$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/QBtCmQbJDqA-z8YbFbpO8SOQM3k.mft File: QBtCmQbJDqA-z8YbFbpO8SOQM3k.mft (raw, json) Hash identifier: FmvOgn/kd+qV8O4h0sQPPqICl+EKgMd5+pJKwvfcs/g= Subject key identifier: 08:17:57:9B:66:18:1D:78:4D:1C:36:A6:E4:C2:AE:07:5C:51:73:63 Authority key identifier: 40:1B:42:99:06:C9:0E:A0:3E:CF:C6:1B:15:BA:4E:F1:23:90:33:79 Certificate issuer: /CN=A9157D7A/serialNumber=401B429906C90EA03ECFC61B15BA4EF123903379 Certificate serial: 079D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBtCmQbJDqA-z8YbFbpO8SOQM3k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/QBtCmQbJDqA-z8YbFbpO8SOQM3k.mft Manifest number: 070C Signing time: Fri 18 Jul 2025 22:58:37 +0000 Manifest this update: Fri 18 Jul 2025 22:58:37 +0000 Manifest next update: Fri 25 Jul 2025 22:58:37 +0000 Files and hashes: 1: QBtCmQbJDqA-z8YbFbpO8SOQM3k.crl (hash: fUA8XS3XU30hlJKkeWoeGafXuK4FX16apYhdB0YOJlg=) 2: 2E96A63A690A11EF9525E980C4F9AE02.roa (hash: UWNHUtR2tpu3wwcSUr5hiqVkZ+ymUeDHv4HEKQzHk7w=) 3: 324F926C3BAC11F09BF98E0EC4F9AE02.roa (hash: zZjP0B8l+TLImIu+0/08vqSXgQ0sTSWao/0VpFAxOXM=) 4: C186DD80331A11EC8F33C209C4F9AE02.roa (hash: 4LAsvPxFJVP/38iRypn40TaMOPz9lx58IyU7j8BYYnw=) 5: 03BA8B36824411EF94479387C4F9AE02.roa (hash: J+iY4JEtmySFwOCqaP72SvJVDZLPvNEiLKvI7NyNzmE=) 6: 5FD09C68393C11EFB8A9065BC4F9AE02.roa (hash: vMbIDct9MA/MTRo5g6rG9rCZ9V47y1ZmNSqrr1liLbI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/QBtCmQbJDqA-z8YbFbpO8SOQM3k.crl rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/QBtCmQbJDqA-z8YbFbpO8SOQM3k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBtCmQbJDqA-z8YbFbpO8SOQM3k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 22:58:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1949 (0x79d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D7A, serialNumber=401B429906C90EA03ECFC61B15BA4EF123903379 Validity Not Before: Jul 18 22:58:37 2025 GMT Not After : Jul 25 22:58:37 2025 GMT Subject: CN=687ad19d-7d7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c8:3d:c9:a7:e0:15:94:89:a6:f3:2e:3f:8c: 2b:0c:c2:ea:9b:38:5c:97:78:59:32:20:22:83:cf: eb:44:b2:b5:28:ca:3f:7d:ca:5d:98:db:d3:5b:6a: f7:58:e3:44:74:45:c5:62:c9:12:1a:58:70:69:6c: 94:d2:f7:b6:16:f9:29:15:65:b8:cb:68:02:4a:96: b3:c9:3f:c3:28:03:6a:46:f8:8c:ac:28:1c:b5:1e: 5d:1d:fa:83:73:84:59:45:e0:b9:77:a2:48:e0:45: de:c1:98:47:fb:49:1e:94:4b:36:d7:7b:18:e6:ba: bb:aa:ba:36:92:55:19:6a:32:73:a3:2a:a1:70:a5: 65:49:ad:6b:5f:12:04:88:61:0c:b2:4d:c3:71:d0: be:34:9f:9a:d0:8c:86:68:37:c6:8b:a9:a3:91:c2: 86:a5:c5:dc:91:27:d4:ec:55:61:3b:b9:6d:df:bf: bb:e6:f8:c7:ad:80:1e:35:06:22:08:5d:8f:8d:78: bd:e4:eb:7c:03:83:b7:1a:69:a0:2d:0a:30:6e:44: d1:89:0b:62:b2:77:27:cb:39:32:2e:a4:0d:2b:45: 99:7a:67:e0:7d:9e:2b:74:50:6b:ba:39:fb:3d:9c: 0a:49:03:14:29:8e:c3:c0:ab:9c:33:a5:ca:40:af: 58:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:17:57:9B:66:18:1D:78:4D:1C:36:A6:E4:C2:AE:07:5C:51:73:63 X509v3 Authority Key Identifier: keyid:40:1B:42:99:06:C9:0E:A0:3E:CF:C6:1B:15:BA:4E:F1:23:90:33:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/QBtCmQbJDqA-z8YbFbpO8SOQM3k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QBtCmQbJDqA-z8YbFbpO8SOQM3k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D7A/5DDCCCC6991511EB96727243C4F9AE02/QBtCmQbJDqA-z8YbFbpO8SOQM3k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:2d:70:d2:6b:0e:38:8b:9f:e9:b6:cd:3c:d8:57:e0:0b:68: 95:b7:41:66:20:00:31:3d:08:20:2f:f3:da:de:f2:43:eb:9c: df:be:bd:63:0f:78:19:00:89:cd:76:e6:b3:64:0e:04:d8:73: f9:b9:70:2d:5d:ae:7c:b5:b5:0a:bc:2b:33:08:9e:70:45:58: 62:58:9f:8c:ce:26:cc:01:f8:30:48:42:ee:ea:4a:26:f1:13: 92:a7:fb:a3:30:35:a6:85:a4:57:4f:8c:e9:aa:db:69:6d:97: 5b:8e:07:15:c8:18:43:fa:78:b4:61:d6:01:1a:35:17:67:9c: b9:12:49:3e:db:40:c9:b5:5f:2f:2c:a5:76:3d:43:c6:50:f4: e6:ba:f7:3f:39:05:31:43:ab:42:d2:c5:fd:79:73:ae:0f:dd: 0b:04:98:d4:51:19:2d:12:ea:89:53:1a:96:df:b5:aa:c2:56: d2:ac:d0:33:6c:10:94:a1:cf:bc:26:8e:10:b8:79:95:0e:bf: a5:97:31:29:b7:5f:2a:6d:5b:bd:2e:78:f4:47:22:8e:e1:6c: e9:4c:20:37:97:46:e3:58:6f:d0:40:ef:aa:e5:19:cd:3f:35: 67:d4:d1:ed:ee:c2:6c:b8:97:d3:ef:8d:7c:30:c6:d8:fc:c0: 92:3b:b0:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB50wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEN0ExMTAvBgNVBAUTKDQwMUI0Mjk5MDZDOTBFQTAzRUNGQzYxQjE1QkE0RUYx MjM5MDMzNzkwHhcNMjUwNzE4MjI1ODM3WhcNMjUwNzI1MjI1ODM3WjAYMRYwFAYD VQQDEw02ODdhZDE5ZC03ZDdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvsg9yafgFZSJpvMuP4wrDMLqmzhcl3hZMiAig8/rRLK1KMo/fcpdmNvTW2r3 WONEdEXFYskSGlhwaWyU0ve2FvkpFWW4y2gCSpazyT/DKANqRviMrCgctR5dHfqD c4RZReC5d6JI4EXewZhH+0kelEs213sY5rq7qro2klUZajJzoyqhcKVlSa1rXxIE iGEMsk3DcdC+NJ+a0IyGaDfGi6mjkcKGpcXckSfU7FVhO7lt37+75vjHrYAeNQYi CF2PjXi95Ot8A4O3GmmgLQowbkTRiQtisncnyzkyLqQNK0WZemfgfZ4rdFBrujn7 PZwKSQMUKY7DwKucM6XKQK9YpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAgXV5tm GB14TRw2puTCrgdcUXNjMB8GA1UdIwQYMBaAFEAbQpkGyQ6gPs/GGxW6TvEjkDN5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0Q3QS81RERDQ0NDNjk5 MTUxMUVCOTY3MjcyNDNDNEY5QUUwMi9RQnRDbVFiSkRxQS16OFliRmJwTzhTT1FN M2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FCdENtUWJKRHFBLXo4WWJGYnBPOFNPUU0zay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0Q3QS81RERDQ0NDNjk5MTUxMUVCOTY3MjcyNDNDNEY5QUUwMi9RQnRDbVFiSkRx QS16OFliRmJwTzhTT1FNM2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzLXDSaw44i5/pts082FfgC2iVt0FmIAAxPQggL/Pa3vJD65zfvr1j D3gZAInNduazZA4E2HP5uXAtXa58tbUKvCszCJ5wRVhiWJ+MzibMAfgwSELu6kom 8ROSp/ujMDWmhaRXT4zpqttpbZdbjgcVyBhD+ni0YdYBGjUXZ5y5Ekk+20DJtV8v LKV2PUPGUPTmuvc/OQUxQ6tC0sX9eXOuD90LBJjUURktEuqJUxqW37WqwlbSrNAz bBCUoc+8Jo4QuHmVDr+llzEpt18qbVu9Lnj0RyKO4WzpTCA3l0bjWG/QQO+q5RnN PzVn1NHt7sJsuJfT7418MMbY/MCSO7Ag -----END CERTIFICATE-----Generated at Sun Jul 20 11:26:37 2025 by rpki-client