$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.mft File: QpCYAlfGdws2CulWLaWJPGDa2nc.mft (raw, json) Hash identifier: sV+0ZMP/qSVOy5X1Jwe8PQ4WY+Q59P6NxPDmtcWvBG8= Subject key identifier: 49:EE:E8:01:BF:D0:D5:5C:72:62:D8:6F:EF:12:9A:94:9E:E6:BF:D6 Authority key identifier: 42:90:98:02:57:C6:77:0B:36:0A:E9:56:2D:A5:89:3C:60:DA:DA:77 Certificate issuer: /CN=A91C3B89/serialNumber=4290980257C6770B360AE9562DA5893C60DADA77 Certificate serial: 08E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QpCYAlfGdws2CulWLaWJPGDa2nc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.mft Manifest number: 08E7 Signing time: Sun 20 Jul 2025 20:29:27 +0000 Manifest this update: Sun 20 Jul 2025 20:29:27 +0000 Manifest next update: Sun 27 Jul 2025 20:29:27 +0000 Files and hashes: 1: QpCYAlfGdws2CulWLaWJPGDa2nc.crl (hash: OWuXXohlg85SR9Qn8ff3tmj1rS8n1qi/AcyfndFQbnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.crl rsync://rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QpCYAlfGdws2CulWLaWJPGDa2nc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 20:29:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2279 (0x8e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3B89, serialNumber=4290980257C6770B360AE9562DA5893C60DADA77 Validity Not Before: Jul 20 20:29:27 2025 GMT Not After : Jul 27 20:29:27 2025 GMT Subject: CN=687d51a7-6000 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c3:24:94:32:2a:4c:8e:a1:c3:6e:52:bf:73: 71:fe:49:ea:ee:e6:5b:90:32:31:40:a3:0d:b8:98: f0:81:c7:ee:ca:17:5b:12:af:25:7a:23:01:2a:12: 32:04:9d:c4:dc:4a:d8:cf:32:ef:71:d1:15:ef:e0: 70:28:ec:16:7f:21:43:02:01:a5:34:2e:ec:2e:0a: b9:92:a7:b0:93:56:64:74:5f:2b:46:a8:fd:a7:85: 80:72:1a:77:be:fb:a6:b1:f2:78:f9:d7:9d:12:d5: d7:a4:97:cd:9c:36:84:f3:5c:1c:88:98:17:9f:36: a1:53:c5:4f:a7:8c:7b:ce:08:1c:4b:76:83:90:17: 71:c9:d2:3e:55:eb:4a:51:e7:47:e3:45:10:fd:44: 4a:8c:4a:b2:14:7f:ee:0a:4e:6c:e8:b6:55:3e:aa: 06:40:19:44:c0:6f:56:43:bb:d1:5b:84:17:54:50: 85:8b:9a:40:b1:a9:4f:af:eb:07:f0:49:da:f0:49: ff:61:48:ea:8f:03:4c:ea:2b:e2:1f:d7:f5:8b:a3: 7b:ad:1c:ce:62:06:e9:ef:f2:84:09:39:97:f6:e2: 7a:11:53:81:fd:bf:8b:3d:54:5c:79:8e:cd:69:0e: 0d:a8:43:82:5c:40:ff:14:2e:f4:8d:8e:79:fd:16: 38:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:EE:E8:01:BF:D0:D5:5C:72:62:D8:6F:EF:12:9A:94:9E:E6:BF:D6 X509v3 Authority Key Identifier: keyid:42:90:98:02:57:C6:77:0B:36:0A:E9:56:2D:A5:89:3C:60:DA:DA:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QpCYAlfGdws2CulWLaWJPGDa2nc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3B89/D8356BACB07411EA87B60F73C4F9AE02/QpCYAlfGdws2CulWLaWJPGDa2nc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:72:82:d7:38:3b:28:cf:f5:15:6a:5c:97:de:22:0f:db:c5: 9c:49:6b:3d:b9:32:46:02:d1:5d:ef:97:1d:b9:e7:95:74:a3: b3:c4:dc:c2:d7:91:73:58:cc:5f:fa:e0:8f:5c:ff:d2:f9:20: 25:49:91:40:5b:cb:95:0e:9a:38:97:0d:4c:15:9c:fc:d1:97: 84:95:4f:6b:5f:31:64:b2:57:94:ea:61:a6:1b:d1:f7:52:e0: 0e:ab:67:00:4f:4f:93:ff:4c:09:8d:42:58:f0:21:99:7b:cd: 23:7a:02:68:ff:ed:70:5a:70:68:95:a3:8f:34:8d:a0:97:cf: 25:48:95:ad:93:4f:3d:a8:e5:b0:af:6b:0d:a6:c0:bb:da:b7: 81:60:08:dc:36:60:83:5e:09:4f:e5:a5:72:5f:c3:67:41:5d: 37:2c:3b:4d:d9:fd:9b:7e:66:cc:43:9b:c2:76:12:1d:ae:b3: 0e:39:1c:4e:43:65:95:38:1e:e6:c6:63:ee:fb:8f:ef:b1:5e: 86:f9:b0:4f:70:e7:c9:84:19:73:56:aa:a9:fc:2f:0b:02:70: 08:47:15:3a:ad:73:e0:bb:cc:54:f3:9a:f9:5f:df:7b:6f:79: df:3d:ad:a0:02:07:78:21:38:1c:25:46:60:db:90:fc:97:7e: 30:dd:1d:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNCODkxMTAvBgNVBAUTKDQyOTA5ODAyNTdDNjc3MEIzNjBBRTk1NjJEQTU4OTND NjBEQURBNzcwHhcNMjUwNzIwMjAyOTI3WhcNMjUwNzI3MjAyOTI3WjAYMRYwFAYD VQQDEw02ODdkNTFhNy02MDAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAusMklDIqTI6hw25Sv3Nx/knq7uZbkDIxQKMNuJjwgcfuyhdbEq8leiMBKhIy BJ3E3ErYzzLvcdEV7+BwKOwWfyFDAgGlNC7sLgq5kqewk1ZkdF8rRqj9p4WAchp3 vvumsfJ4+dedEtXXpJfNnDaE81wciJgXnzahU8VPp4x7zggcS3aDkBdxydI+VetK UedH40UQ/URKjEqyFH/uCk5s6LZVPqoGQBlEwG9WQ7vRW4QXVFCFi5pAsalPr+sH 8Ena8En/YUjqjwNM6iviH9f1i6N7rRzOYgbp7/KECTmX9uJ6EVOB/b+LPVRceY7N aQ4NqEOCXED/FC70jY55/RY4FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEnu6AG/ 0NVccmLYb+8SmpSe5r/WMB8GA1UdIwQYMBaAFEKQmAJXxncLNgrpVi2liTxg2tp3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0I4OS9EODM1NkJBQ0Iw NzQxMUVBODdCNjBGNzNDNEY5QUUwMi9RcENZQWxmR2R3czJDdWxXTGFXSlBHRGEy bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FwQ1lBbGZHZHdzMkN1bFdMYVdKUEdEYTJuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD M0I4OS9EODM1NkJBQ0IwNzQxMUVBODdCNjBGNzNDNEY5QUUwMi9RcENZQWxmR2R3 czJDdWxXTGFXSlBHRGEybmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDcoLXODsoz/UValyX3iIP28WcSWs9uTJGAtFd75cdueeVdKOzxNzC 15FzWMxf+uCPXP/S+SAlSZFAW8uVDpo4lw1MFZz80ZeElU9rXzFksleU6mGmG9H3 UuAOq2cAT0+T/0wJjUJY8CGZe80jegJo/+1wWnBolaOPNI2gl88lSJWtk089qOWw r2sNpsC72reBYAjcNmCDXglP5aVyX8NnQV03LDtN2f2bfmbMQ5vCdhIdrrMOORxO Q2WVOB7mxmPu+4/vsV6G+bBPcOfJhBlzVqqp/C8LAnAIRxU6rXPgu8xU85r5X997 b3nfPa2gAgd4ITgcJUZg25D8l34w3R0Z -----END CERTIFICATE-----Generated at Mon Jul 21 07:54:09 2025 by rpki-client