$ rpki-client -vvf rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.mft File: QGGGPd9D57OxiePJwyF7wSuzXyE.mft (raw, json) Hash identifier: 1nE1r5ijrHnPMmD0RAiIGfyvlzlSMsP/drSjMlJdi/0= Subject key identifier: 48:00:E1:EC:0A:CE:99:14:35:82:6B:2A:25:D9:FF:B8:55:BF:99:B3 Authority key identifier: 40:61:86:3D:DF:43:E7:B3:B1:89:E3:C9:C3:21:7B:C1:2B:B3:5F:21 Certificate issuer: /CN=A919E8DB/serialNumber=4061863DDF43E7B3B189E3C9C3217BC12BB35F21 Certificate serial: 88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGGGPd9D57OxiePJwyF7wSuzXyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.mft Manifest number: 7E Signing time: Sat 19 Jul 2025 07:07:20 +0000 Manifest this update: Sat 19 Jul 2025 07:07:19 +0000 Manifest next update: Sat 26 Jul 2025 07:07:19 +0000 Files and hashes: 1: QGGGPd9D57OxiePJwyF7wSuzXyE.crl (hash: 2Eh6+XutRgs3YyKTXchPp4DnvPxoqkE5lnmDI/8minw=) 2: DCAA44D6BF2A11EFBAAF1F16C4F9AE02.roa (hash: fSJH1SOLPO4NysKX51na/qXDmlPOAQyyNuZ41eZmd8c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.crl rsync://rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGGGPd9D57OxiePJwyF7wSuzXyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:07:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E8DB, serialNumber=4061863DDF43E7B3B189E3C9C3217BC12BB35F21 Validity Not Before: Jul 19 07:07:19 2025 GMT Not After : Jul 26 07:07:19 2025 GMT Subject: CN=687b4427-af2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:3b:0a:3b:27:f2:50:42:55:57:13:c0:8e:1e: dd:f2:c5:a1:3c:e9:c2:54:93:a2:a0:57:d2:e1:f9: 32:49:f9:4b:f8:74:74:96:83:da:58:7a:a0:ea:8d: ad:0d:fe:91:51:1f:a0:9d:e9:9a:6e:0e:b9:82:b4: 56:fb:57:78:6f:37:1d:d7:ee:18:49:0e:a7:a6:9b: a6:0f:bd:d5:ec:26:c8:d3:99:df:c3:12:a7:ac:26: be:d6:bd:b9:9c:35:e3:27:94:b0:ed:34:81:fc:f6: 17:b6:e4:61:5f:0c:06:55:51:56:bc:54:b4:2a:80: 4a:44:0f:ea:c4:ff:da:02:50:cc:b3:79:6d:85:cb: 29:54:33:2a:f0:70:a9:ec:89:36:cc:83:b4:ba:d0: a2:94:ee:81:a4:a1:19:b1:6f:3a:b3:af:36:65:5d: 65:3a:c6:8a:f6:48:4e:73:08:f8:26:57:92:37:2b: 02:e8:e5:6a:eb:13:d4:95:79:1b:36:60:44:d9:2b: 00:73:94:86:b7:36:50:cf:4e:54:9a:e1:94:9b:eb: 2d:f4:f1:e2:e6:ee:f6:d8:f7:43:c6:90:80:51:c0: 89:cd:16:14:8d:45:63:03:5a:ab:b2:43:b6:ff:ca: 5f:a6:7c:c1:29:4e:ac:26:d9:3a:b8:04:71:9d:26: 41:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:00:E1:EC:0A:CE:99:14:35:82:6B:2A:25:D9:FF:B8:55:BF:99:B3 X509v3 Authority Key Identifier: keyid:40:61:86:3D:DF:43:E7:B3:B1:89:E3:C9:C3:21:7B:C1:2B:B3:5F:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QGGGPd9D57OxiePJwyF7wSuzXyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E8DB/B48E25F4B76311EF82DD8F33C4F9AE02/QGGGPd9D57OxiePJwyF7wSuzXyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:2b:9b:8d:01:f7:b5:4a:b6:b0:f9:9a:a9:33:27:1c:02:cd: 8d:e0:ab:15:c1:ac:fe:b4:41:58:10:7a:93:03:53:f1:b2:b9: bc:35:07:2a:7b:ac:26:7b:39:b6:38:07:e7:b8:22:75:c5:fe: 72:2a:78:c0:05:00:6f:7a:0d:7f:b2:5e:81:88:5f:f1:3f:ec: 4c:77:cd:01:e8:13:35:23:0e:c3:56:b5:4e:c1:a3:db:73:24: 08:cc:05:98:92:5d:5d:e0:bd:cd:81:d3:52:9c:25:32:a6:e1: 62:a1:56:82:80:17:07:63:79:ad:16:36:e7:59:33:ef:df:fa: 58:c4:05:dc:19:d4:7f:5a:a9:bb:bc:d3:06:71:c0:17:66:5b: 72:d9:63:ac:af:4f:2d:51:47:70:e8:6b:cc:c8:5c:48:15:8c: 61:29:ff:29:6b:71:ba:48:dd:05:17:2e:72:4f:20:7d:14:78: f0:60:11:7f:65:ee:ea:8d:26:5c:4c:a9:df:e8:19:d3:57:d6: 52:28:f6:b5:ef:1f:55:23:07:1e:66:c1:12:a9:c1:8d:c3:82: cc:c9:db:0e:5e:ce:66:82:ef:a2:a0:0f:81:e1:88:d6:0b:c8: 44:20:d8:fa:7b:7b:4f:c7:64:58:aa:fc:d0:46:64:fa:1e:06: 4f:41:c9:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUU4REIxMTAvBgNVBAUTKDQwNjE4NjNEREY0M0U3QjNCMTg5RTNDOUMzMjE3QkMx MkJCMzVGMjEwHhcNMjUwNzE5MDcwNzE5WhcNMjUwNzI2MDcwNzE5WjAYMRYwFAYD VQQDEw02ODdiNDQyNy1hZjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1jsKOyfyUEJVVxPAjh7d8sWhPOnCVJOioFfS4fkySflL+HR0loPaWHqg6o2t Df6RUR+gnemabg65grRW+1d4bzcd1+4YSQ6nppumD73V7CbI05nfwxKnrCa+1r25 nDXjJ5Sw7TSB/PYXtuRhXwwGVVFWvFS0KoBKRA/qxP/aAlDMs3lthcspVDMq8HCp 7Ik2zIO0utCilO6BpKEZsW86s682ZV1lOsaK9khOcwj4JleSNysC6OVq6xPUlXkb NmBE2SsAc5SGtzZQz05UmuGUm+st9PHi5u722PdDxpCAUcCJzRYUjUVjA1qrskO2 /8pfpnzBKU6sJtk6uARxnSZBXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEgA4ewK zpkUNYJrKiXZ/7hVv5mzMB8GA1UdIwQYMBaAFEBhhj3fQ+ezsYnjycMhe8Ers18h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RThEQi9CNDhFMjVGNEI3 NjMxMUVGODJERDhGMzNDNEY5QUUwMi9RR0dHUGQ5RDU3T3hpZVBKd3lGN3dTdXpY eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FHR0dQZDlENTdPeGllUEp3eUY3d1N1elh5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RThEQi9CNDhFMjVGNEI3NjMxMUVGODJERDhGMzNDNEY5QUUwMi9RR0dHUGQ5RDU3 T3hpZVBKd3lGN3dTdXpYeUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9K5uNAfe1Sraw+ZqpMyccAs2N4KsVwaz+tEFYEHqTA1Pxsrm8NQcq e6wmezm2OAfnuCJ1xf5yKnjABQBveg1/sl6BiF/xP+xMd80B6BM1Iw7DVrVOwaPb cyQIzAWYkl1d4L3NgdNSnCUypuFioVaCgBcHY3mtFjbnWTPv3/pYxAXcGdR/Wqm7 vNMGccAXZlty2WOsr08tUUdw6GvMyFxIFYxhKf8pa3G6SN0FFy5yTyB9FHjwYBF/ Ze7qjSZcTKnf6BnTV9ZSKPa17x9VIwceZsESqcGNw4LMydsOXs5mgu+ioA+B4YjW C8hEINj6e3tPx2RYqvzQRmT6HgZPQckY -----END CERTIFICATE-----Generated at Sun Jul 20 03:51:16 2025 by rpki-client