUkRGSUF6bS11cGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoX33etEV9FxK5fdmC/iw6mKmRCPvsldj0bWFxygPJyBBSq4BclkLE d4C4InmYj1c2M/Ofbohg5e3dNI8KjI1JyEnSnYFOt287cfAZWJAbiz2e2gy3ouOe e5FiMT9zewpkthHy4rR730NmuZspYHqKR25EzK2u8IhhYa3ALnR7r/7Dp1fPbXB9 DneGO0KVVt6u98kD+ARt7sMtO0ekmt1Hq9ayJiKIVDQrr4Uc2a7J0QiSFJTE7/Qw SKRPR/l7W8DTdT7UVininEDbRUHpZCrsehKLsm2NmwKy7n5PnTs7OzsuF6I0RFS8 wPR5Z2IK7T64q69o7ikcB8ligt6IdOsX -----END CERTIFICATE-----Generated at Sun Jul 20 21:18:30 2025 by rpki-client