$ rpki-client -vvf rpki.apnic.net/member_repository/A917618F/D28D75C0C2DF11E8A64EFD2CC4F9AE02/QJOHCXJ0OMjB3r_9BBWQWEggxug.mft File: QJOHCXJ0OMjB3r_9BBWQWEggxug.mft (raw, json) Hash identifier: QBi0vWeFeU/fc9pRyr0VgzIpchl5w1nKz2iwYs7FkvA= Subject key identifier: EA:EE:87:9C:5B:D4:AD:7B:07:DD:6C:E9:C2:31:32:63:75:72:20:A3 Authority key identifier: 40:93:87:09:72:74:38:C8:C1:DE:BF:FD:04:15:90:58:48:20:C6:E8 Certificate issuer: /CN=A917618F/serialNumber=40938709727438C8C1DEBFFD041590584820C6E8 Certificate serial: 12CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJOHCXJ0OMjB3r_9BBWQWEggxug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917618F/D28D75C0C2DF11E8A64EFD2CC4F9AE02/QJOHCXJ0OMjB3r_9BBWQWEggxug.mft Manifest number: 12C4 Signing time: Sun 20 Jul 2025 17:05:24 +0000 Manifest this update: Sun 20 Jul 2025 17:05:24 +0000 Manifest next update: Sun 27 Jul 2025 17:05:24 +0000 Files and hashes: 1: QJOHCXJ0OMjB3r_9BBWQWEggxug.crl (hash: llinRclWlwqWBWqWBKx/ZpyuY0T8GQaYtGgnGveU/oQ=) 2: 2FE4DA1EC2E111E8A19CB72FC4F9AE02.roa (hash: HkQW1ELmD+iLXWXgNsuJGsFujvrmVSrBFXmyCQkIzxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917618F/D28D75C0C2DF11E8A64EFD2CC4F9AE02/QJOHCXJ0OMjB3r_9BBWQWEggxug.crl rsync://rpki.apnic.net/member_repository/A917618F/D28D75C0C2DF11E8A64EFD2CC4F9AE02/QJOHCXJ0OMjB3r_9BBWQWEggxug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJOHCXJ0OMjB3r_9BBWQWEggxug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 17:05:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4813 (0x12cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917618F, serialNumber=40938709727438C8C1DEBFFD041590584820C6E8 Validity Not Before: Jul 20 17:05:24 2025 GMT Not After : Jul 27 17:05:24 2025 GMT Subject: CN=687d21d4-e5b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:0d:37:2c:95:df:6b:87:89:df:b3:3a:cf:ea: 24:30:65:d7:78:62:2b:41:bd:c5:9b:ef:26:de:e9: 81:e4:82:66:9f:bb:c3:31:52:29:cf:58:04:d6:69: 65:e8:56:ba:9c:94:27:c1:16:5d:24:b7:52:b7:bd: ad:fe:66:25:58:56:90:67:18:5e:33:42:37:b2:ac: 70:7e:40:1a:61:ad:16:ea:a8:14:a2:2f:81:ee:86: 2e:a5:29:bf:fe:46:bf:bb:7e:23:f8:d0:89:17:d5: 94:0f:1d:95:dc:8f:89:85:28:6d:f9:d3:26:f5:ab: 40:95:4e:28:3b:2a:97:37:e0:42:38:0a:92:bc:dc: 15:aa:b9:bd:8e:10:2f:46:8b:d1:94:dd:d0:3b:89: 87:65:0c:2b:94:5b:e7:39:2c:e6:f3:aa:ed:23:a9: 66:bf:5f:c2:46:56:cd:76:a4:66:ed:50:20:a6:42: 42:51:08:01:f1:18:fc:e1:81:b0:88:e5:49:fb:63: b0:c9:6f:ee:36:12:a2:10:00:99:ae:60:c9:80:c4: 95:41:99:5b:21:4a:1e:8f:6a:aa:33:57:39:4d:3d: 04:e3:fa:23:a1:c7:ea:7b:20:34:09:91:11:46:69: 7a:27:58:4d:e0:36:3d:71:de:93:08:f9:9a:f6:42: 49:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:EE:87:9C:5B:D4:AD:7B:07:DD:6C:E9:C2:31:32:63:75:72:20:A3 X509v3 Authority Key Identifier: keyid:40:93:87:09:72:74:38:C8:C1:DE:BF:FD:04:15:90:58:48:20:C6:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917618F/D28D75C0C2DF11E8A64EFD2CC4F9AE02/QJOHCXJ0OMjB3r_9BBWQWEggxug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJOHCXJ0OMjB3r_9BBWQWEggxug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917618F/D28D75C0C2DF11E8A64EFD2CC4F9AE02/QJOHCXJ0OMjB3r_9BBWQWEggxug.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:a8:0c:c8:ef:10:14:10:58:32:cf:22:e6:72:fe:f1:4e:be: 33:85:7e:5c:c0:f7:94:a1:d8:f5:53:4d:f3:a9:6b:d9:f9:23: ac:42:46:0b:75:f9:1b:03:59:31:5b:0e:09:fd:91:0c:34:8b: 55:e3:29:b5:b0:8e:87:0d:22:a4:55:b4:a7:5d:35:fc:49:b2: 44:14:dc:e1:c4:bb:c0:9c:ea:48:f2:06:fe:1a:06:6a:a5:03: 12:87:7c:62:b7:a8:a0:e2:76:f8:5e:33:37:d9:04:a3:85:9b: f6:0d:f1:0f:e7:5b:05:49:11:cb:1b:75:c3:dc:bc:b7:62:24: 3f:d6:22:34:14:5b:ce:8c:b7:29:0a:07:4e:9a:2d:84:ed:f5: 60:3f:fe:80:2f:40:26:ba:af:c4:97:20:8e:e2:ce:e4:25:e1: 2c:67:1f:81:6f:94:94:02:6f:d5:5c:1b:04:b9:39:91:98:0c: 27:bb:1d:35:b3:83:e8:cf:c7:45:bb:89:ec:a4:76:70:ae:51: 46:f4:55:45:94:e9:0c:81:77:c0:6a:01:e5:27:5e:6b:da:99: ba:08:31:1c:ac:14:1f:ac:56:62:77:c6:54:e1:5e:b2:30:73: 67:f7:a1:2d:97:fa:0e:16:33:40:e1:a9:35:47:22:f3:a9:f9: 1f:fb:06:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEs0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzYxOEYxMTAvBgNVBAUTKDQwOTM4NzA5NzI3NDM4QzhDMURFQkZGRDA0MTU5MDU4 NDgyMEM2RTgwHhcNMjUwNzIwMTcwNTI0WhcNMjUwNzI3MTcwNTI0WjAYMRYwFAYD VQQDEw02ODdkMjFkNC1lNWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Q03LJXfa4eJ37M6z+okMGXXeGIrQb3Fm+8m3umB5IJmn7vDMVIpz1gE1mll 6Fa6nJQnwRZdJLdSt72t/mYlWFaQZxheM0I3sqxwfkAaYa0W6qgUoi+B7oYupSm/ /ka/u34j+NCJF9WUDx2V3I+JhSht+dMm9atAlU4oOyqXN+BCOAqSvNwVqrm9jhAv RovRlN3QO4mHZQwrlFvnOSzm86rtI6lmv1/CRlbNdqRm7VAgpkJCUQgB8Rj84YGw iOVJ+2OwyW/uNhKiEACZrmDJgMSVQZlbIUoej2qqM1c5TT0E4/ojocfqeyA0CZER Rml6J1hN4DY9cd6TCPma9kJJQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOruh5xb 1K17B91s6cIxMmN1ciCjMB8GA1UdIwQYMBaAFECThwlydDjIwd6//QQVkFhIIMbo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjE4Ri9EMjhENzVDMEMy REYxMUU4QTY0RUZEMkNDNEY5QUUwMi9RSk9IQ1hKME9NakIzcl85QkJXUVdFZ2d4 dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FKT0hDWEowT01qQjNyXzlCQldRV0VnZ3h1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjE4Ri9EMjhENzVDMEMyREYxMUU4QTY0RUZEMkNDNEY5QUUwMi9RSk9IQ1hKME9N akIzcl85QkJXUVdFZ2d4dWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtqAzI7xAUEFgyzyLmcv7xTr4zhX5cwPeUodj1U03zqWvZ+SOsQkYL dfkbA1kxWw4J/ZEMNItV4ym1sI6HDSKkVbSnXTX8SbJEFNzhxLvAnOpI8gb+GgZq pQMSh3xit6ig4nb4XjM32QSjhZv2DfEP51sFSRHLG3XD3Ly3YiQ/1iI0FFvOjLcp CgdOmi2E7fVgP/6AL0Amuq/ElyCO4s7kJeEsZx+Bb5SUAm/VXBsEuTmRmAwnux01 s4Poz8dFu4nspHZwrlFG9FVFlOkMgXfAagHlJ15r2pm6CDEcrBQfrFZid8ZU4V6y MHNn96Etl/oOFjNA4ak1RyLzqfkf+wY7 -----END CERTIFICATE-----Generated at Mon Jul 21 18:47:31 2025 by rpki-client