$ rpki-client -vvf rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.mft File: QSE7L18kKfwyjsP06V1YhkAv62k.mft (raw, json) Hash identifier: 296MOR4XhGZ+DJN7+SzEvPuhsaJ9tiFW/duwfdZca04= Subject key identifier: A3:DB:75:47:6F:E5:D3:98:ED:51:23:48:2B:89:1E:2A:43:13:0F:A3 Authority key identifier: 41:21:3B:2F:5F:24:29:FC:32:8E:C3:F4:E9:5D:58:86:40:2F:EB:69 Certificate issuer: /CN=A91757CB/serialNumber=41213B2F5F2429FC328EC3F4E95D5886402FEB69 Certificate serial: 0100 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QSE7L18kKfwyjsP06V1YhkAv62k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.mft Manifest number: F7 Signing time: Sat 19 Jul 2025 05:29:56 +0000 Manifest this update: Sat 19 Jul 2025 05:29:55 +0000 Manifest next update: Sat 26 Jul 2025 05:29:55 +0000 Files and hashes: 1: QSE7L18kKfwyjsP06V1YhkAv62k.crl (hash: AJsIRouRWcLiniWfLCxjTZuRmQQMwUg60MzzxZhdRrk=) 2: 47142068221311EFB680F113C4F9AE02.roa (hash: Wz7+GyEz4KEH5axb8P5kr/PKoJv9dBdTnqoEdl36Fic=) 3: EE01A248F2FB11EE9AA9E24CC4F9AE02.roa (hash: u90GvXDC2nj38gPxwI7H6zVq1FrynP/V/Ah+aJjG8F8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.crl rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QSE7L18kKfwyjsP06V1YhkAv62k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:29:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 256 (0x100) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91757CB, serialNumber=41213B2F5F2429FC328EC3F4E95D5886402FEB69 Validity Not Before: Jul 19 05:29:55 2025 GMT Not After : Jul 26 05:29:55 2025 GMT Subject: CN=687b2d53-5e8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:6d:21:d1:78:90:89:50:12:b5:67:47:eb:fc: a2:30:31:e7:00:03:a9:88:f1:62:4d:8a:65:76:81: f1:2c:a3:b4:5a:9c:d1:5e:62:72:04:66:43:6d:08: 18:81:09:36:c5:56:34:12:96:52:22:2e:59:1b:2e: 98:2b:ca:2b:14:f6:5c:0c:08:f8:73:a7:71:db:a3: 49:44:a1:5a:cd:a8:b1:04:d1:8a:a3:17:6c:99:13: 25:00:e2:0c:a2:0c:e3:80:f9:1e:6a:6d:a0:a1:04: 41:bc:a5:11:3d:91:f6:9d:03:94:6a:21:b2:3d:22: 1b:d9:0a:f9:82:da:bb:e0:dc:09:06:ab:e8:35:a0: ab:e9:ce:b1:4a:65:99:45:f5:32:0d:57:76:d9:56: 91:93:c5:3c:6e:0f:dd:12:78:7e:1c:bf:bd:85:2a: 15:48:54:d2:bf:e7:ee:71:40:bd:61:83:6e:0c:9f: 7d:fb:10:27:65:5a:66:38:39:0f:ff:71:60:69:19: f5:b7:e5:6c:27:b9:23:3f:7c:b0:89:8c:6b:57:21: bb:4e:b4:d2:b8:a0:c1:07:aa:d6:73:cd:95:cf:d1: 29:9b:f5:36:ca:a0:69:f3:d9:e8:fd:74:d4:6a:99: f3:65:56:21:c6:4c:67:7a:4d:b1:4b:ba:01:a9:57: 70:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:DB:75:47:6F:E5:D3:98:ED:51:23:48:2B:89:1E:2A:43:13:0F:A3 X509v3 Authority Key Identifier: keyid:41:21:3B:2F:5F:24:29:FC:32:8E:C3:F4:E9:5D:58:86:40:2F:EB:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QSE7L18kKfwyjsP06V1YhkAv62k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:4f:e6:24:5b:e3:76:d0:14:e5:c8:84:23:f3:23:a0:67:5d: 10:66:62:5c:52:00:dc:b8:67:54:c9:50:a3:28:69:b8:f6:07: aa:b8:0f:57:f6:1f:08:84:9e:8d:6f:1f:6a:62:81:80:01:dd: 1c:9a:02:7d:cb:ec:3e:78:3e:f1:70:2b:6f:f3:9e:48:64:d0: 21:9d:db:cc:69:3f:ce:69:23:9f:1c:69:7b:9c:6f:7e:4f:76: 3c:77:ed:6a:27:bc:2b:71:80:0e:b8:77:94:c2:9f:39:9a:ac: ad:40:73:27:80:43:7b:49:b3:05:35:f5:65:3a:2a:86:8c:29: 56:96:a9:90:49:3d:61:a0:ee:13:b5:08:c7:f7:ad:77:2a:e6: b2:7e:85:5e:ae:71:f4:1f:62:8c:da:fd:9c:d3:cd:b9:8a:cb: 34:7a:67:e1:a7:b9:6d:7e:d8:24:6a:e9:b6:37:34:3d:32:5a: e2:37:58:e8:1d:ce:ee:23:16:b6:00:92:8e:1a:db:0e:77:b7: ae:32:ba:78:50:3b:61:8d:b4:b3:37:f7:f6:c7:6b:92:e4:22: 69:a0:12:0a:ca:5c:6e:27:9b:b6:1b:12:07:d4:6a:1f:fd:90: 69:fc:e5:ca:f9:36:7b:67:83:f4:39:79:91:3d:08:f4:f3:0a: 42:a4:1f:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU3Q0IxMTAvBgNVBAUTKDQxMjEzQjJGNUYyNDI5RkMzMjhFQzNGNEU5NUQ1ODg2 NDAyRkVCNjkwHhcNMjUwNzE5MDUyOTU1WhcNMjUwNzI2MDUyOTU1WjAYMRYwFAYD VQQDEw02ODdiMmQ1My01ZThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtm0h0XiQiVAStWdH6/yiMDHnAAOpiPFiTYpldoHxLKO0WpzRXmJyBGZDbQgY gQk2xVY0EpZSIi5ZGy6YK8orFPZcDAj4c6dx26NJRKFazaixBNGKoxdsmRMlAOIM ogzjgPkeam2goQRBvKURPZH2nQOUaiGyPSIb2Qr5gtq74NwJBqvoNaCr6c6xSmWZ RfUyDVd22VaRk8U8bg/dEnh+HL+9hSoVSFTSv+fucUC9YYNuDJ99+xAnZVpmODkP /3FgaRn1t+VsJ7kjP3ywiYxrVyG7TrTSuKDBB6rWc82Vz9Epm/U2yqBp89no/XTU apnzZVYhxkxnek2xS7oBqVdwBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKPbdUdv 5dOY7VEjSCuJHipDEw+jMB8GA1UdIwQYMBaAFEEhOy9fJCn8Mo7D9OldWIZAL+tp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTdDQi80NTlCMEM2NEYy RjgxMUVFQTM1MDY3MzhDNEY5QUUwMi9RU0U3TDE4a0tmd3lqc1AwNlYxWWhrQXY2 MmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FTRTdMMThrS2Z3eWpzUDA2VjFZaGtBdjYyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTdDQi80NTlCMEM2NEYyRjgxMUVFQTM1MDY3MzhDNEY5QUUwMi9RU0U3TDE4a0tm d3lqc1AwNlYxWWhrQXY2MmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcT+YkW+N20BTlyIQj8yOgZ10QZmJcUgDcuGdUyVCjKGm49gequA9X 9h8IhJ6Nbx9qYoGAAd0cmgJ9y+w+eD7xcCtv855IZNAhndvMaT/OaSOfHGl7nG9+ T3Y8d+1qJ7wrcYAOuHeUwp85mqytQHMngEN7SbMFNfVlOiqGjClWlqmQST1hoO4T tQjH9613KuayfoVernH0H2KM2v2c0825iss0emfhp7ltftgkaum2NzQ9MlriN1jo Hc7uIxa2AJKOGtsOd7euMrp4UDthjbSzN/f2x2uS5CJpoBIKylxuJ5u2GxIH1Gof /ZBp/OXK+TZ7Z4P0OXmRPQj08wpCpB91 -----END CERTIFICATE-----Generated at Sun Jul 20 14:35:50 2025 by rpki-client