$ rpki-client -vvf rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft File: QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft (raw, json) Hash identifier: 9XYyXnOip3wo6qHKA0u0xJv0COEwEDuvh5ScVtF2X4E= Subject key identifier: 6C:60:0B:09:87:65:79:CD:8F:50:7C:83:F1:30:E5:1C:A9:59:70:FC Authority key identifier: 41:B4:34:91:5A:49:19:DC:EF:57:D6:97:7C:40:48:0D:FC:31:13:4D Certificate issuer: /CN=A91A25DF/serialNumber=41B434915A4919DCEF57D6977C40480DFC31134D Certificate serial: 08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbQ0kVpJGdzvV9aXfEBIDfwxE00.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft Manifest number: 07 Signing time: Sat 19 Jul 2025 08:27:53 +0000 Manifest this update: Sat 19 Jul 2025 08:27:53 +0000 Manifest next update: Sat 26 Jul 2025 08:27:53 +0000 Files and hashes: 1: QbQ0kVpJGdzvV9aXfEBIDfwxE00.crl (hash: eAGpfgyhkmIdWDYBuaMiMDkq4fdqd+Z8sKBHHT9xGWU=) 2: C5B717905EDA11F0A5EAB579C4F9AE02.roa (hash: PqNnMtc0YzN3eHNjrg0ykkeSPjuNLhEa4HAV6yMUzA8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.crl rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbQ0kVpJGdzvV9aXfEBIDfwxE00.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 08:27:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A25DF, serialNumber=41B434915A4919DCEF57D6977C40480DFC31134D Validity Not Before: Jul 19 08:27:53 2025 GMT Not After : Jul 26 08:27:53 2025 GMT Subject: CN=687b5709-1fad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:53:34:72:04:82:da:1c:bf:79:30:2d:23:f6: 01:db:66:c6:f8:5d:e0:51:d8:6d:11:90:c3:a8:c8: aa:85:e1:95:32:66:62:52:9f:0c:d4:a3:31:8e:e7: 96:f8:0c:43:06:4d:00:ed:49:6f:20:4f:d1:0c:75: ef:7a:c9:97:f1:55:8f:36:0e:02:3a:a8:6f:bc:f8: 64:2d:28:ee:f5:86:a6:d6:e3:ef:b7:21:33:8f:87: 9c:4c:ec:a8:af:57:c1:14:18:e7:86:f1:d8:28:ff: 1c:8b:ac:a2:b1:7a:93:30:f2:cd:b7:f9:86:08:dd: a4:e1:33:fd:9c:51:37:00:d0:4e:74:2f:14:b8:86: 52:b7:d4:29:85:de:75:df:72:de:a6:4d:c0:cb:2f: 0c:00:e4:cd:50:da:fe:8c:43:69:31:9c:96:e0:2a: 5b:8e:67:50:a8:be:99:24:8d:a2:9d:e6:1f:7a:5d: 02:ce:4d:5f:3f:c0:eb:3c:e4:11:b5:38:2d:37:3b: 36:36:dc:2d:20:e0:8f:5c:55:8d:81:7b:86:aa:c3: dc:d2:2d:36:f8:24:e2:76:3f:3a:c1:8a:c8:df:49: 6d:38:53:a2:47:74:e5:a6:57:20:52:42:28:5b:7b: 82:ee:0f:8a:e6:f6:a2:4e:3b:99:19:73:13:56:7f: c5:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:60:0B:09:87:65:79:CD:8F:50:7C:83:F1:30:E5:1C:A9:59:70:FC X509v3 Authority Key Identifier: keyid:41:B4:34:91:5A:49:19:DC:EF:57:D6:97:7C:40:48:0D:FC:31:13:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbQ0kVpJGdzvV9aXfEBIDfwxE00.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A25DF/EF4AD4525ED511F09CF1D50CC4F9AE02/QbQ0kVpJGdzvV9aXfEBIDfwxE00.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:f8:02:4a:82:cc:eb:d3:3a:9a:06:0e:00:1c:c9:53:18:ec: 9e:2b:43:9d:a3:9a:89:d7:83:07:55:e2:24:e6:6c:d3:10:8a: 70:03:f9:4d:c3:2c:d2:51:0d:11:2d:d1:f0:30:6c:c0:35:cc: c9:66:f2:55:37:8e:0e:17:1a:b7:ae:40:d6:9c:6a:64:cc:5c: 76:99:bd:5c:01:31:cd:6c:2e:5b:71:26:97:1a:40:4c:7c:6e: 05:07:56:40:6d:8c:3a:a0:41:92:82:ac:20:5e:81:7c:4c:13: e0:56:57:9b:62:7f:d7:7a:5b:d6:ef:14:c0:85:7c:c3:8f:88: 19:c0:5a:2b:40:2a:1b:c8:87:ac:c1:ba:d6:84:f8:a2:04:ea: 6c:29:d2:47:b2:c6:0a:ad:b6:6a:06:e8:11:ca:99:e3:fc:a6: a7:95:cc:b6:17:b5:32:68:3c:7d:a9:ff:c8:e2:86:42:e3:b8: d4:76:4c:5a:37:c6:8f:06:f0:e1:c1:25:1a:ea:f8:4a:2c:03: 11:2f:dc:99:47:22:bd:c0:72:e3:2e:9b:cc:d9:e2:88:6e:73: d0:81:3d:06:99:e8:e5:20:6f:54:a6:f3:31:a3:5b:f5:cd:10: 95:7d:34:83:75:08:a3:13:1b:9c:d5:df:44:43:84:d6:98:7f: 71:56:41:9d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MjVERjExMC8GA1UEBRMoNDFCNDM0OTE1QTQ5MTlEQ0VGNTdENjk3N0M0MDQ4MERG QzMxMTM0RDAeFw0yNTA3MTkwODI3NTNaFw0yNTA3MjYwODI3NTNaMBgxFjAUBgNV BAMTDTY4N2I1NzA5LTFmYWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtUzRyBILaHL95MC0j9gHbZsb4XeBR2G0RkMOoyKqF4ZUyZmJSnwzUozGO55b4 DEMGTQDtSW8gT9EMde96yZfxVY82DgI6qG+8+GQtKO71hqbW4++3ITOPh5xM7Kiv V8EUGOeG8dgo/xyLrKKxepMw8s23+YYI3aThM/2cUTcA0E50LxS4hlK31CmF3nXf ct6mTcDLLwwA5M1Q2v6MQ2kxnJbgKluOZ1CovpkkjaKd5h96XQLOTV8/wOs85BG1 OC03OzY23C0g4I9cVY2Be4aqw9zSLTb4JOJ2PzrBisjfSW04U6JHdOWmVyBSQihb e4LuD4rm9qJOO5kZcxNWf8VDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUbGALCYdl ec2PUHyD8TDlHKlZcPwwHwYDVR0jBBgwFoAUQbQ0kVpJGdzvV9aXfEBIDfwxE00w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEyNURGL0VGNEFENDUyNUVE NTExRjA5Q0YxRDUwQ0M0RjlBRTAyL1FiUTBrVnBKR2R6dlY5YVhmRUJJRGZ3eEUw MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUWJRMGtWcEpHZHp2VjlhWGZFQklEZnd4RTAwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEy NURGL0VGNEFENDUyNUVENTExRjA5Q0YxRDUwQ0M0RjlBRTAyL1FiUTBrVnBKR2R6 dlY5YVhmRUJJRGZ3eEUwMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFL4AkqCzOvTOpoGDgAcyVMY7J4rQ52jmonXgwdV4iTmbNMQinAD+U3D LNJRDREt0fAwbMA1zMlm8lU3jg4XGreuQNacamTMXHaZvVwBMc1sLltxJpcaQEx8 bgUHVkBtjDqgQZKCrCBegXxME+BWV5tif9d6W9bvFMCFfMOPiBnAWitAKhvIh6zB utaE+KIE6mwp0keyxgqttmoG6BHKmeP8pqeVzLYXtTJoPH2p/8jihkLjuNR2TFo3 xo8G8OHBJRrq+EosAxEv3JlHIr3AcuMum8zZ4ohuc9CBPQaZ6OUgb1Sm8zGjW/XN EJV9NIN1CKMTG5zV30RDhNaYf3FWQZ0= -----END CERTIFICATE-----Generated at Sun Jul 20 07:38:32 2025 by rpki-client