$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft File: QNueLLrezam5cjUQIVB63NGlYn8.mft (raw, json) Hash identifier: KCWw73zbZ68Exiikc6kzsDwrXD0wk1Iz7lTXFXlzoTM= Subject key identifier: E7:EE:CE:1E:D5:2B:42:35:22:79:29:2A:7A:85:C2:83:6B:C4:DC:97 Authority key identifier: 40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F Certificate issuer: /CN=A91C8B4F/serialNumber=40DB9E2CBADECDA9B972351021507ADCD1A5627F Certificate serial: 0441 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft Manifest number: 0438 Signing time: Sat 19 Jul 2025 00:43:08 +0000 Manifest this update: Sat 19 Jul 2025 00:43:07 +0000 Manifest next update: Sat 26 Jul 2025 00:43:07 +0000 Files and hashes: 1: QNueLLrezam5cjUQIVB63NGlYn8.crl (hash: pO1rDuWyoOe+E5KyW6C1tfC7pqYlKgon8kegFshVm24=) 2: 18E79956BAA811ECB07DA44BC4F9AE02.roa (hash: 5latq2+YRolk+7/RCZ77DIkjarUkzR1toXI6OoV7ng8=) 3: 43540B7A0EE311EF9E24862BC4F9AE02.roa (hash: 06e2Kd9kP50w5XlMiJZ3tSgrZONMMPBPJ5HjMD4Ujzw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:43:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1089 (0x441) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8B4F, serialNumber=40DB9E2CBADECDA9B972351021507ADCD1A5627F Validity Not Before: Jul 19 00:43:07 2025 GMT Not After : Jul 26 00:43:07 2025 GMT Subject: CN=687aea1b-1a78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d7:ec:68:09:51:9a:18:de:86:19:01:ba:30: 73:17:b8:a8:ac:10:02:3d:20:61:11:94:27:a0:ca: a0:cf:5a:89:b4:f5:96:f2:a6:95:cb:92:5c:4c:08: 21:25:c7:33:eb:a3:a8:d3:2a:c0:3b:fe:e2:36:36: 0f:25:3e:c4:eb:8d:c7:03:c6:d6:fb:a0:5c:41:30: c5:d2:ba:5e:ac:d4:d5:f3:13:16:d6:1c:8d:4c:47: 2f:4b:01:1b:6d:d3:ef:fb:0f:0e:f4:29:0d:a1:0f: 1d:35:5f:2d:b8:1c:48:a9:aa:0b:d5:2c:3b:89:6d: 43:b7:0b:ed:19:b3:32:3a:bc:db:7f:37:c2:a9:d6: 0b:2d:65:4c:6f:ab:fb:eb:0d:30:8f:a7:9a:59:f9: 4b:dd:6d:83:91:93:4d:be:57:f0:c4:32:28:b1:6b: 19:12:52:f7:7a:5f:8e:ca:9c:0e:cc:24:81:79:8c: c9:fe:71:66:e7:10:3b:1f:7d:f6:57:36:73:f3:0f: fb:d7:d8:2a:1c:ed:4c:34:b6:86:c0:16:26:ca:23: 2e:ac:e9:e6:0d:7c:17:09:ef:e7:df:7a:3f:d4:fd: 56:fe:8f:4f:94:52:cb:2e:4f:3d:ba:15:84:c9:80: a3:71:2e:85:70:52:59:30:0b:0b:09:15:a4:e6:f9: 99:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:EE:CE:1E:D5:2B:42:35:22:79:29:2A:7A:85:C2:83:6B:C4:DC:97 X509v3 Authority Key Identifier: keyid:40:DB:9E:2C:BA:DE:CD:A9:B9:72:35:10:21:50:7A:DC:D1:A5:62:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNueLLrezam5cjUQIVB63NGlYn8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8B4F/DD73264868BC11EC87807948C4F9AE02/QNueLLrezam5cjUQIVB63NGlYn8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:b0:26:39:3d:b4:aa:73:c7:f3:bd:06:7a:ea:64:56:dc:82: 18:15:9e:50:97:eb:b0:bd:bf:3f:82:02:c2:d0:ab:aa:9c:cc: 28:02:2c:2d:97:61:39:da:44:a9:85:57:4f:f5:ef:7b:81:1a: b2:c6:b5:b1:f0:b9:88:eb:20:7a:07:7c:d9:d2:4a:86:10:b4: 3e:50:32:29:c2:07:a9:fd:ff:0e:f0:3d:5c:dd:69:61:21:de: 52:a3:4f:19:91:30:7c:cd:21:fa:19:08:b7:89:1a:eb:eb:2a: 1c:1b:31:ec:dc:f1:47:15:61:e5:e4:8b:9b:81:ea:a0:92:e7: e3:b7:d9:6a:70:33:39:2b:fa:f0:09:ec:bd:5f:b0:16:dd:6c: 47:e2:ee:b0:86:fa:38:32:77:f9:2e:60:c0:7b:a7:36:55:d2: 42:55:9f:17:7a:8b:12:53:26:e8:bd:d5:5d:34:bc:fb:12:3b: 86:54:74:d2:57:0e:dd:8c:f6:8d:32:2f:15:de:da:7a:d2:3a: 8f:6e:e5:8b:23:69:04:0f:af:d9:49:da:20:e9:db:e9:40:69: 35:c4:4d:4b:64:3d:36:45:fb:9f:be:43:88:c4:2c:46:01:89: 0e:e9:22:7e:9f:c1:d4:d4:55:ac:e1:dd:77:89:7d:1d:87:43: 6f:d7:45:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhCNEYxMTAvBgNVBAUTKDQwREI5RTJDQkFERUNEQTlCOTcyMzUxMDIxNTA3QURD RDFBNTYyN0YwHhcNMjUwNzE5MDA0MzA3WhcNMjUwNzI2MDA0MzA3WjAYMRYwFAYD VQQDEw02ODdhZWExYi0xYTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsNfsaAlRmhjehhkBujBzF7iorBACPSBhEZQnoMqgz1qJtPWW8qaVy5JcTAgh Jccz66Oo0yrAO/7iNjYPJT7E643HA8bW+6BcQTDF0rperNTV8xMW1hyNTEcvSwEb bdPv+w8O9CkNoQ8dNV8tuBxIqaoL1Sw7iW1DtwvtGbMyOrzbfzfCqdYLLWVMb6v7 6w0wj6eaWflL3W2DkZNNvlfwxDIosWsZElL3el+OypwOzCSBeYzJ/nFm5xA7H332 VzZz8w/719gqHO1MNLaGwBYmyiMurOnmDXwXCe/n33o/1P1W/o9PlFLLLk89uhWE yYCjcS6FcFJZMAsLCRWk5vmZ3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOfuzh7V K0I1InkpKnqFwoNrxNyXMB8GA1UdIwQYMBaAFEDbniy63s2puXI1ECFQetzRpWJ/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEI0Ri9ERDczMjY0ODY4 QkMxMUVDODc4MDc5NDhDNEY5QUUwMi9RTnVlTExyZXphbTVjalVRSVZCNjNOR2xZ bjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOdWVMTHJlemFtNWNqVVFJVkI2M05HbFluOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEI0Ri9ERDczMjY0ODY4QkMxMUVDODc4MDc5NDhDNEY5QUUwMi9RTnVlTExyZXph bTVjalVRSVZCNjNOR2xZbjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWsCY5PbSqc8fzvQZ66mRW3IIYFZ5Ql+uwvb8/ggLC0KuqnMwoAiwt l2E52kSphVdP9e97gRqyxrWx8LmI6yB6B3zZ0kqGELQ+UDIpwgep/f8O8D1c3Wlh Id5So08ZkTB8zSH6GQi3iRrr6yocGzHs3PFHFWHl5Iubgeqgkufjt9lqcDM5K/rw Cey9X7AW3WxH4u6whvo4Mnf5LmDAe6c2VdJCVZ8XeosSUybovdVdNLz7EjuGVHTS Vw7djPaNMi8V3tp60jqPbuWLI2kED6/ZSdog6dvpQGk1xE1LZD02RfufvkOIxCxG AYkO6SJ+n8HU1FWs4d13iX0dh0Nv10Wx -----END CERTIFICATE-----Generated at Sun Jul 20 10:14:48 2025 by rpki-client