$ rpki-client -vvf rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft File: QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft (raw, json) Hash identifier: i/9tQYR6iw7B4zwXv928rlICxymRp+3FnjUgi1kWpzw= Subject key identifier: 28:91:07:B2:CE:7F:EE:0E:B5:B6:35:D9:60:F8:9F:AB:87:14:2C:76 Authority key identifier: 40:3B:B7:B9:18:F9:15:4A:D8:2C:2A:D3:5A:EF:C0:AB:E8:D0:6A:DE Certificate issuer: /CN=A913631F/serialNumber=403BB7B918F9154AD82C2AD35AEFC0ABE8D06ADE Certificate serial: 7D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft Manifest number: 7C Signing time: Fri 05 Sep 2025 07:12:58 +0000 Manifest this update: Fri 05 Sep 2025 07:12:58 +0000 Manifest next update: Fri 12 Sep 2025 07:12:58 +0000 Files and hashes: 1: QDu3uRj5FUrYLCrTWu_Aq-jQat4.crl (hash: T3fm/3evVoELHZqPLz/6uQSKZhlWv1gPB19VWIkDme8=) 2: CA9B891ACF1C11EF981F2F86C4F9AE02.roa (hash: DSiGqsj/wHYJqRQngYpUalsfP9r6Z3qaSue0LX+uo6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.crl rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 07:12:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913631F, serialNumber=403BB7B918F9154AD82C2AD35AEFC0ABE8D06ADE Validity Not Before: Sep 5 07:12:58 2025 GMT Not After : Sep 12 07:12:58 2025 GMT Subject: CN=68ba8d7a-508d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:bf:aa:6a:d1:a8:37:5e:ee:05:8b:91:4b:ef: a1:2f:78:de:2d:ac:06:b5:a0:62:7b:57:1f:59:f1: a4:7d:ce:a5:6f:46:8e:30:fd:fc:05:5a:ab:67:41: 9d:7c:52:d4:17:e1:d2:e6:3e:20:31:da:a3:2a:86: d5:11:4f:b8:90:83:17:2e:31:46:03:a9:7a:a8:40: 30:a6:35:13:f3:72:d3:b1:b9:29:62:cb:84:89:cc: 16:92:80:97:32:37:48:df:32:f9:91:56:bb:3e:b4: bd:33:0e:91:49:c4:e8:c1:9b:6c:18:bc:8f:4e:34: c6:30:d0:bd:5e:a9:60:16:19:7e:eb:01:dc:61:0f: 1c:f7:17:51:a2:97:3d:83:fe:92:29:d9:59:74:b5: 4d:94:28:f1:c4:4b:fd:3d:fc:77:f0:3f:64:8d:59: b3:28:d0:93:0a:3f:99:e1:3d:07:c9:23:97:60:df: ec:ee:91:46:ca:b4:52:46:6b:46:d2:8e:0a:fa:a4: d6:fe:0e:a9:7f:7d:22:75:21:3a:76:d5:3c:65:0e: 5b:32:eb:6e:e2:9b:7c:d7:8b:a4:31:4b:5a:09:2c: db:7b:f3:5c:cf:a6:a2:ac:09:65:e2:9a:c5:83:81: 50:f1:05:fc:77:58:a3:7b:67:e3:43:aa:2b:e1:ac: 6a:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:91:07:B2:CE:7F:EE:0E:B5:B6:35:D9:60:F8:9F:AB:87:14:2C:76 X509v3 Authority Key Identifier: keyid:40:3B:B7:B9:18:F9:15:4A:D8:2C:2A:D3:5A:EF:C0:AB:E8:D0:6A:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QDu3uRj5FUrYLCrTWu_Aq-jQat4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913631F/7B3F0B1CCF1C11EF81947F85C4F9AE02/QDu3uRj5FUrYLCrTWu_Aq-jQat4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:be:22:6a:46:7c:bf:c6:97:1e:14:f2:06:05:7e:50:c7:7e: fb:a9:a6:b3:73:9b:14:3a:15:06:ce:12:28:88:44:ae:c0:a5: 05:3f:f1:2e:2f:e7:ad:7f:fd:69:e3:dd:68:80:e5:05:fd:4e: e9:48:d7:26:dc:d9:6d:c2:1b:76:8b:5a:d6:93:b6:c2:d4:6e: c2:23:73:7e:be:86:cf:4f:b6:95:ba:d8:29:4a:9e:27:fb:96: 7f:fd:1e:60:99:7d:21:5a:ad:cb:ab:ed:32:9c:7a:74:d9:ac: 20:89:47:8d:48:d4:8f:3c:05:0f:6d:00:89:9b:3a:35:89:a9: ff:df:27:5b:b3:dc:83:00:27:67:a1:00:c2:f5:10:57:b0:f8: f5:cf:07:1a:72:f9:89:21:01:6b:25:7e:c9:61:e4:d2:5c:bd: 27:34:ee:a7:fe:06:59:fe:32:a2:40:2e:88:38:ef:52:b9:1b: da:8c:33:9c:ee:08:3b:1b:d1:ed:52:48:11:0f:6b:9b:5f:1e: bb:b4:57:0e:c8:9a:bf:37:e3:52:c9:af:8b:c4:a0:af:7e:78: 29:dc:7c:5c:2c:99:35:98:24:bf:7b:14:b9:96:56:e5:cb:7c: fd:74:bd:2e:c2:89:1d:43:19:51:22:39:bc:13:c8:16:09:f6: 3c:33:dd:35 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NjMxRjExMC8GA1UEBRMoNDAzQkI3QjkxOEY5MTU0QUQ4MkMyQUQzNUFFRkMwQUJF OEQwNkFERTAeFw0yNTA5MDUwNzEyNThaFw0yNTA5MTIwNzEyNThaMBgxFjAUBgNV BAMTDTY4YmE4ZDdhLTUwOGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvv6pq0ag3Xu4Fi5FL76EveN4trAa1oGJ7Vx9Z8aR9zqVvRo4w/fwFWqtnQZ18 UtQX4dLmPiAx2qMqhtURT7iQgxcuMUYDqXqoQDCmNRPzctOxuSliy4SJzBaSgJcy N0jfMvmRVrs+tL0zDpFJxOjBm2wYvI9ONMYw0L1eqWAWGX7rAdxhDxz3F1Gilz2D /pIp2Vl0tU2UKPHES/09/HfwP2SNWbMo0JMKP5nhPQfJI5dg3+zukUbKtFJGa0bS jgr6pNb+Dql/fSJ1ITp21TxlDlsy627im3zXi6QxS1oJLNt781zPpqKsCWXimsWD gVDxBfx3WKN7Z+NDqivhrGqjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUKJEHss5/ 7g61tjXZYPifq4cULHYwHwYDVR0jBBgwFoAUQDu3uRj5FUrYLCrTWu/Aq+jQat4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2MzFGLzdCM0YwQjFDQ0Yx QzExRUY4MTk0N0Y4NUM0RjlBRTAyL1FEdTN1Umo1RlVyWUxDclRXdV9BcS1qUWF0 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUUR1M3VSajVGVXJZTENyVFd1X0FxLWpRYXQ0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2 MzFGLzdCM0YwQjFDQ0YxQzExRUY4MTk0N0Y4NUM0RjlBRTAyL1FEdTN1Umo1RlVy WUxDclRXdV9BcS1qUWF0NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEC+ImpGfL/Glx4U8gYFflDHfvupprNzmxQ6FQbOEiiIRK7ApQU/8S4v 561//Wnj3WiA5QX9TulI1ybc2W3CG3aLWtaTtsLUbsIjc36+hs9PtpW62ClKnif7 ln/9HmCZfSFarcur7TKcenTZrCCJR41I1I88BQ9tAImbOjWJqf/fJ1uz3IMAJ2eh AML1EFew+PXPBxpy+YkhAWslfslh5NJcvSc07qf+Bln+MqJALog471K5G9qMM5zu CDsb0e1SSBEPa5tfHru0Vw7Imr8341LJr4vEoK9+eCncfFwsmTWYJL97FLmWVuXL fP10vS7CiR1DGVEiObwTyBYJ9jwz3TU= -----END CERTIFICATE-----Generated at Sat Sep 6 12:08:09 2025 by rpki-client