$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft File: QidVkJNLMeOdgd28nAmFa39OWIQ.mft (raw, json) Hash identifier: RwvmrQvWWZH0aOYx97TgrOxBaGCCZ3j7IXHhZPPw72Y= Subject key identifier: 7D:F5:6C:CC:71:D7:51:35:40:89:3A:CE:1D:7C:03:4D:34:60:1C:FE Authority key identifier: 42:27:55:90:93:4B:31:E3:9D:81:DD:BC:9C:09:85:6B:7F:4E:58:84 Certificate issuer: /CN=A91DC009/serialNumber=42275590934B31E39D81DDBC9C09856B7F4E5884 Certificate serial: 0208 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QidVkJNLMeOdgd28nAmFa39OWIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft Manifest number: 0205 Signing time: Sat 19 Jul 2025 02:27:34 +0000 Manifest this update: Sat 19 Jul 2025 02:27:33 +0000 Manifest next update: Sat 26 Jul 2025 02:27:33 +0000 Files and hashes: 1: QidVkJNLMeOdgd28nAmFa39OWIQ.crl (hash: jUEmHyfMTmPTSmrz1hIs3oCHeoEWUOQs+EsPQ7YuFpo=) 2: 754A1888490D11ED95C7C86EC4F9AE02.roa (hash: CSIt/M+JZX1zt8oTEtouM1TXpeh5gYbtlEsnigR0HLQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.crl rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QidVkJNLMeOdgd28nAmFa39OWIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 02:27:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 520 (0x208) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC009, serialNumber=42275590934B31E39D81DDBC9C09856B7F4E5884 Validity Not Before: Jul 19 02:27:33 2025 GMT Not After : Jul 26 02:27:33 2025 GMT Subject: CN=687b0296-c2cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:21:58:5b:c1:41:c0:65:7f:b8:e5:b0:50:42: 20:a1:26:fb:76:d4:5d:33:e4:b2:b4:da:10:c9:0f: 22:3d:63:c9:ee:46:60:f6:48:d7:23:7a:61:53:63: 59:31:42:34:62:4c:fb:2a:31:db:6b:c4:25:72:28: a8:c6:6d:01:f9:5d:0d:b2:c3:60:85:0f:1a:ed:d4: 5a:06:49:be:8e:47:9a:e4:52:08:07:26:2d:4e:c6: 4a:e3:cd:58:09:02:1d:df:a7:b9:c8:12:03:63:2d: 24:b5:cf:be:f0:ad:94:c8:2b:25:d8:af:f0:b2:db: c4:5c:39:9c:db:fa:91:79:69:fc:cc:0c:23:9f:b5: fe:43:7d:b7:09:78:d3:78:7b:47:04:73:0e:65:98: 2b:ca:f0:52:47:1a:01:3a:4c:20:04:73:4f:6a:88: 4c:e3:a9:c5:fe:43:cc:b8:b6:54:14:e0:ba:63:8a: 23:00:3f:30:f0:1e:4e:30:c3:ee:68:77:16:29:69: 86:dc:c2:81:74:ef:2d:d1:41:1e:1b:ac:73:93:d6: ff:02:27:7e:b4:3c:0d:68:77:4f:58:da:05:32:79: 36:5f:71:49:17:b6:84:ad:39:d8:92:92:d7:e0:79: 61:e8:04:a9:b0:9b:db:6d:5c:27:41:7f:ca:b0:e3: 42:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:F5:6C:CC:71:D7:51:35:40:89:3A:CE:1D:7C:03:4D:34:60:1C:FE X509v3 Authority Key Identifier: keyid:42:27:55:90:93:4B:31:E3:9D:81:DD:BC:9C:09:85:6B:7F:4E:58:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QidVkJNLMeOdgd28nAmFa39OWIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC009/959DB85E490A11EDBB767848C4F9AE02/QidVkJNLMeOdgd28nAmFa39OWIQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:5d:63:5d:8b:d7:de:45:c4:c3:e8:d8:ec:cc:9f:c6:dc:98: c5:1d:20:c9:e3:50:1f:c7:50:81:46:a1:dd:b2:46:cd:17:04: 47:60:57:ee:16:95:35:70:3d:31:cf:21:24:02:b5:1c:fd:07: e5:f4:63:5f:5f:dc:6c:46:09:7e:ad:0b:70:36:f8:87:0d:34: ad:87:b7:57:bd:11:6f:d6:57:78:c9:e6:cd:b8:85:bb:e8:1f: 66:d4:a3:51:b3:bd:aa:64:6b:8d:82:62:6c:69:93:a5:06:1c: 52:e0:48:ca:fc:aa:db:6f:88:a6:34:ec:b8:ce:21:f8:c3:00: 77:45:88:48:07:15:4c:39:ee:72:f3:44:8c:81:66:56:b8:9a: f1:f3:dc:aa:82:4d:18:42:2d:40:f8:3f:dc:93:56:18:56:fb: b8:e8:f5:fd:a8:b7:dc:c7:6e:27:cc:dd:a2:25:a3:bf:23:88: 27:de:81:45:6a:cf:0d:47:d3:0b:b6:a3:be:e4:7d:04:b4:e8: 9d:14:a6:ad:70:34:c9:4c:e5:94:8e:b7:02:f5:6a:08:3e:50: dd:b0:2d:d7:50:3a:be:72:21:e6:cd:94:48:47:f9:f6:9d:5c: 7e:9c:d3:93:fb:fb:37:5b:85:26:b1:d3:f0:42:8d:3a:ea:be: f1:c0:eb:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAggwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwMDkxMTAvBgNVBAUTKDQyMjc1NTkwOTM0QjMxRTM5RDgxRERCQzlDMDk4NTZC N0Y0RTU4ODQwHhcNMjUwNzE5MDIyNzMzWhcNMjUwNzI2MDIyNzMzWjAYMRYwFAYD VQQDEw02ODdiMDI5Ni1jMmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAySFYW8FBwGV/uOWwUEIgoSb7dtRdM+SytNoQyQ8iPWPJ7kZg9kjXI3phU2NZ MUI0Ykz7KjHba8Qlciioxm0B+V0NssNghQ8a7dRaBkm+jkea5FIIByYtTsZK481Y CQId36e5yBIDYy0ktc++8K2UyCsl2K/wstvEXDmc2/qReWn8zAwjn7X+Q323CXjT eHtHBHMOZZgryvBSRxoBOkwgBHNPaohM46nF/kPMuLZUFOC6Y4ojAD8w8B5OMMPu aHcWKWmG3MKBdO8t0UEeG6xzk9b/Aid+tDwNaHdPWNoFMnk2X3FJF7aErTnYkpLX 4Hlh6ASpsJvbbVwnQX/KsONCIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH31bMxx 11E1QIk6zh18A000YBz+MB8GA1UdIwQYMBaAFEInVZCTSzHjnYHdvJwJhWt/TliE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzAwOS85NTlEQjg1RTQ5 MEExMUVEQkI3Njc4NDhDNEY5QUUwMi9RaWRWa0pOTE1lT2RnZDI4bkFtRmEzOU9X SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FpZFZrSk5MTWVPZGdkMjhuQW1GYTM5T1dJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzAwOS85NTlEQjg1RTQ5MEExMUVEQkI3Njc4NDhDNEY5QUUwMi9RaWRWa0pOTE1l T2RnZDI4bkFtRmEzOU9XSVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALXWNdi9feRcTD6NjszJ/G3JjFHSDJ41Afx1CBRqHdskbNFwRHYFfu FpU1cD0xzyEkArUc/Qfl9GNfX9xsRgl+rQtwNviHDTSth7dXvRFv1ld4yebNuIW7 6B9m1KNRs72qZGuNgmJsaZOlBhxS4EjK/Krbb4imNOy4ziH4wwB3RYhIBxVMOe5y 80SMgWZWuJrx89yqgk0YQi1A+D/ck1YYVvu46PX9qLfcx24nzN2iJaO/I4gn3oFF as8NR9MLtqO+5H0EtOidFKatcDTJTOWUjrcC9WoIPlDdsC3XUDq+ciHmzZRIR/n2 nVx+nNOT+/s3W4UmsdPwQo066r7xwOtG -----END CERTIFICATE-----Generated at Sun Jul 20 06:50:04 2025 by rpki-client