$ rpki-client -vvf rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft File: QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft (raw, json) Hash identifier: 0Qq3ogRyoreCYokIhd2IKM1Qpzc0vYnc5kFoqatzvlY= Subject key identifier: C5:6D:12:12:43:CE:38:D8:0F:24:17:C5:83:4D:4D:CE:06:A9:69:3B Authority key identifier: 40:DD:EE:F0:18:EA:DC:DE:4D:1B:F7:8D:15:48:51:F8:D8:BC:26:A5 Certificate issuer: /CN=A911CB05/serialNumber=40DDEEF018EADCDE4D1BF78D154851F8D8BC26A5 Certificate serial: 90 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft Manifest number: 8F Signing time: Sat 19 Jul 2025 06:41:23 +0000 Manifest this update: Sat 19 Jul 2025 06:41:22 +0000 Manifest next update: Sat 26 Jul 2025 06:41:22 +0000 Files and hashes: 1: QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.crl (hash: 5hIB9jFukWdmNKXiMgwpXf48+z/mK13ORNzsORZKt2E=) 2: E692CC2A8A9B11EFBC56AA85C4F9AE02.roa (hash: eCOiciHVF02QIJ92sCGpWxzFiJ0IghOmtXmYmm4vkYY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.crl rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:41:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CB05, serialNumber=40DDEEF018EADCDE4D1BF78D154851F8D8BC26A5 Validity Not Before: Jul 19 06:41:22 2025 GMT Not After : Jul 26 06:41:22 2025 GMT Subject: CN=687b3e12-f41e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:6f:f2:87:78:e0:de:59:02:82:da:02:0a:83: 4b:70:de:cc:14:3c:76:2b:24:54:e2:72:0d:c3:3a: 85:6c:e1:8b:b9:37:4b:d4:04:be:ef:58:29:e0:34: 56:68:2b:05:b2:65:0e:3e:f8:bb:52:e5:6b:bd:75: 83:a4:32:45:26:c5:bd:07:ac:f3:bc:ed:90:89:32: c3:23:1a:8a:1e:eb:08:16:f7:f0:b1:56:5b:fd:53: a8:99:d4:47:a5:bb:1c:04:bc:24:8b:27:db:f7:e3: 19:34:86:fa:f3:92:dc:1b:23:1f:fb:71:21:b4:fb: ff:05:38:3e:10:ff:10:e3:a0:6d:2a:f2:1c:eb:00: 80:e9:4a:32:07:a3:9c:fc:f8:27:82:b5:16:54:b6: a5:dc:ef:4f:eb:2f:e7:99:cf:89:1d:23:63:78:8d: 22:94:1a:36:60:d3:2f:53:25:6b:f1:58:1c:f0:ed: e3:dc:0d:52:24:31:34:cf:ea:bc:ba:ac:5a:86:da: 00:01:e9:0a:f8:cc:be:7e:d6:e6:90:15:2b:ec:a4: da:3e:a8:45:9b:84:0f:a3:fc:b9:86:26:77:d7:91: 21:cb:fa:bc:69:95:84:33:68:19:65:c0:be:97:30: 3b:70:11:5c:5b:11:bb:e9:b5:56:3d:1e:95:5e:83: bf:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:6D:12:12:43:CE:38:D8:0F:24:17:C5:83:4D:4D:CE:06:A9:69:3B X509v3 Authority Key Identifier: keyid:40:DD:EE:F0:18:EA:DC:DE:4D:1B:F7:8D:15:48:51:F8:D8:BC:26:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CB05/F0B66CF88A9A11EFB8AA5648C4F9AE02/QN3u8Bjq3N5NG_eNFUhR-Ni8JqU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption df:27:d6:a3:7f:16:fc:b6:7a:4b:12:12:d0:36:af:2f:f4:73: 40:37:6b:6a:2e:b9:8f:d2:94:61:46:fd:12:e3:92:c4:14:8f: 40:80:2a:56:10:82:48:53:89:48:62:34:5d:34:00:cc:57:fe: c7:e9:43:7f:71:fc:e3:fb:c0:8b:ee:53:2f:8a:e4:1e:1e:53: 13:7d:e9:93:86:db:dd:56:15:00:2e:58:e8:42:fa:06:92:e8: 50:c8:55:03:a0:87:af:e7:a1:7d:27:8a:57:a9:f0:5a:73:aa: ee:07:44:a4:d0:3d:ed:7c:0a:cd:4c:2f:0d:79:89:a4:ae:b9: 2f:cf:c5:12:f3:2d:84:ca:5a:d4:91:9c:05:69:d1:1a:df:00: 57:90:27:3b:f7:97:86:35:d0:a0:ff:de:06:88:bc:a2:6f:78: 60:45:ed:62:6c:eb:d8:44:da:fc:59:65:32:c8:a3:fc:99:dc: 58:26:b3:66:f7:d3:51:43:b3:d1:72:4d:60:88:e9:ab:49:96: 65:47:87:4c:ca:5f:bd:23:cd:ac:9d:0d:42:db:06:b3:17:da: 89:31:9a:87:e3:2f:1a:b6:44:b7:2a:b5:c8:59:ad:f6:6c:49: a8:bf:a4:26:4f:14:50:f9:19:61:ca:a4:24:cc:ea:e8:5c:f6: 0f:9f:56:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNCMDUxMTAvBgNVBAUTKDQwRERFRUYwMThFQURDREU0RDFCRjc4RDE1NDg1MUY4 RDhCQzI2QTUwHhcNMjUwNzE5MDY0MTIyWhcNMjUwNzI2MDY0MTIyWjAYMRYwFAYD VQQDEw02ODdiM2UxMi1mNDFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyG/yh3jg3lkCgtoCCoNLcN7MFDx2KyRU4nINwzqFbOGLuTdL1AS+71gp4DRW aCsFsmUOPvi7UuVrvXWDpDJFJsW9B6zzvO2QiTLDIxqKHusIFvfwsVZb/VOomdRH pbscBLwkiyfb9+MZNIb685LcGyMf+3EhtPv/BTg+EP8Q46BtKvIc6wCA6UoyB6Oc /PgngrUWVLal3O9P6y/nmc+JHSNjeI0ilBo2YNMvUyVr8Vgc8O3j3A1SJDE0z+q8 uqxahtoAAekK+My+ftbmkBUr7KTaPqhFm4QPo/y5hiZ315Ehy/q8aZWEM2gZZcC+ lzA7cBFcWxG76bVWPR6VXoO/BwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMVtEhJD zjjYDyQXxYNNTc4GqWk7MB8GA1UdIwQYMBaAFEDd7vAY6tzeTRv3jRVIUfjYvCal MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0IwNS9GMEI2NkNGODhB OUExMUVGQjhBQTU2NDhDNEY5QUUwMi9RTjN1OEJqcTNONU5HX2VORlVoUi1OaThK cVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FOM3U4QmpxM041TkdfZU5GVWhSLU5pOEpxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0IwNS9GMEI2NkNGODhBOUExMUVGQjhBQTU2NDhDNEY5QUUwMi9RTjN1OEJqcTNO NU5HX2VORlVoUi1OaThKcVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDfJ9ajfxb8tnpLEhLQNq8v9HNAN2tqLrmP0pRhRv0S45LEFI9AgCpW EIJIU4lIYjRdNADMV/7H6UN/cfzj+8CL7lMviuQeHlMTfemThtvdVhUALljoQvoG kuhQyFUDoIev56F9J4pXqfBac6ruB0Sk0D3tfArNTC8NeYmkrrkvz8US8y2EylrU kZwFadEa3wBXkCc795eGNdCg/94GiLyib3hgRe1ibOvYRNr8WWUyyKP8mdxYJrNm 99NRQ7PRck1giOmrSZZlR4dMyl+9I82snQ1C2wazF9qJMZqH4y8atkS3KrXIWa32 bEmov6QmTxRQ+RlhyqQkzOroXPYPn1bw -----END CERTIFICATE-----Generated at Sun Jul 20 20:42:55 2025 by rpki-client