$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft File: QeHsF957pw-MEkF3aWN3AjclGd4.mft (raw, json) Hash identifier: 6bIU/QluvYf8LNmfg0gJhkJFpvzqkaMOL7lHV1KoPwI= Subject key identifier: DB:5C:31:33:D8:3A:07:56:2B:27:A1:91:6F:E5:15:02:F5:D8:56:C6 Authority key identifier: 41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE Certificate issuer: /CN=A913AE23/serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE Certificate serial: EC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft Manifest number: E8 Signing time: Fri 05 Sep 2025 05:47:25 +0000 Manifest this update: Fri 05 Sep 2025 05:47:24 +0000 Manifest next update: Fri 12 Sep 2025 05:47:24 +0000 Files and hashes: 1: QeHsF957pw-MEkF3aWN3AjclGd4.crl (hash: cBZaPcqyfwFf2pnGVAYkRlPgEDkyqHj3Gcf1LShpFLs=) 2: 8CF832322C6C11EFB50AD22EC4F9AE02.roa (hash: myCFNxvv5IAR99ZKjiUguBSEoJVC0Ub7TniOQix4HTE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:47:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 236 (0xec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE23, serialNumber=41E1EC17DE7BA70F8C12417769637702372519DE Validity Not Before: Sep 5 05:47:24 2025 GMT Not After : Sep 12 05:47:24 2025 GMT Subject: CN=68ba796c-df9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a6:01:da:22:58:05:51:8a:67:d9:6e:e9:df: 9d:63:3b:be:92:5c:37:9f:f0:8a:c5:b8:d7:93:6e: 44:c0:de:1c:46:b2:0c:47:6e:de:0b:07:82:f5:d3: a1:05:2a:ac:ac:01:78:90:86:50:95:a1:2d:3a:d5: 0b:a8:c4:0f:6a:a0:cd:9b:79:f0:4e:fe:3c:79:55: 3d:ba:82:5e:5a:8b:67:40:17:8f:8c:6c:b0:3a:a3: d5:e1:09:2b:b8:26:47:fb:d2:a6:a6:c4:15:7f:49: 2b:ec:42:e6:7d:41:ea:e5:30:33:54:d2:cf:ff:fa: a0:fa:8b:a2:ef:50:e8:00:5a:26:84:80:63:74:43: 02:77:b5:03:90:11:c6:09:a7:2a:24:b4:2b:d5:fd: d7:d3:c3:98:55:41:0a:2c:bc:79:9a:b6:42:e4:12: 23:84:41:e6:56:75:a0:a9:0e:e1:80:36:86:db:5a: 27:24:4e:54:57:29:7e:3c:44:c1:36:e5:7c:21:63: b0:f0:ce:b3:28:ff:16:0b:d8:42:56:de:f4:54:76: 4f:38:1c:47:a2:e0:bd:38:82:57:93:40:dd:83:83: a4:10:12:dc:71:61:f0:fa:8f:b0:23:a5:ac:f9:2f: de:e2:b8:4a:9a:3e:49:85:d3:a6:11:91:e2:10:a8: e2:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:5C:31:33:D8:3A:07:56:2B:27:A1:91:6F:E5:15:02:F5:D8:56:C6 X509v3 Authority Key Identifier: keyid:41:E1:EC:17:DE:7B:A7:0F:8C:12:41:77:69:63:77:02:37:25:19:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QeHsF957pw-MEkF3aWN3AjclGd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE23/301A1E4A2C6C11EFA346942DC4F9AE02/QeHsF957pw-MEkF3aWN3AjclGd4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:54:e0:e6:b4:74:8c:28:3a:20:f4:92:8f:31:c6:6b:8f:33: 7f:3e:c4:9e:9b:53:0a:27:ef:9b:66:bd:05:4e:c8:14:a4:5a: b9:9f:3f:63:65:46:9a:7c:d0:77:2d:46:f0:f3:97:ab:2c:18: f0:a1:2d:27:f9:dd:34:53:64:49:53:30:9c:11:53:c2:fb:c1: ab:1b:9a:09:3d:fb:16:56:a4:16:95:18:dd:13:89:c5:d7:a3: 30:f3:58:68:3c:69:c7:56:a9:76:ec:68:c6:9b:89:df:f9:cf: d8:30:83:a2:66:fc:3c:18:23:25:cd:3c:d6:cf:83:73:f3:ab: 6c:3f:54:1d:15:12:f1:1e:3f:9b:8f:af:bb:9b:8a:94:ed:05: f4:2d:2a:77:0c:d7:26:05:c5:66:c3:7d:7e:6a:f9:47:7e:1a: 40:f7:70:28:89:63:5b:6b:4b:36:b4:63:8a:16:ad:7d:51:93: 3d:f9:1c:8d:c2:93:3e:fa:3e:d8:74:92:49:24:7a:0a:23:29: 0d:02:81:e8:fa:6c:b9:7d:25:30:79:eb:b0:c2:47:5d:5c:64: 7e:e2:8e:2f:c0:f0:cd:26:cc:bd:0f:3f:fc:47:39:7c:a8:e0: f2:87:14:29:7b:f7:c2:56:4a:c6:28:c0:f5:58:e9:e5:98:d0: 4d:e7:59:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFMjMxMTAvBgNVBAUTKDQxRTFFQzE3REU3QkE3MEY4QzEyNDE3NzY5NjM3NzAy MzcyNTE5REUwHhcNMjUwOTA1MDU0NzI0WhcNMjUwOTEyMDU0NzI0WjAYMRYwFAYD VQQDEw02OGJhNzk2Yy1kZjljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqYB2iJYBVGKZ9lu6d+dYzu+klw3n/CKxbjXk25EwN4cRrIMR27eCweC9dOh BSqsrAF4kIZQlaEtOtULqMQPaqDNm3nwTv48eVU9uoJeWotnQBePjGywOqPV4Qkr uCZH+9KmpsQVf0kr7ELmfUHq5TAzVNLP//qg+oui71DoAFomhIBjdEMCd7UDkBHG CacqJLQr1f3X08OYVUEKLLx5mrZC5BIjhEHmVnWgqQ7hgDaG21onJE5UVyl+PETB NuV8IWOw8M6zKP8WC9hCVt70VHZPOBxHouC9OIJXk0Ddg4OkEBLccWHw+o+wI6Ws +S/e4rhKmj5JhdOmEZHiEKjijQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNtcMTPY OgdWKyehkW/lFQL12FbGMB8GA1UdIwQYMBaAFEHh7Bfee6cPjBJBd2ljdwI3JRne MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUUyMy8zMDFBMUU0QTJD NkMxMUVGQTM0Njk0MkRDNEY5QUUwMi9RZUhzRjk1N3B3LU1Fa0YzYVdOM0FqY2xH ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FlSHNGOTU3cHctTUVrRjNhV04zQWpjbEdkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUUyMy8zMDFBMUU0QTJDNkMxMUVGQTM0Njk0MkRDNEY5QUUwMi9RZUhzRjk1N3B3 LU1Fa0YzYVdOM0FqY2xHZDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRVODmtHSMKDog9JKPMcZrjzN/PsSem1MKJ++bZr0FTsgUpFq5nz9j ZUaafNB3LUbw85erLBjwoS0n+d00U2RJUzCcEVPC+8GrG5oJPfsWVqQWlRjdE4nF 16Mw81hoPGnHVql27GjGm4nf+c/YMIOiZvw8GCMlzTzWz4Nz86tsP1QdFRLxHj+b j6+7m4qU7QX0LSp3DNcmBcVmw31+avlHfhpA93AoiWNba0s2tGOKFq19UZM9+RyN wpM++j7YdJJJJHoKIykNAoHo+my5fSUweeuwwkddXGR+4o4vwPDNJsy9Dz/8Rzl8 qODyhxQpe/fCVkrGKMD1WOnlmNBN51kn -----END CERTIFICATE-----Generated at Sat Sep 6 21:12:13 2025 by rpki-client