$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.mft File: QRfXbD7AS2IRM0hQpc1uowVTUFw.mft (raw, json) Hash identifier: s6TOnoozcJ0iiNsXFLRGgrcf9kGICS2yUCUDyUSW+KE= Subject key identifier: 9D:B3:C6:32:30:73:1D:3A:54:C7:94:A1:13:EB:C6:E7:88:18:82:86 Authority key identifier: 41:17:D7:6C:3E:C0:4B:62:11:33:48:50:A5:CD:6E:A3:05:53:50:5C Certificate issuer: /CN=A91ED6B5/serialNumber=4117D76C3EC04B6211334850A5CD6EA30553505C Certificate serial: 045F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QRfXbD7AS2IRM0hQpc1uowVTUFw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.mft Manifest number: 045B Signing time: Sat 19 Jul 2025 00:34:48 +0000 Manifest this update: Sat 19 Jul 2025 00:34:48 +0000 Manifest next update: Sat 26 Jul 2025 00:34:48 +0000 Files and hashes: 1: QRfXbD7AS2IRM0hQpc1uowVTUFw.crl (hash: vTvNvTE/eDrtcjHxlTESQ0UcSEFTAmEhUiFgZgdXHBc=) 2: 06A899FECCF311EC86719729C4F9AE02.roa (hash: aXuFAPx3sTT3XGxZkToSNXJ/vwo2rNiJs7Ikunvy7v4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.crl rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QRfXbD7AS2IRM0hQpc1uowVTUFw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:34:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1119 (0x45f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED6B5, serialNumber=4117D76C3EC04B6211334850A5CD6EA30553505C Validity Not Before: Jul 19 00:34:48 2025 GMT Not After : Jul 26 00:34:48 2025 GMT Subject: CN=687ae828-e7be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d9:ae:05:fb:ce:69:55:e5:3a:87:f2:b3:bf: 3b:cc:b5:a4:74:6f:cb:db:4a:f2:74:a4:b9:6c:f2: 36:19:77:ea:6f:bc:bb:15:a0:83:51:bf:89:51:17: 16:01:78:a3:8d:f0:ef:36:16:b5:78:28:fb:b5:54: 7a:b9:da:8b:5c:54:21:76:38:34:16:72:bc:fd:62: 64:17:6a:04:4f:93:20:4c:c8:30:3b:e7:0a:76:96: a9:61:67:df:c2:cf:d6:24:fe:8f:25:c8:0e:91:00: 9e:d0:eb:ac:a0:fe:c4:f1:d2:ac:e0:ff:b2:95:9e: ca:ae:64:7e:45:7e:ba:94:8b:74:1a:24:36:5c:e2: e8:3f:8a:01:66:f9:6f:1e:67:a3:d8:6a:97:84:21: 79:e4:d4:9d:dc:b7:ac:e6:79:90:a6:08:39:47:96: e8:6c:08:32:b7:e3:e9:67:3a:ad:bf:f1:e8:79:39: 74:8a:39:dc:08:cb:28:ef:cf:3d:2e:8c:46:46:6c: 8a:b5:77:7e:1f:dd:bb:7d:0e:3f:dc:db:b6:66:0b: d2:5c:cf:71:8e:52:fe:e6:31:52:77:d2:0d:49:53: 62:8b:10:50:67:69:b1:76:97:21:1b:bf:06:e7:5c: 34:71:7e:68:c5:79:37:c4:6c:fc:86:d0:f6:6c:ad: 3d:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:B3:C6:32:30:73:1D:3A:54:C7:94:A1:13:EB:C6:E7:88:18:82:86 X509v3 Authority Key Identifier: keyid:41:17:D7:6C:3E:C0:4B:62:11:33:48:50:A5:CD:6E:A3:05:53:50:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QRfXbD7AS2IRM0hQpc1uowVTUFw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED6B5/EF469BFC594411ECAF575A6CC4F9AE02/QRfXbD7AS2IRM0hQpc1uowVTUFw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:46:9d:4b:d0:4f:59:20:0a:c4:5a:9c:10:a2:07:e8:ea:52: 79:d2:a4:2b:35:4b:ae:91:0e:70:25:73:5b:db:de:30:9b:d0: 3c:0d:23:6e:fd:44:b9:a5:ce:c1:0d:93:bb:2f:78:42:e8:13: e6:c6:cb:d3:ed:af:d4:1a:84:56:43:de:96:83:a1:fb:d0:be: bc:33:ce:fa:85:6e:90:e9:ae:36:9f:52:b1:0c:cf:61:f1:1c: 13:5c:87:33:13:1b:d0:9e:15:be:a4:d2:e7:3a:f3:32:91:66: 36:4a:ff:57:7c:80:19:18:7a:bc:ab:0c:af:60:c2:f8:87:61: b6:1c:ca:27:27:81:af:e7:24:0e:a4:f1:a9:8d:e5:c0:bc:45: 3e:ad:ed:65:32:c2:69:71:f4:3a:2d:71:7c:e6:b5:9e:94:17: a1:e0:65:ca:64:1b:df:b6:98:61:ee:b7:4d:0c:1d:d8:7a:20: dd:ed:c2:9b:82:8e:07:68:35:8f:b9:db:4a:ad:d9:6e:2d:c5: 6f:21:31:7a:dd:f2:e1:38:9e:6c:63:13:28:5a:b7:c4:15:93: df:0d:30:37:87:5e:bb:f6:7b:71:5d:9a:46:7d:b7:56:08:3d: ab:a6:16:4d:f9:b6:83:e1:e1:75:b2:c1:e9:24:a7:7e:d8:83: 55:c7:f7:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBF8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ2QjUxMTAvBgNVBAUTKDQxMTdENzZDM0VDMDRCNjIxMTMzNDg1MEE1Q0Q2RUEz MDU1MzUwNUMwHhcNMjUwNzE5MDAzNDQ4WhcNMjUwNzI2MDAzNDQ4WjAYMRYwFAYD VQQDEw02ODdhZTgyOC1lN2JlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzdmuBfvOaVXlOofys787zLWkdG/L20rydKS5bPI2GXfqb7y7FaCDUb+JURcW AXijjfDvNha1eCj7tVR6udqLXFQhdjg0FnK8/WJkF2oET5MgTMgwO+cKdpapYWff ws/WJP6PJcgOkQCe0OusoP7E8dKs4P+ylZ7KrmR+RX66lIt0GiQ2XOLoP4oBZvlv Hmej2GqXhCF55NSd3Les5nmQpgg5R5bobAgyt+PpZzqtv/HoeTl0ijncCMso7889 LoxGRmyKtXd+H927fQ4/3Nu2ZgvSXM9xjlL+5jFSd9INSVNiixBQZ2mxdpchG78G 51w0cX5oxXk3xGz8htD2bK09uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ2zxjIw cx06VMeUoRPrxueIGIKGMB8GA1UdIwQYMBaAFEEX12w+wEtiETNIUKXNbqMFU1Bc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDZCNS9FRjQ2OUJGQzU5 NDQxMUVDQUY1NzVBNkNDNEY5QUUwMi9RUmZYYkQ3QVMySVJNMGhRcGMxdW93VlRV RncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FSZlhiRDdBUzJJUk0waFFwYzF1b3dWVFVGdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDZCNS9FRjQ2OUJGQzU5NDQxMUVDQUY1NzVBNkNDNEY5QUUwMi9RUmZYYkQ3QVMy SVJNMGhRcGMxdW93VlRVRncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxRp1L0E9ZIArEWpwQogfo6lJ50qQrNUuukQ5wJXNb294wm9A8DSNu /US5pc7BDZO7L3hC6BPmxsvT7a/UGoRWQ96Wg6H70L68M876hW6Q6a42n1KxDM9h 8RwTXIczExvQnhW+pNLnOvMykWY2Sv9XfIAZGHq8qwyvYML4h2G2HMonJ4Gv5yQO pPGpjeXAvEU+re1lMsJpcfQ6LXF85rWelBeh4GXKZBvftphh7rdNDB3YeiDd7cKb go4HaDWPudtKrdluLcVvITF63fLhOJ5sYxMoWrfEFZPfDTA3h1679ntxXZpGfbdW CD2rphZN+baD4eF1ssHpJKd+2INVx/eL -----END CERTIFICATE-----Generated at Sun Jul 20 15:03:46 2025 by rpki-client