$ rpki-client -vvf rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.mft File: -QbZf3qofIbamQOdI27NtR0jH3o.mft (raw, json) Hash identifier: ob30VSoJtE3uqwc7JdO/WGlk1t30GkfgwHHUf9ovp3w= Subject key identifier: 38:77:E0:A4:28:A6:AA:11:9F:DB:EF:39:15:8E:BF:B6:1A:9E:ED:91 Authority key identifier: F9:06:D9:7F:7A:A8:7C:86:DA:99:03:9D:23:6E:CD:B5:1D:23:1F:7A Certificate issuer: /CN=A919FE97/serialNumber=F906D97F7AA87C86DA99039D236ECDB51D231F7A Certificate serial: 0692 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-QbZf3qofIbamQOdI27NtR0jH3o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.mft Manifest number: 0689 Signing time: Thu 24 Jul 2025 22:32:22 +0000 Manifest this update: Thu 24 Jul 2025 22:32:22 +0000 Manifest next update: Thu 31 Jul 2025 22:32:22 +0000 Files and hashes: 1: -QbZf3qofIbamQOdI27NtR0jH3o.crl (hash: C5TphyV7QANe5sV6gTkmbtuoH5snh+cnEdYjXF3o9Ts=) 2: 06EFF1D07D4B11EBA736017DC4F9AE02.roa (hash: ACBayas3sWm8LRkAgsG4BLCCWR0NJPgThMvDEl+trzE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.crl rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-QbZf3qofIbamQOdI27NtR0jH3o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 22:32:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1682 (0x692) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FE97, serialNumber=F906D97F7AA87C86DA99039D236ECDB51D231F7A Validity Not Before: Jul 24 22:32:22 2025 GMT Not After : Jul 31 22:32:22 2025 GMT Subject: CN=6882b476-e560 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:20:b7:e3:db:63:32:09:82:f4:f6:96:ac:82: 3d:4b:8f:ff:b4:da:9e:32:c4:94:c0:58:c6:8b:c8: d8:79:ba:ec:4a:4a:a7:63:84:57:d7:6f:fe:26:f6: c0:c1:0d:25:31:95:33:54:de:00:7c:72:e0:ae:8d: 63:ae:11:d4:aa:cf:28:64:ca:95:1a:b9:54:4f:68: 0a:5b:e7:d9:cc:43:db:e7:b4:55:5a:6c:d7:c8:25: 22:30:d2:83:83:4b:a2:1f:0f:98:c2:46:af:fd:9b: dd:1d:89:51:f9:16:da:b8:32:54:c9:f7:0a:76:58: 29:57:f6:ee:b1:6a:41:14:cd:37:b8:dc:6a:fa:95: 1d:a3:c6:50:4b:55:54:c4:d6:7d:ec:96:4d:9b:dd: 7d:74:3c:c7:74:2e:5f:e1:a0:97:a2:8f:09:dd:4f: ef:d4:62:f3:bb:13:73:90:c7:43:30:13:74:e8:e9: 7c:17:e3:01:8d:b0:d1:a8:7b:55:4f:8f:f9:2c:af: bb:55:b8:3b:e8:7a:ca:f0:f6:94:0a:c7:92:b9:5b: 02:bf:23:6e:f9:02:cf:96:8a:25:bd:1e:bf:7e:8c: 4c:47:ce:61:01:ef:b8:e0:04:86:8d:f3:af:ba:dd: bf:ec:11:9f:f1:b3:70:93:0b:7f:63:4b:a7:0d:7b: 7f:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:77:E0:A4:28:A6:AA:11:9F:DB:EF:39:15:8E:BF:B6:1A:9E:ED:91 X509v3 Authority Key Identifier: keyid:F9:06:D9:7F:7A:A8:7C:86:DA:99:03:9D:23:6E:CD:B5:1D:23:1F:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-QbZf3qofIbamQOdI27NtR0jH3o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FE97/D218302E7D4711EB93121F58C4F9AE02/-QbZf3qofIbamQOdI27NtR0jH3o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:96:93:43:93:95:1a:25:6e:d4:e3:24:54:97:91:14:54:6b: 78:e6:49:59:fc:83:ab:70:ef:29:29:ce:28:ed:6b:f1:3e:b1: d9:22:29:37:20:cd:54:d2:73:fa:8d:83:37:16:c6:c7:15:be: 3d:ff:d6:19:99:ea:3e:32:a4:59:0a:af:ba:62:92:f7:77:08: 0f:91:72:35:84:01:19:e0:65:16:a0:b4:8a:71:da:04:a8:57: f4:c6:5a:fd:ae:7e:73:b5:2c:13:87:b6:78:97:32:c8:ac:3d: e0:92:1a:31:27:58:13:c2:0d:d2:0c:94:e4:12:1e:b6:9b:06: 32:8b:b6:41:8b:e6:3e:ef:75:9d:0f:ef:9b:e9:04:5e:5f:d3: f4:36:43:53:72:db:24:a3:4f:ea:db:38:4b:ef:35:68:a6:95: 07:15:8f:d3:9f:fd:d8:04:2e:8a:1f:4d:ad:d1:47:a7:b2:f3: e1:ba:e8:b1:ab:c7:dc:f6:38:69:70:c7:a8:f4:aa:ec:27:6a: ef:54:58:49:59:3a:1a:a6:6a:18:b9:7e:db:ea:00:f1:f1:f6: a4:3a:51:ad:67:22:ac:fc:41:81:1b:c2:75:b5:df:fc:c5:1f: ca:3b:7c:be:d4:09:4f:52:ca:76:f3:cf:41:8a:d0:b9:45:61: 6b:78:8a:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUZFOTcxMTAvBgNVBAUTKEY5MDZEOTdGN0FBODdDODZEQTk5MDM5RDIzNkVDREI1 MUQyMzFGN0EwHhcNMjUwNzI0MjIzMjIyWhcNMjUwNzMxMjIzMjIyWjAYMRYwFAYD VQQDEw02ODgyYjQ3Ni1lNTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwiC349tjMgmC9PaWrII9S4//tNqeMsSUwFjGi8jYebrsSkqnY4RX12/+JvbA wQ0lMZUzVN4AfHLgro1jrhHUqs8oZMqVGrlUT2gKW+fZzEPb57RVWmzXyCUiMNKD g0uiHw+Ywkav/ZvdHYlR+RbauDJUyfcKdlgpV/busWpBFM03uNxq+pUdo8ZQS1VU xNZ97JZNm919dDzHdC5f4aCXoo8J3U/v1GLzuxNzkMdDMBN06Ol8F+MBjbDRqHtV T4/5LK+7Vbg76HrK8PaUCseSuVsCvyNu+QLPloolvR6/foxMR85hAe+44ASGjfOv ut2/7BGf8bNwkwt/Y0unDXt/ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDh34KQo pqoRn9vvORWOv7Yanu2RMB8GA1UdIwQYMBaAFPkG2X96qHyG2pkDnSNuzbUdIx96 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkU5Ny9EMjE4MzAyRTdE NDcxMUVCOTMxMjFGNThDNEY5QUUwMi8tUWJaZjNxb2ZJYmFtUU9kSTI3TnRSMGpI M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1RYlpmM3FvZkliYW1RT2RJMjdOdFIwakgzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RkU5Ny9EMjE4MzAyRTdENDcxMUVCOTMxMjFGNThDNEY5QUUwMi8tUWJaZjNxb2ZJ YmFtUU9kSTI3TnRSMGpIM28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCclpNDk5UaJW7U4yRUl5EUVGt45klZ/IOrcO8pKc4o7WvxPrHZIik3 IM1U0nP6jYM3FsbHFb49/9YZmeo+MqRZCq+6YpL3dwgPkXI1hAEZ4GUWoLSKcdoE qFf0xlr9rn5ztSwTh7Z4lzLIrD3gkhoxJ1gTwg3SDJTkEh62mwYyi7ZBi+Y+73Wd D++b6QReX9P0NkNTctsko0/q2zhL7zVoppUHFY/Tn/3YBC6KH02t0UensvPhuuix q8fc9jhpcMeo9KrsJ2rvVFhJWToapmoYuX7b6gDx8fakOlGtZyKs/EGBG8J1td/8 xR/KO3y+1AlPUsp2889BitC5RWFreIr5 -----END CERTIFICATE-----Generated at Sat Jul 26 02:00:46 2025 by rpki-client