$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft File: Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft (raw, json) Hash identifier: CZXke6EYaar33I/GBiZiqNUkjDIZ9pN6iI84go+OWlI= Subject key identifier: 35:2A:E7:D1:4A:89:B4:3C:63:1F:E7:46:B7:38:79:3D:7B:8C:F9:2E Authority key identifier: 42:CE:50:E1:AC:73:3D:5A:16:6B:54:2C:3C:49:30:9F:36:56:BF:22 Certificate issuer: /CN=A91DF9B9/serialNumber=42CE50E1AC733D5A166B542C3C49309F3656BF22 Certificate serial: 0173 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft Manifest number: 0170 Signing time: Mon 21 Jul 2025 03:53:30 +0000 Manifest this update: Mon 21 Jul 2025 03:53:30 +0000 Manifest next update: Mon 28 Jul 2025 03:53:30 +0000 Files and hashes: 1: Qs5Q4axzPVoWa1QsPEkwnzZWvyI.crl (hash: xYEcfUZwJREImaWDD+mnQLdbhy1/qEzZJK9+7+thPVk=) 2: F3484DBA34CE11EEBBA9D046C4F9AE02.roa (hash: e+rpsrJfE3yU94kVnBShl6jDwyCOKp3rugpFTdwj4Dw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.crl rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 03:28:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF9B9, serialNumber=42CE50E1AC733D5A166B542C3C49309F3656BF22 Validity Not Before: Jul 21 03:53:30 2025 GMT Not After : Jul 28 03:53:30 2025 GMT Subject: CN=687db9ba-f87a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ca:94:57:73:cf:6c:76:1a:6e:5f:46:88:2f: c2:c9:44:2e:fd:61:60:e5:e9:b2:5f:54:f0:22:10: 34:8e:18:4a:32:74:bf:5f:d0:b4:00:40:c1:4e:ad: 48:72:e5:48:54:27:1c:03:12:e0:d6:75:1a:3d:06: bf:20:28:5d:a6:14:a3:21:cb:31:f0:48:39:0b:c8: c5:f1:c0:91:c1:a3:bf:f4:5b:1d:6a:df:84:36:08: 74:ec:a0:2c:a0:5b:45:8c:bf:c6:93:a0:e6:09:95: dd:80:32:d8:f4:b6:4b:44:72:2d:a4:e9:97:26:5e: d5:12:ec:bc:c0:6e:dd:21:bc:03:7d:10:c8:0b:4d: f9:56:f8:d8:38:56:9d:5e:27:1d:3b:22:0c:ce:36: bb:3d:41:c7:7a:8d:9b:58:d6:f9:c4:37:5f:53:5c: aa:e6:2f:83:f4:0c:47:3f:63:b6:9d:05:18:fb:2b: b0:52:b9:99:a6:12:4c:16:89:f1:03:79:97:54:d7: 77:4b:b3:7c:aa:74:a6:a9:76:d5:cf:53:ac:17:2d: 3e:ae:d4:9c:7d:2a:15:8b:03:f3:2c:11:1e:60:cb: 5a:b8:65:ec:f0:7b:6e:82:39:62:4d:5d:56:38:c3: ff:14:c3:47:75:1a:2d:3f:2f:06:de:f9:b6:a1:a5: 3f:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:2A:E7:D1:4A:89:B4:3C:63:1F:E7:46:B7:38:79:3D:7B:8C:F9:2E X509v3 Authority Key Identifier: keyid:42:CE:50:E1:AC:73:3D:5A:16:6B:54:2C:3C:49:30:9F:36:56:BF:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF9B9/951F98EA32D211EE869FDB71C4F9AE02/Qs5Q4axzPVoWa1QsPEkwnzZWvyI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:e4:7e:ff:34:9c:13:ef:31:33:0a:ef:73:1d:b6:3e:ad:88: 54:98:a2:86:d1:57:32:60:cf:55:4d:fc:54:f9:6b:ec:e4:b2: 01:79:4f:71:ce:5d:8b:a6:a9:b9:e9:85:e2:29:e8:0d:89:b9: ef:82:91:21:08:3a:f1:12:b9:88:3c:19:b2:bf:79:35:a2:82: 3d:56:35:45:a1:38:f5:67:07:0c:65:60:cc:12:e9:3d:ac:8e: cc:eb:9a:c8:9f:53:cc:4f:57:ca:f1:da:37:7e:e9:59:ae:55: 23:f7:18:7b:dd:39:7c:8f:4b:56:44:3e:57:1c:8c:2b:9e:4b: 18:77:c9:5f:a2:c1:f4:c7:64:b3:b8:72:4b:00:66:b7:3a:a8: 26:e9:38:a2:97:49:d2:fa:9b:49:ae:30:85:53:32:ab:2f:df: 88:f1:3b:94:c2:94:39:4a:34:1c:6a:97:6b:fb:e0:2f:19:8b: 4d:46:10:05:f5:11:e2:91:44:84:b6:d0:a6:92:9e:45:aa:36: 60:fb:af:95:44:d0:c4:f3:7b:19:49:85:3d:b3:92:06:72:d2: 39:62:cc:e0:a0:bf:c9:4f:36:29:80:13:32:60:39:e9:30:6a: 3c:f9:a0:ff:f5:96:8c:1e:73:09:d5:72:05:59:fc:92:c1:99: 25:6e:69:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5QjkxMTAvBgNVBAUTKDQyQ0U1MEUxQUM3MzNENUExNjZCNTQyQzNDNDkzMDlG MzY1NkJGMjIwHhcNMjUwNzIxMDM1MzMwWhcNMjUwNzI4MDM1MzMwWjAYMRYwFAYD VQQDEw02ODdkYjliYS1mODdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2sqUV3PPbHYabl9GiC/CyUQu/WFg5emyX1TwIhA0jhhKMnS/X9C0AEDBTq1I cuVIVCccAxLg1nUaPQa/IChdphSjIcsx8Eg5C8jF8cCRwaO/9Fsdat+ENgh07KAs oFtFjL/Gk6DmCZXdgDLY9LZLRHItpOmXJl7VEuy8wG7dIbwDfRDIC035VvjYOFad XicdOyIMzja7PUHHeo2bWNb5xDdfU1yq5i+D9AxHP2O2nQUY+yuwUrmZphJMFonx A3mXVNd3S7N8qnSmqXbVz1OsFy0+rtScfSoViwPzLBEeYMtauGXs8HtugjliTV1W OMP/FMNHdRotPy8G3vm2oaU/UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDUq59FK ibQ8Yx/nRrc4eT17jPkuMB8GA1UdIwQYMBaAFELOUOGscz1aFmtULDxJMJ82Vr8i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjlCOS85NTFGOThFQTMy RDIxMUVFODY5RkRCNzFDNEY5QUUwMi9RczVRNGF4elBWb1dhMVFzUEVrd256Wld2 eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FzNVE0YXh6UFZvV2ExUXNQRWt3bnpaV3Z5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjlCOS85NTFGOThFQTMyRDIxMUVFODY5RkRCNzFDNEY5QUUwMi9RczVRNGF4elBW b1dhMVFzUEVrd256Wld2eUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCU5H7/NJwT7zEzCu9zHbY+rYhUmKKG0VcyYM9VTfxU+Wvs5LIBeU9x zl2Lpqm56YXiKegNibnvgpEhCDrxErmIPBmyv3k1ooI9VjVFoTj1ZwcMZWDMEuk9 rI7M65rIn1PMT1fK8do3fulZrlUj9xh73Tl8j0tWRD5XHIwrnksYd8lfosH0x2Sz uHJLAGa3Oqgm6Tiil0nS+ptJrjCFUzKrL9+I8TuUwpQ5SjQcapdr++AvGYtNRhAF 9RHikUSEttCmkp5FqjZg+6+VRNDE83sZSYU9s5IGctI5YszgoL/JTzYpgBMyYDnp MGo8+aD/9ZaMHnMJ1XIFWfySwZklbmkF -----END CERTIFICATE-----Generated at Mon Jul 21 05:51:46 2025 by rpki-client