$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft File: QeHsF957pw-MEkF3aWN3AjclGd4.mft (raw, json) Hash identifier: jNZ6xusAMay0zcziXRhl3H7vEPfIDvvQVXuBasxGxiU= Subject key identifier: 23:63:BD:08:EC:D3:EB:65:65:F7:09:40:62:89:A3:79:7D:7F:CC:04 Authority key identifier: 41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE Certificate issuer: /CN=A913AE23/serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE Certificate serial: D0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft Manifest number: CD Signing time: Sat 19 Jul 2025 05:53:08 +0000 Manifest this update: Sat 19 Jul 2025 05:53:07 +0000 Manifest next update: Sat 26 Jul 2025 05:53:07 +0000 Files and hashes: 1: QeHsF957pw-MEkF3aWN3AjclGd4.crl (hash: EPaudNSe5CEn5qCe59uXGgUmyrYdWLqO81jj1FAWcJE=) 2: 8CF832322C6C11EFB50AD22EC4F9AE02.roa (hash: 7ZftxeCsBvOw6J2/sGTBldkcAq0B9zzZMirRxBsj6nQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:53:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE23, serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE Validity Not Before: Jul 19 05:53:07 2025 GMT Not After : Jul 26 05:53:07 2025 GMT Subject: CN=687b32c4-603d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:0c:0a:2b:63:ad:a4:dc:69:81:0a:e6:0f:c8: 8b:43:f4:2e:bb:da:7f:17:6b:df:7f:db:5b:58:0c: 79:14:d4:07:01:a1:e7:2c:df:57:9b:dd:0f:c5:3b: 22:cb:b4:9c:19:e3:48:04:af:ae:5d:de:45:f0:ae: 1c:36:4e:1c:2c:da:30:64:6b:4e:56:15:6a:87:af: e0:3d:98:67:d8:dc:66:9d:71:2b:7c:4a:6a:44:ad: 2a:78:7a:3c:17:62:54:a9:40:5b:70:8b:64:56:8e: 41:a4:ea:90:75:b5:84:79:1b:99:c9:8c:92:b1:ac: fc:a3:b9:b0:10:14:36:8d:d2:de:48:c8:9e:1e:ba: b9:f9:ed:7f:7e:8c:35:d6:ed:31:47:ad:9f:10:56: bf:39:92:e3:fd:9d:38:2c:47:27:da:3c:53:2e:0c: 35:2e:22:ae:21:33:74:2e:f0:74:16:c5:67:4c:27: 92:24:9d:ea:fd:8d:92:32:bf:fa:13:fd:df:dc:38: f2:28:a4:c5:f0:0f:dc:10:e9:a6:a2:47:59:48:7c: 5c:a4:6d:30:bf:20:f0:ef:79:53:f3:18:bd:28:24: 4b:cb:57:a9:6a:e2:92:38:74:3f:b7:43:14:f0:36: 02:39:81:22:8d:e2:13:be:c8:fb:40:a6:38:54:76: 02:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:63:BD:08:EC:D3:EB:65:65:F7:09:40:62:89:A3:79:7D:7F:CC:04 X509v3 Authority Key Identifier: keyid:41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:0e:70:22:e9:ae:0a:59:31:03:8d:2f:49:30:e4:b0:60:12: 28:78:17:69:88:3e:32:9a:9b:1b:c9:0a:7a:13:90:93:f5:10: 41:a2:5d:d3:82:cb:c5:55:d3:6c:b4:39:12:62:cc:a6:80:02: 7f:68:93:19:a1:bf:b2:34:fc:1d:b9:ca:2a:26:11:1b:2a:cd: 06:78:67:89:0f:d7:f2:90:5f:49:01:5c:a2:44:97:3b:e9:e5: 57:37:d1:58:ff:26:b9:97:c5:8c:15:05:08:9e:97:47:60:67: d6:12:90:32:83:25:df:48:79:3d:b2:62:e9:5e:29:fd:92:96: 17:66:fc:08:21:ab:42:ba:b3:8e:a3:bd:f0:dc:b5:8b:9e:f5: 7f:2e:af:14:39:f1:4e:9a:3c:7c:93:c4:e3:65:66:69:9a:4d: 82:6c:3c:85:9f:15:5c:62:65:f3:fa:1d:c7:a3:6b:5c:7b:9c: 03:79:16:f4:7f:c2:8e:f8:c9:c9:30:c8:90:d5:d2:bd:24:c3: e2:51:ba:00:4e:45:a6:5b:ab:c9:61:0c:4b:96:58:a9:e2:fa: 41:3d:7a:58:7c:1d:be:af:19:a4:21:71:b2:ed:64:3c:77:ea: 45:21:c4:a2:9f:80:1f:6a:e4:81:9e:e8:c7:0f:5e:b4:91:d9: f2:d6:ed:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFMjMxMTAvBgNVBAUTKDQxRTFFQzE3REU3QkE3MEY4QzEyNDE3NzY5NjM3NzAy MzcyNTE5REUwHhcNMjUwNzE5MDU1MzA3WhcNMjUwNzI2MDU1MzA3WjAYMRYwFAYD VQQDEw02ODdiMzJjNC02MDNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAugwKK2OtpNxpgQrmD8iLQ/Quu9p/F2vff9tbWAx5FNQHAaHnLN9Xm90PxTsi y7ScGeNIBK+uXd5F8K4cNk4cLNowZGtOVhVqh6/gPZhn2NxmnXErfEpqRK0qeHo8 F2JUqUBbcItkVo5BpOqQdbWEeRuZyYySsaz8o7mwEBQ2jdLeSMieHrq5+e1/fow1 1u0xR62fEFa/OZLj/Z04LEcn2jxTLgw1LiKuITN0LvB0FsVnTCeSJJ3q/Y2SMr/6 E/3f3DjyKKTF8A/cEOmmokdZSHxcpG0wvyDw73lT8xi9KCRLy1epauKSOHQ/t0MU 8DYCOYEijeITvsj7QKY4VHYCGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCNjvQjs 0+tlZfcJQGKJo3l9f8wEMB8GA1UdIwQYMBaAFEHh7Bfee6cPjBJBd2ljdwI3JRne MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUUyMy8zMDFBMUU0QTJD NkMxMUVGQTM0Njk0MkRDNEY5QUUwMi9RZUhzRjk1N3B3LU1Fa0YzYVdOM0FqY2xH ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FlSHNGOTU3cHctTUVrRjNhV04zQWpjbEdkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUUyMy8zMDFBMUU0QTJDNkMxMUVGQTM0Njk0MkRDNEY5QUUwMi9RZUhzRjk1N3B3 LU1Fa0YzYVdOM0FqY2xHZDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsDnAi6a4KWTEDjS9JMOSwYBIoeBdpiD4ympsbyQp6E5CT9RBBol3T gsvFVdNstDkSYsymgAJ/aJMZob+yNPwducoqJhEbKs0GeGeJD9fykF9JAVyiRJc7 6eVXN9FY/ya5l8WMFQUInpdHYGfWEpAygyXfSHk9smLpXin9kpYXZvwIIatCurOO o73w3LWLnvV/Lq8UOfFOmjx8k8TjZWZpmk2CbDyFnxVcYmXz+h3Ho2tce5wDeRb0 f8KO+MnJMMiQ1dK9JMPiUboATkWmW6vJYQxLllip4vpBPXpYfB2+rxmkIXGy7WQ8 d+pFIcSin4AfauSBnujHD160kdny1u3V -----END CERTIFICATE-----Generated at Mon Jul 21 03:05:35 2025 by rpki-client