$ rpki-client -vvf rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft File: QMW9PelSuS6VkhpP1t99sHtKKSE.mft (raw, json) Hash identifier: ZluhHR/dhYLndrZa6SEvq/+grj6xl+7I0MUlmZi9tRY= Subject key identifier: 15:DF:8C:94:F0:34:BF:1E:7E:2C:7D:C6:11:61:F8:8C:A4:4B:EC:AA Authority key identifier: 40:C5:BD:3D:E9:52:B9:2E:95:92:1A:4F:D6:DF:7D:B0:7B:4A:29:21 Certificate issuer: /CN=A915D963/serialNumber=40C5BD3DE952B92E95921A4FD6DF7DB07B4A2921 Certificate serial: 0654 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMW9PelSuS6VkhpP1t99sHtKKSE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft Manifest number: 0786 Signing time: Sun 20 Jul 2025 22:48:23 +0000 Manifest this update: Sun 20 Jul 2025 22:48:22 +0000 Manifest next update: Sun 27 Jul 2025 22:48:22 +0000 Files and hashes: 1: QMW9PelSuS6VkhpP1t99sHtKKSE.crl (hash: OXnLfij7nxB5c2Yz9Kax/Pg3IPNHjwE5Wh8HDjEW5l0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.crl rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMW9PelSuS6VkhpP1t99sHtKKSE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 22:48:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1620 (0x654) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D963, serialNumber=40C5BD3DE952B92E95921A4FD6DF7DB07B4A2921 Validity Not Before: Jul 20 22:48:22 2025 GMT Not After : Jul 27 22:48:22 2025 GMT Subject: CN=687d7237-f237 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:08:c3:95:d6:ec:23:e5:d2:4a:81:be:fc:6f: 79:5b:e1:db:4b:58:60:53:91:8c:f6:8f:3e:63:2e: fc:f4:22:98:61:57:be:fb:92:81:21:fb:4a:36:63: 5f:9e:c2:d1:8f:43:5c:97:32:ff:83:df:4c:4a:23: ec:94:af:5f:f9:59:f5:fc:8d:36:35:c8:4e:b5:bc: 46:c4:ef:19:ac:fa:ae:63:fd:ad:91:5e:0d:60:24: 56:2d:e3:d5:1d:2b:41:a6:66:3b:c3:44:4d:ab:61: 0a:c1:b6:f9:7f:97:56:97:8a:e5:6b:21:21:39:98: b8:43:95:26:54:55:d6:1d:dc:e3:0d:d0:12:65:bf: af:7f:c1:af:e2:ab:35:fa:7e:ed:b1:21:26:96:e7: 64:49:d2:2a:65:a5:bf:c8:ea:54:99:b3:c4:66:17: fb:3a:9e:74:1f:a7:09:4e:ee:f9:4d:92:d5:1b:36: 2a:88:c1:3a:57:41:c3:ba:e5:67:4e:68:ef:54:10: b5:3a:af:de:e4:a6:6d:b8:0b:d7:4d:da:24:b3:46: e3:eb:cd:2a:6c:67:22:ed:a0:a0:18:de:17:53:49: b4:d7:4d:72:16:a9:a9:fd:6c:a4:27:3f:80:de:5b: 76:27:56:fa:b4:47:da:28:78:ae:f2:bf:b2:9d:e2: 1a:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:DF:8C:94:F0:34:BF:1E:7E:2C:7D:C6:11:61:F8:8C:A4:4B:EC:AA X509v3 Authority Key Identifier: keyid:40:C5:BD:3D:E9:52:B9:2E:95:92:1A:4F:D6:DF:7D:B0:7B:4A:29:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QMW9PelSuS6VkhpP1t99sHtKKSE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D963/90E80BC897E211EB9B39D531C4F9AE02/QMW9PelSuS6VkhpP1t99sHtKKSE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:8c:5d:67:c2:c5:fc:bd:93:77:eb:91:0e:cc:7d:e0:1c:0f: 7c:3e:11:27:e9:62:1e:f3:a7:cd:b2:e2:5e:9f:71:e9:07:78: 6c:81:fb:2e:8b:b6:44:1c:32:d7:92:14:ee:27:62:80:16:4b: c4:3d:16:6a:6d:73:9a:f9:5d:42:51:8e:f5:80:fa:c9:49:8c: 6e:78:9a:b5:8f:33:5f:6f:f3:62:8d:cf:bc:64:b0:fc:ff:c9: 3d:45:8a:90:53:6f:d8:ce:c3:e0:a2:e1:e2:98:be:f6:aa:7a: 2f:51:0c:24:d2:7e:65:0e:e4:e3:30:2b:35:d2:fa:d4:ed:f0: ef:a1:28:e9:2a:f2:60:18:88:e2:fa:4f:fb:71:14:e1:15:e1: 9f:f0:e2:19:b5:d9:6e:78:62:1b:fe:6f:84:48:a8:66:78:c4: 34:32:08:e8:dd:42:8e:e6:51:c0:78:53:11:7b:46:e8:5f:1a: 33:78:9d:49:73:a0:78:32:ba:f0:2e:99:18:e2:45:61:8a:b8: 3f:de:f9:56:d6:a5:d9:93:75:87:b6:e0:87:fa:fb:cd:e5:aa: 7f:1d:f2:76:61:d8:3c:fc:62:30:25:82:cc:3b:cc:54:f1:88: a8:d0:f7:99:05:64:0b:d9:67:00:af:ff:84:08:87:90:6c:52: 5b:87:c1:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ5NjMxMTAvBgNVBAUTKDQwQzVCRDNERTk1MkI5MkU5NTkyMUE0RkQ2REY3REIw N0I0QTI5MjEwHhcNMjUwNzIwMjI0ODIyWhcNMjUwNzI3MjI0ODIyWjAYMRYwFAYD VQQDEw02ODdkNzIzNy1mMjM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyQjDldbsI+XSSoG+/G95W+HbS1hgU5GM9o8+Yy789CKYYVe++5KBIftKNmNf nsLRj0NclzL/g99MSiPslK9f+Vn1/I02NchOtbxGxO8ZrPquY/2tkV4NYCRWLePV HStBpmY7w0RNq2EKwbb5f5dWl4rlayEhOZi4Q5UmVFXWHdzjDdASZb+vf8Gv4qs1 +n7tsSEmludkSdIqZaW/yOpUmbPEZhf7Op50H6cJTu75TZLVGzYqiME6V0HDuuVn TmjvVBC1Oq/e5KZtuAvXTdoks0bj680qbGci7aCgGN4XU0m0101yFqmp/WykJz+A 3lt2J1b6tEfaKHiu8r+yneIahQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBXfjJTw NL8efix9xhFh+IykS+yqMB8GA1UdIwQYMBaAFEDFvT3pUrkulZIaT9bffbB7Sikh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDk2My85MEU4MEJDODk3 RTIxMUVCOUIzOUQ1MzFDNEY5QUUwMi9RTVc5UGVsU3VTNlZraHBQMXQ5OXNIdEtL U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FNVzlQZWxTdVM2VmtocFAxdDk5c0h0S0tTRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDk2My85MEU4MEJDODk3RTIxMUVCOUIzOUQ1MzFDNEY5QUUwMi9RTVc5UGVsU3VT NlZraHBQMXQ5OXNIdEtLU0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJjF1nwsX8vZN365EOzH3gHA98PhEn6WIe86fNsuJen3HpB3hsgfsu i7ZEHDLXkhTuJ2KAFkvEPRZqbXOa+V1CUY71gPrJSYxueJq1jzNfb/Nijc+8ZLD8 /8k9RYqQU2/YzsPgouHimL72qnovUQwk0n5lDuTjMCs10vrU7fDvoSjpKvJgGIji +k/7cRThFeGf8OIZtdlueGIb/m+ESKhmeMQ0Mgjo3UKO5lHAeFMRe0boXxozeJ1J c6B4MrrwLpkY4kVhirg/3vlW1qXZk3WHtuCH+vvN5ap/HfJ2Ydg8/GIwJYLMO8xU 8Yio0PeZBWQL2WcAr/+ECIeQbFJbh8Fc -----END CERTIFICATE-----Generated at Mon Jul 21 07:12:00 2025 by rpki-client