$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft File: Qql4rYPdXtKaTl3bYbVvExelpaQ.mft (raw, json) Hash identifier: fyvu7knUa9Rdz5u2ngRiMm6Jo85mj7bhE5b15Fp/4Xo= Subject key identifier: 77:9E:18:6D:A9:30:79:7F:54:98:47:57:FF:EB:47:F3:CA:04:95:89 Authority key identifier: 42:A9:78:AD:83:DD:5E:D2:9A:4E:5D:DB:61:B5:6F:13:17:A5:A5:A4 Certificate issuer: /CN=A91D4803/serialNumber=42A978AD83DD5ED29A4E5DDB61B56F1317A5A5A4 Certificate serial: 0556 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft Manifest number: 054E Signing time: Sun 20 Jul 2025 23:36:50 +0000 Manifest this update: Sun 20 Jul 2025 23:36:50 +0000 Manifest next update: Sun 27 Jul 2025 23:36:50 +0000 Files and hashes: 1: Qql4rYPdXtKaTl3bYbVvExelpaQ.crl (hash: JsagZ8quQ1xrRQ1i2zwM32T+oeLNgJcVQ51RT31MjQU=) 2: 2B1B8C92F9E511EBBB9B5D22C4F9AE02.roa (hash: /ckEG51NBhBYEZtZSbLBPmavN3UuTjHbEpYTSHsiIm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.crl rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 23:36:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1366 (0x556) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4803, serialNumber=42A978AD83DD5ED29A4E5DDB61B56F1317A5A5A4 Validity Not Before: Jul 20 23:36:50 2025 GMT Not After : Jul 27 23:36:50 2025 GMT Subject: CN=687d7d92-f5d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:10:12:99:14:02:f4:10:83:7d:f2:1b:35:e0: 7c:95:86:3c:9f:4b:a6:36:aa:f5:0e:ba:4b:68:37: 60:8d:b6:f6:83:25:53:dd:ca:a2:3b:86:34:0f:16: 51:c6:86:45:df:cd:c1:41:52:35:02:a9:e5:84:29: fc:9d:02:5d:f5:9f:fc:19:88:21:10:4d:76:90:cb: 86:b0:15:95:d0:7b:fc:67:95:80:5b:bd:05:09:88: bb:b5:21:c2:9a:e9:17:01:cd:93:d1:da:ea:de:c2: 37:ca:6c:01:07:de:1d:1e:f7:3a:ef:d3:9a:4d:60: 61:7a:fa:a9:fc:4e:27:f2:44:ba:c9:39:a8:18:07: 5a:4d:ca:10:34:f7:07:dc:91:ba:a5:08:fc:94:ff: a9:8c:b5:7d:a0:94:e6:17:91:4d:e9:25:02:ce:50: 2a:c8:80:f7:bf:d1:1c:bc:2b:e9:1e:8b:b4:12:c2: b2:b0:4e:cf:03:a8:e7:2c:90:7d:14:ed:b4:e1:ff: 23:2e:d0:6c:2f:4c:39:32:6b:09:e0:6d:c9:81:69: 00:e5:f6:2e:65:7f:b5:85:9f:9b:6c:1d:30:1f:ec: 2f:a8:d3:83:ee:b0:0a:f1:00:fd:73:ab:fc:07:f4: 4d:cf:82:58:56:4e:cf:af:8b:67:b5:39:4e:25:ea: 4c:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:9E:18:6D:A9:30:79:7F:54:98:47:57:FF:EB:47:F3:CA:04:95:89 X509v3 Authority Key Identifier: keyid:42:A9:78:AD:83:DD:5E:D2:9A:4E:5D:DB:61:B5:6F:13:17:A5:A5:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qql4rYPdXtKaTl3bYbVvExelpaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4803/80F034BEF9E111EBA32CE21BC4F9AE02/Qql4rYPdXtKaTl3bYbVvExelpaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:48:8a:ea:6d:ff:59:95:64:4d:3c:f9:ee:a8:c1:98:17:12: 6a:7f:a3:f4:76:93:05:a0:16:4d:d8:1e:92:63:3b:f4:a8:d6: b0:41:b8:a5:43:c2:a5:cd:df:01:75:17:12:ef:fd:54:e6:fa: 2a:f2:3b:c1:8d:cb:81:64:a4:33:11:6e:71:f4:0c:e1:f4:55: 33:6e:a7:37:3e:68:58:a3:ff:8d:2a:ce:b8:ca:3b:b4:4e:58: 17:28:9d:44:5d:88:0b:b3:97:ba:cd:ff:95:34:ce:32:48:e6: 75:14:c2:b5:ce:b9:3e:b4:f1:6d:d1:f4:21:e4:a1:5d:99:04: 62:b5:b5:0c:5f:a3:45:eb:02:85:6e:0b:25:fa:fc:c8:50:17: 1e:f9:70:e0:ba:14:c6:a2:09:2f:fe:26:12:41:dc:b2:1b:82: c5:64:e0:04:56:3c:e2:00:6c:7a:64:80:3c:6a:be:5a:d4:aa: 55:95:aa:72:02:ce:9d:fd:78:5f:bc:b5:cb:77:67:29:90:54: b9:48:1d:59:24:ab:c8:d8:04:c9:e0:fa:39:a9:66:32:83:98: 46:b8:4a:06:8a:09:6b:25:b0:45:2b:dc:05:36:8c:71:4a:85: 6f:98:a5:69:51:e3:13:6e:06:00:c1:6f:4f:84:99:f2:bd:b6: 5e:b8:11:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ4MDMxMTAvBgNVBAUTKDQyQTk3OEFEODNERDVFRDI5QTRFNUREQjYxQjU2RjEz MTdBNUE1QTQwHhcNMjUwNzIwMjMzNjUwWhcNMjUwNzI3MjMzNjUwWjAYMRYwFAYD VQQDEw02ODdkN2Q5Mi1mNWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsBASmRQC9BCDffIbNeB8lYY8n0umNqr1DrpLaDdgjbb2gyVT3cqiO4Y0DxZR xoZF383BQVI1AqnlhCn8nQJd9Z/8GYghEE12kMuGsBWV0Hv8Z5WAW70FCYi7tSHC mukXAc2T0drq3sI3ymwBB94dHvc679OaTWBhevqp/E4n8kS6yTmoGAdaTcoQNPcH 3JG6pQj8lP+pjLV9oJTmF5FN6SUCzlAqyID3v9EcvCvpHou0EsKysE7PA6jnLJB9 FO204f8jLtBsL0w5MmsJ4G3JgWkA5fYuZX+1hZ+bbB0wH+wvqNOD7rAK8QD9c6v8 B/RNz4JYVk7Pr4tntTlOJepMaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHeeGG2p MHl/VJhHV//rR/PKBJWJMB8GA1UdIwQYMBaAFEKpeK2D3V7Smk5d22G1bxMXpaWk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDgwMy84MEYwMzRCRUY5 RTExMUVCQTMyQ0UyMUJDNEY5QUUwMi9RcWw0cllQZFh0S2FUbDNiWWJWdkV4ZWxw YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FxbDRyWVBkWHRLYVRsM2JZYlZ2RXhlbHBhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDgwMy84MEYwMzRCRUY5RTExMUVCQTMyQ0UyMUJDNEY5QUUwMi9RcWw0cllQZFh0 S2FUbDNiWWJWdkV4ZWxwYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiSIrqbf9ZlWRNPPnuqMGYFxJqf6P0dpMFoBZN2B6SYzv0qNawQbil Q8Klzd8BdRcS7/1U5voq8jvBjcuBZKQzEW5x9Azh9FUzbqc3PmhYo/+NKs64yju0 TlgXKJ1EXYgLs5e6zf+VNM4ySOZ1FMK1zrk+tPFt0fQh5KFdmQRitbUMX6NF6wKF bgsl+vzIUBce+XDguhTGogkv/iYSQdyyG4LFZOAEVjziAGx6ZIA8ar5a1KpVlapy As6d/XhfvLXLd2cpkFS5SB1ZJKvI2ATJ4Po5qWYyg5hGuEoGiglrJbBFK9wFNoxx SoVvmKVpUeMTbgYAwW9PhJnyvbZeuBER -----END CERTIFICATE-----Generated at Mon Jul 21 06:02:42 2025 by rpki-client